City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 12.100.128.27
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49707
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;12.100.128.27. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012401 1800 900 604800 86400
;; Query time: 40 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 25 04:37:27 CST 2025
;; MSG SIZE rcvd: 10627.128.100.12.in-addr.arpa domain name pointer 27.muaa.dayt.chcgil24.dsl.att.net.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
27.128.100.12.in-addr.arpa name = 27.muaa.dayt.chcgil24.dsl.att.net.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 88.214.26.102 | attack | 10/05/2019-17:08:22.683576 88.214.26.102 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 96 |
2019-10-05 23:28:03 |
| 46.246.70.80 | attack | Oct 5 13:32:27 xeon postfix/smtpd[24052]: warning: unknown[46.246.70.80]: SASL LOGIN authentication failed: authentication failure |
2019-10-05 23:28:25 |
| 78.87.196.124 | attack | Unauthorised access (Oct 5) SRC=78.87.196.124 LEN=40 TOS=0x10 PREC=0x40 TTL=51 ID=31652 TCP DPT=8080 WINDOW=47886 SYN |
2019-10-05 23:40:09 |
| 129.204.79.131 | attackspambots | 2019-10-05T15:31:17.586827abusebot-8.cloudsearch.cf sshd\[2399\]: Invalid user P@ssw0rd@2020 from 129.204.79.131 port 51082 |
2019-10-05 23:37:33 |
| 123.204.134.82 | attackspam | Automatic report - Port Scan Attack |
2019-10-05 23:46:35 |
| 190.55.2.188 | attackspam | Unauthorised access (Oct 5) SRC=190.55.2.188 LEN=52 TOS=0x10 PREC=0x40 TTL=115 ID=30891 DF TCP DPT=445 WINDOW=8192 SYN |
2019-10-05 23:24:28 |
| 200.107.154.168 | attackbotsspam | Oct 5 05:19:50 sachi sshd\[9669\]: Invalid user April@2017 from 200.107.154.168 Oct 5 05:19:50 sachi sshd\[9669\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.107.154.168 Oct 5 05:19:53 sachi sshd\[9669\]: Failed password for invalid user April@2017 from 200.107.154.168 port 42938 ssh2 Oct 5 05:25:06 sachi sshd\[10101\]: Invalid user Algoritm@123 from 200.107.154.168 Oct 5 05:25:06 sachi sshd\[10101\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.107.154.168 |
2019-10-05 23:44:28 |
| 107.189.2.3 | attackbots | Automatic report generated by Wazuh |
2019-10-05 23:15:48 |
| 49.207.52.77 | attack | Attempt to attack host OS, exploiting network vulnerabilities, on 05-10-2019 12:35:24. |
2019-10-05 23:49:42 |
| 168.232.163.250 | attackspam | Oct 5 11:13:47 ny01 sshd[11153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.232.163.250 Oct 5 11:13:49 ny01 sshd[11153]: Failed password for invalid user P4SS2020 from 168.232.163.250 port 1166 ssh2 Oct 5 11:18:19 ny01 sshd[11922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.232.163.250 |
2019-10-05 23:33:33 |
| 84.245.9.208 | attack | Automatic report - Port Scan Attack |
2019-10-05 23:35:20 |
| 98.6.250.58 | attack | Category: Intrusion Prevention Date & Time,Risk,Activity,Status,Recommended Action,IPS Alert Name,Default Action,Action Taken,Attacking Computer,Destination Address,Source Address,Traffic Description 10/5/2019 2:00:59 AM,High,An intrusion attempt by 98.6.250.58 was blocked.,Blocked,No Action Required,Attack: Fast-RDP-Brute BruteForce Activity,No Action Required,No Action Required,"98.6.250.58, 52257","OFFICE (10.1.10.18, 3389)",98.6.250.58,"TCP, Port 52257" Network traffic from 98.6.250.58 matches the signature of a known attack. The attack was resulted from \\DEVICE\\HARDDISKVOLUME2\\WINDOWS\\SYSTEM32\\SVCHOST.EXE. To stop being notified for this type of traffic, in the Actions panel, click Stop Notifying Me. |
2019-10-05 23:23:44 |
| 41.208.104.205 | attackbotsspam | Attempt to attack host OS, exploiting network vulnerabilities, on 05-10-2019 12:35:23. |
2019-10-05 23:51:19 |
| 67.205.135.188 | attackbotsspam | 2019-10-05T18:00:33.476012tmaserv sshd\[11933\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.135.188 2019-10-05T18:00:35.304977tmaserv sshd\[11933\]: Failed password for invalid user 123 from 67.205.135.188 port 44622 ssh2 2019-10-05T18:13:05.764984tmaserv sshd\[12593\]: Invalid user test@12 from 67.205.135.188 port 49950 2019-10-05T18:13:05.770182tmaserv sshd\[12593\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.135.188 2019-10-05T18:13:07.834970tmaserv sshd\[12593\]: Failed password for invalid user test@12 from 67.205.135.188 port 49950 ssh2 2019-10-05T18:17:20.345011tmaserv sshd\[13013\]: Invalid user Produkts_123 from 67.205.135.188 port 32896 ... |
2019-10-05 23:22:03 |
| 45.55.222.162 | attackspambots | Oct 5 05:14:16 php1 sshd\[23793\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.222.162 user=root Oct 5 05:14:18 php1 sshd\[23793\]: Failed password for root from 45.55.222.162 port 56046 ssh2 Oct 5 05:18:22 php1 sshd\[24177\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.222.162 user=root Oct 5 05:18:23 php1 sshd\[24177\]: Failed password for root from 45.55.222.162 port 39408 ssh2 Oct 5 05:22:31 php1 sshd\[24558\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.222.162 user=root |
2019-10-05 23:27:06 |