City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.166.94.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51636
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;54.166.94.52. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020302 1800 900 604800 86400
;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 11:15:22 CST 2025
;; MSG SIZE rcvd: 10552.94.166.54.in-addr.arpa domain name pointer ec2-54-166-94-52.compute-1.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
52.94.166.54.in-addr.arpa name = ec2-54-166-94-52.compute-1.amazonaws.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 46.38.144.146 | attackbots | Oct 3 11:00:49 webserver postfix/smtpd\[24125\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 3 11:02:40 webserver postfix/smtpd\[24879\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 3 11:04:26 webserver postfix/smtpd\[24879\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 3 11:06:20 webserver postfix/smtpd\[24879\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 3 11:08:11 webserver postfix/smtpd\[25551\]: warning: unknown\[46.38.144.146\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ... |
2019-10-03 17:22:06 |
| 221.179.103.2 | attack | Oct 2 22:44:01 hpm sshd\[7319\]: Invalid user rpm from 221.179.103.2 Oct 2 22:44:01 hpm sshd\[7319\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.179.103.2 Oct 2 22:44:03 hpm sshd\[7319\]: Failed password for invalid user rpm from 221.179.103.2 port 53685 ssh2 Oct 2 22:51:14 hpm sshd\[7942\]: Invalid user csgosrv from 221.179.103.2 Oct 2 22:51:14 hpm sshd\[7942\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.179.103.2 |
2019-10-03 17:02:38 |
| 103.74.71.143 | normal | Bad ipbaddb not open |
2019-10-03 16:47:59 |
| 178.33.49.21 | attack | Oct 3 10:31:55 microserver sshd[59582]: Invalid user yf from 178.33.49.21 port 34710 Oct 3 10:31:55 microserver sshd[59582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.49.21 Oct 3 10:31:57 microserver sshd[59582]: Failed password for invalid user yf from 178.33.49.21 port 34710 ssh2 Oct 3 10:36:09 microserver sshd[60240]: Invalid user abrahim from 178.33.49.21 port 46598 Oct 3 10:36:09 microserver sshd[60240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.49.21 Oct 3 10:48:34 microserver sshd[61779]: Invalid user teamspeak2 from 178.33.49.21 port 54026 Oct 3 10:48:34 microserver sshd[61779]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.49.21 Oct 3 10:48:36 microserver sshd[61779]: Failed password for invalid user teamspeak2 from 178.33.49.21 port 54026 ssh2 Oct 3 10:52:54 microserver sshd[62459]: Invalid user cisco from 178.33.49.21 port 37678 Oct 3 1 |
2019-10-03 17:17:11 |
| 118.32.190.205 | attackbotsspam | Fail2Ban - FTP Abuse Attempt |
2019-10-03 17:18:49 |
| 43.226.153.44 | attackbots | Oct 3 06:26:15 s64-1 sshd[23742]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.226.153.44 Oct 3 06:26:17 s64-1 sshd[23742]: Failed password for invalid user setup from 43.226.153.44 port 60130 ssh2 Oct 3 06:30:57 s64-1 sshd[23818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.226.153.44 ... |
2019-10-03 17:09:15 |
| 139.170.149.161 | attackspam | SSH invalid-user multiple login try |
2019-10-03 16:40:45 |
| 51.38.80.173 | attackspam | 2019-09-22 19:48:02,623 fail2ban.actions [818]: NOTICE [sshd] Ban 51.38.80.173 2019-09-22 22:56:13,309 fail2ban.actions [818]: NOTICE [sshd] Ban 51.38.80.173 2019-09-23 02:00:27,480 fail2ban.actions [818]: NOTICE [sshd] Ban 51.38.80.173 ... |
2019-10-03 17:15:47 |
| 140.246.175.68 | attackspam | *Port Scan* detected from 140.246.175.68 (CN/China/-). 4 hits in the last 186 seconds |
2019-10-03 16:55:59 |
| 115.238.236.74 | attack | Oct 3 10:32:17 OPSO sshd\[27969\]: Invalid user norby from 115.238.236.74 port 38507 Oct 3 10:32:17 OPSO sshd\[27969\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.238.236.74 Oct 3 10:32:19 OPSO sshd\[27969\]: Failed password for invalid user norby from 115.238.236.74 port 38507 ssh2 Oct 3 10:36:43 OPSO sshd\[29068\]: Invalid user spy from 115.238.236.74 port 19095 Oct 3 10:36:43 OPSO sshd\[29068\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.238.236.74 |
2019-10-03 16:58:52 |
| 101.228.74.0 | attackspam | MultiHost/MultiPort Probe, Scan, Hack - |
2019-10-03 16:57:44 |
| 128.199.162.143 | attackbots | 2019-10-03T11:57:57.273943enmeeting.mahidol.ac.th sshd\[9324\]: Invalid user tempuser from 128.199.162.143 port 53674 2019-10-03T11:57:57.292009enmeeting.mahidol.ac.th sshd\[9324\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.162.143 2019-10-03T11:57:59.102302enmeeting.mahidol.ac.th sshd\[9324\]: Failed password for invalid user tempuser from 128.199.162.143 port 53674 ssh2 ... |
2019-10-03 16:53:51 |
| 140.210.9.80 | attackbotsspam | 2019-10-03T03:55:17.724394abusebot-5.cloudsearch.cf sshd\[18985\]: Invalid user vivian from 140.210.9.80 port 51896 |
2019-10-03 16:44:27 |
| 112.84.60.111 | attackspam | [Aegis] @ 2019-10-03 04:55:08 0100 -> Sendmail rejected message. |
2019-10-03 16:42:41 |
| 46.33.225.84 | attackbotsspam | $f2bV_matches |
2019-10-03 17:10:29 |