City: Singapore
Region: unknown
Country: Singapore
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 18.142.243.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24308
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;18.142.243.54. IN A
;; AUTHORITY SECTION:
. 345 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2022011101 1800 900 604800 86400
;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 12 12:34:52 CST 2022
;; MSG SIZE rcvd: 10654.243.142.18.in-addr.arpa domain name pointer ec2-18-142-243-54.ap-southeast-1.compute.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
54.243.142.18.in-addr.arpa name = ec2-18-142-243-54.ap-southeast-1.compute.amazonaws.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 185.176.27.102 | attackspambots | 03/28/2020-18:28:07.565572 185.176.27.102 Protocol: 6 ET DROP Dshield Block Listed Source group 1 |
2020-03-29 06:35:30 |
| 115.207.227.232 | attack | 20 attempts against mh-ssh on echoip |
2020-03-29 06:35:48 |
| 188.121.104.189 | attackspam | DATE:2020-03-28 22:32:48, IP:188.121.104.189, PORT:5900 VNC brute force auth on honeypot server (epe-honey1-hq) |
2020-03-29 06:14:26 |
| 94.23.63.213 | attack | Mar 28 17:58:41 plusreed sshd[27425]: Invalid user condor from 94.23.63.213 ... |
2020-03-29 06:29:41 |
| 61.19.22.217 | attack | Mar 28 22:54:43 markkoudstaal sshd[14102]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.19.22.217 Mar 28 22:54:45 markkoudstaal sshd[14102]: Failed password for invalid user liuzunpeng from 61.19.22.217 port 56248 ssh2 Mar 28 22:58:59 markkoudstaal sshd[14716]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.19.22.217 |
2020-03-29 06:10:20 |
| 181.49.211.238 | attackbots | fail2ban/Mar 28 21:27:08 h1962932 sshd[3445]: Invalid user wmw from 181.49.211.238 port 58198 Mar 28 21:27:08 h1962932 sshd[3445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.49.211.238 Mar 28 21:27:08 h1962932 sshd[3445]: Invalid user wmw from 181.49.211.238 port 58198 Mar 28 21:27:10 h1962932 sshd[3445]: Failed password for invalid user wmw from 181.49.211.238 port 58198 ssh2 Mar 28 21:36:35 h1962932 sshd[3761]: Invalid user jyv from 181.49.211.238 port 43498 |
2020-03-29 06:25:27 |
| 2.139.215.255 | attackspam | Mar 28 23:05:38 Ubuntu-1404-trusty-64-minimal sshd\[25162\]: Invalid user ubuntu from 2.139.215.255 Mar 28 23:05:38 Ubuntu-1404-trusty-64-minimal sshd\[25162\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.215.255 Mar 28 23:05:39 Ubuntu-1404-trusty-64-minimal sshd\[25162\]: Failed password for invalid user ubuntu from 2.139.215.255 port 58351 ssh2 Mar 28 23:07:33 Ubuntu-1404-trusty-64-minimal sshd\[25821\]: Invalid user user from 2.139.215.255 Mar 28 23:07:33 Ubuntu-1404-trusty-64-minimal sshd\[25821\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.215.255 |
2020-03-29 06:13:24 |
| 150.107.103.64 | attackspam | DATE:2020-03-28 22:32:49, IP:150.107.103.64, PORT:5900 VNC brute force auth on honeypot server (epe-honey1-hq) |
2020-03-29 06:13:52 |
| 92.118.38.66 | attack | Mar 28 23:16:50 relay postfix/smtpd\[18282\]: warning: unknown\[92.118.38.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 28 23:17:38 relay postfix/smtpd\[27878\]: warning: unknown\[92.118.38.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 28 23:17:50 relay postfix/smtpd\[23035\]: warning: unknown\[92.118.38.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 28 23:18:41 relay postfix/smtpd\[6941\]: warning: unknown\[92.118.38.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 28 23:18:54 relay postfix/smtpd\[21912\]: warning: unknown\[92.118.38.66\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2020-03-29 06:19:16 |
| 200.29.111.182 | attack | Mar 28 23:08:03 OPSO sshd\[26474\]: Invalid user jcv from 200.29.111.182 port 52123 Mar 28 23:08:03 OPSO sshd\[26474\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.29.111.182 Mar 28 23:08:04 OPSO sshd\[26474\]: Failed password for invalid user jcv from 200.29.111.182 port 52123 ssh2 Mar 28 23:14:17 OPSO sshd\[27685\]: Invalid user ikg from 200.29.111.182 port 57379 Mar 28 23:14:17 OPSO sshd\[27685\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.29.111.182 |
2020-03-29 06:19:39 |
| 198.245.53.242 | attack | $f2bV_matches |
2020-03-29 06:20:10 |
| 209.17.97.114 | attackbots | 8000/tcp 8080/tcp 137/udp... [2020-01-28/03-28]58pkt,13pt.(tcp),1pt.(udp) |
2020-03-29 06:33:33 |
| 125.138.129.101 | attack | DATE:2020-03-28 22:32:24, IP:125.138.129.101, PORT:5900 VNC brute force auth on honeypot server (epe-honey1-hq) |
2020-03-29 06:34:55 |
| 181.222.44.3 | attack | Mar 28 22:29:10 OPSO sshd\[17978\]: Invalid user jeff from 181.222.44.3 port 49188 Mar 28 22:29:10 OPSO sshd\[17978\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.222.44.3 Mar 28 22:29:11 OPSO sshd\[17978\]: Failed password for invalid user jeff from 181.222.44.3 port 49188 ssh2 Mar 28 22:36:20 OPSO sshd\[19453\]: Invalid user tbg from 181.222.44.3 port 32986 Mar 28 22:36:20 OPSO sshd\[19453\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.222.44.3 |
2020-03-29 06:37:24 |
| 192.241.238.14 | attackbotsspam | 9300/tcp 143/tcp 5902/tcp... [2020-03-14/28]16pkt,15pt.(tcp) |
2020-03-29 06:30:48 |