5 lag-107.ear5.Dallas1.Level3.net (4.7.200.49) 44.843 ms 44.623 ms 44.915 ms 6 Arelion-level3-Dallas1.Level3.net (4.68.74.166) 45.092 ms 28.581 ms 29.187 ms 7 * * * 8 * * * 9 atl-bb1-link.ip.twelve99.net (62.115.137.54) 58.204 ms * * 10 rest-bb1-link.ip.twelve99.net (62.115.138.70) 74.130 ms 74.762 ms 79.803 ms 11 prs-bb2-link.ip.twelve99.net (62.115.122.158) 157.189 ms 157.707 ms * 12 * prs-b3-link.ip.twelve99.net (62.115.118.63) 143.717 ms 143.532 ms 13 amazon-svc077640-lag003862.c.telia.net (62.115.42.51) 146.375 ms 141.816 ms amazon-svc077642-lag003863.c.telia.net (62.115.42.69) 140.521 ms 14 52.46.95.88 (52.46.95.88) 145.913 ms 140.459 ms 52.46.95.134 (52.46.95.134) 145.675 ms 15 52.93.16.49 (52.93.16.49) 146.838 ms 52.93.16.79 (52.93.16.79) 142.931 ms 52.93.16.33 (52.93.16.33) 146.589 ms 16 * * * 17 52.95.61.160 (52.95.61.160) 148.144 ms 54.239.101.66 (54.239.101.66) 147.942 ms 52.95.61.110 (52.95.61.110) 147.719 ms 18 52.94.35.41 (52.94.35.41) 143.579 ms 52.94.35.79 (52.94.35.79) 148.665 ms 52.94.35.65 (52.94.35.65) 146.290 ms 19 52.94.35.12 (52.94.35.12) 151.961 ms 52.94.35.56 (52.94.35.56) 151.330 ms 52.94.35.74 (52.94.35.74) 150.211 ms 20 15.230.158.89 (15.230.158.89) 150.601 ms 15.230.158.95 (15.230.158.95) 149.217 ms 52.94.33.145 (52.94.33.145) 158.301 ms 21 15.230.158.48 (15.230.158.48) 158.720 ms 15.230.158.72 (15.230.158.72) 158.486 ms 15.230.158.50 (15.230.158.50) 157.656 ms 22 * * * 23 * * * 24 * * * 25 * * * 26 * * * 27 * * * 28 * * * 29 * * * 30 * * * [root@bunny conf]# whois 18.130.241.218 [Querying whois.arin.net] [whois.arin.net] # # ARIN WHOIS data and services are subject to the Terms of Use # available at: https://www.arin.net/resources/registry/whois/tou/ # # If you see inaccuracies in the results, please report at # https://www.arin.net/resources/registry/whois/inaccuracy_reporting/ # # Copyright 1997-2022, American Registry for Internet Numbers, Ltd. # # start NetRange: 18.32.0.0 - 18.255.255.255 CIDR: 18.128.0.0/9, 18.32.0.0/11, 18.64.0.0/10 NetName: AT-88-Z NetHandle: NET-18-32-0-0-1 Parent: NET18 (NET-18-0-0-0-0) NetType: Direct Allocation OriginAS: Organization: Amazon Technologies Inc. (AT-88-Z) RegDate: 2019-10-07 Updated: 2021-02-10 Ref: https://rdap.arin.net/registry/ip/18.32.0.0 OrgName: Amazon Technologies Inc. OrgId: AT-88-Z Address: 410 Terry Ave N. City: Seattle StateProv: WA PostalCode: 98109 Country: US RegDate: 2011-12-08 Updated: 2021-07-28 Comment: All abuse reports MUST include: Comment: * src IP Comment: * dest IP (your IP) Comment: * dest port Comment: * Accurate date/timestamp and timezone of activity Comment: * Intensity/frequency (short log extracts) Comment: * Your contact details (phone and email) Without these we will be unable to identify the correct owner of the IP address at that point in time. Ref: https://rdap.arin.net/registry/entity/AT-88-Z OrgRoutingHandle: ARMP-ARIN OrgRoutingName: AWS RPKI Management POC OrgRoutingPhone: +1-206-266-4064 OrgRoutingEmail: aws-rpki-routing-poc@amazon.com OrgRoutingRef: https://rdap.arin.net/registry/entity/ARMP-ARIN OrgRoutingHandle: IPROU3-ARIN OrgRoutingName: IP Routing OrgRoutingPhone: +1-206-266-4064 OrgRoutingEmail: aws-routing-poc@amazon.com OrgRoutingRef: https://rdap.arin.net/registry/entity/IPROU3-ARIN OrgAbuseHandle: AEA8-ARIN OrgAbuseName: Amazon EC2 Abuse OrgAbusePhone: +1-206-266-4064 OrgAbuseEmail: abuse@amazonaws.com OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN OrgNOCHandle: AANO1-ARIN OrgNOCName: Amazon AWS Network Operations OrgNOCPhone: +1-206-266-4064 OrgNOCEmail: amzn-noc-contact@amazon.com OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN OrgTechHandle: ANO24-ARIN OrgTechName: Amazon EC2 Network Operations OrgTechPhone: +1-206-266-4064 OrgTechEmail: amzn-noc-contact@amazon.com OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN # end # start NetRange: 18.130.0.0 - 18.130.255.255 CIDR: 18.130.0.0/16 NetName: AMAZON-LHR NetHandle: NET-18-130-0-0-2 Parent: AT-88-Z (NET-18-32-0-0-1) NetType: Reallocated OriginAS: AS16509 Organization: Amazon Data Services UK (ADSU) RegDate: 2018-02-22 Updated: 2021-02-10 Ref: https://rdap.arin.net/registry/ip/18.130.0.0 OrgName: Amazon Data Services UK OrgId: ADSU Address: Amazon Development Centre London Address: Leadenhall Court Address: One Leadenhall Street City: London StateProv: PostalCode: EC3V 1PP Country: GB RegDate: 2016-12-14 Updated: 2019-08-02 Ref: https://rdap.arin.net/registry/entity/ADSU OrgNOCHandle: AANO1-ARIN OrgNOCName: Amazon AWS Network Operations OrgNOCPhone: +1-206-266-4064 OrgNOCEmail: amzn-noc-contact@amazon.com OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN OrgAbuseHandle: AEA8-ARIN OrgAbuseName: Amazon EC2 Abuse OrgAbusePhone: +1-206-266-4064 OrgAbuseEmail: abuse@amazonaws.com OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN OrgTechHandle: ANO24-ARIN OrgTechName: Amazon EC2 Network Operations OrgTechPhone: +1-206-266-4064 OrgTechEmail: amzn-noc-contact@amazon.com OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN # end DNS FLOODING DETECTED FROM [root@bunny org]# whois 117.78.12.132 [Querying whois.apnic.net] [whois.apnic.net] % [whois.apnic.net] % Whois data copyright terms http://www.apnic.net/db/dbcopyright.html % Information related to '117.78.0.0 - 117.78.63.255' % Abuse contact for '117.78.0.0 - 117.78.63.255' is 'ipas@cnnic.cn' inetnum: 117.78.0.0 - 117.78.63.255 netname: HWCSNET descr: Huawei Public Cloud Service (Huawei Software Technologies Ltd.Co) descr: No.2018 Xuegang Road,Bantian street,Longgang District, descr: Shenzhen,Guangdong Province, 518129 P.R.China country: CN admin-c: LL3172-AP tech-c: GX1759-AP abuse-c: AC1601-AP status: ALLOCATED PORTABLE mnt-by: MAINT-CNNIC-AP mnt-lower: MAINT-CNNIC-AP mnt-routes: MAINT-CNNIC-AP mnt-irt: IRT-CNNIC-CN last-modified: 2022-04-18T05:39:49Z source: APNIC irt: IRT-CNNIC-CN address: Beijing, China e-mail: ipas@cnnic.cn abuse-mailbox: ipas@cnnic.cn admin-c: IP50-AP tech-c: IP50-AP auth: # Filtered remarks: Please note that CNNIC is not an ISP and is not remarks: empowered to investigate complaints of network abuse. remarks: Please contact the tech-c or admin-c of the network. mnt-by: MAINT-CNNIC-AP last-modified: 2021-06-16T01:39:57Z source: APNIC role: ABUSE CNNICCN address: Beijing, China country: ZZ phone: +000000000 e-mail: ipas@cnnic.cn admin-c: IP50-AP tech-c: IP50-AP nic-hdl: AC1601-AP remarks: Generated from irt object IRT-CNNIC-CN abuse-mailbox: ipas@cnnic.cn mnt-by: APNIC-ABUSE last-modified: 2020-05-14T11:19:01Z source: APNIC person: Gui xiaowei address: HUAWEI CLOUD Data Center, Jiaoxinggong Road, Qianzhong Avenue, Gui'an New District, Guizhou Province country: CN phone: +86-18566251984 e-mail: guixiaowei@huawei.com nic-hdl: GX1759-AP mnt-by: MAINT-CNNIC-AP last-modified: 2022-04-18T05:32:41Z source: APNIC person: Liu Liqun address: HUAWEI CLOUD Data Center, Jiaoxinggong Road, Qianzhong Avenue, Gui'an New District, Guizhou Province country: CN phone: +86-13360099887 e-mail: liuliqun2@huawei.com nic-hdl: LL3172-AP mnt-by: MAINT-CNNIC-AP last-modified: 2022-04-18T05:33:15Z source: APNIC % Information related to '117.78.0.0/17AS4837' route: 117.78.0.0/17 descr: CNC Group CHINA169 Sichuan Province Network descr: Addresses from CNNIC(TimeNet) country: CN origin: AS4837 mnt-by: MAINT-CNCGROUP-RR last-modified: 2008-09-04T07:55:08Z source: APNIC % This query was served by the APNIC Whois Service version 1.88.16 (WHOIS-US4) ### Jun 2 17:32:46 bunny kernel: AFA04 DEFENSE BANPERM SRC=192.241.222.122 DST=OUR_SERVER2 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=54321 PROTO=TCP SPT=58008 DPT=7574 WINDOW=65535 RES=0x00 SYN URGP=0 Jun 2 17:32:49 bunny kernel: AFA04 Syncatch SRC=192.241.213.176 DST=OUR_SERVER2 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=54321 PROTO=TCP SPT=52816 DPT=1337 WINDOW=65535 RES=0x00 SYN URGP=0 5 * * * 6 * * * 7 * * DIGITAL-OCE.edge9.SanJose1.Level3.net (4.71.117.218) 73.982 ms [root@bunny org]# whois 192.241.213.176 [Querying whois.arin.net] [whois.arin.net] # # ARIN WHOIS data and services are subject to the Terms of Use # available at: https://www.arin.net/resources/registry/whois/tou/ # # If you see inaccuracies in the results, please report at # https://www.arin.net/resources/registry/whois/inaccuracy_reporting/ # # Copyright 1997-2022, American Registry for Internet Numbers, Ltd. # NetRange: 192.241.128.0 - 192.241.255.255 CIDR: 192.241.128.0/17 NetName: DIGITALOCEAN-192-241-128-0 NetHandle: NET-192-241-128-0-1 Parent: NET192 (NET-192-0-0-0-0) NetType: Direct Allocation OriginAS: AS14061 Organization: DigitalOcean, LLC (DO-13) RegDate: 2013-06-10 Updated: 2020-04-03 Comment: Routing and Peering Policy can be found at https://www.as14061.net Comment: Comment: Please submit abuse reports at https://www.digitalocean.com/company/contact/#abuse Ref: https://rdap.arin.net/registry/ip/192.241.128.0 OrgName: DigitalOcean, LLC OrgId: DO-13 Address: 101 Ave of the Americas Address: FL2 City: New York StateProv: NY PostalCode: 10013 Country: US RegDate: 2012-05-14 Updated: 2022-05-19 Ref: https://rdap.arin.net/registry/entity/DO-13 OrgTechHandle: NOC32014-ARIN OrgTechName: Network Operations Center OrgTechPhone: +1-347-875-6044 OrgTechEmail: noc@digitalocean.com OrgTechRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN OrgAbuseHandle: ABUSE5232-ARIN OrgAbuseName: Abuse, DigitalOcean OrgAbusePhone: +1-347-875-6044 OrgAbuseEmail: abuse@digitalocean.com OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE5232-ARIN OrgNOCHandle: NOC32014-ARIN OrgNOCName: Network Operations Center OrgNOCPhone: +1-347-875-6044 OrgNOCEmail: noc@digitalocean.com OrgNOCRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN # # ARIN WHOIS data and services are subject to the Terms of Use # available at: https://www.arin.net/resources/registry/whois/tou/ # # If you see inaccuracies in the results, please report at # https://www.arin.net/resources/registry/whois/inaccuracy_reporting/ # # Copyright 1997-2022, American Registry for Internet Numbers, Ltd. #