18.221.13.11 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Amazon Technologies Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	SASL LOGIN authentication failed: authentication failure	2019-08-05 15:36:31

Comments on same subnet:

IP	Type	Details	Datetime
18.221.138.159	attackspam	fraudulent SSH attempt	2019-08-27 07:36:08
18.221.138.159	attackspam	SSH/22 MH Probe, BF, Hack -	2019-08-25 08:38:22

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 18.221.13.11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28339
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;18.221.13.11.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080501 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Aug 05 15:36:17 CST 2019
;; MSG SIZE  rcvd: 116

Host info

11.13.221.18.in-addr.arpa domain name pointer ec2-18-221-13-11.us-east-2.compute.amazonaws.com.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
11.13.221.18.in-addr.arpa	name = ec2-18-221-13-11.us-east-2.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
36.7.80.168	attack	TCP (SYN) 36.7.80.168:50807 -> port 16852, len 44	2020-10-01 00:25:56
51.79.35.114	attack	56057/udp 57261/udp 56259/udp... [2020-09-08/30]1349pkt,176pt.(udp)	2020-10-01 00:18:27
103.253.145.89	attackspam	2020-09-30T18:01:06.786544ks3355764 sshd[15550]: Failed password for root from 103.253.145.89 port 56834 ssh2 2020-09-30T18:05:10.921620ks3355764 sshd[15581]: Invalid user sistema from 103.253.145.89 port 59584 ...	2020-10-01 00:08:09
117.107.213.246	attack	Brute-force attempt banned	2020-10-01 00:33:50
122.51.37.26	attackspam	2020-09-30T11:05:46.643890yoshi.linuxbox.ninja sshd[315447]: Invalid user PclmSpIp from 122.51.37.26 port 55416 2020-09-30T11:05:49.353402yoshi.linuxbox.ninja sshd[315447]: Failed password for invalid user PclmSpIp from 122.51.37.26 port 55416 ssh2 2020-09-30T11:09:08.837338yoshi.linuxbox.ninja sshd[317608]: Invalid user cvs from 122.51.37.26 port 34198 ...	2020-10-01 00:34:39
119.29.116.2	attackbots	Sep 30 03:46:45 php1 sshd\[1070\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.116.2 user=root Sep 30 03:46:47 php1 sshd\[1070\]: Failed password for root from 119.29.116.2 port 33088 ssh2 Sep 30 03:51:38 php1 sshd\[1461\]: Invalid user shan from 119.29.116.2 Sep 30 03:51:38 php1 sshd\[1461\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.116.2 Sep 30 03:51:41 php1 sshd\[1461\]: Failed password for invalid user shan from 119.29.116.2 port 58484 ssh2	2020-10-01 00:04:32
157.230.163.6	attackbots	Sep 30 17:18:33 inter-technics sshd[27105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.163.6 user=root Sep 30 17:18:35 inter-technics sshd[27105]: Failed password for root from 157.230.163.6 port 34460 ssh2 Sep 30 17:21:57 inter-technics sshd[27283]: Invalid user oliver from 157.230.163.6 port 52452 Sep 30 17:21:57 inter-technics sshd[27283]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.163.6 Sep 30 17:21:57 inter-technics sshd[27283]: Invalid user oliver from 157.230.163.6 port 52452 Sep 30 17:21:59 inter-technics sshd[27283]: Failed password for invalid user oliver from 157.230.163.6 port 52452 ssh2 ...	2020-10-01 00:02:17
45.129.33.123	attackbotsspam	TCP (SYN) 45.129.33.123:42708 -> port 31313, len 44	2020-10-01 00:22:10
89.38.96.13	attackbots	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-09-30T13:08:11Z and 2020-09-30T14:26:25Z	2020-10-01 00:41:47
84.242.176.138	attackspambots	[N1.H1.VM1] Port Scanner Detected Blocked by UFW	2020-10-01 00:13:22
80.82.65.90	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-10-01 00:13:44
80.82.65.74	attack	TCP (SYN) 80.82.65.74:48577 -> port 20002, len 44	2020-10-01 00:14:13
80.227.134.221	attackspambots	Invalid user frank from 80.227.134.221 port 56124	2020-10-01 00:30:58
45.65.230.151	attackspambots	Sep 29 17:36:49 firewall sshd[8152]: Invalid user admin from 45.65.230.151 Sep 29 17:36:51 firewall sshd[8152]: Failed password for invalid user admin from 45.65.230.151 port 60544 ssh2 Sep 29 17:36:54 firewall sshd[8159]: Invalid user admin from 45.65.230.151 ...	2020-10-01 00:25:13
164.132.98.75	attackspambots	Sep 30 16:30:16 ns3164893 sshd[26889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.98.75 Sep 30 16:30:18 ns3164893 sshd[26889]: Failed password for invalid user contabilidad from 164.132.98.75 port 49528 ssh2 ...	2020-10-01 00:37:15

Recently Reported IPs

81.171.75.187	45.168.31.104	223.135.173.249	45.168.30.180
40.78.103.103	58.18.144.116	39.70.80.226	37.57.3.83
58.57.193.46	36.237.196.160	51.68.198.102	36.236.36.40
93.84.120.29	91.243.191.106	77.40.8.192	59.39.204.190
37.187.30.83	36.229.251.21	115.216.155.31	70.23.95.220