City: Pretoria
Region: Gauteng
Country: South Africa
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.57.149.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48926
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;41.57.149.34. IN A
;; AUTHORITY SECTION:
. 157 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022010702 1800 900 604800 86400
;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 08 09:55:12 CST 2022
;; MSG SIZE rcvd: 105Host 34.149.57.41.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 34.149.57.41.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 159.65.7.56 | attackbotsspam | Jul 1 12:06:48 [munged] sshd[6030]: Invalid user oracle from 159.65.7.56 port 34714 Jul 1 12:06:48 [munged] sshd[6030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.7.56 |
2019-07-01 19:13:58 |
| 217.65.27.132 | attackspambots | Jul 1 06:28:47 Ubuntu-1404-trusty-64-minimal sshd\[1556\]: Invalid user cgi from 217.65.27.132 Jul 1 06:28:47 Ubuntu-1404-trusty-64-minimal sshd\[1556\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.65.27.132 Jul 1 06:28:49 Ubuntu-1404-trusty-64-minimal sshd\[1556\]: Failed password for invalid user cgi from 217.65.27.132 port 45448 ssh2 Jul 1 06:33:36 Ubuntu-1404-trusty-64-minimal sshd\[6437\]: Invalid user deploy from 217.65.27.132 Jul 1 06:33:36 Ubuntu-1404-trusty-64-minimal sshd\[6437\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.65.27.132 |
2019-07-01 19:19:54 |
| 46.246.123.58 | attack | " " |
2019-07-01 19:08:06 |
| 74.63.232.2 | attackspambots | 2019-07-01T13:17:00.573693scmdmz1 sshd\[2777\]: Invalid user support from 74.63.232.2 port 53132 2019-07-01T13:17:00.576486scmdmz1 sshd\[2777\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.63.232.2 2019-07-01T13:17:02.375180scmdmz1 sshd\[2777\]: Failed password for invalid user support from 74.63.232.2 port 53132 ssh2 ... |
2019-07-01 19:17:39 |
| 40.124.4.131 | attackspam | 01.07.2019 09:55:09 SSH access blocked by firewall |
2019-07-01 19:19:03 |
| 39.100.87.15 | attack | [WP hack/exploit] [multiweb: req 5 domains(hosts/ip)] [bad UserAgent] |
2019-07-01 19:23:11 |
| 186.233.219.230 | attackspam | Jul 1 05:27:31 mxgate1 postfix/postscreen[18855]: CONNECT from [186.233.219.230]:57934 to [176.31.12.44]:25 Jul 1 05:27:31 mxgate1 postfix/dnsblog[18856]: addr 186.233.219.230 listed by domain bl.spamcop.net as 127.0.0.2 Jul 1 05:27:31 mxgate1 postfix/dnsblog[18857]: addr 186.233.219.230 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Jul 1 05:27:32 mxgate1 postfix/dnsblog[18858]: addr 186.233.219.230 listed by domain cbl.abuseat.org as 127.0.0.2 Jul 1 05:27:32 mxgate1 postfix/dnsblog[18859]: addr 186.233.219.230 listed by domain zen.spamhaus.org as 127.0.0.4 Jul 1 05:27:32 mxgate1 postfix/dnsblog[18859]: addr 186.233.219.230 listed by domain zen.spamhaus.org as 127.0.0.3 Jul 1 05:27:32 mxgate1 postfix/dnsblog[18860]: addr 186.233.219.230 listed by domain b.barracudacentral.org as 127.0.0.2 Jul 1 05:27:32 mxgate1 postfix/postscreen[18855]: PREGREET 24 after 0.65 from [186.233.219.230]:57934: EHLO 1m5pingcart.com Jul 1 05:27:32 mxgate1 postfix/postscreen[1885........ ------------------------------- |
2019-07-01 19:07:00 |
| 188.131.132.70 | attackspam | SSH Brute Force, server-1 sshd[30520]: Failed password for invalid user nei from 188.131.132.70 port 59159 ssh2 |
2019-07-01 19:12:15 |
| 200.66.115.40 | attackspam | libpam_shield report: forced login attempt |
2019-07-01 19:50:24 |
| 206.189.220.99 | attackbotsspam | Invalid user toby from 206.189.220.99 port 50214 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.220.99 Failed password for invalid user toby from 206.189.220.99 port 50214 ssh2 Invalid user videolan from 206.189.220.99 port 49626 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.220.99 |
2019-07-01 19:09:46 |
| 103.231.139.130 | attackbotsspam | Jul 1 13:30:03 mail postfix/smtpd\[21753\]: warning: unknown\[103.231.139.130\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 1 13:30:41 mail postfix/smtpd\[24931\]: warning: unknown\[103.231.139.130\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 1 13:31:19 mail postfix/smtpd\[23289\]: warning: unknown\[103.231.139.130\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2019-07-01 19:40:22 |
| 92.59.135.122 | attack | NAME : OrangeFTTH CIDR : 92.59.0.0/16 DDoS attack Spain - block certain countries :) IP: 92.59.135.122 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl |
2019-07-01 19:27:16 |
| 104.238.116.19 | attackbots | Jul 1 11:56:41 XXX sshd[13070]: Invalid user usuario from 104.238.116.19 port 45908 |
2019-07-01 18:59:56 |
| 24.148.115.153 | attackbots | Jul 1 11:36:19 localhost sshd\[22756\]: Invalid user anne from 24.148.115.153 Jul 1 11:36:19 localhost sshd\[22756\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=24.148.115.153 Jul 1 11:36:21 localhost sshd\[22756\]: Failed password for invalid user anne from 24.148.115.153 port 50954 ssh2 Jul 1 11:38:14 localhost sshd\[22844\]: Invalid user cloudera from 24.148.115.153 Jul 1 11:38:14 localhost sshd\[22844\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=24.148.115.153 ... |
2019-07-01 19:44:52 |
| 222.89.74.123 | attackspam | CN China - Failures: 5 smtpauth |
2019-07-01 19:51:36 |