13.48.6.121 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Amazon Data Services Sweden

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	SSH/22 MH Probe, BF, Hack -	2019-07-29 23:25:29

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.48.6.121
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6276
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;13.48.6.121.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072900 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 29 23:25:18 CST 2019
;; MSG SIZE  rcvd: 115

Host info

121.6.48.13.in-addr.arpa domain name pointer ec2-13-48-6-121.eu-north-1.compute.amazonaws.com.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
121.6.48.13.in-addr.arpa	name = ec2-13-48-6-121.eu-north-1.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.5.137	attackspam	Failed password for invalid user bob from 106.12.5.137 port 38878 ssh2	2020-07-30 00:28:14
182.75.187.210	attackspambots	20/7/29@08:09:58: FAIL: Alarm-Network address from=182.75.187.210 ...	2020-07-30 00:43:06
46.229.168.140	attackspambots	Automatic report - Banned IP Access	2020-07-30 00:54:09
49.233.180.123	attack	Jul 29 16:19:56 minden010 sshd[22104]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.180.123 Jul 29 16:19:58 minden010 sshd[22104]: Failed password for invalid user zyhu from 49.233.180.123 port 43442 ssh2 Jul 29 16:23:58 minden010 sshd[23249]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.180.123 ...	2020-07-30 00:23:13
14.187.244.106	attack	belitungshipwreck.org 14.187.244.106 [29/Jul/2020:14:09:49 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4304 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" belitungshipwreck.org 14.187.244.106 [29/Jul/2020:14:09:53 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4304 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36"	2020-07-30 00:50:28
212.70.149.51	attackbotsspam	Jul 29 18:49:31 relay postfix/smtpd\[22786\]: warning: unknown\[212.70.149.51\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 29 18:49:44 relay postfix/smtpd\[22887\]: warning: unknown\[212.70.149.51\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 29 18:49:59 relay postfix/smtpd\[22786\]: warning: unknown\[212.70.149.51\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 29 18:50:11 relay postfix/smtpd\[29567\]: warning: unknown\[212.70.149.51\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 29 18:50:26 relay postfix/smtpd\[22786\]: warning: unknown\[212.70.149.51\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-30 00:50:53
167.172.163.162	attack	Jul 29 15:24:03 XXXXXX sshd[2177]: Invalid user kumud from 167.172.163.162 port 41168	2020-07-30 00:52:33
181.52.249.213	attack	prod6 ...	2020-07-30 01:01:41
139.59.32.156	attack	Jul 29 16:33:49 hidden sshd[38444]: Failed password for invalid user lixiangpeng from 139.59.32.156 port 38066 ssh2 Jul 29 16:38:30 hidden sshd[49726]: Invalid user yuchen from 139.59.32.156 port 39184 Jul 29 16:38:31 hidden sshd[49726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.32.156 Jul 29 16:38:33 hidden sshd[49726]: Failed password for invalid user yuchen from 139.59.32.156 port 39184 ssh2 Jul 29 16:41:14 hidden sshd[56187]: Invalid user zhanghuimin from 139.59.32.156 port 46468	2020-07-30 00:22:07
218.75.77.92	attack	Jul 29 18:43:56 vps sshd[131387]: Failed password for invalid user test1 from 218.75.77.92 port 64452 ssh2 Jul 29 18:47:45 vps sshd[148864]: Invalid user mayunshan from 218.75.77.92 port 19245 Jul 29 18:47:45 vps sshd[148864]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.75.77.92 Jul 29 18:47:47 vps sshd[148864]: Failed password for invalid user mayunshan from 218.75.77.92 port 19245 ssh2 Jul 29 18:51:43 vps sshd[166698]: Invalid user xianxinfeng from 218.75.77.92 port 38527 ...	2020-07-30 00:51:45
185.232.30.130	attackspam	07/29/2020-12:12:02.234541 185.232.30.130 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-07-30 00:25:00
220.158.148.132	attack	Jul 29 15:12:58 minden010 sshd[2976]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.158.148.132 Jul 29 15:13:00 minden010 sshd[2976]: Failed password for invalid user mujing from 220.158.148.132 port 52864 ssh2 Jul 29 15:16:45 minden010 sshd[3478]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.158.148.132 ...	2020-07-30 00:52:11
49.233.24.148	attackbots	Jul 29 06:53:53 dignus sshd[26387]: Failed password for invalid user tiantian from 49.233.24.148 port 56208 ssh2 Jul 29 06:56:45 dignus sshd[26715]: Invalid user mjj from 49.233.24.148 port 59088 Jul 29 06:56:45 dignus sshd[26715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.24.148 Jul 29 06:56:48 dignus sshd[26715]: Failed password for invalid user mjj from 49.233.24.148 port 59088 ssh2 Jul 29 06:59:42 dignus sshd[27038]: Invalid user hongli from 49.233.24.148 port 33734 ...	2020-07-30 00:46:10
175.169.193.217	attack	2020-07-29T08:06:09.821693vps2034 sshd[4548]: Invalid user fionay from 175.169.193.217 port 52684 2020-07-29T08:06:09.827231vps2034 sshd[4548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.169.193.217 2020-07-29T08:06:09.821693vps2034 sshd[4548]: Invalid user fionay from 175.169.193.217 port 52684 2020-07-29T08:06:11.593555vps2034 sshd[4548]: Failed password for invalid user fionay from 175.169.193.217 port 52684 ssh2 2020-07-29T08:09:41.081815vps2034 sshd[13293]: Invalid user zhoucb from 175.169.193.217 port 60008 ...	2020-07-30 01:03:03
160.16.147.188	attackspambots	160.16.147.188 - - [29/Jul/2020:14:38:31 +0200] "GET /wp-login.php HTTP/1.1" 200 5738 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 160.16.147.188 - - [29/Jul/2020:14:38:33 +0200] "POST /wp-login.php HTTP/1.1" 200 5989 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 160.16.147.188 - - [29/Jul/2020:14:38:35 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-07-30 00:26:21

Recently Reported IPs

118.167.154.47	179.187.84.228	5.180.78.233	2400:6180:0:d1::7e8:b001
73.202.47.7	73.222.111.213	138.186.198.157	115.56.159.129
218.239.107.165	81.161.29.8	191.252.185.156	117.243.100.223
150.246.202.27	91.209.54.205	81.161.249.8	129.21.149.97
124.121.14.12	2402:1980:24f:448b:b88b:6664:46d4:e55d	152.250.234.4	198.46.81.19