34.214.145.123

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Amazon Technologies Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Automatic report - Web App Attack	2019-11-26 22:25:20

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 34.214.145.123
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52234
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;34.214.145.123.			IN	A

;; AUTHORITY SECTION:
.			417	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112600 1800 900 604800 86400

;; Query time: 870 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Nov 26 22:25:14 CST 2019
;; MSG SIZE  rcvd: 118

Host info

123.145.214.34.in-addr.arpa domain name pointer ec2-34-214-145-123.us-west-2.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
123.145.214.34.in-addr.arpa	name = ec2-34-214-145-123.us-west-2.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
50.236.22.154	attack	Jul 8 08:25:49 **** sshd[14780]: Did not receive identification string from 50.236.22.154 port 53620	2019-07-08 18:33:48
151.80.41.124	attack	Jul 8 10:56:40 MK-Soft-Root2 sshd\[28686\]: Invalid user sonar from 151.80.41.124 port 32804 Jul 8 10:56:40 MK-Soft-Root2 sshd\[28686\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.41.124 Jul 8 10:56:43 MK-Soft-Root2 sshd\[28686\]: Failed password for invalid user sonar from 151.80.41.124 port 32804 ssh2 ...	2019-07-08 18:13:17
104.248.211.180	attackspambots	Jul 8 09:40:05 marvibiene sshd[28660]: Invalid user frodo from 104.248.211.180 port 41720 Jul 8 09:40:05 marvibiene sshd[28660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.211.180 Jul 8 09:40:05 marvibiene sshd[28660]: Invalid user frodo from 104.248.211.180 port 41720 Jul 8 09:40:07 marvibiene sshd[28660]: Failed password for invalid user frodo from 104.248.211.180 port 41720 ssh2 ...	2019-07-08 18:45:09
157.37.132.150	attackspambots	SMTP/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2019-07-08 18:17:46
201.159.114.10	attack	TCP port 8080 (HTTP) attempt blocked by firewall. [2019-07-08 10:25:29]	2019-07-08 18:05:40
179.42.193.119	attackbotsspam	IMAP brute force ...	2019-07-08 18:24:13
193.32.163.182	attackbotsspam	Jul 8 12:26:14 [munged] sshd[20931]: Invalid user admin from 193.32.163.182 port 34021 Jul 8 12:26:14 [munged] sshd[20931]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.32.163.182	2019-07-08 18:46:42
132.255.29.228	attackbotsspam	Jul 8 15:48:20 areeb-Workstation sshd\[25060\]: Invalid user test from 132.255.29.228 Jul 8 15:48:20 areeb-Workstation sshd\[25060\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.255.29.228 Jul 8 15:48:22 areeb-Workstation sshd\[25060\]: Failed password for invalid user test from 132.255.29.228 port 45216 ssh2 ...	2019-07-08 18:41:41
151.80.144.208	attackbotsspam	SMTP/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2019-07-08 18:20:41
41.214.20.60	attack	Jul 8 10:00:55 localhost sshd\[8549\]: Invalid user hdfs from 41.214.20.60 port 38947 Jul 8 10:00:55 localhost sshd\[8549\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.214.20.60 ...	2019-07-08 18:12:18
143.255.194.249	attackbots	SMTP/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2019-07-08 18:26:08
14.142.25.74	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-07 22:27:39,400 INFO [shellcode_manager] (14.142.25.74) no match, writing hexdump (271fe59ae3587c1471ed14322e305a0d :2457207) - MS17010 (EternalBlue)	2019-07-08 18:52:37
193.112.244.110	attack	Jul 8 10:24:11 giegler sshd[10617]: Failed password for invalid user knight from 193.112.244.110 port 55604 ssh2 Jul 8 10:26:16 giegler sshd[10643]: Invalid user ts from 193.112.244.110 port 43090 Jul 8 10:26:16 giegler sshd[10643]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.244.110 Jul 8 10:26:16 giegler sshd[10643]: Invalid user ts from 193.112.244.110 port 43090 Jul 8 10:26:18 giegler sshd[10643]: Failed password for invalid user ts from 193.112.244.110 port 43090 ssh2	2019-07-08 18:14:11
120.52.152.15	attackbotsspam	Portscan or hack attempt detected by psad/fwsnort	2019-07-08 18:36:44
81.22.45.32	attackbotsspam	Multiport scan : 76 ports scanned 2222 3000 3322 3333 3344 3350 3355 3366 3369 3370 3372 3377 3379 3380 3381 3382 3383 3384 3385 3386 3387 3388 3390 3391 3392 3394 3395 3396 3397 3398 3399 3400 3401 3402 3403 3404 3489 3492 3500 3589 3889 3900 4000 4001 4002 4003 4005 4006 4007 4100 4200 4389 4400 4444 4489 4490 4499 5000 5001 5389 5555 5589 6000 6666 7000 7777 8000 8888 9000 9833 9999 13389 23389 33389 43389 63389	2019-07-08 18:48:07

Recently Reported IPs

98.126.21.61	101.51.218.143	182.217.244.94	139.180.200.73
116.206.178.227	5.59.147.122	175.9.132.168	102.64.66.251
29.248.36.74	100.66.201.224	218.25.17.252	178.159.100.15
2.35.192.209	178.128.31.218	117.51.146.97	185.37.26.177
114.219.84.68	202.107.238.14	109.75.36.60	113.185.47.53