City: unknown
Region: unknown
Country: South Africa
Internet Service Provider: Cell C
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.52.34.91
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44107
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;41.52.34.91. IN A
;; AUTHORITY SECTION:
. 285 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022010100 1800 900 604800 86400
;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 01 14:06:49 CST 2022
;; MSG SIZE rcvd: 104Host 91.34.52.41.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 91.34.52.41.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 180.93.54.211 | attackspam | Unauthorized connection attempt detected from IP address 180.93.54.211 to port 445 |
2019-12-12 13:57:57 |
| 176.31.255.63 | attack | Invalid user dasusr1 from 176.31.255.63 port 37872 |
2019-12-12 14:11:20 |
| 125.234.101.33 | attackspambots | Lines containing failures of 125.234.101.33 (max 1000) Dec 12 00:24:38 localhost sshd[24519]: Invalid user rest from 125.234.101.33 port 59162 Dec 12 00:24:38 localhost sshd[24519]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.234.101.33 Dec 12 00:24:40 localhost sshd[24519]: Failed password for invalid user rest from 125.234.101.33 port 59162 ssh2 Dec 12 00:24:40 localhost sshd[24519]: Received disconnect from 125.234.101.33 port 59162:11: Bye Bye [preauth] Dec 12 00:24:40 localhost sshd[24519]: Disconnected from invalid user rest 125.234.101.33 port 59162 [preauth] Dec 12 00:50:08 localhost sshd[6252]: User r.r from 125.234.101.33 not allowed because listed in DenyUsers Dec 12 00:50:08 localhost sshd[6252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.234.101.33 user=r.r Dec 12 00:50:09 localhost sshd[6252]: Failed password for invalid user r.r from 125.234.101.33 port 46321........ ------------------------------ |
2019-12-12 13:50:06 |
| 106.13.54.207 | attack | 2019-12-12T05:46:40.007081shield sshd\[19738\]: Invalid user hancel from 106.13.54.207 port 40634 2019-12-12T05:46:40.011744shield sshd\[19738\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.54.207 2019-12-12T05:46:42.163591shield sshd\[19738\]: Failed password for invalid user hancel from 106.13.54.207 port 40634 ssh2 2019-12-12T05:53:01.588244shield sshd\[22265\]: Invalid user kpkp from 106.13.54.207 port 40796 2019-12-12T05:53:01.591596shield sshd\[22265\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.54.207 |
2019-12-12 14:07:49 |
| 178.128.156.159 | attackspam | fail2ban |
2019-12-12 13:32:40 |
| 77.81.229.207 | attack | Dec 11 19:39:16 auw2 sshd\[26052\]: Invalid user server from 77.81.229.207 Dec 11 19:39:16 auw2 sshd\[26052\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.81.229.207 Dec 11 19:39:18 auw2 sshd\[26052\]: Failed password for invalid user server from 77.81.229.207 port 55966 ssh2 Dec 11 19:44:34 auw2 sshd\[26496\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.81.229.207 user=root Dec 11 19:44:36 auw2 sshd\[26496\]: Failed password for root from 77.81.229.207 port 34172 ssh2 |
2019-12-12 13:52:51 |
| 182.72.199.177 | attackspambots | Attempt to attack host OS, exploiting network vulnerabilities, on 12-12-2019 04:55:10. |
2019-12-12 14:04:45 |
| 71.6.158.166 | attackspambots | firewall-block, port(s): 8086/tcp |
2019-12-12 14:08:06 |
| 80.93.214.15 | attack | 2019-12-11T22:27:18.222433-07:00 suse-nuc sshd[10609]: Invalid user dominic from 80.93.214.15 port 50206 ... |
2019-12-12 14:13:12 |
| 193.56.28.244 | attack | Dec 12 04:55:29 marvibiene postfix/smtpd[46529]: warning: unknown[193.56.28.244]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 12 04:55:37 marvibiene postfix/smtpd[46529]: warning: unknown[193.56.28.244]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2019-12-12 13:32:19 |
| 49.206.30.37 | attack | Dec 12 05:55:33 nextcloud sshd\[27360\]: Invalid user mcfate from 49.206.30.37 Dec 12 05:55:33 nextcloud sshd\[27360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.206.30.37 Dec 12 05:55:35 nextcloud sshd\[27360\]: Failed password for invalid user mcfate from 49.206.30.37 port 54472 ssh2 ... |
2019-12-12 13:41:30 |
| 58.225.75.147 | attack | Dec 12 05:55:32 debian-2gb-nbg1-2 kernel: \[24408072.847355\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=58.225.75.147 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=53770 PROTO=TCP SPT=32767 DPT=8545 WINDOW=1024 RES=0x00 SYN URGP=0 |
2019-12-12 13:43:11 |
| 117.55.247.38 | attackspam | 1576126505 - 12/12/2019 05:55:05 Host: 117.55.247.38/117.55.247.38 Port: 445 TCP Blocked |
2019-12-12 14:10:03 |
| 138.91.120.70 | attackspam | Dec 11 19:27:09 hpm sshd\[20037\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.91.120.70 user=root Dec 11 19:27:11 hpm sshd\[20037\]: Failed password for root from 138.91.120.70 port 40234 ssh2 Dec 11 19:33:14 hpm sshd\[20611\]: Invalid user aracelia from 138.91.120.70 Dec 11 19:33:14 hpm sshd\[20611\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.91.120.70 Dec 11 19:33:16 hpm sshd\[20611\]: Failed password for invalid user aracelia from 138.91.120.70 port 51244 ssh2 |
2019-12-12 13:40:15 |
| 158.69.197.113 | attack | Invalid user amit from 158.69.197.113 port 60488 |
2019-12-12 14:01:11 |