City: Ashburn
Region: Virginia
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.235.149.71
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6901
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;54.235.149.71. IN A
;; AUTHORITY SECTION:
. 518 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020090100 1800 900 604800 86400
;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Sep 01 18:32:41 CST 2020
;; MSG SIZE rcvd: 11771.149.235.54.in-addr.arpa domain name pointer ec2-54-235-149-71.compute-1.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
71.149.235.54.in-addr.arpa name = ec2-54-235-149-71.compute-1.amazonaws.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 194.187.249.55 | attackspambots | (From hacker@pandora.com) PLEASE FORWARD THIS EMAIL TO SOMEONE IN YOUR COMPANY WHO IS ALLOWED TO MAKE IMPORTANT DECISIONS! We have hacked your website http://www.hotzchiropractic.com and extracted your databases. How did this happen? Our team has found a vulnerability within your site that we were able to exploit. After finding the vulnerability we were able to get your database credentials and extract your entire database and move the information to an offshore server. What does this mean? We will systematically go through a series of steps of totally damaging your reputation. First your database will be leaked or sold to the highest bidder which they will use with whatever their intentions are. Next if there are e-mails found they will be e-mailed that their information has been sold or leaked and your site http://www.hotzchiropractic.com was at fault thusly damaging your reputation and having angry customers/associates with whatever angry customers/associates do. Lastly any links that you have |
2020-06-05 20:26:45 |
| 51.83.70.93 | attackbots | Jun 5 13:00:53 ajax sshd[23584]: Failed password for root from 51.83.70.93 port 60618 ssh2 |
2020-06-05 20:11:17 |
| 113.52.139.131 | attack | Automatic report - Port Scan |
2020-06-05 20:12:56 |
| 190.196.226.172 | attackspam | (AR/Argentina/-) SMTP Bruteforcing attempts |
2020-06-05 20:07:08 |
| 14.231.121.39 | attackbotsspam | Port probing on unauthorized port 445 |
2020-06-05 20:00:35 |
| 155.94.178.110 | attack | Lines containing failures of 155.94.178.110 Jun 5 12:45:37 expertgeeks postfix/smtpd[30523]: warning: hostname unassigned.quadranet.com does not resolve to address 155.94.178.110 Jun 5 12:45:37 expertgeeks postfix/smtpd[30523]: connect from unknown[155.94.178.110] Jun x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=155.94.178.110 |
2020-06-05 20:21:49 |
| 192.3.255.139 | attackbotsspam | Jun 5 09:24:59 sip sshd[32582]: Failed password for root from 192.3.255.139 port 42888 ssh2 Jun 5 09:39:26 sip sshd[5536]: Failed password for root from 192.3.255.139 port 50626 ssh2 |
2020-06-05 19:47:33 |
| 134.175.32.95 | attackbots | Jun 5 13:54:53 eventyay sshd[5239]: Failed password for root from 134.175.32.95 port 58170 ssh2 Jun 5 13:59:27 eventyay sshd[5398]: Failed password for root from 134.175.32.95 port 33956 ssh2 ... |
2020-06-05 20:22:55 |
| 122.225.77.46 | attackbots | Unauthorised access (Jun 5) SRC=122.225.77.46 LEN=52 TTL=115 ID=18400 DF TCP DPT=445 WINDOW=8192 SYN |
2020-06-05 19:51:25 |
| 210.112.232.6 | attackspambots | 2020-06-05T13:49:36.256032ns386461 sshd\[19268\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.112.232.6 user=root 2020-06-05T13:49:38.413623ns386461 sshd\[19268\]: Failed password for root from 210.112.232.6 port 55773 ssh2 2020-06-05T13:59:04.917990ns386461 sshd\[28598\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.112.232.6 user=root 2020-06-05T13:59:07.386527ns386461 sshd\[28598\]: Failed password for root from 210.112.232.6 port 46567 ssh2 2020-06-05T14:03:45.445813ns386461 sshd\[328\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.112.232.6 user=root ... |
2020-06-05 20:31:35 |
| 167.86.107.88 | attackspam | Jun 5 06:52:51 game-panel sshd[968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.86.107.88 Jun 5 06:52:53 game-panel sshd[968]: Failed password for invalid user miner from 167.86.107.88 port 54004 ssh2 Jun 5 06:59:10 game-panel sshd[1209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.86.107.88 |
2020-06-05 20:05:40 |
| 49.234.51.56 | attackbots | Jun 5 13:01:08 ns37 sshd[15426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.51.56 |
2020-06-05 20:06:41 |
| 1.20.177.8 | attack | Unauthorized IMAP connection attempt |
2020-06-05 20:15:56 |
| 218.92.0.145 | attackspam | 2020-06-05T13:51:21.781360rocketchat.forhosting.nl sshd[5809]: Failed password for root from 218.92.0.145 port 31369 ssh2 2020-06-05T13:51:27.211590rocketchat.forhosting.nl sshd[5809]: Failed password for root from 218.92.0.145 port 31369 ssh2 2020-06-05T13:51:31.128322rocketchat.forhosting.nl sshd[5809]: Failed password for root from 218.92.0.145 port 31369 ssh2 ... |
2020-06-05 19:52:17 |
| 152.32.98.177 | attack | 1591358646 - 06/05/2020 14:04:06 Host: 152.32.98.177/152.32.98.177 Port: 445 TCP Blocked |
2020-06-05 20:16:48 |