104.42.30.9 - IPInfo

基本信息:

城市(city): San Jose

省份(region): California

国家(country): United States

运营商(isp): Microsoft Corporation

主机名(hostname): unknown

机构(organization): Microsoft Corporation

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	SSH bruteforce	2019-11-02 00:46:26
attackspambots	23/tcp 23/tcp 23/tcp... [2019-10-04/24]6pkt,1pt.(tcp)	2019-10-24 12:59:00
attack	Sep 23 09:35:24 ns37 sshd[5054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.42.30.9 Sep 23 09:35:26 ns37 sshd[5054]: Failed password for invalid user rainbow from 104.42.30.9 port 22528 ssh2 Sep 23 09:39:09 ns37 sshd[5315]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.42.30.9	2019-09-23 16:10:09
attackspambots	Automatic report - Banned IP Access	2019-09-20 03:55:44
attackbots	2019-09-17T04:12:05.813981abusebot-8.cloudsearch.cf sshd\[1529\]: Invalid user openvpn_as from 104.42.30.9 port 22976	2019-09-17 12:23:19
attackbots	Sep 12 07:19:26 lnxded63 sshd[5432]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.42.30.9	2019-09-12 17:03:00
attackbotsspam	Sep 5 23:25:43 vps647732 sshd[21643]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.42.30.9 Sep 5 23:25:46 vps647732 sshd[21643]: Failed password for invalid user ts from 104.42.30.9 port 22848 ssh2 ...	2019-09-06 05:50:59
attackbotsspam	Aug 31 19:10:05 vtv3 sshd\[11926\]: Invalid user choi from 104.42.30.9 port 23232 Aug 31 19:10:05 vtv3 sshd\[11926\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.42.30.9 Aug 31 19:10:07 vtv3 sshd\[11926\]: Failed password for invalid user choi from 104.42.30.9 port 23232 ssh2 Aug 31 19:14:17 vtv3 sshd\[13953\]: Invalid user caden from 104.42.30.9 port 23232 Aug 31 19:14:17 vtv3 sshd\[13953\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.42.30.9 Aug 31 19:28:01 vtv3 sshd\[20609\]: Invalid user csgosrv from 104.42.30.9 port 23232 Aug 31 19:28:01 vtv3 sshd\[20609\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.42.30.9 Aug 31 19:28:03 vtv3 sshd\[20609\]: Failed password for invalid user csgosrv from 104.42.30.9 port 23232 ssh2 Aug 31 19:32:25 vtv3 sshd\[22911\]: Invalid user scaner from 104.42.30.9 port 23232 Aug 31 19:32:25 vtv3 sshd\[22911\]: pam_unix\(sshd:auth\	2019-09-01 06:14:19
attackspam	Invalid user admin from 104.42.30.9 port 23232	2019-08-30 20:07:04
attackspambots	Aug 25 04:08:31 friendsofhawaii sshd\[27609\]: Invalid user gopher from 104.42.30.9 Aug 25 04:08:31 friendsofhawaii sshd\[27609\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.42.30.9 Aug 25 04:08:34 friendsofhawaii sshd\[27609\]: Failed password for invalid user gopher from 104.42.30.9 port 23232 ssh2 Aug 25 04:13:27 friendsofhawaii sshd\[28151\]: Invalid user nils from 104.42.30.9 Aug 25 04:13:27 friendsofhawaii sshd\[28151\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.42.30.9	2019-08-25 22:27:02
attackspambots	2019-08-18T23:52:53.758545abusebot-7.cloudsearch.cf sshd\[14285\]: Invalid user ts3server from 104.42.30.9 port 23232	2019-08-19 07:59:32
attack	firewall-block, port(s): 23/tcp	2019-07-12 02:55:25

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.42.30.9
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53290
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.42.30.9.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071101 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jul 12 02:55:19 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

Host 9.30.42.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 9.30.42.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
206.51.33.6	attackspambots	2019-08-25T09:57:06.431178 sshd[15008]: Invalid user amsftp from 206.51.33.6 port 37622 2019-08-25T09:57:06.444601 sshd[15008]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.51.33.6 2019-08-25T09:57:06.431178 sshd[15008]: Invalid user amsftp from 206.51.33.6 port 37622 2019-08-25T09:57:08.846642 sshd[15008]: Failed password for invalid user amsftp from 206.51.33.6 port 37622 ssh2 2019-08-25T10:04:55.988056 sshd[15129]: Invalid user test from 206.51.33.6 port 55428 ...	2019-08-25 16:31:37
80.82.77.18	attackspam	Aug 25 10:48:58 andromeda postfix/smtpd\[18869\]: warning: unknown\[80.82.77.18\]: SASL LOGIN authentication failed: authentication failure Aug 25 10:49:06 andromeda postfix/smtpd\[47507\]: warning: unknown\[80.82.77.18\]: SASL LOGIN authentication failed: authentication failure Aug 25 10:49:29 andromeda postfix/smtpd\[37470\]: warning: unknown\[80.82.77.18\]: SASL LOGIN authentication failed: authentication failure Aug 25 10:49:34 andromeda postfix/smtpd\[18869\]: warning: unknown\[80.82.77.18\]: SASL LOGIN authentication failed: authentication failure Aug 25 10:49:44 andromeda postfix/smtpd\[19412\]: warning: unknown\[80.82.77.18\]: SASL LOGIN authentication failed: authentication failure	2019-08-25 16:53:21
154.51.188.114	attack	Unauthorized connection attempt from IP address 154.51.188.114 on Port 445(SMB)	2019-08-25 17:25:57
54.37.154.254	attackspambots	Aug 24 22:33:35 auw2 sshd\[8651\]: Invalid user user from 54.37.154.254 Aug 24 22:33:35 auw2 sshd\[8651\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=254.ip-54-37-154.eu Aug 24 22:33:38 auw2 sshd\[8651\]: Failed password for invalid user user from 54.37.154.254 port 58974 ssh2 Aug 24 22:37:50 auw2 sshd\[9112\]: Invalid user black from 54.37.154.254 Aug 24 22:37:50 auw2 sshd\[9112\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=254.ip-54-37-154.eu	2019-08-25 16:41:57
37.195.205.135	attackbotsspam	Aug 24 23:13:32 php2 sshd\[29272\]: Invalid user sinusbot from 37.195.205.135 Aug 24 23:13:32 php2 sshd\[29272\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=l37-195-205-135.novotelecom.ru Aug 24 23:13:34 php2 sshd\[29272\]: Failed password for invalid user sinusbot from 37.195.205.135 port 44570 ssh2 Aug 24 23:18:15 php2 sshd\[29728\]: Invalid user chloe from 37.195.205.135 Aug 24 23:18:15 php2 sshd\[29728\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=l37-195-205-135.novotelecom.ru	2019-08-25 17:25:21
60.191.23.58	attackbotsspam	Unauthorized connection attempt from IP address 60.191.23.58 on Port 25(SMTP)	2019-08-25 16:57:43
104.248.117.10	attackbots	Aug 25 09:55:48 mail sshd\[10303\]: Failed password for invalid user osmc from 104.248.117.10 port 55184 ssh2 Aug 25 09:59:56 mail sshd\[10777\]: Invalid user yamamoto from 104.248.117.10 port 43818 Aug 25 09:59:56 mail sshd\[10777\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.117.10 Aug 25 09:59:58 mail sshd\[10777\]: Failed password for invalid user yamamoto from 104.248.117.10 port 43818 ssh2 Aug 25 10:04:09 mail sshd\[11890\]: Invalid user testuser from 104.248.117.10 port 60688	2019-08-25 16:47:48
88.114.58.85	attack	$f2bV_matches	2019-08-25 16:43:08
222.161.56.248	attackspambots	Aug 25 10:04:02 host sshd\[48934\]: Invalid user nancys from 222.161.56.248 port 43392 Aug 25 10:04:02 host sshd\[48934\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.161.56.248 ...	2019-08-25 17:04:55
116.203.155.26	attack	Honeypot attack, port: 23, PTR: static.26.155.203.116.clients.your-server.de.	2019-08-25 17:13:20
54.37.158.40	attackspambots	Aug 25 10:20:55 SilenceServices sshd[22483]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.158.40 Aug 25 10:20:56 SilenceServices sshd[22483]: Failed password for invalid user asd from 54.37.158.40 port 37655 ssh2 Aug 25 10:21:26 SilenceServices sshd[22683]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.158.40	2019-08-25 16:32:40
94.177.233.182	attackspam	Aug 25 10:55:07 dedicated sshd[13472]: Invalid user arleigh from 94.177.233.182 port 46804	2019-08-25 17:03:16
49.83.118.193	attackspam	vulcan	2019-08-25 16:28:39
118.89.249.100	attackbots	Aug 25 10:47:42 plex sshd[4660]: Invalid user user1 from 118.89.249.100 port 45376	2019-08-25 17:06:19
113.199.40.202	attackbotsspam	Aug 25 08:04:41 work-partkepr sshd\[1517\]: Invalid user mmy from 113.199.40.202 port 47472 Aug 25 08:04:41 work-partkepr sshd\[1517\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.199.40.202 ...	2019-08-25 16:27:13

最近上报的IP列表

218.36.42.135	41.252.8.239	167.242.117.159	190.78.149.231
37.49.230.145	55.74.65.21	25.150.214.182	211.130.164.235
103.138.109.219	77.246.250.173	188.73.223.138	185.17.149.156
107.50.230.34	82.70.144.153	173.200.128.185	94.230.130.91
117.253.25.98	191.244.103.216	68.232.169.236	44.77.83.20