City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.41.245.154
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13572
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;52.41.245.154. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025012800 1800 900 604800 86400
;; Query time: 41 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 29 01:23:58 CST 2025
;; MSG SIZE rcvd: 106
154.245.41.52.in-addr.arpa domain name pointer ec2-52-41-245-154.us-west-2.compute.amazonaws.com.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
154.245.41.52.in-addr.arpa name = ec2-52-41-245-154.us-west-2.compute.amazonaws.com.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 181.57.168.174 | attackbots | 20 attempts against mh-ssh on cloud |
2020-04-04 23:07:20 |
| 154.204.28.52 | attack | SSH Brute-Force Attack |
2020-04-04 23:02:47 |
| 51.75.16.138 | attackspambots | Apr 4 20:37:09 itv-usvr-01 sshd[3102]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.16.138 user=root Apr 4 20:37:12 itv-usvr-01 sshd[3102]: Failed password for root from 51.75.16.138 port 52673 ssh2 Apr 4 20:41:09 itv-usvr-01 sshd[3376]: Invalid user sa from 51.75.16.138 |
2020-04-04 22:41:04 |
| 51.91.101.100 | attack | Apr 4 16:32:18 OPSO sshd\[8982\]: Invalid user mzm from 51.91.101.100 port 58792 Apr 4 16:32:18 OPSO sshd\[8982\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.101.100 Apr 4 16:32:20 OPSO sshd\[8982\]: Failed password for invalid user mzm from 51.91.101.100 port 58792 ssh2 Apr 4 16:36:43 OPSO sshd\[9993\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.101.100 user=root Apr 4 16:36:45 OPSO sshd\[9993\]: Failed password for root from 51.91.101.100 port 34060 ssh2 |
2020-04-04 22:45:36 |
| 128.14.52.114 | attackspam | Honeypot hit. |
2020-04-04 22:53:27 |
| 157.245.235.244 | attackspambots | 2020-04-04T16:44:33.104783vps751288.ovh.net sshd\[29591\]: Invalid user jh from 157.245.235.244 port 56690 2020-04-04T16:44:33.114109vps751288.ovh.net sshd\[29591\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.235.244 2020-04-04T16:44:34.983738vps751288.ovh.net sshd\[29591\]: Failed password for invalid user jh from 157.245.235.244 port 56690 ssh2 2020-04-04T16:48:34.862443vps751288.ovh.net sshd\[29616\]: Invalid user dongbowen from 157.245.235.244 port 38930 2020-04-04T16:48:34.872108vps751288.ovh.net sshd\[29616\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.235.244 |
2020-04-04 22:53:57 |
| 95.9.64.166 | attackbotsspam | Honeypot attack, port: 445, PTR: 95.9.64.166.static.ttnet.com.tr. |
2020-04-04 22:43:33 |
| 192.143.56.192 | attackspambots | Honeypot attack, port: 81, PTR: 192-143-56-192.ip.airmobile.co.za. |
2020-04-04 23:30:21 |
| 80.91.164.72 | attackspam | Apr 4 17:17:51 www sshd\[40344\]: Failed password for root from 80.91.164.72 port 40768 ssh2Apr 4 17:22:01 www sshd\[40471\]: Failed password for root from 80.91.164.72 port 52804 ssh2Apr 4 17:26:03 www sshd\[40598\]: Failed password for root from 80.91.164.72 port 36610 ssh2 ... |
2020-04-04 22:34:56 |
| 3.113.119.93 | attackspambots | Apr 4 16:11:43 markkoudstaal sshd[32135]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.113.119.93 Apr 4 16:11:45 markkoudstaal sshd[32135]: Failed password for invalid user paarth from 3.113.119.93 port 57472 ssh2 Apr 4 16:19:05 markkoudstaal sshd[696]: Failed password for root from 3.113.119.93 port 39648 ssh2 |
2020-04-04 23:01:16 |
| 172.104.124.229 | attackbotsspam | firewall-block, port(s): 8888/tcp |
2020-04-04 23:40:30 |
| 140.143.61.200 | attackbotsspam | Apr 4 16:44:30 OPSO sshd\[11611\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.61.200 user=root Apr 4 16:44:32 OPSO sshd\[11611\]: Failed password for root from 140.143.61.200 port 50450 ssh2 Apr 4 16:47:25 OPSO sshd\[12355\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.61.200 user=root Apr 4 16:47:27 OPSO sshd\[12355\]: Failed password for root from 140.143.61.200 port 49200 ssh2 Apr 4 16:50:21 OPSO sshd\[13240\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.61.200 user=root |
2020-04-04 23:14:54 |
| 206.81.12.209 | attack | SSH Brute-Force reported by Fail2Ban |
2020-04-04 23:31:22 |
| 54.36.163.141 | attackspam | (sshd) Failed SSH login from 54.36.163.141 (GB/United Kingdom/141.ip-54-36-163.eu): 5 in the last 3600 secs |
2020-04-04 23:17:07 |
| 138.68.21.125 | attackspambots | Apr 4 15:31:43 srv01 sshd[10063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.21.125 user=root Apr 4 15:31:45 srv01 sshd[10063]: Failed password for root from 138.68.21.125 port 48130 ssh2 Apr 4 15:36:28 srv01 sshd[10298]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.21.125 user=root Apr 4 15:36:30 srv01 sshd[10298]: Failed password for root from 138.68.21.125 port 59920 ssh2 Apr 4 15:41:05 srv01 sshd[10660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.21.125 user=root Apr 4 15:41:08 srv01 sshd[10660]: Failed password for root from 138.68.21.125 port 43480 ssh2 ... |
2020-04-04 22:42:51 |