City: Cape Town
Region: Western Cape
Country: South Africa
Internet Service Provider: Telkom
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.147.18.0
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24580
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;41.147.18.0. IN A
;; AUTHORITY SECTION:
. 169 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022060802 1800 900 604800 86400
;; Query time: 71 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 09 08:55:40 CST 2022
;; MSG SIZE rcvd: 1040.18.147.41.in-addr.arpa domain name pointer 8ta-147-18-00.telkomadsl.co.za.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
0.18.147.41.in-addr.arpa name = 8ta-147-18-00.telkomadsl.co.za.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 112.25.176.62 | attackbotsspam | Feb 1 03:32:40 wh01 sshd[7509]: Did not receive identification string from 112.25.176.62 port 60642 Feb 1 05:54:47 wh01 sshd[19031]: Invalid user netscreen from 112.25.176.62 port 34177 Feb 1 05:54:48 wh01 sshd[19031]: Failed password for invalid user netscreen from 112.25.176.62 port 34177 ssh2 Feb 1 05:54:48 wh01 sshd[19031]: Connection closed by 112.25.176.62 port 34177 [preauth] Feb 1 05:54:50 wh01 sshd[19033]: Failed password for root from 112.25.176.62 port 34849 ssh2 Feb 1 05:54:50 wh01 sshd[19033]: Connection closed by 112.25.176.62 port 34849 [preauth] |
2020-02-01 15:48:08 |
| 200.62.99.13 | attackbots | (imapd) Failed IMAP login from 200.62.99.13 (NI/Nicaragua/13-99-62-200.enitel.net.ni): 1 in the last 3600 secs |
2020-02-01 15:43:22 |
| 106.13.118.216 | attackbots | Feb 1 05:55:40 jane sshd[9077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.118.216 Feb 1 05:55:42 jane sshd[9077]: Failed password for invalid user vyatta from 106.13.118.216 port 35560 ssh2 ... |
2020-02-01 15:12:37 |
| 89.248.174.146 | attack | Feb 1 06:47:53 h2177944 kernel: \[3734234.800681\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=89.248.174.146 DST=85.214.117.9 LEN=96 TOS=0x00 PREC=0x00 TTL=59 ID=17687 DF PROTO=UDP SPT=51024 DPT=161 LEN=76 Feb 1 06:47:53 h2177944 kernel: \[3734234.800695\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=89.248.174.146 DST=85.214.117.9 LEN=96 TOS=0x00 PREC=0x00 TTL=59 ID=17687 DF PROTO=UDP SPT=51024 DPT=161 LEN=76 Feb 1 07:18:45 h2177944 kernel: \[3736085.976071\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=89.248.174.146 DST=85.214.117.9 LEN=33 TOS=0x00 PREC=0x00 TTL=59 ID=31844 DF PROTO=UDP SPT=35073 DPT=3702 LEN=13 Feb 1 07:18:45 h2177944 kernel: \[3736085.976087\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=89.248.174.146 DST=85.214.117.9 LEN=33 TOS=0x00 PREC=0x00 TTL=59 ID=31844 DF PROTO=UDP SPT=35073 DPT=3702 LEN=13 Feb 1 07:45:06 h2177944 kernel: \[3737666.390686\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=89.248.174.146 DST=85.214.117.9 LEN=42 TOS=0x00 PREC=0x00 TTL=59 ID=47142 DF PROTO=UDP SPT=41247 DPT=9987 LEN=22 ... |
2020-02-01 15:19:07 |
| 178.47.141.218 | attackbots | port scan and connect, tcp 1433 (ms-sql-s) |
2020-02-01 15:45:09 |
| 194.78.225.106 | attack | Feb 1 07:04:39 mailserver postfix/smtpd[45697]: disconnect from unknown[194.78.225.106] Feb 1 07:05:45 mailserver postfix/smtpd[45697]: connect from unknown[194.78.225.106] Feb 1 07:05:45 mailserver postfix/smtpd[45697]: NOQUEUE: reject: RCPT from unknown[194.78.225.106]: 450 4.7.1 Client host rejected: cannot find your hostname, [194.78.225.106]; from=<> to=<[hidden]> proto=ESMTP helo= |
2020-02-01 15:44:54 |
| 116.236.79.37 | attackbots | Unauthorized connection attempt detected from IP address 116.236.79.37 to port 2220 [J] |
2020-02-01 15:45:44 |
| 176.59.129.88 | attackbotsspam | Attempt to attack host OS, exploiting network vulnerabilities, on 01-02-2020 04:55:10. |
2020-02-01 15:32:45 |
| 185.234.216.88 | attack | Unauthorized connection attempt detected from IP address 185.234.216.88 to port 25 [J] |
2020-02-01 15:14:47 |
| 109.163.193.66 | attack | 20/1/31@23:55:07: FAIL: Alarm-Network address from=109.163.193.66 ... |
2020-02-01 15:38:49 |
| 91.54.35.199 | attackspambots | Feb 1 07:55:21 server sshd\[17440\]: Invalid user pi from 91.54.35.199 Feb 1 07:55:21 server sshd\[17440\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=p5b3623c7.dip0.t-ipconnect.de Feb 1 07:55:21 server sshd\[17442\]: Invalid user pi from 91.54.35.199 Feb 1 07:55:21 server sshd\[17442\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=p5b3623c7.dip0.t-ipconnect.de Feb 1 07:55:23 server sshd\[17440\]: Failed password for invalid user pi from 91.54.35.199 port 39044 ssh2 ... |
2020-02-01 15:22:44 |
| 13.53.155.99 | attackspambots | User agent spoofing, by Amazon Technologies Inc. |
2020-02-01 15:32:20 |
| 162.243.131.51 | attackbotsspam | *Port Scan* detected from 162.243.131.51 (US/United States/zg-0131a-398.stretchoid.com). 4 hits in the last 175 seconds |
2020-02-01 15:43:47 |
| 77.42.74.42 | attackbotsspam | Automatic report - Port Scan Attack |
2020-02-01 15:20:02 |
| 103.210.133.20 | attackbotsspam | Invalid user DUP from 103.210.133.20 port 59672 |
2020-02-01 15:17:22 |