City: unknown
Region: unknown
Country: United States of America
Internet Service Provider: Amazon Technologies Inc.
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attack | Brute force VPN server |
2020-06-26 08:00:31 |
| attack | Brute force attack against VPN service |
2020-04-12 19:00:47 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 52.42.253.100 | attack | 11/26/2019-11:29:07.732906 52.42.253.100 Protocol: 6 SURICATA TLS invalid record/traffic |
2019-11-26 18:47:12 |
| 52.42.253.100 | attackspambots | 11/25/2019-10:02:02.227775 52.42.253.100 Protocol: 6 SURICATA TLS invalid record/traffic |
2019-11-25 18:12:29 |
| 52.42.253.100 | attack | 11/25/2019-06:20:02.050391 52.42.253.100 Protocol: 6 SURICATA TLS invalid record/traffic |
2019-11-25 13:20:50 |
| 52.42.233.100 | attackbotsspam | As always with amazon web services |
2019-10-03 04:37:17 |
| 52.42.226.175 | attack | hacker |
2019-06-23 21:11:22 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.42.2.56
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32188
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.42.2.56. IN A
;; AUTHORITY SECTION:
. 574 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020041200 1800 900 604800 86400
;; Query time: 331 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 12 19:00:44 CST 2020
;; MSG SIZE rcvd: 11456.2.42.52.in-addr.arpa domain name pointer ec2-52-42-2-56.us-west-2.compute.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
56.2.42.52.in-addr.arpa name = ec2-52-42-2-56.us-west-2.compute.amazonaws.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 161.11.225.52 | attackbots | Port Scan: UDP/51294 |
2019-08-24 14:46:09 |
| 60.249.255.143 | attackspambots | Port Scan: TCP/445 |
2019-08-24 14:30:43 |
| 46.101.47.26 | attack | 46.101.47.26 - - [24/Aug/2019:03:15:05 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.101.47.26 - - [24/Aug/2019:03:15:05 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.101.47.26 - - [24/Aug/2019:03:15:05 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.101.47.26 - - [24/Aug/2019:03:15:05 +0200] "POST /wp-login.php HTTP/1.1" 200 1489 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.101.47.26 - - [24/Aug/2019:03:15:05 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.101.47.26 - - [24/Aug/2019:03:15:05 +0200] "POST /wp-login.php HTTP/1.1" 200 1491 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2019-08-24 14:09:48 |
| 161.11.225.51 | attackbots | Port Scan: UDP/51294 |
2019-08-24 14:22:33 |
| 79.140.29.103 | attackbots | Port Scan: TCP/23 |
2019-08-24 14:26:26 |
| 114.223.170.75 | attackbotsspam | Port Scan: TCP/23 |
2019-08-24 13:59:43 |
| 83.110.158.4 | attackbots | Port Scan: TCP/8080 |
2019-08-24 14:25:55 |
| 109.168.246.14 | attack | Port Scan: TCP/8080 |
2019-08-24 15:11:47 |
| 12.239.124.135 | attack | Port Scan: UDP/137 |
2019-08-24 14:15:15 |
| 222.220.28.14 | attackspambots | Port Scan: TCP/80 |
2019-08-24 14:40:07 |
| 65.123.212.218 | attackspam | Port Scan: UDP/137 |
2019-08-24 14:07:00 |
| 72.18.53.50 | attackspambots | Port Scan: UDP/137 |
2019-08-24 14:28:43 |
| 117.34.91.145 | attackspam | Port Scan: TCP/80 |
2019-08-24 14:24:07 |
| 71.204.37.24 | attackbotsspam | Port Scan: UDP/80 |
2019-08-24 14:04:34 |
| 134.19.251.26 | attackbotsspam | Port Scan: TCP/23 |
2019-08-24 14:23:12 |