City: unknown
Region: unknown
Country: United States of America (the)
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.89.8.77
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2137
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;54.89.8.77. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020500 1800 900 604800 86400
;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 18:49:52 CST 2025
;; MSG SIZE rcvd: 10377.8.89.54.in-addr.arpa domain name pointer ec2-54-89-8-77.compute-1.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
77.8.89.54.in-addr.arpa name = ec2-54-89-8-77.compute-1.amazonaws.com.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 151.73.246.255 | attack | Email rejected due to spam filtering |
2020-09-12 18:16:07 |
| 120.92.45.102 | attack | "fail2ban match" |
2020-09-12 18:12:04 |
| 37.187.20.60 | attackspam | Sep 12 09:42:07 root sshd[4681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.20.60 ... |
2020-09-12 17:46:57 |
| 122.51.17.106 | attack | Sep 12 09:36:37 raspberrypi sshd[31498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.17.106 user=root Sep 12 09:36:39 raspberrypi sshd[31498]: Failed password for invalid user root from 122.51.17.106 port 53634 ssh2 ... |
2020-09-12 17:54:44 |
| 185.42.170.203 | attackbots | SSH Brute-Forcing (server1) |
2020-09-12 18:10:31 |
| 94.72.20.206 | attackspam | Attempted Brute Force (dovecot) |
2020-09-12 18:01:05 |
| 198.12.250.187 | attack | 198.12.250.187 - - \[12/Sep/2020:12:14:22 +0200\] "POST /wp-login.php HTTP/1.0" 200 3535 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 198.12.250.187 - - \[12/Sep/2020:12:14:25 +0200\] "POST /wp-login.php HTTP/1.0" 200 3489 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 198.12.250.187 - - \[12/Sep/2020:12:14:26 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 778 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2020-09-12 18:15:50 |
| 91.245.30.150 | attackspam | Sep 11 18:00:30 mail.srvfarm.net postfix/smtps/smtpd[3875317]: warning: unknown[91.245.30.150]: SASL PLAIN authentication failed: Sep 11 18:00:30 mail.srvfarm.net postfix/smtps/smtpd[3875317]: lost connection after AUTH from unknown[91.245.30.150] Sep 11 18:06:45 mail.srvfarm.net postfix/smtps/smtpd[3875620]: warning: unknown[91.245.30.150]: SASL PLAIN authentication failed: Sep 11 18:06:45 mail.srvfarm.net postfix/smtps/smtpd[3875620]: lost connection after AUTH from unknown[91.245.30.150] Sep 11 18:08:32 mail.srvfarm.net postfix/smtpd[3889545]: warning: unknown[91.245.30.150]: SASL PLAIN authentication failed: |
2020-09-12 17:43:32 |
| 162.142.125.34 | attackspambots | DATE:2020-09-12 11:37:00, IP:162.142.125.34, PORT:6379 REDIS brute force auth on honeypot server (epe-honey1-hq) |
2020-09-12 18:20:22 |
| 51.132.229.240 | attack | Sep 11 18:03:29 web01.agentur-b-2.de postfix/smtps/smtpd[1506802]: warning: unknown[51.132.229.240]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 11 18:05:09 web01.agentur-b-2.de postfix/smtps/smtpd[1506802]: warning: unknown[51.132.229.240]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 11 18:06:50 web01.agentur-b-2.de postfix/smtps/smtpd[1506802]: warning: unknown[51.132.229.240]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 11 18:08:30 web01.agentur-b-2.de postfix/smtps/smtpd[1506802]: warning: unknown[51.132.229.240]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 11 18:10:11 web01.agentur-b-2.de postfix/smtps/smtpd[1506802]: warning: unknown[51.132.229.240]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 |
2020-09-12 17:44:24 |
| 95.85.43.241 | attackbotsspam | 2020-09-12T11:12:17.971985mail.broermann.family sshd[31569]: Failed password for root from 95.85.43.241 port 49386 ssh2 2020-09-12T11:16:37.114893mail.broermann.family sshd[31726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.85.43.241 user=root 2020-09-12T11:16:39.127443mail.broermann.family sshd[31726]: Failed password for root from 95.85.43.241 port 55623 ssh2 2020-09-12T11:20:58.622606mail.broermann.family sshd[31880]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.85.43.241 user=root 2020-09-12T11:21:00.465638mail.broermann.family sshd[31880]: Failed password for root from 95.85.43.241 port 33626 ssh2 ... |
2020-09-12 18:04:27 |
| 40.84.224.226 | attackbotsspam | Brute forcing email accounts |
2020-09-12 18:04:57 |
| 140.143.247.30 | attackbots | Sep 12 06:49:38 root sshd[14529]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.247.30 ... |
2020-09-12 17:55:05 |
| 68.183.84.21 | attack | RDP Bruteforce |
2020-09-12 17:52:11 |
| 119.45.142.15 | attackspam | Sep 12 04:49:02 vlre-nyc-1 sshd\[31415\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.142.15 user=root Sep 12 04:49:05 vlre-nyc-1 sshd\[31415\]: Failed password for root from 119.45.142.15 port 33872 ssh2 Sep 12 04:51:37 vlre-nyc-1 sshd\[31463\]: Invalid user kenny from 119.45.142.15 Sep 12 04:51:37 vlre-nyc-1 sshd\[31463\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.142.15 Sep 12 04:51:38 vlre-nyc-1 sshd\[31463\]: Failed password for invalid user kenny from 119.45.142.15 port 58984 ssh2 ... |
2020-09-12 18:16:28 |