13.48.6.8 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
13.48.6.121	attackbots	SSH/22 MH Probe, BF, Hack -	2019-07-29 23:25:29

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.48.6.8
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39767
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;13.48.6.8.			IN	A

;; AUTHORITY SECTION:
.			266	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022000 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 20 20:53:01 CST 2022
;; MSG SIZE  rcvd: 102

Host info

8.6.48.13.in-addr.arpa domain name pointer ec2-13-48-6-8.eu-north-1.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
8.6.48.13.in-addr.arpa	name = ec2-13-48-6-8.eu-north-1.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
112.85.42.194	attack	Aug 2 01:28:12 dcd-gentoo sshd[11550]: User root from 112.85.42.194 not allowed because none of user's groups are listed in AllowGroups Aug 2 01:28:12 dcd-gentoo sshd[11550]: User root from 112.85.42.194 not allowed because none of user's groups are listed in AllowGroups Aug 2 01:28:15 dcd-gentoo sshd[11550]: error: PAM: Authentication failure for illegal user root from 112.85.42.194 Aug 2 01:28:12 dcd-gentoo sshd[11550]: User root from 112.85.42.194 not allowed because none of user's groups are listed in AllowGroups Aug 2 01:28:15 dcd-gentoo sshd[11550]: error: PAM: Authentication failure for illegal user root from 112.85.42.194 Aug 2 01:28:15 dcd-gentoo sshd[11550]: Failed keyboard-interactive/pam for invalid user root from 112.85.42.194 port 12017 ssh2 ...	2019-08-02 07:35:04
104.248.8.60	attackspam	2019-08-01T23:27:59.477926abusebot-6.cloudsearch.cf sshd\[24337\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.8.60 user=root	2019-08-02 07:41:56
61.179.186.72	attack	WordPress XMLRPC scan :: 61.179.186.72 0.244 BYPASS [02/Aug/2019:09:27:47 1000] www.[censored_1] "POST /xmlrpc.php HTTP/1.1" 200 382 "https://www.[censored_1]/" "PHP/5.3.52"	2019-08-02 07:50:29
178.128.110.123	attackspambots	Aug 1 21:58:36 sshgateway sshd\[30449\]: Invalid user tess from 178.128.110.123 Aug 1 21:58:36 sshgateway sshd\[30449\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.110.123 Aug 1 21:58:38 sshgateway sshd\[30449\]: Failed password for invalid user tess from 178.128.110.123 port 41686 ssh2	2019-08-02 07:07:06
62.4.13.108	attack	Aug 1 18:17:34 aat-srv002 sshd[24483]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.4.13.108 Aug 1 18:17:36 aat-srv002 sshd[24483]: Failed password for invalid user fluffy from 62.4.13.108 port 59450 ssh2 Aug 1 18:22:10 aat-srv002 sshd[24605]: Failed password for root from 62.4.13.108 port 56828 ssh2 ...	2019-08-02 07:40:59
106.13.4.150	attackbotsspam	Automatic report - Banned IP Access	2019-08-02 07:18:30
198.84.123.188	attackspam	Aug 1 14:47:26 mxgate1 postfix/postscreen[7868]: CONNECT from [198.84.123.188]:35954 to [176.31.12.44]:25 Aug 1 14:47:26 mxgate1 postfix/dnsblog[8101]: addr 198.84.123.188 listed by domain zen.spamhaus.org as 127.0.0.3 Aug 1 14:47:26 mxgate1 postfix/postscreen[7868]: PREGREET 27 after 0.11 from [198.84.123.188]:35954: EHLO 02d6fcd4.gunlaser.co Aug 1 14:47:26 mxgate1 postfix/postscreen[7868]: DNSBL rank 2 for [198.84.123.188]:35954 Aug x@x Aug 1 14:47:26 mxgate1 postfix/postscreen[7868]: DISCONNECT [198.84.123.188]:35954 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=198.84.123.188	2019-08-02 07:20:11
49.50.66.209	attackspam	Aug 2 01:27:58 * sshd[21649]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.50.66.209 Aug 2 01:27:59 * sshd[21649]: Failed password for invalid user cisco from 49.50.66.209 port 42035 ssh2	2019-08-02 07:40:29
148.247.102.222	attackspambots	SSH Brute Force, server-1 sshd[2818]: Failed password for invalid user uftp from 148.247.102.222 port 43746 ssh2	2019-08-02 07:19:43
82.159.138.57	attackspam	Aug 2 00:28:12 localhost sshd\[28007\]: Invalid user deploy from 82.159.138.57 port 28132 Aug 2 00:28:12 localhost sshd\[28007\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.159.138.57 ...	2019-08-02 07:35:34
41.138.88.3	attackspam	Aug 2 01:23:25 localhost sshd\[9287\]: Invalid user prp13 from 41.138.88.3 Aug 2 01:23:25 localhost sshd\[9287\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.138.88.3 Aug 2 01:23:27 localhost sshd\[9287\]: Failed password for invalid user prp13 from 41.138.88.3 port 40164 ssh2 Aug 2 01:28:07 localhost sshd\[9467\]: Invalid user sensu from 41.138.88.3 Aug 2 01:28:07 localhost sshd\[9467\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.138.88.3 ...	2019-08-02 07:36:34
104.248.229.8	attack	Aug 1 14:27:04 srv1 sshd[32597]: Invalid user frida from 104.248.229.8 Aug 1 14:27:04 srv1 sshd[32597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.229.8 Aug 1 14:27:06 srv1 sshd[32597]: Failed password for invalid user frida from 104.248.229.8 port 43890 ssh2 Aug 1 14:27:06 srv1 sshd[32597]: Received disconnect from 104.248.229.8: 11: Bye Bye [preauth] Aug 1 14:36:52 srv1 sshd[1184]: Invalid user joseph from 104.248.229.8 Aug 1 14:36:52 srv1 sshd[1184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.229.8 Aug 1 14:36:54 srv1 sshd[1184]: Failed password for invalid user joseph from 104.248.229.8 port 55354 ssh2 Aug 1 14:36:54 srv1 sshd[1184]: Received disconnect from 104.248.229.8: 11: Bye Bye [preauth] Aug 1 14:41:01 srv1 sshd[1637]: Invalid user akbar from 104.248.229.8 Aug 1 14:41:01 srv1 sshd[1637]: pam_unix(sshd:auth): authentication failure; logname= ui........ -------------------------------	2019-08-02 07:27:02
159.65.88.161	attackspambots	Aug 2 01:32:28 mout sshd[10393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.88.161 Aug 2 01:32:28 mout sshd[10393]: Invalid user mrdrum from 159.65.88.161 port 24441 Aug 2 01:32:29 mout sshd[10393]: Failed password for invalid user mrdrum from 159.65.88.161 port 24441 ssh2	2019-08-02 07:33:13
129.204.39.194	attack	Aug 1 17:27:47 MK-Soft-VM6 sshd\[10114\]: Invalid user lee from 129.204.39.194 port 60836 Aug 1 17:27:47 MK-Soft-VM6 sshd\[10114\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.39.194 Aug 1 17:27:49 MK-Soft-VM6 sshd\[10114\]: Failed password for invalid user lee from 129.204.39.194 port 60836 ssh2 ...	2019-08-02 07:23:56
121.157.229.23	attackbotsspam	Aug 1 14:27:12 plusreed sshd[23693]: Invalid user rb from 121.157.229.23 ...	2019-08-02 07:08:32

Recently Reported IPs

13.48.56.100	104.21.81.78	104.21.81.80	209.232.149.78
104.21.81.84	104.21.81.9	104.21.81.90	13.56.82.144
13.57.121.244	13.57.164.43	13.57.137.3	13.56.96.221
13.57.114.58	13.57.163.10	13.57.118.115	13.57.1.96
104.21.82.109	13.57.10.182	13.56.80.174	15.133.100.174