City: Boardman
Region: Oregon
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.70.142.16
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32061
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;54.70.142.16. IN A
;; AUTHORITY SECTION:
. 368 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2021010101 1800 900 604800 86400
;; Query time: 127 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 02 09:43:02 CST 2021
;; MSG SIZE rcvd: 11616.142.70.54.in-addr.arpa domain name pointer ec2-54-70-142-16.us-west-2.compute.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
16.142.70.54.in-addr.arpa name = ec2-54-70-142-16.us-west-2.compute.amazonaws.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 185.181.8.197 | attack | Jun 29 04:32:33 localhost kernel: [13041346.867190] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=185.181.8.197 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=60 ID=46821 DF PROTO=TCP SPT=37312 DPT=21 WINDOW=29200 RES=0x00 SYN URGP=0 Jun 29 04:32:33 localhost kernel: [13041346.867220] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=185.181.8.197 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=60 ID=46821 DF PROTO=TCP SPT=37312 DPT=21 SEQ=2360221592 ACK=0 WINDOW=29200 RES=0x00 SYN URGP=0 Jun 29 04:32:47 localhost kernel: [13041361.188715] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=185.181.8.197 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=53 ID=51846 DF PROTO=TCP SPT=46523 DPT=21 WINDOW=29200 RES=0x00 SYN URGP=0 Jun 29 04:32:47 localhost kernel: [13041361.188724] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=185.181.8.197 DST=[mungedIP2] LEN=40 TOS=0x |
2019-06-29 21:34:13 |
| 41.235.141.177 | attack | Unauthorized connection attempt from IP address 41.235.141.177 on Port 445(SMB) |
2019-06-29 21:28:14 |
| 41.43.153.255 | attackbotsspam | Unauthorized connection attempt from IP address 41.43.153.255 on Port 445(SMB) |
2019-06-29 21:32:09 |
| 92.118.37.81 | attackbots | 29.06.2019 12:50:49 Connection to port 19494 blocked by firewall |
2019-06-29 21:47:52 |
| 36.189.253.226 | attack | Jun 29 14:20:06 MK-Soft-Root1 sshd\[15298\]: Invalid user da from 36.189.253.226 port 60865 Jun 29 14:20:06 MK-Soft-Root1 sshd\[15298\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.189.253.226 Jun 29 14:20:07 MK-Soft-Root1 sshd\[15298\]: Failed password for invalid user da from 36.189.253.226 port 60865 ssh2 ... |
2019-06-29 21:29:39 |
| 167.250.96.201 | attack | SMTP-sasl brute force ... |
2019-06-29 20:58:14 |
| 188.19.76.111 | attack | Unauthorized connection attempt from IP address 188.19.76.111 on Port 445(SMB) |
2019-06-29 21:29:16 |
| 132.148.106.24 | attackbots | ft-1848-basketball.de 132.148.106.24 \[29/Jun/2019:10:33:33 +0200\] "POST /wp-login.php HTTP/1.1" 200 2171 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ft-1848-basketball.de 132.148.106.24 \[29/Jun/2019:10:33:34 +0200\] "POST /wp-login.php HTTP/1.1" 200 2143 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2019-06-29 21:01:58 |
| 59.127.172.234 | attack | Jun 29 13:33:56 animalibera sshd[25140]: Invalid user za from 59.127.172.234 port 38144 Jun 29 13:33:58 animalibera sshd[25140]: Failed password for invalid user za from 59.127.172.234 port 38144 ssh2 Jun 29 13:33:56 animalibera sshd[25140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.127.172.234 Jun 29 13:33:56 animalibera sshd[25140]: Invalid user za from 59.127.172.234 port 38144 Jun 29 13:33:58 animalibera sshd[25140]: Failed password for invalid user za from 59.127.172.234 port 38144 ssh2 ... |
2019-06-29 21:46:01 |
| 196.201.244.60 | attack | Unauthorized connection attempt from IP address 196.201.244.60 on Port 445(SMB) |
2019-06-29 21:08:21 |
| 117.69.31.199 | attackbotsspam | Brute force SMTP login attempts. |
2019-06-29 21:33:07 |
| 217.219.68.166 | attackbots | Unauthorized connection attempt from IP address 217.219.68.166 on Port 445(SMB) |
2019-06-29 21:16:07 |
| 36.38.27.115 | attackbotsspam | Jun 29 20:20:13 itv-usvr-02 sshd[11124]: Invalid user naziyah from 36.38.27.115 port 44692 Jun 29 20:20:13 itv-usvr-02 sshd[11124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.38.27.115 Jun 29 20:20:13 itv-usvr-02 sshd[11124]: Invalid user naziyah from 36.38.27.115 port 44692 Jun 29 20:20:15 itv-usvr-02 sshd[11124]: Failed password for invalid user naziyah from 36.38.27.115 port 44692 ssh2 Jun 29 20:22:30 itv-usvr-02 sshd[11128]: Invalid user ts3musicbot from 36.38.27.115 port 37390 |
2019-06-29 21:25:44 |
| 124.43.10.71 | attack | Unauthorized connection attempt from IP address 124.43.10.71 on Port 445(SMB) |
2019-06-29 21:10:48 |
| 113.193.25.83 | attack | Unauthorized connection attempt from IP address 113.193.25.83 on Port 445(SMB) |
2019-06-29 21:37:38 |