City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.21.63.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54262
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;52.21.63.54. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025030200 1800 900 604800 86400
;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 03 00:32:44 CST 2025
;; MSG SIZE rcvd: 10454.63.21.52.in-addr.arpa domain name pointer ec2-52-21-63-54.compute-1.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
54.63.21.52.in-addr.arpa name = ec2-52-21-63-54.compute-1.amazonaws.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 153.36.240.126 | attackspam | Jul 20 21:22:48 * sshd[21569]: Failed password for root from 153.36.240.126 port 12203 ssh2 |
2019-07-21 03:59:22 |
| 84.205.241.5 | attack | DATE:2019-07-20_13:34:53, IP:84.205.241.5, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc) |
2019-07-21 04:07:17 |
| 188.128.39.133 | attackbots | " " |
2019-07-21 04:02:48 |
| 2.47.224.102 | attackspam | Automatic report - Port Scan Attack |
2019-07-21 04:05:16 |
| 121.161.38.209 | attackbots | Jul 20 13:34:36 localhost sshd\[24581\]: Invalid user pi from 121.161.38.209 Jul 20 13:34:36 localhost sshd\[24582\]: Invalid user pi from 121.161.38.209 Jul 20 13:34:37 localhost sshd\[24581\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.161.38.209 Jul 20 13:34:37 localhost sshd\[24582\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.161.38.209 Jul 20 13:34:39 localhost sshd\[24581\]: Failed password for invalid user pi from 121.161.38.209 port 42396 ssh2 ... |
2019-07-21 04:12:35 |
| 103.217.217.146 | attack | Jul 20 14:52:30 debian sshd\[22107\]: Invalid user vb from 103.217.217.146 port 36086 Jul 20 14:52:30 debian sshd\[22107\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.217.217.146 Jul 20 14:52:32 debian sshd\[22107\]: Failed password for invalid user vb from 103.217.217.146 port 36086 ssh2 ... |
2019-07-21 03:27:02 |
| 94.177.191.63 | attack | WordPress wp-login brute force :: 94.177.191.63 0.072 BYPASS [21/Jul/2019:01:16:05 1000] [censored_4] "POST /wp-login.php HTTP/1.1" 200 4214 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2019-07-21 03:26:22 |
| 39.75.178.165 | attackspambots | 2019-07-20T08:35:34.241933mizuno.rwx.ovh sshd[32109]: Connection from 39.75.178.165 port 36718 on 78.46.61.178 port 22 2019-07-20T08:35:38.074320mizuno.rwx.ovh sshd[32109]: Invalid user admin from 39.75.178.165 port 36718 2019-07-20T08:35:38.104247mizuno.rwx.ovh sshd[32109]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.75.178.165 2019-07-20T08:35:34.241933mizuno.rwx.ovh sshd[32109]: Connection from 39.75.178.165 port 36718 on 78.46.61.178 port 22 2019-07-20T08:35:38.074320mizuno.rwx.ovh sshd[32109]: Invalid user admin from 39.75.178.165 port 36718 2019-07-20T08:35:40.138322mizuno.rwx.ovh sshd[32109]: Failed password for invalid user admin from 39.75.178.165 port 36718 ssh2 ... |
2019-07-21 03:47:01 |
| 216.155.93.77 | attackbots | Jul 20 20:12:25 MainVPS sshd[4100]: Invalid user ankesh from 216.155.93.77 port 46188 Jul 20 20:12:25 MainVPS sshd[4100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.155.93.77 Jul 20 20:12:25 MainVPS sshd[4100]: Invalid user ankesh from 216.155.93.77 port 46188 Jul 20 20:12:27 MainVPS sshd[4100]: Failed password for invalid user ankesh from 216.155.93.77 port 46188 ssh2 Jul 20 20:18:13 MainVPS sshd[4513]: Invalid user butterer from 216.155.93.77 port 42522 ... |
2019-07-21 03:50:15 |
| 68.45.236.233 | attackbots | php WP PHPmyadamin ABUSE blocked for 12h |
2019-07-21 03:36:09 |
| 121.130.93.250 | attack | Jul 20 11:36:22 MK-Soft-VM6 sshd\[15283\]: Invalid user caja from 121.130.93.250 port 44954 Jul 20 11:36:22 MK-Soft-VM6 sshd\[15283\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.130.93.250 Jul 20 11:36:24 MK-Soft-VM6 sshd\[15283\]: Failed password for invalid user caja from 121.130.93.250 port 44954 ssh2 ... |
2019-07-21 03:25:43 |
| 81.22.45.81 | attack | Splunk® : port scan detected: Jul 20 13:23:09 testbed kernel: Firewall: *TCP_IN Blocked* IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:c0:42:d0:39:2c:30:08:00 SRC=81.22.45.81 DST=104.248.11.191 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=53782 PROTO=TCP SPT=53873 DPT=3456 WINDOW=1024 RES=0x00 SYN URGP=0 |
2019-07-21 03:56:22 |
| 134.73.76.72 | attackspambots | Spam mails sent to address hacked/leaked from Nexus Mods in July 2013 |
2019-07-21 04:12:15 |
| 27.79.128.85 | attackbotsspam | 20-7-2019 15:50:25 Brute force attack by common bot infected identified EHLO/HELO: localhost 20-7-2019 15:50:25 Connection from IP address: 27.79.128.85 on port: 25 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=27.79.128.85 |
2019-07-21 03:32:28 |
| 103.232.120.109 | attackbotsspam | Jul 20 21:27:11 OPSO sshd\[11785\]: Invalid user martina from 103.232.120.109 port 41696 Jul 20 21:27:11 OPSO sshd\[11785\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.232.120.109 Jul 20 21:27:13 OPSO sshd\[11785\]: Failed password for invalid user martina from 103.232.120.109 port 41696 ssh2 Jul 20 21:33:41 OPSO sshd\[12485\]: Invalid user demo from 103.232.120.109 port 39054 Jul 20 21:33:41 OPSO sshd\[12485\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.232.120.109 |
2019-07-21 03:34:47 |