City: unknown
Region: unknown
Country: Zimbabwe
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.85.195.109
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37710
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;41.85.195.109. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025121703 1800 900 604800 86400
;; Query time: 461 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 18 11:27:16 CST 2025
;; MSG SIZE rcvd: 106109.195.85.41.in-addr.arpa has no PTR record
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
*** Can't find 109.195.85.41.in-addr.arpa.: No answer
Authoritative answers can be found from:
195.85.41.in-addr.arpa nameserver = soa1.utande.co.zw.
195.85.41.in-addr.arpa nameserver = soa2.utande.co.zw.
| IP | Type | Details | Datetime |
|---|---|---|---|
| 5.196.70.107 | attack | Oct 3 05:38:29 web8 sshd\[32291\]: Invalid user sistemas from 5.196.70.107 Oct 3 05:38:29 web8 sshd\[32291\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.70.107 Oct 3 05:38:31 web8 sshd\[32291\]: Failed password for invalid user sistemas from 5.196.70.107 port 42970 ssh2 Oct 3 05:42:56 web8 sshd\[2266\]: Invalid user temp from 5.196.70.107 Oct 3 05:42:56 web8 sshd\[2266\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.70.107 |
2019-10-03 13:44:46 |
| 185.94.188.130 | attackspambots | 3389BruteforceFW23 |
2019-10-03 13:19:52 |
| 222.186.42.241 | attackbots | 2019-10-03T05:10:35.739371abusebot-7.cloudsearch.cf sshd\[10375\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.241 user=root |
2019-10-03 13:11:42 |
| 191.209.113.185 | attackbots | Sep 30 13:18:00 uapps sshd[9312]: Address 191.209.113.185 maps to 191-209-113-185.user.vivozap.com.br, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Sep 30 13:18:03 uapps sshd[9312]: Failed password for invalid user cyril from 191.209.113.185 port 22256 ssh2 Sep 30 13:18:03 uapps sshd[9312]: Received disconnect from 191.209.113.185: 11: Bye Bye [preauth] Sep 30 13:33:09 uapps sshd[9419]: Address 191.209.113.185 maps to 191-209-113-185.user.vivozap.com.br, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Sep 30 13:33:11 uapps sshd[9419]: Failed password for invalid user dan from 191.209.113.185 port 29457 ssh2 Sep 30 13:33:11 uapps sshd[9419]: Received disconnect from 191.209.113.185: 11: Bye Bye [preauth] Sep 30 13:38:03 uapps sshd[9450]: Address 191.209.113.185 maps to 191-209-113-185.user.vivozap.com.br, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! ........ ----------------------------------------------- https://www.blocklist.de/en/v |
2019-10-03 13:04:54 |
| 171.244.0.81 | attackbots | Invalid user oracle from 171.244.0.81 port 46723 |
2019-10-03 13:05:25 |
| 59.52.97.130 | attack | Oct 2 18:58:14 auw2 sshd\[2958\]: Invalid user pswd from 59.52.97.130 Oct 2 18:58:14 auw2 sshd\[2958\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.52.97.130 Oct 2 18:58:16 auw2 sshd\[2958\]: Failed password for invalid user pswd from 59.52.97.130 port 35015 ssh2 Oct 2 19:03:39 auw2 sshd\[3402\]: Invalid user bnjoroge123 from 59.52.97.130 Oct 2 19:03:39 auw2 sshd\[3402\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.52.97.130 |
2019-10-03 13:08:24 |
| 182.23.95.52 | attackspam | Unauthorised access (Oct 3) SRC=182.23.95.52 LEN=52 TOS=0x08 PREC=0x20 TTL=113 ID=3992 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Oct 3) SRC=182.23.95.52 LEN=52 TOS=0x08 PREC=0x20 TTL=113 ID=27766 DF TCP DPT=445 WINDOW=8192 SYN |
2019-10-03 13:48:57 |
| 125.163.91.117 | attackspam | 445/tcp [2019-10-03]1pkt |
2019-10-03 13:01:32 |
| 115.61.34.71 | attackspam | Unauthorised access (Oct 3) SRC=115.61.34.71 LEN=40 TTL=49 ID=25125 TCP DPT=8080 WINDOW=39830 SYN Unauthorised access (Oct 2) SRC=115.61.34.71 LEN=40 TTL=49 ID=8945 TCP DPT=8080 WINDOW=38129 SYN Unauthorised access (Oct 2) SRC=115.61.34.71 LEN=40 TTL=49 ID=8160 TCP DPT=8080 WINDOW=27414 SYN |
2019-10-03 13:27:44 |
| 222.186.175.148 | attack | Oct 3 04:47:33 ip-172-31-1-72 sshd\[24071\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root Oct 3 04:47:34 ip-172-31-1-72 sshd\[24071\]: Failed password for root from 222.186.175.148 port 36888 ssh2 Oct 3 04:48:02 ip-172-31-1-72 sshd\[24073\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root Oct 3 04:48:04 ip-172-31-1-72 sshd\[24073\]: Failed password for root from 222.186.175.148 port 4986 ssh2 Oct 3 04:48:39 ip-172-31-1-72 sshd\[24075\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root |
2019-10-03 13:12:46 |
| 103.247.88.9 | attack | Oct 3 07:29:07 mail kernel: [1269914.280029] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=103.247.88.9 DST=77.73.69.240 LEN=40 TOS=0x08 PREC=0x20 TTL=74 ID=4178 DF PROTO=TCP SPT=54921 DPT=443 WINDOW=29200 RES=0x00 SYN URGP=0 ... |
2019-10-03 13:49:27 |
| 27.72.100.197 | attackbotsspam | Unauthorised access (Oct 3) SRC=27.72.100.197 LEN=52 TTL=107 ID=16576 DF TCP DPT=445 WINDOW=8192 SYN |
2019-10-03 13:29:11 |
| 39.135.1.160 | attackbots | [portscan] Port scan |
2019-10-03 13:07:54 |
| 103.210.213.69 | attackspam | namecheap spam |
2019-10-03 13:47:07 |
| 115.94.140.243 | attack | Oct 3 07:06:52 lnxweb62 sshd[14528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.94.140.243 |
2019-10-03 13:14:19 |