City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.166.206.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7753
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;54.166.206.66. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025013100 1800 900 604800 86400
;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 01 00:46:55 CST 2025
;; MSG SIZE rcvd: 10666.206.166.54.in-addr.arpa domain name pointer ec2-54-166-206-66.compute-1.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
66.206.166.54.in-addr.arpa name = ec2-54-166-206-66.compute-1.amazonaws.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 103.219.32.248 | attack | (sshd) Failed SSH login from 103.219.32.248 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 17 13:31:55 elude sshd[10047]: Invalid user fh from 103.219.32.248 port 40052 Apr 17 13:31:57 elude sshd[10047]: Failed password for invalid user fh from 103.219.32.248 port 40052 ssh2 Apr 17 13:37:57 elude sshd[10961]: Invalid user qy from 103.219.32.248 port 39156 Apr 17 13:37:59 elude sshd[10961]: Failed password for invalid user qy from 103.219.32.248 port 39156 ssh2 Apr 17 13:40:08 elude sshd[11414]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.219.32.248 user=root |
2020-04-17 20:46:33 |
| 185.175.93.6 | attack | scans 13 times in preceeding hours on the ports (in chronological order) 3395 3422 3440 3436 3382 3391 3361 3386 3446 3402 3407 3440 3355 resulting in total of 28 scans from 185.175.93.0/24 block. |
2020-04-17 21:07:46 |
| 51.79.57.12 | attackspambots | MultiHost/MultiPort Probe, Scan, Hack - |
2020-04-17 20:38:40 |
| 103.10.30.204 | attackspam | Apr 17 05:22:05 server1 sshd\[5848\]: Failed password for invalid user wz from 103.10.30.204 port 59444 ssh2 Apr 17 05:23:30 server1 sshd\[6235\]: Invalid user admin1 from 103.10.30.204 Apr 17 05:23:30 server1 sshd\[6235\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.10.30.204 Apr 17 05:23:32 server1 sshd\[6235\]: Failed password for invalid user admin1 from 103.10.30.204 port 51326 ssh2 Apr 17 05:25:00 server1 sshd\[6635\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.10.30.204 user=root ... |
2020-04-17 21:12:57 |
| 51.75.146.114 | attackbotsspam | MultiHost/MultiPort Probe, Scan, Hack - |
2020-04-17 20:46:08 |
| 177.105.66.146 | attack | Automatic report - Banned IP Access |
2020-04-17 21:07:59 |
| 139.59.169.103 | attackbotsspam | Apr 17 02:47:06 php1 sshd\[17078\]: Invalid user postgres from 139.59.169.103 Apr 17 02:47:06 php1 sshd\[17078\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.169.103 Apr 17 02:47:08 php1 sshd\[17078\]: Failed password for invalid user postgres from 139.59.169.103 port 42958 ssh2 Apr 17 02:50:20 php1 sshd\[17382\]: Invalid user oj from 139.59.169.103 Apr 17 02:50:20 php1 sshd\[17382\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.169.103 |
2020-04-17 20:57:25 |
| 189.62.69.106 | attack | Apr 17 14:42:16 ns382633 sshd\[13256\]: Invalid user git from 189.62.69.106 port 50062 Apr 17 14:42:16 ns382633 sshd\[13256\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.62.69.106 Apr 17 14:42:17 ns382633 sshd\[13256\]: Failed password for invalid user git from 189.62.69.106 port 50062 ssh2 Apr 17 14:54:09 ns382633 sshd\[15447\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.62.69.106 user=root Apr 17 14:54:11 ns382633 sshd\[15447\]: Failed password for root from 189.62.69.106 port 60596 ssh2 |
2020-04-17 20:59:30 |
| 146.66.244.246 | attackspam | Apr 17 12:33:29 *** sshd[8352]: Invalid user oracle from 146.66.244.246 |
2020-04-17 20:59:58 |
| 221.133.18.115 | attack | detected by Fail2Ban |
2020-04-17 20:42:34 |
| 139.99.91.132 | attackspambots | Apr 17 11:55:54 sshgateway sshd\[11379\]: Invalid user oracle from 139.99.91.132 Apr 17 11:55:54 sshgateway sshd\[11379\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.ip-139-99-91.net Apr 17 11:55:57 sshgateway sshd\[11379\]: Failed password for invalid user oracle from 139.99.91.132 port 34736 ssh2 |
2020-04-17 20:43:28 |
| 115.79.192.216 | attackbots | Honeypot attack, port: 81, PTR: adsl.viettel.vn. |
2020-04-17 20:44:14 |
| 186.229.24.194 | attackbotsspam | Apr 17 15:03:15 lukav-desktop sshd\[19860\]: Invalid user deployer from 186.229.24.194 Apr 17 15:03:15 lukav-desktop sshd\[19860\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.229.24.194 Apr 17 15:03:16 lukav-desktop sshd\[19860\]: Failed password for invalid user deployer from 186.229.24.194 port 9633 ssh2 Apr 17 15:07:18 lukav-desktop sshd\[19960\]: Invalid user ubuntu from 186.229.24.194 Apr 17 15:07:18 lukav-desktop sshd\[19960\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.229.24.194 |
2020-04-17 21:07:28 |
| 221.229.196.242 | attackspam | Apr 17 14:44:54 odroid64 sshd\[20173\]: Invalid user ftpadmin from 221.229.196.242 Apr 17 14:44:54 odroid64 sshd\[20173\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.229.196.242 ... |
2020-04-17 20:51:45 |
| 204.77.11.130 | attackspam | Unauthorized connection attempt detected from IP address 204.77.11.130 to port 23 |
2020-04-17 21:10:47 |