City: Nairobi
Region: Nairobi
Country: Kenya
Internet Service Provider: Safaricom
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.90.13.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31005
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;41.90.13.70. IN A
;; AUTHORITY SECTION:
. 485 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2023021900 1800 900 604800 86400
;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 19 18:50:16 CST 2023
;; MSG SIZE rcvd: 104Host 70.13.90.41.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 70.13.90.41.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 112.166.68.193 | attackspam | Oct 21 10:50:29 hpm sshd\[14565\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.166.68.193 user=root Oct 21 10:50:31 hpm sshd\[14565\]: Failed password for root from 112.166.68.193 port 55360 ssh2 Oct 21 10:54:37 hpm sshd\[14879\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.166.68.193 user=root Oct 21 10:54:39 hpm sshd\[14879\]: Failed password for root from 112.166.68.193 port 36104 ssh2 Oct 21 10:58:43 hpm sshd\[15203\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.166.68.193 user=root |
2019-10-22 05:12:16 |
| 179.57.121.10 | attackbots | Attempt to attack host OS, exploiting network vulnerabilities, on 21-10-2019 21:05:23. |
2019-10-22 05:29:53 |
| 222.186.180.147 | attackbots | Oct 21 23:40:03 legacy sshd[1078]: Failed password for root from 222.186.180.147 port 45198 ssh2 Oct 21 23:40:17 legacy sshd[1078]: Failed password for root from 222.186.180.147 port 45198 ssh2 Oct 21 23:40:21 legacy sshd[1078]: Failed password for root from 222.186.180.147 port 45198 ssh2 Oct 21 23:40:21 legacy sshd[1078]: error: maximum authentication attempts exceeded for root from 222.186.180.147 port 45198 ssh2 [preauth] ... |
2019-10-22 05:41:26 |
| 171.244.39.59 | attack | 2019-10-22T03:05:17.285341enmeeting.mahidol.ac.th sshd\[29684\]: Invalid user 1234 from 171.244.39.59 port 53672 2019-10-22T03:05:17.442370enmeeting.mahidol.ac.th sshd\[29684\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.244.39.59 2019-10-22T03:05:19.456696enmeeting.mahidol.ac.th sshd\[29684\]: Failed password for invalid user 1234 from 171.244.39.59 port 53672 ssh2 2019-10-22T03:05:19.457142enmeeting.mahidol.ac.th sshd\[29684\]: error: maximum authentication attempts exceeded for invalid user 1234 from 171.244.39.59 port 53672 ssh2 \[preauth\] ... |
2019-10-22 05:31:21 |
| 91.237.202.144 | attack | Chat Spam |
2019-10-22 05:16:30 |
| 104.236.142.89 | attackspam | 2019-10-21T21:10:30.906623shield sshd\[12774\]: Invalid user R00tRoot!@\# from 104.236.142.89 port 49802 2019-10-21T21:10:30.912145shield sshd\[12774\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.142.89 2019-10-21T21:10:32.779846shield sshd\[12774\]: Failed password for invalid user R00tRoot!@\# from 104.236.142.89 port 49802 ssh2 2019-10-21T21:13:54.323364shield sshd\[13657\]: Invalid user srpass from 104.236.142.89 port 57788 2019-10-21T21:13:54.328259shield sshd\[13657\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.142.89 |
2019-10-22 05:17:29 |
| 159.65.81.187 | attackspambots | Oct 21 22:59:48 cvbnet sshd[7889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.81.187 Oct 21 22:59:50 cvbnet sshd[7889]: Failed password for invalid user zimbra from 159.65.81.187 port 53894 ssh2 ... |
2019-10-22 05:45:20 |
| 200.68.139.6 | attack | 2019-10-21 x@x 2019-10-21 21:20:07 unexpected disconnection while reading SMTP command from ([200.68.139.6]) [200.68.139.6]:12609 I=[10.100.18.21]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=200.68.139.6 |
2019-10-22 05:41:57 |
| 77.29.228.253 | attack | Attempt to attack host OS, exploiting network vulnerabilities, on 21-10-2019 21:05:25. |
2019-10-22 05:26:42 |
| 222.186.175.167 | attackspambots | 2019-10-22T04:07:26.188842enmeeting.mahidol.ac.th sshd\[30192\]: User root from 222.186.175.167 not allowed because not listed in AllowUsers 2019-10-22T04:07:27.468138enmeeting.mahidol.ac.th sshd\[30192\]: Failed none for invalid user root from 222.186.175.167 port 13480 ssh2 2019-10-22T04:07:28.856050enmeeting.mahidol.ac.th sshd\[30192\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.167 user=root ... |
2019-10-22 05:08:37 |
| 202.54.157.6 | attackspam | Oct 21 23:21:01 SilenceServices sshd[28593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.54.157.6 Oct 21 23:21:04 SilenceServices sshd[28593]: Failed password for invalid user m from 202.54.157.6 port 58214 ssh2 Oct 21 23:25:27 SilenceServices sshd[29769]: Failed password for root from 202.54.157.6 port 40938 ssh2 |
2019-10-22 05:41:42 |
| 192.207.205.98 | attackbots | 2019-10-21T22:05:43.683611scmdmz1 sshd\[17147\]: Invalid user leica from 192.207.205.98 port 38355 2019-10-21T22:05:43.687127scmdmz1 sshd\[17147\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.207.205.98 2019-10-21T22:05:46.268325scmdmz1 sshd\[17147\]: Failed password for invalid user leica from 192.207.205.98 port 38355 ssh2 ... |
2019-10-22 05:07:29 |
| 103.50.5.125 | attackbotsspam | Attempt to attack host OS, exploiting network vulnerabilities, on 21-10-2019 21:05:21. |
2019-10-22 05:33:20 |
| 222.186.173.154 | attackspam | DATE:2019-10-21 22:55:01, IP:222.186.173.154, PORT:ssh SSH brute force auth on honeypot server (honey-neo-dc-bis) |
2019-10-22 05:07:16 |
| 45.234.11.118 | attack | Attempt to attack host OS, exploiting network vulnerabilities, on 21-10-2019 21:05:24. |
2019-10-22 05:28:40 |