City: unknown
Region: unknown
Country: United States of America
Internet Service Provider: Amazon Technologies Inc.
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attackspambots | Mar 22 09:35:49 ns392434 sshd[5139]: Invalid user fujimoto from 52.202.2.139 port 52444 Mar 22 09:35:49 ns392434 sshd[5139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.202.2.139 Mar 22 09:35:49 ns392434 sshd[5139]: Invalid user fujimoto from 52.202.2.139 port 52444 Mar 22 09:35:51 ns392434 sshd[5139]: Failed password for invalid user fujimoto from 52.202.2.139 port 52444 ssh2 Mar 22 09:50:56 ns392434 sshd[5549]: Invalid user plp from 52.202.2.139 port 34776 Mar 22 09:50:56 ns392434 sshd[5549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.202.2.139 Mar 22 09:50:56 ns392434 sshd[5549]: Invalid user plp from 52.202.2.139 port 34776 Mar 22 09:50:58 ns392434 sshd[5549]: Failed password for invalid user plp from 52.202.2.139 port 34776 ssh2 Mar 22 10:04:30 ns392434 sshd[5952]: Invalid user sheyenne from 52.202.2.139 port 42374 |
2020-03-22 17:50:38 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.202.2.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62018
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.202.2.139. IN A
;; AUTHORITY SECTION:
. 561 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020032200 1800 900 604800 86400
;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 22 17:50:34 CST 2020
;; MSG SIZE rcvd: 116
139.2.202.52.in-addr.arpa domain name pointer ec2-52-202-2-139.compute-1.amazonaws.com.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
139.2.202.52.in-addr.arpa name = ec2-52-202-2-139.compute-1.amazonaws.com.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 114.118.91.64 | attackspam | Aug 25 12:32:10 lcdev sshd\[8027\]: Invalid user support from 114.118.91.64 Aug 25 12:32:10 lcdev sshd\[8027\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.118.91.64 Aug 25 12:32:13 lcdev sshd\[8027\]: Failed password for invalid user support from 114.118.91.64 port 57780 ssh2 Aug 25 12:36:47 lcdev sshd\[8391\]: Invalid user segreteria from 114.118.91.64 Aug 25 12:36:47 lcdev sshd\[8391\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.118.91.64 |
2019-08-26 06:38:52 |
| 45.40.204.132 | attackbotsspam | Aug 25 11:15:33 lcdev sshd\[648\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.40.204.132 user=root Aug 25 11:15:35 lcdev sshd\[648\]: Failed password for root from 45.40.204.132 port 54752 ssh2 Aug 25 11:20:17 lcdev sshd\[1103\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.40.204.132 user=root Aug 25 11:20:19 lcdev sshd\[1103\]: Failed password for root from 45.40.204.132 port 47625 ssh2 Aug 25 11:25:02 lcdev sshd\[1556\]: Invalid user pat from 45.40.204.132 |
2019-08-26 06:23:01 |
| 46.101.206.205 | attackspam | Aug 25 21:58:09 MK-Soft-VM5 sshd\[19569\]: Invalid user patrick from 46.101.206.205 port 57610 Aug 25 21:58:09 MK-Soft-VM5 sshd\[19569\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.206.205 Aug 25 21:58:11 MK-Soft-VM5 sshd\[19569\]: Failed password for invalid user patrick from 46.101.206.205 port 57610 ssh2 ... |
2019-08-26 06:04:28 |
| 222.138.179.173 | attack | Unauthorised access (Aug 25) SRC=222.138.179.173 LEN=44 TTL=48 ID=40505 TCP DPT=8080 WINDOW=64622 SYN |
2019-08-26 06:41:39 |
| 52.178.206.108 | attack | Invalid user pms from 52.178.206.108 port 1616 |
2019-08-26 06:22:40 |
| 110.185.3.62 | attackbots | Aug 25 08:48:09 wbs sshd\[28187\]: Invalid user admin from 110.185.3.62 Aug 25 08:48:09 wbs sshd\[28187\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.185.3.62 Aug 25 08:48:12 wbs sshd\[28187\]: Failed password for invalid user admin from 110.185.3.62 port 61670 ssh2 Aug 25 08:48:13 wbs sshd\[28187\]: Failed password for invalid user admin from 110.185.3.62 port 61670 ssh2 Aug 25 08:48:15 wbs sshd\[28187\]: Failed password for invalid user admin from 110.185.3.62 port 61670 ssh2 |
2019-08-26 06:31:14 |
| 154.8.164.214 | attack | Aug 25 21:09:58 dedicated sshd[4958]: Invalid user eliot from 154.8.164.214 port 46526 |
2019-08-26 05:58:23 |
| 193.32.163.182 | attack | Aug 26 01:33:54 srv-4 sshd\[15668\]: Invalid user admin from 193.32.163.182 Aug 26 01:33:54 srv-4 sshd\[15668\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.32.163.182 Aug 26 01:33:54 srv-4 sshd\[15669\]: Invalid user admin from 193.32.163.182 Aug 26 01:33:54 srv-4 sshd\[15669\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.32.163.182 ... |
2019-08-26 06:37:19 |
| 117.0.35.153 | attackbotsspam | Invalid user admin from 117.0.35.153 port 61521 |
2019-08-26 06:30:15 |
| 83.166.140.143 | attackspambots | : |
2019-08-26 06:11:52 |
| 112.94.2.65 | attack | Aug 25 23:46:47 SilenceServices sshd[25960]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.94.2.65 Aug 25 23:46:49 SilenceServices sshd[25960]: Failed password for invalid user perforce from 112.94.2.65 port 60673 ssh2 Aug 25 23:50:07 SilenceServices sshd[27259]: Failed password for root from 112.94.2.65 port 44129 ssh2 |
2019-08-26 06:01:43 |
| 167.71.217.54 | attackbotsspam | Aug 25 23:51:45 dedicated sshd[27014]: Invalid user support1 from 167.71.217.54 port 56806 |
2019-08-26 06:03:59 |
| 178.128.150.79 | attack | Aug 25 23:56:58 MK-Soft-Root2 sshd\[2352\]: Invalid user www from 178.128.150.79 port 53090 Aug 25 23:56:58 MK-Soft-Root2 sshd\[2352\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.150.79 Aug 25 23:57:00 MK-Soft-Root2 sshd\[2352\]: Failed password for invalid user www from 178.128.150.79 port 53090 ssh2 ... |
2019-08-26 06:10:05 |
| 134.249.123.118 | attackspam | 2019-08-25T21:43:53.459338abusebot-2.cloudsearch.cf sshd\[8625\]: Invalid user shari from 134.249.123.118 port 51564 |
2019-08-26 05:56:31 |
| 110.159.32.229 | attackspambots | Aug 24 18:27:22 roadrisk sshd[15277]: Failed password for invalid user taz from 110.159.32.229 port 49472 ssh2 Aug 24 18:27:23 roadrisk sshd[15277]: Received disconnect from 110.159.32.229: 11: Bye Bye [preauth] Aug 24 18:34:26 roadrisk sshd[15390]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.159.32.229 user=ftp Aug 24 18:34:28 roadrisk sshd[15390]: Failed password for ftp from 110.159.32.229 port 56950 ssh2 Aug 24 18:34:28 roadrisk sshd[15390]: Received disconnect from 110.159.32.229: 11: Bye Bye [preauth] Aug 24 18:39:35 roadrisk sshd[15584]: Failed password for invalid user nunes from 110.159.32.229 port 47774 ssh2 Aug 24 18:39:35 roadrisk sshd[15584]: Received disconnect from 110.159.32.229: 11: Bye Bye [preauth] Aug 24 18:44:25 roadrisk sshd[15686]: Failed password for invalid user mine from 110.159.32.229 port 38584 ssh2 Aug 24 18:44:25 roadrisk sshd[15686]: Received disconnect from 110.159.32.229: 11: Bye Bye [prea........ ------------------------------- |
2019-08-26 06:38:34 |