City: Ashburn
Region: Virginia
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.2.244.96
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3471
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.2.244.96. IN A
;; AUTHORITY SECTION:
. 600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020040201 1800 900 604800 86400
;; Query time: 169 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 03 01:18:47 CST 2020
;; MSG SIZE rcvd: 115
96.244.2.52.in-addr.arpa domain name pointer ec2-52-2-244-96.compute-1.amazonaws.com.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
96.244.2.52.in-addr.arpa name = ec2-52-2-244-96.compute-1.amazonaws.com.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 125.163.172.255 | attack | Unauthorized connection attempt from IP address 125.163.172.255 on Port 445(SMB) |
2020-06-08 19:58:14 |
| 120.131.8.12 | attack | Lines containing failures of 120.131.8.12 Jun 8 04:25:48 nxxxxxxx sshd[15333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.8.12 user=r.r Jun 8 04:25:51 nxxxxxxx sshd[15333]: Failed password for r.r from 120.131.8.12 port 20304 ssh2 Jun 8 04:25:51 nxxxxxxx sshd[15333]: Received disconnect from 120.131.8.12 port 20304:11: Bye Bye [preauth] Jun 8 04:25:51 nxxxxxxx sshd[15333]: Disconnected from authenticating user r.r 120.131.8.12 port 20304 [preauth] Jun 8 04:33:27 nxxxxxxx sshd[16163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.8.12 user=r.r Jun 8 04:33:29 nxxxxxxx sshd[16163]: Failed password for r.r from 120.131.8.12 port 14890 ssh2 Jun 8 04:33:29 nxxxxxxx sshd[16163]: Received disconnect from 120.131.8.12 port 14890:11: Bye Bye [preauth] Jun 8 04:33:29 nxxxxxxx sshd[16163]: Disconnected from authenticating user r.r 120.131.8.12 port 14890 [preauth] Jun 8 ........ ------------------------------ |
2020-06-08 19:37:19 |
| 148.70.183.250 | attackspambots | SSH/22 MH Probe, BF, Hack - |
2020-06-08 19:35:11 |
| 163.172.8.227 | attackspam | Host Scan |
2020-06-08 19:51:08 |
| 168.194.108.31 | attack | Unauthorized connection attempt from IP address 168.194.108.31 on Port 445(SMB) |
2020-06-08 19:35:48 |
| 1.10.249.194 | attack | Unauthorized connection attempt from IP address 1.10.249.194 on Port 445(SMB) |
2020-06-08 19:51:53 |
| 36.72.220.13 | attack | Unauthorized connection attempt from IP address 36.72.220.13 on Port 445(SMB) |
2020-06-08 19:30:00 |
| 193.227.38.243 | attackspam | Unauthorized connection attempt from IP address 193.227.38.243 on Port 445(SMB) |
2020-06-08 19:54:32 |
| 122.3.104.117 | attackbotsspam | 1591590270 - 06/08/2020 06:24:30 Host: 122.3.104.117/122.3.104.117 Port: 445 TCP Blocked |
2020-06-08 19:36:53 |
| 188.165.24.200 | attackbotsspam | (sshd) Failed SSH login from 188.165.24.200 (LT/Lithuania/ip200.ip-188-165-24.eu): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 8 09:17:30 ubnt-55d23 sshd[25430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.165.24.200 user=root Jun 8 09:17:32 ubnt-55d23 sshd[25430]: Failed password for root from 188.165.24.200 port 51994 ssh2 |
2020-06-08 19:55:25 |
| 121.202.67.22 | attackbots | scan z |
2020-06-08 19:43:21 |
| 94.221.180.124 | attack | Connecting to IP instead of domain name |
2020-06-08 19:58:47 |
| 124.239.153.215 | attackbots | Jun 8 15:42:42 webhost01 sshd[28404]: Failed password for root from 124.239.153.215 port 47674 ssh2 ... |
2020-06-08 19:39:39 |
| 182.232.126.122 | attackbotsspam | Unauthorized connection attempt from IP address 182.232.126.122 on Port 445(SMB) |
2020-06-08 19:26:11 |
| 175.6.35.46 | attackspam | Jun 8 08:42:24 gw1 sshd[29976]: Failed password for root from 175.6.35.46 port 46802 ssh2 ... |
2020-06-08 19:55:43 |