City: unknown
Region: unknown
Country: China
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 124.90.52.214 | attackspambots | Web Server Scan. RayID: 58f1c6a568b293c4, UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36, Country: CN |
2020-05-21 03:59:29 |
| 124.90.52.158 | attackbots | Fail2Ban Ban Triggered |
2020-04-16 14:48:59 |
| 124.90.52.243 | attackspam | Unauthorized connection attempt detected from IP address 124.90.52.243 to port 8081 [J] |
2020-01-26 05:00:54 |
| 124.90.52.189 | attack | Unauthorized connection attempt detected from IP address 124.90.52.189 to port 82 [T] |
2020-01-10 08:46:03 |
| 124.90.52.114 | attackspambots | Unauthorized connection attempt detected from IP address 124.90.52.114 to port 3128 |
2019-12-31 07:33:14 |
| 124.90.52.137 | attackbots | The IP has triggered Cloudflare WAF. CF-Ray: 5414e5dd78c695f3 | WAF_Rule_ID: 1112824 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: img.skk.moe | User-Agent: Mozilla/5.0 (Linux; U; Android 4.3; en-us; SM-N900T Build/JSS15J) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 | CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB). |
2019-12-08 04:31:03 |
| 124.90.52.118 | attack | The IP has triggered Cloudflare WAF. CF-Ray: 5416098bfab493ac | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: d.skk.moe | User-Agent: Mozilla/5.082584686 Mozilla/5.0 (iPhone; CPU iPhone OS 11_4_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1 | CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB). |
2019-12-08 04:09:19 |
| 124.90.52.86 | attackbotsspam | The IP has triggered Cloudflare WAF. CF-Ray: 541380e48a61ed3b | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.064213590 Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 | CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB). |
2019-12-08 01:54:23 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.90.52.255
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24657
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;124.90.52.255. IN A
;; AUTHORITY SECTION:
. 600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400
;; Query time: 81 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 14:25:33 CST 2022
;; MSG SIZE rcvd: 106Host 255.52.90.124.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 255.52.90.124.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 94.102.51.28 | attack | Jun 30 15:57:28 vps339862 kernel: \[12744364.215296\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=94.102.51.28 DST=51.254.206.43 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=3495 PROTO=TCP SPT=44366 DPT=62534 SEQ=4020647882 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 30 15:59:26 vps339862 kernel: \[12744482.364243\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=94.102.51.28 DST=51.254.206.43 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=36533 PROTO=TCP SPT=44366 DPT=62835 SEQ=2998121965 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 30 16:02:38 vps339862 kernel: \[12744674.204081\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=94.102.51.28 DST=51.254.206.43 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=39625 PROTO=TCP SPT=44366 DPT=27977 SEQ=303708587 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 30 16:03:20 vps339862 kernel: \[12744716.178796\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa ... |
2020-06-30 22:04:03 |
| 133.130.97.166 | attackbotsspam | (sshd) Failed SSH login from 133.130.97.166 (JP/Japan/v133-130-97-166.a026.g.tyo1.static.cnode.io): 5 in the last 3600 secs |
2020-06-30 22:25:44 |
| 80.82.65.242 | attackbots | Jun 30 16:13:05 debian-2gb-nbg1-2 kernel: \[15785023.396974\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=80.82.65.242 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=639 PROTO=TCP SPT=56444 DPT=11824 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-06-30 22:43:20 |
| 54.37.205.241 | attackspam | Jun 30 15:59:52 buvik sshd[25695]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.205.241 user=root Jun 30 15:59:55 buvik sshd[25695]: Failed password for root from 54.37.205.241 port 50252 ssh2 Jun 30 16:03:15 buvik sshd[26645]: Invalid user xh from 54.37.205.241 ... |
2020-06-30 22:28:24 |
| 68.183.147.58 | attackbots | 2020-06-30T09:49:26.6001111495-001 sshd[44261]: Invalid user cyk from 68.183.147.58 port 58976 2020-06-30T09:49:28.5359231495-001 sshd[44261]: Failed password for invalid user cyk from 68.183.147.58 port 58976 ssh2 2020-06-30T09:53:07.7458711495-001 sshd[44344]: Invalid user katarina from 68.183.147.58 port 56848 2020-06-30T09:53:07.7490901495-001 sshd[44344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.147.58 2020-06-30T09:53:07.7458711495-001 sshd[44344]: Invalid user katarina from 68.183.147.58 port 56848 2020-06-30T09:53:09.0190251495-001 sshd[44344]: Failed password for invalid user katarina from 68.183.147.58 port 56848 ssh2 ... |
2020-06-30 22:41:13 |
| 110.45.155.101 | attackspambots | SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found |
2020-06-30 22:47:36 |
| 37.49.224.106 | attackbots | Jun 30 15:12:56 mellenthin postfix/smtpd[25304]: warning: unknown[37.49.224.106]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 30 15:51:51 mellenthin postfix/smtpd[26836]: warning: unknown[37.49.224.106]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2020-06-30 22:16:33 |
| 182.61.149.31 | attackbotsspam | Jun 30 12:24:01 scw-6657dc sshd[15471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.149.31 Jun 30 12:24:01 scw-6657dc sshd[15471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.149.31 Jun 30 12:24:02 scw-6657dc sshd[15471]: Failed password for invalid user andes from 182.61.149.31 port 56894 ssh2 ... |
2020-06-30 22:03:47 |
| 152.136.189.81 | attackspam | Jun 30 14:19:05 sip sshd[800098]: Failed password for invalid user nsa from 152.136.189.81 port 52086 ssh2 Jun 30 14:23:31 sip sshd[800163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.189.81 user=root Jun 30 14:23:33 sip sshd[800163]: Failed password for root from 152.136.189.81 port 36460 ssh2 ... |
2020-06-30 22:29:19 |
| 45.122.246.145 | attackspam | $f2bV_matches |
2020-06-30 22:48:55 |
| 222.186.15.158 | attackbotsspam | Jun 30 15:55:25 * sshd[2912]: Failed password for root from 222.186.15.158 port 18481 ssh2 |
2020-06-30 22:02:22 |
| 14.253.182.224 | attack | Unauthorised access (Jun 30) SRC=14.253.182.224 LEN=52 TTL=111 ID=6549 DF TCP DPT=445 WINDOW=8192 SYN |
2020-06-30 22:39:26 |
| 117.89.215.90 | attackspambots | $f2bV_matches |
2020-06-30 22:42:27 |
| 193.169.252.21 | attack | 1194/udp 7778/udp 2302/udp... [2020-06-03/29]501pkt,27pt.(udp) |
2020-06-30 22:20:42 |
| 185.165.169.168 | attackspambots | no |
2020-06-30 22:08:49 |