City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 44.207.136.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9896
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;44.207.136.142. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020602 1800 900 604800 86400
;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 07 08:34:28 CST 2025
;; MSG SIZE rcvd: 107
142.136.207.44.in-addr.arpa domain name pointer ec2-44-207-136-142.compute-1.amazonaws.com.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
142.136.207.44.in-addr.arpa name = ec2-44-207-136-142.compute-1.amazonaws.com.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 181.129.133.164 | attack | [24/Jun/2020:19:45:32 -0400] "POST /cgi-bin/mainfunction.cgi HTTP/1.1" "XTC" |
2020-06-26 04:45:20 |
| 116.139.182.178 | attack | 23/tcp [2020-06-25]1pkt |
2020-06-26 05:02:55 |
| 81.161.67.128 | attack | Jun 25 22:32:21 mail.srvfarm.net postfix/smtpd[2071444]: warning: unknown[81.161.67.128]: SASL PLAIN authentication failed: Jun 25 22:32:21 mail.srvfarm.net postfix/smtpd[2071444]: lost connection after AUTH from unknown[81.161.67.128] Jun 25 22:35:45 mail.srvfarm.net postfix/smtpd[2072454]: warning: unknown[81.161.67.128]: SASL PLAIN authentication failed: Jun 25 22:35:45 mail.srvfarm.net postfix/smtpd[2072454]: lost connection after AUTH from unknown[81.161.67.128] Jun 25 22:39:19 mail.srvfarm.net postfix/smtpd[2073225]: warning: unknown[81.161.67.128]: SASL PLAIN authentication failed: |
2020-06-26 05:19:53 |
| 187.109.171.213 | attackbotsspam | Jun 25 22:18:57 mail.srvfarm.net postfix/smtpd[2073913]: warning: unknown[187.109.171.213]: SASL PLAIN authentication failed: Jun 25 22:18:58 mail.srvfarm.net postfix/smtpd[2073913]: lost connection after AUTH from unknown[187.109.171.213] Jun 25 22:20:38 mail.srvfarm.net postfix/smtps/smtpd[2072917]: warning: unknown[187.109.171.213]: SASL PLAIN authentication failed: Jun 25 22:20:39 mail.srvfarm.net postfix/smtps/smtpd[2072917]: lost connection after AUTH from unknown[187.109.171.213] Jun 25 22:25:39 mail.srvfarm.net postfix/smtps/smtpd[2075571]: warning: unknown[187.109.171.213]: SASL PLAIN authentication failed: |
2020-06-26 05:25:40 |
| 79.99.110.98 | attack | Unauthorized connection attempt from IP address 79.99.110.98 on Port 445(SMB) |
2020-06-26 04:58:53 |
| 104.41.224.228 | attackspambots | 2020-06-25T15:03:47.256886morrigan.ad5gb.com sshd[2885391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.41.224.228 user=root 2020-06-25T15:03:47.257823morrigan.ad5gb.com sshd[2885392]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.41.224.228 user=root |
2020-06-26 04:25:01 |
| 122.35.120.59 | attack | Jun 25 22:45:56 vmd26974 sshd[18416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.35.120.59 Jun 25 22:45:58 vmd26974 sshd[18416]: Failed password for invalid user kmt from 122.35.120.59 port 50794 ssh2 ... |
2020-06-26 05:17:50 |
| 222.186.175.182 | attackbots | Jun 25 22:21:19 home sshd[12208]: Failed password for root from 222.186.175.182 port 37316 ssh2 Jun 25 22:21:23 home sshd[12208]: Failed password for root from 222.186.175.182 port 37316 ssh2 Jun 25 22:21:26 home sshd[12208]: Failed password for root from 222.186.175.182 port 37316 ssh2 Jun 25 22:21:29 home sshd[12208]: Failed password for root from 222.186.175.182 port 37316 ssh2 ... |
2020-06-26 04:28:08 |
| 103.129.232.36 | attack | Unauthorized connection attempt from IP address 103.129.232.36 on Port 445(SMB) |
2020-06-26 05:01:15 |
| 186.216.71.217 | attack | Jun 25 22:32:51 mail.srvfarm.net postfix/smtps/smtpd[2075110]: warning: unknown[186.216.71.217]: SASL PLAIN authentication failed: Jun 25 22:32:52 mail.srvfarm.net postfix/smtps/smtpd[2075110]: lost connection after AUTH from unknown[186.216.71.217] Jun 25 22:37:53 mail.srvfarm.net postfix/smtpd[2075974]: warning: unknown[186.216.71.217]: SASL PLAIN authentication failed: Jun 25 22:37:53 mail.srvfarm.net postfix/smtpd[2075974]: lost connection after AUTH from unknown[186.216.71.217] Jun 25 22:40:20 mail.srvfarm.net postfix/smtpd[2071449]: warning: unknown[186.216.71.217]: SASL PLAIN authentication failed: |
2020-06-26 05:14:55 |
| 104.129.194.94 | attack | Jun 26 03:39:56 itv-usvr-02 sshd[6836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.94 user=root Jun 26 03:42:59 itv-usvr-02 sshd[6946]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.94 user=root Jun 26 03:46:00 itv-usvr-02 sshd[7046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.129.194.94 |
2020-06-26 05:12:00 |
| 187.109.58.212 | attackbotsspam | Jun 25 22:37:37 mail.srvfarm.net postfix/smtps/smtpd[2072920]: warning: 187-109-58-212.agyonet.com.br[187.109.58.212]: SASL PLAIN authentication failed: Jun 25 22:37:38 mail.srvfarm.net postfix/smtps/smtpd[2072920]: lost connection after AUTH from 187-109-58-212.agyonet.com.br[187.109.58.212] Jun 25 22:38:23 mail.srvfarm.net postfix/smtps/smtpd[2071633]: warning: 187-109-58-212.agyonet.com.br[187.109.58.212]: SASL PLAIN authentication failed: Jun 25 22:38:23 mail.srvfarm.net postfix/smtps/smtpd[2071633]: lost connection after AUTH from 187-109-58-212.agyonet.com.br[187.109.58.212] Jun 25 22:42:29 mail.srvfarm.net postfix/smtps/smtpd[2075561]: warning: 187-109-58-212.agyonet.com.br[187.109.58.212]: SASL PLAIN authentication failed: |
2020-06-26 05:13:27 |
| 205.185.124.12 | attackspam | Jun 25 23:46:14 server2 sshd\[12271\]: User root from 205.185.124.12 not allowed because not listed in AllowUsers Jun 25 23:47:05 server2 sshd\[12305\]: Invalid user postgres from 205.185.124.12 Jun 25 23:47:57 server2 sshd\[12321\]: Invalid user test from 205.185.124.12 Jun 25 23:48:48 server2 sshd\[12357\]: User root from 205.185.124.12 not allowed because not listed in AllowUsers Jun 25 23:49:37 server2 sshd\[12382\]: Invalid user user from 205.185.124.12 Jun 25 23:50:26 server2 sshd\[12597\]: User root from 205.185.124.12 not allowed because not listed in AllowUsers |
2020-06-26 05:00:18 |
| 188.112.8.10 | attack | Jun 25 22:33:54 mail.srvfarm.net postfix/smtps/smtpd[2071633]: warning: unknown[188.112.8.10]: SASL PLAIN authentication failed: Jun 25 22:33:54 mail.srvfarm.net postfix/smtps/smtpd[2071633]: lost connection after AUTH from unknown[188.112.8.10] Jun 25 22:34:13 mail.srvfarm.net postfix/smtps/smtpd[2075604]: warning: unknown[188.112.8.10]: SASL PLAIN authentication failed: Jun 25 22:34:13 mail.srvfarm.net postfix/smtps/smtpd[2075604]: lost connection after AUTH from unknown[188.112.8.10] Jun 25 22:34:26 mail.srvfarm.net postfix/smtps/smtpd[2075558]: warning: unknown[188.112.8.10]: SASL PLAIN authentication failed: |
2020-06-26 05:25:04 |
| 180.113.54.164 | attackbotsspam | [24/Jun/2020:16:59:12 -0400] "GET /phpmyadmin/ HTTP/1.1" Chrome 51.0 UA |
2020-06-26 04:45:50 |