13.90.170.53 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Microsoft Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	SSH Brute-Forcing (server2)	2020-04-06 07:36:20

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 13.90.170.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19000
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;13.90.170.53.			IN	A

;; AUTHORITY SECTION:
.			540	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040501 1800 900 604800 86400

;; Query time: 111 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 06 07:36:17 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 53.170.90.13.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 53.170.90.13.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
128.199.143.89	attackbotsspam	$f2bV_matches	2020-09-11 00:10:47
178.32.205.2	attack	2020-09-10T11:25:26.791160shield sshd\[24371\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.32.205.2 user=root 2020-09-10T11:25:29.096375shield sshd\[24371\]: Failed password for root from 178.32.205.2 port 57508 ssh2 2020-09-10T11:30:08.699045shield sshd\[25869\]: Invalid user user1 from 178.32.205.2 port 60996 2020-09-10T11:30:08.707476shield sshd\[25869\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.32.205.2 2020-09-10T11:30:10.726579shield sshd\[25869\]: Failed password for invalid user user1 from 178.32.205.2 port 60996 ssh2	2020-09-10 23:54:07
185.220.102.245	attack	Sep 10 17:01:12 vps sshd[5033]: Failed password for root from 185.220.102.245 port 21600 ssh2 Sep 10 17:01:15 vps sshd[5033]: Failed password for root from 185.220.102.245 port 21600 ssh2 Sep 10 17:01:17 vps sshd[5033]: Failed password for root from 185.220.102.245 port 21600 ssh2 Sep 10 17:01:19 vps sshd[5033]: Failed password for root from 185.220.102.245 port 21600 ssh2 ...	2020-09-11 00:27:28
106.12.45.110	attackbots	Sep 10 10:17:48 vps46666688 sshd[19570]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.45.110 Sep 10 10:17:49 vps46666688 sshd[19570]: Failed password for invalid user gentry from 106.12.45.110 port 58934 ssh2 ...	2020-09-10 23:56:32
138.68.67.96	attack	Sep 10 10:37:39 PorscheCustomer sshd[6691]: Failed password for root from 138.68.67.96 port 40782 ssh2 Sep 10 10:40:15 PorscheCustomer sshd[6708]: Failed password for root from 138.68.67.96 port 56292 ssh2 ...	2020-09-11 00:12:12
154.0.165.27	attackbots	154.0.165.27 - - \[09/Sep/2020:18:53:09 +0200\] "POST /wp-login.php HTTP/1.0" 200 9529 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 154.0.165.27 - - \[09/Sep/2020:18:53:21 +0200\] "POST /wp-login.php HTTP/1.0" 200 9453 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 154.0.165.27 - - \[09/Sep/2020:18:53:27 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 855 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-09-11 00:02:51
194.61.24.177	attackbotsspam	TCP (SYN) 194.61.24.177:32894 -> port 22, len 52	2020-09-11 00:16:23
196.41.122.94	attackbotsspam	196.41.122.94 - - [10/Sep/2020:15:41:27 +0100] "POST /wp-login.php HTTP/1.1" 200 1874 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 196.41.122.94 - - [10/Sep/2020:15:41:28 +0100] "POST /wp-login.php HTTP/1.1" 200 1858 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 196.41.122.94 - - [10/Sep/2020:15:41:29 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-10 23:59:31
200.58.179.160	attackspambots	Sep 9 23:20:24 gw1 sshd[5761]: Failed password for root from 200.58.179.160 port 55360 ssh2 Sep 9 23:22:47 gw1 sshd[5794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.58.179.160 ...	2020-09-11 00:25:20
217.229.25.241	attack	Chat Spam	2020-09-11 00:00:19
131.117.150.106	attackspam	Invalid user ruud from 131.117.150.106 port 56522	2020-09-11 00:12:33
85.209.0.252	attackbotsspam	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-09-10T16:29:26Z	2020-09-11 00:33:25
68.170.67.122	attack	invalid user	2020-09-11 00:19:27
222.186.173.142	attack	Sep 10 16:51:32 rocket sshd[29158]: Failed password for root from 222.186.173.142 port 64150 ssh2 Sep 10 16:51:36 rocket sshd[29158]: Failed password for root from 222.186.173.142 port 64150 ssh2 Sep 10 16:51:39 rocket sshd[29158]: Failed password for root from 222.186.173.142 port 64150 ssh2 ...	2020-09-10 23:52:43
112.85.42.94	attack	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-09-10T16:04:27Z	2020-09-11 00:17:07

Recently Reported IPs

172.105.37.14	156.213.17.32	171.103.45.90	3.20.46.235
183.89.237.109	66.163.186.148	88.218.212.158	14.169.181.79
94.130.237.96	103.254.119.72	139.178.88.75	218.255.3.240
2.58.12.37	152.136.190.55	51.81.112.188	200.56.43.208
45.126.74.195	69.25.58.61	164.168.121.164	51.15.4.108