City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.7.42.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37087
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;52.7.42.45. IN A
;; AUTHORITY SECTION:
. 543 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2023052300 1800 900 604800 86400
;; Query time: 146 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 24 01:30:24 CST 2023
;; MSG SIZE rcvd: 103
45.42.7.52.in-addr.arpa domain name pointer ec2-52-7-42-45.compute-1.amazonaws.com.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
45.42.7.52.in-addr.arpa name = ec2-52-7-42-45.compute-1.amazonaws.com.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 27.254.81.81 | attack | Sep 16 05:55:51 core sshd[21016]: Invalid user weblogic from 27.254.81.81 port 43604 Sep 16 05:55:53 core sshd[21016]: Failed password for invalid user weblogic from 27.254.81.81 port 43604 ssh2 ... |
2019-09-16 12:01:07 |
| 146.66.244.246 | attackspam | Sep 16 03:29:09 www_kotimaassa_fi sshd[10537]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.66.244.246 Sep 16 03:29:11 www_kotimaassa_fi sshd[10537]: Failed password for invalid user nvidia from 146.66.244.246 port 37900 ssh2 ... |
2019-09-16 11:40:36 |
| 106.13.15.153 | attackspam | 2019-09-16T01:07:02.567991abusebot-3.cloudsearch.cf sshd\[22953\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.15.153 user=root |
2019-09-16 12:21:03 |
| 14.226.42.61 | attack | Sep 14 04:31:14 lvps5-35-247-183 postfix/smtpd[19592]: warning: hostname static.vnpt.vn does not resolve to address 14.226.42.61 Sep 14 04:31:14 lvps5-35-247-183 postfix/smtpd[19592]: connect from unknown[14.226.42.61] Sep x@x Sep x@x Sep x@x Sep 14 04:31:17 lvps5-35-247-183 postfix/smtpd[19592]: lost connection after RCPT from unknown[14.226.42.61] Sep 14 04:31:17 lvps5-35-247-183 postfix/smtpd[19592]: disconnect from unknown[14.226.42.61] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.226.42.61 |
2019-09-16 11:51:21 |
| 36.81.168.200 | attackbots | port scan and connect, tcp 23 (telnet) |
2019-09-16 11:45:26 |
| 141.98.9.195 | attack | Sep 16 05:22:16 relay postfix/smtpd\[8288\]: warning: unknown\[141.98.9.195\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 16 05:23:02 relay postfix/smtpd\[8215\]: warning: unknown\[141.98.9.195\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 16 05:23:14 relay postfix/smtpd\[9526\]: warning: unknown\[141.98.9.195\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 16 05:23:57 relay postfix/smtpd\[20998\]: warning: unknown\[141.98.9.195\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 16 05:24:08 relay postfix/smtpd\[26431\]: warning: unknown\[141.98.9.195\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2019-09-16 12:14:27 |
| 195.9.32.22 | attackspambots | Sep 15 23:29:22 ny01 sshd[17013]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.9.32.22 Sep 15 23:29:25 ny01 sshd[17013]: Failed password for invalid user teamspeak from 195.9.32.22 port 44893 ssh2 Sep 15 23:34:39 ny01 sshd[17973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.9.32.22 |
2019-09-16 11:41:16 |
| 185.36.81.229 | attackbots | $f2bV_matches |
2019-09-16 12:20:06 |
| 182.254.205.83 | attack | Sep 14 04:33:25 majoron sshd[14292]: Invalid user monhostnameor from 182.254.205.83 port 57438 Sep 14 04:33:25 majoron sshd[14292]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.254.205.83 Sep 14 04:33:26 majoron sshd[14292]: Failed password for invalid user monhostnameor from 182.254.205.83 port 57438 ssh2 Sep 14 04:33:26 majoron sshd[14292]: Received disconnect from 182.254.205.83 port 57438:11: Bye Bye [preauth] Sep 14 04:33:26 majoron sshd[14292]: Disconnected from 182.254.205.83 port 57438 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=182.254.205.83 |
2019-09-16 11:52:03 |
| 42.247.30.176 | attack | Sep 15 19:30:05 xtremcommunity sshd\[124643\]: Invalid user webalizer from 42.247.30.176 port 41632 Sep 15 19:30:05 xtremcommunity sshd\[124643\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.247.30.176 Sep 15 19:30:07 xtremcommunity sshd\[124643\]: Failed password for invalid user webalizer from 42.247.30.176 port 41632 ssh2 Sep 15 19:34:47 xtremcommunity sshd\[124740\]: Invalid user bpadmin from 42.247.30.176 port 53968 Sep 15 19:34:47 xtremcommunity sshd\[124740\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.247.30.176 ... |
2019-09-16 11:51:01 |
| 147.135.163.101 | attackbots | Sep 14 04:30:22 ns sshd[19013]: Invalid user honey from 147.135.163.101 Sep 14 04:30:25 ns sshd[19013]: Failed password for invalid user honey from 147.135.163.101 port 53786 ssh2 Sep 14 04:39:33 ns sshd[20362]: Invalid user admin from 147.135.163.101 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=147.135.163.101 |
2019-09-16 12:11:27 |
| 190.104.153.41 | attackspambots | Sep 16 01:16:01 vmd17057 sshd\[11418\]: Invalid user shu from 190.104.153.41 port 48686 Sep 16 01:16:01 vmd17057 sshd\[11418\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.104.153.41 Sep 16 01:16:03 vmd17057 sshd\[11418\]: Failed password for invalid user shu from 190.104.153.41 port 48686 ssh2 ... |
2019-09-16 11:48:13 |
| 118.24.23.47 | attack | Sep 13 19:22:52 mail sshd[31546]: Failed password for invalid user tuo from 118.24.23.47 port 36674 ssh2 Sep 13 19:22:52 mail sshd[31546]: Received disconnect from 118.24.23.47: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=118.24.23.47 |
2019-09-16 12:19:14 |
| 125.46.76.99 | attack | Sep 15 14:06:05 hpm sshd\[25373\]: Invalid user su from 125.46.76.99 Sep 15 14:06:05 hpm sshd\[25373\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.46.76.99 Sep 15 14:06:07 hpm sshd\[25373\]: Failed password for invalid user su from 125.46.76.99 port 10172 ssh2 Sep 15 14:11:38 hpm sshd\[25966\]: Invalid user git3 from 125.46.76.99 Sep 15 14:11:38 hpm sshd\[25966\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.46.76.99 |
2019-09-16 12:02:59 |
| 78.57.133.225 | attackspam | Port Scan: TCP/443 |
2019-09-16 12:12:11 |