City: unknown
Region: unknown
Country: China
Internet Service Provider: China Unicom
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 27.12.31.124
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4521
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;27.12.31.124. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025071300 1800 900 604800 86400
;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jul 13 15:00:43 CST 2025
;; MSG SIZE rcvd: 105Host 124.31.12.27.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 124.31.12.27.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 60.6.185.220 | attackbotsspam | Unauthorised access (Aug 29) SRC=60.6.185.220 LEN=40 TTL=49 ID=60650 TCP DPT=8080 WINDOW=6655 SYN Unauthorised access (Aug 29) SRC=60.6.185.220 LEN=40 TTL=49 ID=14004 TCP DPT=8080 WINDOW=2594 SYN Unauthorised access (Aug 28) SRC=60.6.185.220 LEN=40 TTL=49 ID=42674 TCP DPT=8080 WINDOW=15341 SYN Unauthorised access (Aug 28) SRC=60.6.185.220 LEN=40 TTL=49 ID=4056 TCP DPT=8080 WINDOW=20858 SYN Unauthorised access (Aug 25) SRC=60.6.185.220 LEN=40 TTL=49 ID=19758 TCP DPT=8080 WINDOW=2594 SYN Unauthorised access (Aug 25) SRC=60.6.185.220 LEN=40 TTL=49 ID=46030 TCP DPT=8080 WINDOW=15341 SYN |
2019-08-30 05:38:24 |
| 139.59.39.174 | attackspam | Aug 29 23:30:40 MK-Soft-Root1 sshd\[16081\]: Invalid user norma from 139.59.39.174 port 53376 Aug 29 23:30:40 MK-Soft-Root1 sshd\[16081\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.39.174 Aug 29 23:30:42 MK-Soft-Root1 sshd\[16081\]: Failed password for invalid user norma from 139.59.39.174 port 53376 ssh2 ... |
2019-08-30 05:35:15 |
| 201.185.177.76 | attack | Brute force attempt |
2019-08-30 05:51:43 |
| 118.24.99.163 | attack | $f2bV_matches |
2019-08-30 05:50:39 |
| 36.156.24.43 | attackspambots | 2019-08-30T05:04:17.374334enmeeting.mahidol.ac.th sshd\[2705\]: User root from 36.156.24.43 not allowed because not listed in AllowUsers 2019-08-30T05:04:17.729309enmeeting.mahidol.ac.th sshd\[2705\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.156.24.43 user=root 2019-08-30T05:04:19.867679enmeeting.mahidol.ac.th sshd\[2705\]: Failed password for invalid user root from 36.156.24.43 port 50956 ssh2 ... |
2019-08-30 06:11:17 |
| 120.52.9.102 | attack | Aug 29 23:40:07 OPSO sshd\[12885\]: Invalid user marivic from 120.52.9.102 port 7839 Aug 29 23:40:07 OPSO sshd\[12885\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.9.102 Aug 29 23:40:09 OPSO sshd\[12885\]: Failed password for invalid user marivic from 120.52.9.102 port 7839 ssh2 Aug 29 23:44:39 OPSO sshd\[13341\]: Invalid user dd from 120.52.9.102 port 11362 Aug 29 23:44:40 OPSO sshd\[13341\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.52.9.102 |
2019-08-30 06:00:34 |
| 177.138.170.110 | attackbots | Automatic report - Port Scan Attack |
2019-08-30 06:04:31 |
| 202.120.38.28 | attackbotsspam | Aug 29 23:57:13 dedicated sshd[24265]: Invalid user virginia from 202.120.38.28 port 7970 |
2019-08-30 06:01:52 |
| 184.74.136.194 | attack | Automatic report - Port Scan Attack |
2019-08-30 05:44:15 |
| 49.88.112.80 | attackbotsspam | 2019-08-30T04:28:37.621920enmeeting.mahidol.ac.th sshd\[2379\]: User root from 49.88.112.80 not allowed because not listed in AllowUsers 2019-08-30T04:28:37.971307enmeeting.mahidol.ac.th sshd\[2379\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.80 user=root 2019-08-30T04:28:39.994158enmeeting.mahidol.ac.th sshd\[2379\]: Failed password for invalid user root from 49.88.112.80 port 24456 ssh2 ... |
2019-08-30 05:30:51 |
| 129.211.76.101 | attackspam | Aug 29 20:27:55 localhost sshd\[23744\]: Invalid user betyortodontia from 129.211.76.101 port 47358 Aug 29 20:27:55 localhost sshd\[23744\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.76.101 Aug 29 20:27:57 localhost sshd\[23744\]: Failed password for invalid user betyortodontia from 129.211.76.101 port 47358 ssh2 ... |
2019-08-30 05:55:36 |
| 188.254.0.182 | attackbotsspam | Aug 29 10:57:02 eddieflores sshd\[29798\]: Invalid user tip from 188.254.0.182 Aug 29 10:57:02 eddieflores sshd\[29798\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.182 Aug 29 10:57:04 eddieflores sshd\[29798\]: Failed password for invalid user tip from 188.254.0.182 port 33830 ssh2 Aug 29 11:01:05 eddieflores sshd\[30101\]: Invalid user postgres from 188.254.0.182 Aug 29 11:01:05 eddieflores sshd\[30101\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.182 |
2019-08-30 05:29:02 |
| 123.31.31.68 | attack | Aug 29 17:17:31 Tower sshd[8029]: Connection from 123.31.31.68 port 56418 on 192.168.10.220 port 22 Aug 29 17:17:33 Tower sshd[8029]: Invalid user yq from 123.31.31.68 port 56418 Aug 29 17:17:33 Tower sshd[8029]: error: Could not get shadow information for NOUSER Aug 29 17:17:33 Tower sshd[8029]: Failed password for invalid user yq from 123.31.31.68 port 56418 ssh2 Aug 29 17:17:33 Tower sshd[8029]: Received disconnect from 123.31.31.68 port 56418:11: Bye Bye [preauth] Aug 29 17:17:33 Tower sshd[8029]: Disconnected from invalid user yq 123.31.31.68 port 56418 [preauth] |
2019-08-30 05:58:50 |
| 174.138.56.93 | attackspam | Invalid user admin from 174.138.56.93 port 57186 |
2019-08-30 06:12:59 |
| 5.8.18.90 | attackspam | ESET LOG: 8/29/2019 3:26:35 PM;TCP Port Scanning attack;Blocked;5.8.18.90:65534 |
2019-08-30 05:32:19 |