City: Boardman
Region: Oregon
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: Amazon.com, Inc.
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 34.210.10.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27890
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;34.210.10.242. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019083102 1800 900 604800 86400
;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Sep 01 02:17:01 CST 2019
;; MSG SIZE rcvd: 117242.10.210.34.in-addr.arpa domain name pointer ec2-34-210-10-242.us-west-2.compute.amazonaws.com.Server: 67.207.67.2
Address: 67.207.67.2#53
Non-authoritative answer:
242.10.210.34.in-addr.arpa name = ec2-34-210-10-242.us-west-2.compute.amazonaws.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 140.143.58.46 | attack | 2019-09-17T17:47:20.617995abusebot-3.cloudsearch.cf sshd\[4340\]: Invalid user ba from 140.143.58.46 port 47260 |
2019-09-18 01:59:15 |
| 152.249.245.68 | attackbots | Sep 16 06:21:44 itv-usvr-01 sshd[8165]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.249.245.68 user=root Sep 16 06:21:46 itv-usvr-01 sshd[8165]: Failed password for root from 152.249.245.68 port 34342 ssh2 Sep 16 06:29:29 itv-usvr-01 sshd[8672]: Invalid user tomcat from 152.249.245.68 Sep 16 06:29:29 itv-usvr-01 sshd[8672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.249.245.68 Sep 16 06:29:29 itv-usvr-01 sshd[8672]: Invalid user tomcat from 152.249.245.68 Sep 16 06:29:31 itv-usvr-01 sshd[8672]: Failed password for invalid user tomcat from 152.249.245.68 port 45788 ssh2 |
2019-09-18 01:54:23 |
| 49.235.79.40 | attackspam | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/49.235.79.40/ JP - 1H : (55) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : JP NAME ASN : ASN45090 IP : 49.235.79.40 CIDR : 49.235.64.0/20 PREFIX COUNT : 1788 UNIQUE IP COUNT : 2600192 WYKRYTE ATAKI Z ASN45090 : 1H - 3 3H - 5 6H - 7 12H - 19 24H - 33 INFO : SYN Flood DDoS Attack Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery |
2019-09-18 02:14:48 |
| 37.59.158.100 | attackbotsspam | 2019-09-17T16:41:10.760541abusebot-8.cloudsearch.cf sshd\[4997\]: Invalid user varick from 37.59.158.100 port 42912 |
2019-09-18 02:03:45 |
| 81.22.45.225 | attackbots | Sep 17 17:02:54 h2177944 kernel: \[1608989.871365\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.225 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=33352 PROTO=TCP SPT=44942 DPT=48003 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 17 17:40:20 h2177944 kernel: \[1611235.502698\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.225 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=61703 PROTO=TCP SPT=44942 DPT=58002 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 17 17:45:42 h2177944 kernel: \[1611557.569860\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.225 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=6169 PROTO=TCP SPT=44942 DPT=46004 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 17 17:53:12 h2177944 kernel: \[1612008.119213\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.225 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=10267 PROTO=TCP SPT=44942 DPT=55005 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 17 17:58:14 h2177944 kernel: \[1612309.550164\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.225 DST=85.214.117.9 L |
2019-09-18 01:28:12 |
| 159.65.220.236 | attack | Sep 17 07:07:43 eddieflores sshd\[3579\]: Invalid user sendmail from 159.65.220.236 Sep 17 07:07:43 eddieflores sshd\[3579\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.220.236 Sep 17 07:07:46 eddieflores sshd\[3579\]: Failed password for invalid user sendmail from 159.65.220.236 port 45538 ssh2 Sep 17 07:11:38 eddieflores sshd\[3967\]: Invalid user zabbix from 159.65.220.236 Sep 17 07:11:38 eddieflores sshd\[3967\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.220.236 |
2019-09-18 01:27:10 |
| 51.38.112.45 | attackbotsspam | Sep 17 04:03:49 web9 sshd\[11281\]: Invalid user three from 51.38.112.45 Sep 17 04:03:49 web9 sshd\[11281\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.112.45 Sep 17 04:03:51 web9 sshd\[11281\]: Failed password for invalid user three from 51.38.112.45 port 37238 ssh2 Sep 17 04:08:28 web9 sshd\[12084\]: Invalid user t7adm from 51.38.112.45 Sep 17 04:08:28 web9 sshd\[12084\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.112.45 |
2019-09-18 01:56:27 |
| 81.176.229.157 | attackspam | proto=tcp . spt=40054 . dpt=3389 . src=81.176.229.157 . dst=xx.xx.4.1 . (listed on rbldns-ru) (646) |
2019-09-18 01:39:48 |
| 173.70.207.202 | attackbots | Unauthorized connection attempt from IP address 173.70.207.202 on Port 445(SMB) |
2019-09-18 01:17:49 |
| 183.83.2.105 | attackspambots | Unauthorized connection attempt from IP address 183.83.2.105 on Port 445(SMB) |
2019-09-18 01:38:37 |
| 197.232.65.112 | attackbotsspam | Unauthorized connection attempt from IP address 197.232.65.112 on Port 445(SMB) |
2019-09-18 01:49:59 |
| 112.51.94.27 | attackbots | Sep 17 13:36:35 **** sshd[17050]: Did not receive identification string from 112.51.94.27 port 58896 |
2019-09-18 01:48:50 |
| 157.230.209.220 | attackspam | Sep 17 18:04:07 [munged] sshd[26176]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.209.220 |
2019-09-18 01:44:57 |
| 91.214.153.218 | attack | Unauthorized connection attempt from IP address 91.214.153.218 on Port 445(SMB) |
2019-09-18 01:32:47 |
| 223.16.216.92 | attack | Sep 17 19:20:24 dedicated sshd[28160]: Invalid user bnq_ops from 223.16.216.92 port 46832 |
2019-09-18 01:42:52 |