城市(city): Ashburn
省份(region): Virginia
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 100.30.1.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48486
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;100.30.1.21. IN A
;; AUTHORITY SECTION:
. 303 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2021091800 1800 900 604800 86400
;; Query time: 71 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 18 16:41:12 CST 2021
;; MSG SIZE rcvd: 10421.1.30.100.in-addr.arpa domain name pointer ec2-100-30-1-21.compute-1.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
21.1.30.100.in-addr.arpa name = ec2-100-30-1-21.compute-1.amazonaws.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 37.49.230.8 | attackspam | 5 hits of EXPLOIT Netcore Router Backdoor Access |
2020-07-29 20:19:52 |
| 112.35.27.97 | attackbots | Jul 29 08:14:03 Host-KEWR-E sshd[30646]: Connection closed by 112.35.27.97 port 58364 [preauth] ... |
2020-07-29 20:38:17 |
| 39.35.29.186 | attack | Automatic report - Port Scan Attack |
2020-07-29 20:42:16 |
| 161.35.115.93 | attackspambots | Jul 29 08:10:24 ny01 sshd[20631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.35.115.93 Jul 29 08:10:26 ny01 sshd[20631]: Failed password for invalid user heguimei from 161.35.115.93 port 47206 ssh2 Jul 29 08:14:15 ny01 sshd[21050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.35.115.93 |
2020-07-29 20:28:02 |
| 189.39.124.38 | attackspam | Brute forcing RDP port 3389 |
2020-07-29 20:37:03 |
| 124.128.158.37 | attackbotsspam | Jul 29 14:07:47 *hidden* sshd[4262]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.128.158.37 Jul 29 14:07:49 *hidden* sshd[4262]: Failed password for invalid user zhp from 124.128.158.37 port 17595 ssh2 Jul 29 14:14:16 *hidden* sshd[5301]: Invalid user nyasha from 124.128.158.37 port 17596 |
2020-07-29 20:26:54 |
| 132.255.116.14 | attackspam | Jul 29 13:09:32 rocket sshd[12495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.255.116.14 Jul 29 13:09:35 rocket sshd[12495]: Failed password for invalid user tonytan from 132.255.116.14 port 60407 ssh2 Jul 29 13:14:16 rocket sshd[13197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.255.116.14 ... |
2020-07-29 20:26:11 |
| 180.163.220.68 | attackspambots | port scan and connect, tcp 443 (https) |
2020-07-29 20:13:29 |
| 5.135.185.27 | attackspambots | Jul 29 14:40:26 OPSO sshd\[16527\]: Invalid user linsn from 5.135.185.27 port 56504 Jul 29 14:40:26 OPSO sshd\[16527\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.185.27 Jul 29 14:40:28 OPSO sshd\[16527\]: Failed password for invalid user linsn from 5.135.185.27 port 56504 ssh2 Jul 29 14:44:08 OPSO sshd\[17257\]: Invalid user wangqianyun from 5.135.185.27 port 39020 Jul 29 14:44:08 OPSO sshd\[17257\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.185.27 |
2020-07-29 20:46:11 |
| 103.205.5.158 | attack | Fail2Ban Ban Triggered |
2020-07-29 20:20:51 |
| 148.70.149.39 | attackbots | Jul 29 08:06:33 george sshd[27918]: Failed password for invalid user XiaB from 148.70.149.39 port 51538 ssh2 Jul 29 08:10:24 george sshd[28393]: Invalid user libimei from 148.70.149.39 port 53756 Jul 29 08:10:24 george sshd[28393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.149.39 Jul 29 08:10:26 george sshd[28393]: Failed password for invalid user libimei from 148.70.149.39 port 53756 ssh2 Jul 29 08:14:16 george sshd[28428]: Invalid user haoxian from 148.70.149.39 port 55978 ... |
2020-07-29 20:25:44 |
| 103.50.215.22 | attackbotsspam | Automatic report - Banned IP Access |
2020-07-29 20:47:12 |
| 159.65.216.161 | attackbots | 2020-07-29T12:40:20.279080shield sshd\[9045\]: Invalid user office2 from 159.65.216.161 port 60164 2020-07-29T12:40:20.289290shield sshd\[9045\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.216.161 2020-07-29T12:40:22.622590shield sshd\[9045\]: Failed password for invalid user office2 from 159.65.216.161 port 60164 ssh2 2020-07-29T12:45:54.321426shield sshd\[9635\]: Invalid user siva from 159.65.216.161 port 45474 2020-07-29T12:45:54.331131shield sshd\[9635\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.216.161 |
2020-07-29 20:52:26 |
| 222.186.30.76 | attackspam | Jul 29 14:14:23 theomazars sshd[14089]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.76 user=root Jul 29 14:14:25 theomazars sshd[14089]: Failed password for root from 222.186.30.76 port 43351 ssh2 |
2020-07-29 20:18:48 |
| 182.61.173.94 | attackbots | 2020-07-29T15:09:47.271214lavrinenko.info sshd[29030]: Invalid user tssuser from 182.61.173.94 port 37028 2020-07-29T15:09:47.276871lavrinenko.info sshd[29030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.173.94 2020-07-29T15:09:47.271214lavrinenko.info sshd[29030]: Invalid user tssuser from 182.61.173.94 port 37028 2020-07-29T15:09:48.636778lavrinenko.info sshd[29030]: Failed password for invalid user tssuser from 182.61.173.94 port 37028 ssh2 2020-07-29T15:14:22.729658lavrinenko.info sshd[29156]: Invalid user xufq from 182.61.173.94 port 48660 ... |
2020-07-29 20:20:21 |