City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.204.237.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58094
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;54.204.237.242. IN A
;; AUTHORITY SECTION:
. 351 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022011101 1800 900 604800 86400
;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 12 05:00:04 CST 2022
;; MSG SIZE rcvd: 107242.237.204.54.in-addr.arpa domain name pointer ec2-54-204-237-242.compute-1.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
242.237.204.54.in-addr.arpa name = ec2-54-204-237-242.compute-1.amazonaws.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 95.167.123.54 | attackspam | postfix (unknown user, SPF fail or relay access denied) |
2019-09-26 17:56:07 |
| 113.186.45.202 | attackbotsspam | Attempt to attack host OS, exploiting network vulnerabilities, on 26-09-2019 04:45:21. |
2019-09-26 17:53:51 |
| 115.73.212.206 | attack | Attempt to attack host OS, exploiting network vulnerabilities, on 26-09-2019 04:45:21. |
2019-09-26 17:53:25 |
| 216.244.66.197 | attack | 20 attempts against mh-misbehave-ban on hill.magehost.pro |
2019-09-26 17:41:28 |
| 112.207.98.235 | attackbots | Attempt to attack host OS, exploiting network vulnerabilities, on 26-09-2019 04:45:20. |
2019-09-26 17:57:08 |
| 14.172.89.84 | attack | Attempt to attack host OS, exploiting network vulnerabilities, on 26-09-2019 04:45:25. |
2019-09-26 17:47:16 |
| 212.0.149.87 | attack | Unauthorised access (Sep 26) SRC=212.0.149.87 LEN=52 TTL=111 ID=16788 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Sep 25) SRC=212.0.149.87 LEN=52 TTL=113 ID=4071 DF TCP DPT=445 WINDOW=8192 SYN |
2019-09-26 17:26:02 |
| 45.136.109.199 | attackbotsspam | 09/26/2019-05:13:15.728101 45.136.109.199 Protocol: 6 ET SCAN NMAP -sS window 1024 |
2019-09-26 17:28:18 |
| 49.148.189.139 | attackbotsspam | Attempt to attack host OS, exploiting network vulnerabilities, on 26-09-2019 04:45:34. |
2019-09-26 17:32:47 |
| 77.82.206.218 | attack | Attempt to attack host OS, exploiting network vulnerabilities, on 26-09-2019 04:45:34. |
2019-09-26 17:31:44 |
| 93.235.219.47 | attack | 3389BruteforceFW21 |
2019-09-26 17:19:55 |
| 171.225.223.211 | attackbots | Attempt to attack host OS, exploiting network vulnerabilities, on 26-09-2019 04:45:26. |
2019-09-26 17:45:03 |
| 5.196.67.41 | attackbotsspam | Sep 25 21:39:38 lcprod sshd\[6810\]: Invalid user ding from 5.196.67.41 Sep 25 21:39:38 lcprod sshd\[6810\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns378499.ip-5-196-67.eu Sep 25 21:39:41 lcprod sshd\[6810\]: Failed password for invalid user ding from 5.196.67.41 port 58998 ssh2 Sep 25 21:44:14 lcprod sshd\[7168\]: Invalid user dev from 5.196.67.41 Sep 25 21:44:14 lcprod sshd\[7168\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns378499.ip-5-196-67.eu |
2019-09-26 17:48:06 |
| 89.238.150.15 | attack | SQL injection:/index.php?menu_selected=60'[0]%20&sub_menu_selected=291&language=US |
2019-09-26 17:14:00 |
| 113.238.116.166 | attackspam | Telnet Server BruteForce Attack |
2019-09-26 17:14:46 |