City: unknown
Region: unknown
Country: South Africa
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.16.44.201
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12123
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;41.16.44.201. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025022000 1800 900 604800 86400
;; Query time: 50 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 18:06:54 CST 2025
;; MSG SIZE rcvd: 105201.44.16.41.in-addr.arpa domain name pointer vc-gp-n-41-16-44-201.umts.vodacom.co.za.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
201.44.16.41.in-addr.arpa name = vc-gp-n-41-16-44-201.umts.vodacom.co.za.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 106.12.94.5 | attackspam | Jan 11 09:10:04 server sshd\[32378\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.94.5 user=root Jan 11 09:10:05 server sshd\[32378\]: Failed password for root from 106.12.94.5 port 57750 ssh2 Jan 11 09:33:50 server sshd\[6069\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.94.5 user=root Jan 11 09:33:52 server sshd\[6069\]: Failed password for root from 106.12.94.5 port 57640 ssh2 Jan 11 09:36:52 server sshd\[7017\]: Invalid user delete from 106.12.94.5 ... |
2020-01-11 15:52:58 |
| 92.118.37.97 | attack | ET CINS Active Threat Intelligence Poor Reputation IP group 93 - port: 3390 proto: TCP cat: Misc Attack |
2020-01-11 15:48:15 |
| 89.19.241.97 | attack | Jan 11 08:08:46 meumeu sshd[25980]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.19.241.97 Jan 11 08:08:48 meumeu sshd[25980]: Failed password for invalid user vonny from 89.19.241.97 port 57523 ssh2 Jan 11 08:12:04 meumeu sshd[26438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.19.241.97 ... |
2020-01-11 15:24:20 |
| 54.183.166.71 | attack | Unauthorized connection attempt detected from IP address 54.183.166.71 to port 8888 |
2020-01-11 15:31:31 |
| 95.165.164.170 | attack | IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking. |
2020-01-11 15:21:25 |
| 177.152.38.93 | attack | [Sat Jan 11 11:54:42.857904 2020] [:error] [pid 8840:tid 140478095808256] [client 177.152.38.93:59766] [client 177.152.38.93] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197:80"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XhlVEsWJR76VRgCXUs12rAAAAD0"] ... |
2020-01-11 15:51:56 |
| 202.218.128.207 | attackspambots | 01/11/2020-05:54:48.528474 202.218.128.207 Protocol: 6 SURICATA TLS invalid record/traffic |
2020-01-11 15:50:05 |
| 46.38.144.146 | attack | Jan 11 08:33:29 vmanager6029 postfix/smtpd\[31782\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 11 08:34:23 vmanager6029 postfix/smtpd\[31691\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2020-01-11 15:38:46 |
| 140.143.248.69 | attackbotsspam | Jan 11 05:51:05 vmanager6029 sshd\[27468\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.248.69 user=root Jan 11 05:51:07 vmanager6029 sshd\[27468\]: Failed password for root from 140.143.248.69 port 34130 ssh2 Jan 11 05:54:25 vmanager6029 sshd\[27521\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.248.69 user=root |
2020-01-11 16:00:20 |
| 14.233.234.200 | attackbotsspam | 20/1/10@23:54:34: FAIL: Alarm-Network address from=14.233.234.200 20/1/10@23:54:34: FAIL: Alarm-Network address from=14.233.234.200 ... |
2020-01-11 15:57:58 |
| 5.196.227.244 | attack | Jan 11 06:57:26 vps691689 sshd[2378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.227.244 Jan 11 06:57:28 vps691689 sshd[2378]: Failed password for invalid user yahoog from 5.196.227.244 port 35590 ssh2 Jan 11 07:03:00 vps691689 sshd[2527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.227.244 ... |
2020-01-11 15:52:44 |
| 205.185.113.140 | attack | Jan 11 07:47:44 vtv3 sshd[10063]: Failed password for root from 205.185.113.140 port 35674 ssh2 Jan 11 07:51:13 vtv3 sshd[11798]: Failed password for root from 205.185.113.140 port 52970 ssh2 Jan 11 08:05:02 vtv3 sshd[17936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=205.185.113.140 Jan 11 08:05:04 vtv3 sshd[17936]: Failed password for invalid user Office@12124 from 205.185.113.140 port 32872 ssh2 Jan 11 08:06:54 vtv3 sshd[19041]: Failed password for root from 205.185.113.140 port 50166 ssh2 Jan 11 08:17:42 vtv3 sshd[23962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=205.185.113.140 Jan 11 08:17:43 vtv3 sshd[23962]: Failed password for invalid user tesing0 from 205.185.113.140 port 51942 ssh2 Jan 11 08:19:29 vtv3 sshd[24662]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=205.185.113.140 Jan 11 08:30:03 vtv3 sshd[29948]: pam_unix(sshd:auth): authentication failure; logname= ui |
2020-01-11 15:52:19 |
| 79.3.6.207 | attack | "Fail2Ban detected SSH brute force attempt" |
2020-01-11 15:17:49 |
| 103.99.15.175 | attackbots | Attempt to attack host OS, exploiting network vulnerabilities, on 11-01-2020 04:55:09. |
2020-01-11 15:34:15 |
| 178.165.72.177 | attackspam | 01/11/2020-05:54:40.723203 178.165.72.177 Protocol: 6 ET TOR Known Tor Exit Node Traffic group 19 |
2020-01-11 15:53:29 |