City: Sydney
Region: New South Wales
Country: Australia
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 54.252.231.86 | attack | Unauthorized connection attempt detected from IP address 54.252.231.86 to port 80 [T] |
2020-02-01 21:06:28 |
| 54.252.213.237 | attackspam | Unauthorized connection attempt detected from IP address 54.252.213.237 to port 80 [T] |
2020-01-30 01:23:14 |
| 54.252.213.148 | attack | RDP Bruteforce |
2019-11-03 14:07:01 |
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.252.2.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54244
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;54.252.2.20. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025041003 1800 900 604800 86400
;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 11 10:27:51 CST 2025
;; MSG SIZE rcvd: 10420.2.252.54.in-addr.arpa domain name pointer ec2-54-252-2-20.ap-southeast-2.compute.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
20.2.252.54.in-addr.arpa name = ec2-54-252-2-20.ap-southeast-2.compute.amazonaws.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 151.80.60.151 | attack | Dec 24 18:19:17 server sshd\[13496\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.ip-151-80-60.eu user=root Dec 24 18:19:19 server sshd\[13496\]: Failed password for root from 151.80.60.151 port 54460 ssh2 Dec 24 18:30:50 server sshd\[16275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.ip-151-80-60.eu user=root Dec 24 18:30:52 server sshd\[16275\]: Failed password for root from 151.80.60.151 port 57152 ssh2 Dec 24 18:33:29 server sshd\[16564\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.ip-151-80-60.eu user=root ... |
2019-12-25 02:21:01 |
| 78.176.139.236 | attack | 445/tcp [2019-12-24]1pkt |
2019-12-25 02:11:07 |
| 1.23.185.14 | attack | Dec 24 15:33:53 *** sshd[3875]: Invalid user flon from 1.23.185.14 |
2019-12-25 01:58:39 |
| 113.165.94.24 | attack | Unauthorized connection attempt detected from IP address 113.165.94.24 to port 445 |
2019-12-25 01:47:07 |
| 106.13.30.80 | attackbotsspam | Invalid user bandel from 106.13.30.80 port 35940 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.30.80 Failed password for invalid user bandel from 106.13.30.80 port 35940 ssh2 Invalid user el from 106.13.30.80 port 57032 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.30.80 |
2019-12-25 01:42:33 |
| 37.187.120.96 | attackbotsspam | Dec 24 22:38:12 vibhu-HP-Z238-Microtower-Workstation sshd\[8245\]: Invalid user terry123 from 37.187.120.96 Dec 24 22:38:12 vibhu-HP-Z238-Microtower-Workstation sshd\[8245\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.120.96 Dec 24 22:38:14 vibhu-HP-Z238-Microtower-Workstation sshd\[8245\]: Failed password for invalid user terry123 from 37.187.120.96 port 57074 ssh2 Dec 24 22:41:02 vibhu-HP-Z238-Microtower-Workstation sshd\[8446\]: Invalid user decher from 37.187.120.96 Dec 24 22:41:02 vibhu-HP-Z238-Microtower-Workstation sshd\[8446\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.120.96 ... |
2019-12-25 01:40:51 |
| 91.191.59.118 | attackbots | Invalid user admin from 91.191.59.118 port 58816 |
2019-12-25 02:06:04 |
| 14.162.161.168 | attack | Dec 24 16:33:38 jane sshd[3593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.162.161.168 Dec 24 16:33:40 jane sshd[3593]: Failed password for invalid user admin from 14.162.161.168 port 59337 ssh2 ... |
2019-12-25 02:15:09 |
| 137.74.117.110 | attack | Dec2416:33:47server2pure-ftpd:\(\?@157.230.141.185\)[WARNING]Authenticationfailedforuser[ftp]Dec2416:33:51server2pure-ftpd:\(\?@137.74.117.110\)[WARNING]Authenticationfailedforuser[ftp]Dec2416:33:53server2pure-ftpd:\(\?@157.230.141.185\)[WARNING]Authenticationfailedforuser[ftp]Dec2416:33:55server2pure-ftpd:\(\?@137.74.117.110\)[WARNING]Authenticationfailedforuser[ftp]Dec2416:33:56server2pure-ftpd:\(\?@50.62.176.220\)[WARNING]Authenticationfailedforuser[ftp]IPAddressesBlocked:157.230.141.185\(US/UnitedStates/-\) |
2019-12-25 01:54:22 |
| 116.203.198.146 | attack | Invalid user pon from 116.203.198.146 port 45324 |
2019-12-25 02:15:56 |
| 210.18.140.189 | attackspambots | 445/tcp [2019-12-24]1pkt |
2019-12-25 01:52:53 |
| 42.117.47.89 | attackspam | 1577201637 - 12/24/2019 16:33:57 Host: 42.117.47.89/42.117.47.89 Port: 445 TCP Blocked |
2019-12-25 02:00:37 |
| 50.62.176.220 | attack | Dec2416:33:47server2pure-ftpd:\(\?@157.230.141.185\)[WARNING]Authenticationfailedforuser[ftp]Dec2416:33:51server2pure-ftpd:\(\?@137.74.117.110\)[WARNING]Authenticationfailedforuser[ftp]Dec2416:33:53server2pure-ftpd:\(\?@157.230.141.185\)[WARNING]Authenticationfailedforuser[ftp]Dec2416:33:55server2pure-ftpd:\(\?@137.74.117.110\)[WARNING]Authenticationfailedforuser[ftp]Dec2416:33:56server2pure-ftpd:\(\?@50.62.176.220\)[WARNING]Authenticationfailedforuser[ftp]IPAddressesBlocked:157.230.141.185\(US/UnitedStates/-\)137.74.117.110\(FR/France/110.ip-137-74-117.eu\) |
2019-12-25 01:55:14 |
| 222.186.175.181 | attack | Dec 24 18:47:56 legacy sshd[17930]: Failed password for root from 222.186.175.181 port 56534 ssh2 Dec 24 18:48:09 legacy sshd[17930]: error: maximum authentication attempts exceeded for root from 222.186.175.181 port 56534 ssh2 [preauth] Dec 24 18:48:18 legacy sshd[17937]: Failed password for root from 222.186.175.181 port 44725 ssh2 ... |
2019-12-25 01:48:33 |
| 52.231.205.120 | attack | "Fail2Ban detected SSH brute force attempt" |
2019-12-25 01:51:35 |