3.16.42.11 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Amazon Technologies Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	mue-Direct access to plugin not allowed	2020-08-02 06:43:09

Comments on same subnet:

IP	Type	Details	Datetime
3.16.42.140	attack	mue-0 : Trying access unauthorized files=>/images/jdownloads/screenshots/update.php()	2020-07-22 07:00:30

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 3.16.42.11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3307
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;3.16.42.11.			IN	A

;; AUTHORITY SECTION:
.			249	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020080101 1800 900 604800 86400

;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Aug 02 06:43:06 CST 2020
;; MSG SIZE  rcvd: 114

Host info

11.42.16.3.in-addr.arpa domain name pointer ec2-3-16-42-11.us-east-2.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
11.42.16.3.in-addr.arpa	name = ec2-3-16-42-11.us-east-2.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.250.153.109	attackbotsspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-12-12 19:34:24
164.132.42.32	attackbots	Dec 12 11:59:32 [host] sshd[11535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.42.32 user=sync Dec 12 11:59:34 [host] sshd[11535]: Failed password for sync from 164.132.42.32 port 56346 ssh2 Dec 12 12:07:38 [host] sshd[11685]: Invalid user sexual from 164.132.42.32	2019-12-12 19:28:27
140.213.141.29	attack	1576131946 - 12/12/2019 07:25:46 Host: 140.213.141.29/140.213.141.29 Port: 445 TCP Blocked	2019-12-12 18:58:47
218.92.0.172	attackbotsspam	2019-12-12T10:56:36.570332shield sshd\[1771\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.172 user=root 2019-12-12T10:56:38.629467shield sshd\[1771\]: Failed password for root from 218.92.0.172 port 39486 ssh2 2019-12-12T10:56:41.676341shield sshd\[1771\]: Failed password for root from 218.92.0.172 port 39486 ssh2 2019-12-12T10:56:45.124130shield sshd\[1771\]: Failed password for root from 218.92.0.172 port 39486 ssh2 2019-12-12T10:56:48.121089shield sshd\[1771\]: Failed password for root from 218.92.0.172 port 39486 ssh2	2019-12-12 18:57:48
121.58.236.115	attack	Unauthorized connection attempt detected from IP address 121.58.236.115 to port 445	2019-12-12 19:03:14
113.190.88.244	attackspam	1576131924 - 12/12/2019 07:25:24 Host: 113.190.88.244/113.190.88.244 Port: 445 TCP Blocked	2019-12-12 19:00:10
27.72.149.230	attackspambots	1576131789 - 12/12/2019 07:23:09 Host: 27.72.149.230/27.72.149.230 Port: 445 TCP Blocked	2019-12-12 19:29:52
182.151.209.131	attackspam	1576131939 - 12/12/2019 07:25:39 Host: 182.151.209.131/182.151.209.131 Port: 445 TCP Blocked	2019-12-12 18:58:12
149.202.59.85	attackspambots	Dec 12 11:22:48 tux-35-217 sshd\[8851\]: Invalid user dykstra from 149.202.59.85 port 35081 Dec 12 11:22:48 tux-35-217 sshd\[8851\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.59.85 Dec 12 11:22:50 tux-35-217 sshd\[8851\]: Failed password for invalid user dykstra from 149.202.59.85 port 35081 ssh2 Dec 12 11:28:00 tux-35-217 sshd\[8888\]: Invalid user dnslog from 149.202.59.85 port 39073 Dec 12 11:28:00 tux-35-217 sshd\[8888\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.59.85 ...	2019-12-12 19:18:53
103.14.33.229	attackbotsspam	Dec 12 11:50:58 loxhost sshd\[29713\]: Invalid user ubuntu from 103.14.33.229 port 44942 Dec 12 11:50:58 loxhost sshd\[29713\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.14.33.229 Dec 12 11:51:00 loxhost sshd\[29713\]: Failed password for invalid user ubuntu from 103.14.33.229 port 44942 ssh2 Dec 12 11:57:42 loxhost sshd\[29954\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.14.33.229 user=nobody Dec 12 11:57:44 loxhost sshd\[29954\]: Failed password for nobody from 103.14.33.229 port 40026 ssh2 ...	2019-12-12 19:11:20
192.166.218.25	attack	SSH brute-force: detected 6 distinct usernames within a 24-hour window.	2019-12-12 19:26:42
81.30.210.42	attackspambots	1576131755 - 12/12/2019 07:22:35 Host: 81.30.210.42/81.30.210.42 Port: 445 TCP Blocked	2019-12-12 19:35:30
183.82.255.189	attackbots	1576131781 - 12/12/2019 07:23:01 Host: 183.82.255.189/183.82.255.189 Port: 445 TCP Blocked	2019-12-12 19:30:41
120.131.3.119	attackbotsspam	Dec 12 12:01:07 sauna sshd[224583]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.3.119 Dec 12 12:01:09 sauna sshd[224583]: Failed password for invalid user operator from 120.131.3.119 port 47912 ssh2 ...	2019-12-12 19:25:08
134.209.171.203	attackspambots	Dec 12 12:26:42 lnxmysql61 sshd[13488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.171.203	2019-12-12 19:35:45

Recently Reported IPs

194.139.215.133	170.199.4.27	59.233.77.247	32.26.172.240
198.148.123.162	27.89.31.74	80.109.71.178	143.224.7.145
34.251.130.198	168.194.167.240	41.146.235.38	116.235.163.120
167.78.187.160	223.149.108.155	102.229.199.34	109.237.111.109
132.183.64.115	134.143.15.255	24.123.167.56	121.96.186.141