City: Pretoria
Region: Gauteng
Country: South Africa
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.57.149.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48926
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;41.57.149.34. IN A
;; AUTHORITY SECTION:
. 157 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022010702 1800 900 604800 86400
;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 08 09:55:12 CST 2022
;; MSG SIZE rcvd: 105
Host 34.149.57.41.in-addr.arpa. not found: 3(NXDOMAIN)
Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 34.149.57.41.in-addr.arpa: NXDOMAIN
IP | Type | Details | Datetime |
---|---|---|---|
186.250.232.116 | attack | Dec 19 16:30:44 pkdns2 sshd\[30213\]: Invalid user radiusd from 186.250.232.116Dec 19 16:30:45 pkdns2 sshd\[30213\]: Failed password for invalid user radiusd from 186.250.232.116 port 39706 ssh2Dec 19 16:35:03 pkdns2 sshd\[30440\]: Invalid user rodrigo from 186.250.232.116Dec 19 16:35:05 pkdns2 sshd\[30440\]: Failed password for invalid user rodrigo from 186.250.232.116 port 49624 ssh2Dec 19 16:39:21 pkdns2 sshd\[30684\]: Invalid user paste from 186.250.232.116Dec 19 16:39:23 pkdns2 sshd\[30684\]: Failed password for invalid user paste from 186.250.232.116 port 59536 ssh2 ... |
2019-12-19 23:02:48 |
81.22.45.85 | attackspambots | 12/19/2019-09:39:06.740739 81.22.45.85 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 84 |
2019-12-19 23:14:58 |
78.30.198.41 | attackbotsspam | [portscan] Port scan |
2019-12-19 23:04:20 |
185.195.237.24 | attackspam | Dec 19 15:38:52 vpn01 sshd[21873]: Failed password for root from 185.195.237.24 port 33219 ssh2 Dec 19 15:39:06 vpn01 sshd[21873]: Failed password for root from 185.195.237.24 port 33219 ssh2 Dec 19 15:39:06 vpn01 sshd[21873]: error: maximum authentication attempts exceeded for root from 185.195.237.24 port 33219 ssh2 [preauth] ... |
2019-12-19 23:15:26 |
196.9.24.40 | attack | SSH Brute Force |
2019-12-19 23:00:34 |
94.177.189.145 | attack | Dec 19 11:23:33 server sshd\[32021\]: Failed password for invalid user ubnt from 94.177.189.145 port 55162 ssh2 Dec 19 17:48:54 server sshd\[5088\]: Invalid user admin from 94.177.189.145 Dec 19 17:48:54 server sshd\[5088\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.189.145 Dec 19 17:48:57 server sshd\[5088\]: Failed password for invalid user admin from 94.177.189.145 port 36902 ssh2 Dec 19 17:48:57 server sshd\[5112\]: Invalid user ubnt from 94.177.189.145 Dec 19 17:48:57 server sshd\[5112\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.189.145 ... |
2019-12-19 23:12:08 |
73.137.98.159 | attackspambots | Lines containing failures of 73.137.98.159 Dec 18 15:16:28 keyhelp sshd[16826]: Invalid user eve from 73.137.98.159 port 50592 Dec 18 15:16:28 keyhelp sshd[16826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=73.137.98.159 Dec 18 15:16:30 keyhelp sshd[16826]: Failed password for invalid user eve from 73.137.98.159 port 50592 ssh2 Dec 18 15:16:30 keyhelp sshd[16826]: Received disconnect from 73.137.98.159 port 50592:11: Bye Bye [preauth] Dec 18 15:16:30 keyhelp sshd[16826]: Disconnected from invalid user eve 73.137.98.159 port 50592 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=73.137.98.159 |
2019-12-19 23:40:54 |
95.155.58.52 | attackspam | Dec 19 15:39:20 grey postfix/smtpd\[12011\]: NOQUEUE: reject: RCPT from unknown\[95.155.58.52\]: 554 5.7.1 Service unavailable\; Client host \[95.155.58.52\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?95.155.58.52\; from=\ |
2019-12-19 23:05:25 |
45.117.182.79 | attackbotsspam | Brute force SMTP login attempts. |
2019-12-19 23:07:38 |
138.68.27.177 | attackspam | Dec 19 15:50:25 legacy sshd[15144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.27.177 Dec 19 15:50:26 legacy sshd[15144]: Failed password for invalid user kathe from 138.68.27.177 port 42640 ssh2 Dec 19 15:56:08 legacy sshd[15380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.27.177 ... |
2019-12-19 23:20:17 |
159.203.59.38 | attackbots | Dec 19 15:34:28 tux-35-217 sshd\[16231\]: Invalid user www from 159.203.59.38 port 55934 Dec 19 15:34:28 tux-35-217 sshd\[16231\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.59.38 Dec 19 15:34:29 tux-35-217 sshd\[16231\]: Failed password for invalid user www from 159.203.59.38 port 55934 ssh2 Dec 19 15:39:28 tux-35-217 sshd\[16282\]: Invalid user admin from 159.203.59.38 port 60706 Dec 19 15:39:28 tux-35-217 sshd\[16282\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.59.38 ... |
2019-12-19 22:59:37 |
142.93.218.11 | attackspam | Dec 19 16:16:36 loxhost sshd\[12750\]: Invalid user password from 142.93.218.11 port 42360 Dec 19 16:16:36 loxhost sshd\[12750\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.218.11 Dec 19 16:16:38 loxhost sshd\[12750\]: Failed password for invalid user password from 142.93.218.11 port 42360 ssh2 Dec 19 16:23:58 loxhost sshd\[13038\]: Invalid user \~!@\#$%\^\&\*\(\)_+ from 142.93.218.11 port 49258 Dec 19 16:23:58 loxhost sshd\[13038\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.218.11 ... |
2019-12-19 23:31:46 |
175.182.227.144 | attackspam | Unauthorized connection attempt detected from IP address 175.182.227.144 to port 22 |
2019-12-19 23:10:30 |
138.197.89.212 | attackspambots | Dec 19 04:50:23 web9 sshd\[9472\]: Invalid user atwater from 138.197.89.212 Dec 19 04:50:23 web9 sshd\[9472\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.89.212 Dec 19 04:50:25 web9 sshd\[9472\]: Failed password for invalid user atwater from 138.197.89.212 port 41710 ssh2 Dec 19 04:55:52 web9 sshd\[10259\]: Invalid user mal123 from 138.197.89.212 Dec 19 04:55:52 web9 sshd\[10259\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.89.212 |
2019-12-19 23:08:22 |
154.127.215.150 | attackspam | Dec 19 15:38:47 grey postfix/smtpd\[5136\]: NOQUEUE: reject: RCPT from unknown\[154.127.215.150\]: 554 5.7.1 Service unavailable\; Client host \[154.127.215.150\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?154.127.215.150\; from=\ |
2019-12-19 23:33:05 |