13.250.3.121 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: Amazon Data Services Singapore

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Sep 22 17:19:12 ip-172-31-1-72 sshd\[28318\]: Invalid user djmax from 13.250.3.121 Sep 22 17:19:12 ip-172-31-1-72 sshd\[28318\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.250.3.121 Sep 22 17:19:14 ip-172-31-1-72 sshd\[28318\]: Failed password for invalid user djmax from 13.250.3.121 port 42262 ssh2 Sep 22 17:23:48 ip-172-31-1-72 sshd\[28383\]: Invalid user cav from 13.250.3.121 Sep 22 17:23:48 ip-172-31-1-72 sshd\[28383\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.250.3.121	2019-09-23 02:56:41
attackspambots	v+ssh-bruteforce	2019-09-21 00:19:59

Type

Details

Datetime

attackspam

Sep 22 17:19:12 ip-172-31-1-72 sshd\[28318\]: Invalid user djmax from 13.250.3.121
Sep 22 17:19:12 ip-172-31-1-72 sshd\[28318\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.250.3.121
Sep 22 17:19:14 ip-172-31-1-72 sshd\[28318\]: Failed password for invalid user djmax from 13.250.3.121 port 42262 ssh2
Sep 22 17:23:48 ip-172-31-1-72 sshd\[28383\]: Invalid user cav from 13.250.3.121
Sep 22 17:23:48 ip-172-31-1-72 sshd\[28383\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.250.3.121

2019-09-23 02:56:41

attackspambots

v+ssh-bruteforce

2019-09-21 00:19:59

Comments on same subnet:

IP	Type	Details	Datetime
13.250.33.153	attackspam	Invalid user nwu from 13.250.33.153 port 53562	2020-07-22 09:30:38

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.250.3.121
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44516
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;13.250.3.121.			IN	A

;; AUTHORITY SECTION:
.			463	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092000 1800 900 604800 86400

;; Query time: 130 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 21 00:19:52 CST 2019
;; MSG SIZE  rcvd: 116

Host info

121.3.250.13.in-addr.arpa domain name pointer ec2-13-250-3-121.ap-southeast-1.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
121.3.250.13.in-addr.arpa	name = ec2-13-250-3-121.ap-southeast-1.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.1.137.236	attack	$f2bV_matches	2019-11-10 22:37:49
143.208.180.212	attack	Aug 8 05:43:56 microserver sshd[32224]: Invalid user csgoserver from 143.208.180.212 port 46182 Aug 8 05:43:56 microserver sshd[32224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.208.180.212 Aug 8 05:43:58 microserver sshd[32224]: Failed password for invalid user csgoserver from 143.208.180.212 port 46182 ssh2 Aug 8 05:48:33 microserver sshd[32867]: Invalid user cleopatra from 143.208.180.212 port 41692 Aug 8 05:48:33 microserver sshd[32867]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.208.180.212 Aug 8 06:02:05 microserver sshd[34823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.208.180.212 user=root Aug 8 06:02:06 microserver sshd[34823]: Failed password for root from 143.208.180.212 port 55846 ssh2 Aug 8 06:06:43 microserver sshd[35471]: Invalid user wget from 143.208.180.212 port 50972 Aug 8 06:06:43 microserver sshd[35471]: pam_unix(sshd:auth): authent	2019-11-10 23:15:55
45.120.69.82	attackbotsspam	Nov 10 15:42:13 vpn01 sshd[31438]: Failed password for root from 45.120.69.82 port 40470 ssh2 ...	2019-11-10 23:19:08
222.186.175.169	attackspambots	SSH Brute Force, server-1 sshd[1898]: Failed password for root from 222.186.175.169 port 1540 ssh2	2019-11-10 22:45:40
220.134.144.96	attack	Nov 10 15:14:56 hcbbdb sshd\[27371\]: Invalid user 123456 from 220.134.144.96 Nov 10 15:14:56 hcbbdb sshd\[27371\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220-134-144-96.hinet-ip.hinet.net Nov 10 15:14:57 hcbbdb sshd\[27371\]: Failed password for invalid user 123456 from 220.134.144.96 port 40510 ssh2 Nov 10 15:18:56 hcbbdb sshd\[27790\]: Invalid user 123Control from 220.134.144.96 Nov 10 15:18:56 hcbbdb sshd\[27790\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220-134-144-96.hinet-ip.hinet.net	2019-11-10 23:20:02
111.161.41.156	attackbots	Nov 10 11:46:35 firewall sshd[26689]: Failed password for invalid user vispi from 111.161.41.156 port 35411 ssh2 Nov 10 11:51:27 firewall sshd[26871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.161.41.156 user=root Nov 10 11:51:29 firewall sshd[26871]: Failed password for root from 111.161.41.156 port 52270 ssh2 ...	2019-11-10 23:04:41
190.113.142.197	attack	Nov 10 15:51:42 vpn01 sshd[31582]: Failed password for root from 190.113.142.197 port 37266 ssh2 ...	2019-11-10 23:02:44
23.99.90.54	attackspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-11-10 22:44:57
180.168.156.212	attack	Nov 10 15:43:11 vpn01 sshd[31466]: Failed password for root from 180.168.156.212 port 10568 ssh2 ...	2019-11-10 23:07:54
150.109.34.136	attackspam	2019-11-10T14:47:18.045746abusebot-5.cloudsearch.cf sshd\[26276\]: Invalid user yixia from 150.109.34.136 port 34124	2019-11-10 22:54:41
82.79.156.58	attack	Automatic report - Port Scan Attack	2019-11-10 23:15:23
213.202.230.240	attackbotsspam	Lines containing failures of 213.202.230.240 Nov 10 11:16:45 nextcloud sshd[27785]: Invalid user lf from 213.202.230.240 port 36990 Nov 10 11:16:45 nextcloud sshd[27785]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.202.230.240 Nov 10 11:16:47 nextcloud sshd[27785]: Failed password for invalid user lf from 213.202.230.240 port 36990 ssh2 Nov 10 11:16:47 nextcloud sshd[27785]: Received disconnect from 213.202.230.240 port 36990:11: Bye Bye [preauth] Nov 10 11:16:47 nextcloud sshd[27785]: Disconnected from invalid user lf 213.202.230.240 port 36990 [preauth] Nov 10 11:22:59 nextcloud sshd[28821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.202.230.240 user=r.r Nov 10 11:23:00 nextcloud sshd[28821]: Failed password for r.r from 213.202.230.240 port 33550 ssh2 Nov 10 11:23:00 nextcloud sshd[28821]: Received disconnect from 213.202.230.240 port 33550:11: Bye Bye [preauth] Nov 10 11........ ------------------------------	2019-11-10 22:48:04
63.80.184.92	attack	2019-11-10T15:47:03.517386stark.klein-stark.info postfix/smtpd\[16097\]: NOQUEUE: reject: RCPT from trot.sapuxfiori.com\[63.80.184.92\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\ ...	2019-11-10 23:07:30
111.231.71.157	attackspambots	Nov 10 17:12:44 server sshd\[19732\]: Invalid user temp from 111.231.71.157 Nov 10 17:12:44 server sshd\[19732\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.71.157 Nov 10 17:12:46 server sshd\[19732\]: Failed password for invalid user temp from 111.231.71.157 port 49490 ssh2 Nov 10 17:47:18 server sshd\[28760\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.71.157 user=root Nov 10 17:47:20 server sshd\[28760\]: Failed password for root from 111.231.71.157 port 35080 ssh2 ...	2019-11-10 22:52:42
49.235.243.145	attack	Nov 10 12:09:47 server6 sshd[9379]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.243.145 user=r.r Nov 10 12:09:49 server6 sshd[9379]: Failed password for r.r from 49.235.243.145 port 57076 ssh2 Nov 10 12:09:50 server6 sshd[9379]: Received disconnect from 49.235.243.145: 11: Bye Bye [preauth] Nov 10 12:36:50 server6 sshd[29474]: Failed password for invalid user l from 49.235.243.145 port 36400 ssh2 Nov 10 12:36:51 server6 sshd[29474]: Received disconnect from 49.235.243.145: 11: Bye Bye [preauth] Nov 10 12:41:22 server6 sshd[992]: Failed password for invalid user eo from 49.235.243.145 port 37140 ssh2 Nov 10 12:41:22 server6 sshd[992]: Received disconnect from 49.235.243.145: 11: Bye Bye [preauth] Nov 10 12:46:10 server6 sshd[4313]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.243.145 user=r.r Nov 10 12:46:12 server6 sshd[4313]: Failed password for r.r from 49.235.243.14........ -------------------------------	2019-11-10 22:59:03

Recently Reported IPs

60.182.34.247	183.154.51.2	171.13.5.102	115.210.70.167
177.92.218.56	89.45.232.67	44.219.200.173	217.77.22.28
135.174.44.100	115.15.75.170	60.255.230.202	225.71.198.133
211.58.117.86	60.182.37.217	187.190.126.116	68.53.247.66
187.128.138.242	71.77.35.238	66.212.44.213	132.114.221.144