City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.213.102.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57939
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;13.213.102.242. IN A
;; AUTHORITY SECTION:
. 289 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400
;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 11:07:30 CST 2022
;; MSG SIZE rcvd: 107242.102.213.13.in-addr.arpa domain name pointer ec2-13-213-102-242.ap-southeast-1.compute.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
242.102.213.13.in-addr.arpa name = ec2-13-213-102-242.ap-southeast-1.compute.amazonaws.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 112.35.24.155 | attack | (sshd) Failed SSH login from 112.35.24.155 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Sep 14 07:26:27 host sshd[73822]: Invalid user wiki from 112.35.24.155 port 56168 |
2019-09-14 23:44:31 |
| 138.68.87.0 | attack | Sep 14 15:13:12 hb sshd\[21126\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.87.0 user=daemon Sep 14 15:13:13 hb sshd\[21126\]: Failed password for daemon from 138.68.87.0 port 38856 ssh2 Sep 14 15:20:28 hb sshd\[21749\]: Invalid user user from 138.68.87.0 Sep 14 15:20:28 hb sshd\[21749\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.87.0 Sep 14 15:20:29 hb sshd\[21749\]: Failed password for invalid user user from 138.68.87.0 port 60287 ssh2 |
2019-09-14 23:20:48 |
| 106.12.131.5 | attackspambots | [ssh] SSH attack |
2019-09-15 00:02:11 |
| 212.3.148.52 | attackspambots | [portscan] Port scan |
2019-09-14 23:02:45 |
| 221.127.3.98 | attack | Sep 14 01:44:54 dallas01 sshd[19016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.127.3.98 Sep 14 01:44:54 dallas01 sshd[19018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.127.3.98 Sep 14 01:44:56 dallas01 sshd[19016]: Failed password for invalid user pi from 221.127.3.98 port 47928 ssh2 |
2019-09-14 23:25:18 |
| 104.45.11.126 | attackspam | Unauthorized SSH login attempts |
2019-09-14 23:57:31 |
| 159.203.141.208 | attackbots | Sep 14 14:11:55 XXX sshd[32744]: Invalid user nj from 159.203.141.208 port 35878 |
2019-09-14 23:05:09 |
| 51.77.192.132 | attack | Sep 14 02:20:39 friendsofhawaii sshd\[3199\]: Invalid user vinod from 51.77.192.132 Sep 14 02:20:39 friendsofhawaii sshd\[3199\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.ip-51-77-192.eu Sep 14 02:20:41 friendsofhawaii sshd\[3199\]: Failed password for invalid user vinod from 51.77.192.132 port 45610 ssh2 Sep 14 02:24:53 friendsofhawaii sshd\[3576\]: Invalid user semenov from 51.77.192.132 Sep 14 02:24:53 friendsofhawaii sshd\[3576\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.ip-51-77-192.eu |
2019-09-14 23:41:06 |
| 103.72.216.194 | attack | Sent mail to target address hacked/leaked from abandonia in 2016 |
2019-09-15 00:05:59 |
| 45.55.231.94 | attack | Sep 14 10:10:10 Tower sshd[15279]: Connection from 45.55.231.94 port 44028 on 192.168.10.220 port 22 Sep 14 10:10:11 Tower sshd[15279]: Invalid user andy from 45.55.231.94 port 44028 Sep 14 10:10:11 Tower sshd[15279]: error: Could not get shadow information for NOUSER Sep 14 10:10:11 Tower sshd[15279]: Failed password for invalid user andy from 45.55.231.94 port 44028 ssh2 Sep 14 10:10:11 Tower sshd[15279]: Received disconnect from 45.55.231.94 port 44028:11: Bye Bye [preauth] Sep 14 10:10:11 Tower sshd[15279]: Disconnected from invalid user andy 45.55.231.94 port 44028 [preauth] |
2019-09-14 23:45:07 |
| 35.187.102.173 | attackspambots | DATE:2019-09-14 13:46:53, IP:35.187.102.173, PORT:ssh SSH brute force auth (thor) |
2019-09-14 23:59:38 |
| 37.187.114.135 | attack | Sep 14 17:21:42 SilenceServices sshd[23954]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.114.135 Sep 14 17:21:44 SilenceServices sshd[23954]: Failed password for invalid user postgres from 37.187.114.135 port 57700 ssh2 Sep 14 17:26:07 SilenceServices sshd[25626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.114.135 |
2019-09-14 23:32:23 |
| 60.11.113.212 | attackspambots | Sep 14 01:51:02 friendsofhawaii sshd\[434\]: Invalid user openerp from 60.11.113.212 Sep 14 01:51:02 friendsofhawaii sshd\[434\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.11.113.212 Sep 14 01:51:04 friendsofhawaii sshd\[434\]: Failed password for invalid user openerp from 60.11.113.212 port 13733 ssh2 Sep 14 01:56:17 friendsofhawaii sshd\[952\]: Invalid user test from 60.11.113.212 Sep 14 01:56:17 friendsofhawaii sshd\[952\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.11.113.212 |
2019-09-14 23:15:35 |
| 193.188.22.12 | attackspambots | 2019-09-14T15:23:59.998291abusebot-5.cloudsearch.cf sshd\[18115\]: Invalid user guest from 193.188.22.12 port 44179 |
2019-09-14 23:48:46 |
| 84.56.164.37 | attackspambots | Sep 14 11:41:32 taivassalofi sshd[20192]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.56.164.37 Sep 14 11:41:34 taivassalofi sshd[20192]: Failed password for invalid user nagios from 84.56.164.37 port 19667 ssh2 ... |
2019-09-14 23:11:43 |