City: unknown
Region: unknown
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.54.19.47
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43795
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;13.54.19.47. IN A
;; AUTHORITY SECTION:
. 232 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022022601 1800 900 604800 86400
;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 12:07:07 CST 2022
;; MSG SIZE rcvd: 10447.19.54.13.in-addr.arpa domain name pointer ec2-13-54-19-47.ap-southeast-2.compute.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
47.19.54.13.in-addr.arpa name = ec2-13-54-19-47.ap-southeast-2.compute.amazonaws.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 119.27.189.46 | attackspam | Jul 31 14:28:02 ajax sshd[8146]: Failed password for root from 119.27.189.46 port 54310 ssh2 |
2020-07-31 21:44:39 |
| 202.148.22.196 | attackspambots | ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: tcp cat: Potentially Bad Trafficbytes: 60 |
2020-07-31 21:14:59 |
| 219.151.149.33 | attack | MultiHost/MultiPort Probe, Scan, Hack - |
2020-07-31 21:15:54 |
| 187.102.47.4 | attackbotsspam | Email rejected due to spam filtering |
2020-07-31 21:30:40 |
| 143.208.135.240 | attackbotsspam | 2020-07-31T13:09:00.688253shield sshd\[23027\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.208.135.240 user=root 2020-07-31T13:09:02.909981shield sshd\[23027\]: Failed password for root from 143.208.135.240 port 36354 ssh2 2020-07-31T13:13:29.967894shield sshd\[23924\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.208.135.240 user=root 2020-07-31T13:13:32.450805shield sshd\[23924\]: Failed password for root from 143.208.135.240 port 50124 ssh2 2020-07-31T13:18:02.469684shield sshd\[24475\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.208.135.240 user=root |
2020-07-31 21:19:23 |
| 185.143.223.244 | attackspam | Jul 31 14:09:30 debian-2gb-nbg1-2 kernel: \[18455856.473147\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.143.223.244 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=61726 PROTO=TCP SPT=46592 DPT=63890 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-07-31 21:57:21 |
| 202.62.68.122 | attack | 1596197415 - 07/31/2020 14:10:15 Host: 202.62.68.122/202.62.68.122 Port: 445 TCP Blocked |
2020-07-31 21:25:38 |
| 36.90.118.44 | attack | Automatic report - Port Scan Attack |
2020-07-31 21:41:29 |
| 59.149.68.33 | attackbotsspam | Jul 31 15:10:13 fhem-rasp sshd[17434]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.68.33 user=root Jul 31 15:10:15 fhem-rasp sshd[17434]: Failed password for root from 59.149.68.33 port 34006 ssh2 ... |
2020-07-31 21:36:42 |
| 49.233.105.41 | attack | Jul 31 14:02:45 marvibiene sshd[2334]: Failed password for root from 49.233.105.41 port 46868 ssh2 |
2020-07-31 21:36:01 |
| 134.175.16.32 | attack | Jul 31 14:53:28 buvik sshd[25957]: Failed password for root from 134.175.16.32 port 57900 ssh2 Jul 31 14:59:34 buvik sshd[26682]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.16.32 user=root Jul 31 14:59:37 buvik sshd[26682]: Failed password for root from 134.175.16.32 port 37050 ssh2 ... |
2020-07-31 21:16:39 |
| 191.190.12.163 | attackspambots | Lines containing failures of 191.190.12.163 Jul 31 13:50:52 shared12 sshd[8622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.190.12.163 user=r.r Jul 31 13:50:55 shared12 sshd[8622]: Failed password for r.r from 191.190.12.163 port 34608 ssh2 Jul 31 13:50:55 shared12 sshd[8622]: Received disconnect from 191.190.12.163 port 34608:11: Bye Bye [preauth] Jul 31 13:50:55 shared12 sshd[8622]: Disconnected from authenticating user r.r 191.190.12.163 port 34608 [preauth] Jul 31 14:24:29 shared12 sshd[19218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.190.12.163 user=r.r Jul 31 14:24:31 shared12 sshd[19218]: Failed password for r.r from 191.190.12.163 port 35680 ssh2 Jul 31 14:24:33 shared12 sshd[19218]: Received disconnect from 191.190.12.163 port 35680:11: Bye Bye [preauth] Jul 31 14:24:33 shared12 sshd[19218]: Disconnected from authenticating user r.r 191.190.12.163 port 35680 [pr........ ------------------------------ |
2020-07-31 21:14:21 |
| 59.36.138.138 | attackbotsspam | (sshd) Failed SSH login from 59.36.138.138 (CN/China/138.138.36.59.broad.dg.gd.dynamic.163data.com.cn): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 31 13:48:49 amsweb01 sshd[26756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.36.138.138 user=root Jul 31 13:48:51 amsweb01 sshd[26756]: Failed password for root from 59.36.138.138 port 39492 ssh2 Jul 31 14:04:01 amsweb01 sshd[29641]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.36.138.138 user=root Jul 31 14:04:03 amsweb01 sshd[29641]: Failed password for root from 59.36.138.138 port 59128 ssh2 Jul 31 14:09:32 amsweb01 sshd[30431]: Did not receive identification string from 59.36.138.138 port 54886 |
2020-07-31 21:55:01 |
| 184.105.247.216 | attackbots | Port scan: Attack repeated for 24 hours |
2020-07-31 21:38:30 |
| 197.2.24.142 | attackbots | Fail2Ban - HTTP Auth Bruteforce Attempt |
2020-07-31 21:39:20 |