城市(city): Ashburn
省份(region): Virginia
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 18.207.149.200 | attackspam | Sep 4 23:59:54 *** sshd[30747]: Invalid user owncloud from 18.207.149.200 Sep 4 23:59:54 *** sshd[30747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-18-207-149-200.compute-1.amazonaws.com Sep 4 23:59:57 *** sshd[30747]: Failed password for invalid user owncloud from 18.207.149.200 port 36964 ssh2 Sep 4 23:59:57 *** sshd[30747]: Received disconnect from 18.207.149.200: 11: Bye Bye [preauth] Sep 5 00:31:43 *** sshd[5769]: Invalid user sysadmin from 18.207.149.200 Sep 5 00:31:43 *** sshd[5769]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-18-207-149-200.compute-1.amazonaws.com Sep 5 00:31:45 *** sshd[5769]: Failed password for invalid user sysadmin from 18.207.149.200 port 49458 ssh2 Sep 5 00:31:45 *** sshd[5769]: Received disconnect from 18.207.149.200: 11: Bye Bye [preauth] Sep 5 00:35:34 *** sshd[7391]: Invalid user alex from 18.207.149.200 Sep 5 00:35:34 *** sshd........ ------------------------------- |
2019-09-05 15:00:47 |
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 18.32.0.0 - 18.255.255.255
CIDR: 18.64.0.0/10, 18.32.0.0/11, 18.128.0.0/9
NetName: AT-88-Z
NetHandle: NET-18-32-0-0-1
Parent: NET18 (NET-18-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Amazon Technologies Inc. (AT-88-Z)
RegDate: 2019-10-07
Updated: 2021-02-10
Ref: https://rdap.arin.net/registry/ip/18.32.0.0
OrgName: Amazon Technologies Inc.
OrgId: AT-88-Z
Address: 410 Terry Ave N.
City: Seattle
StateProv: WA
PostalCode: 98109
Country: US
RegDate: 2011-12-08
Updated: 2026-04-17
Comment: All abuse reports MUST include:
Comment: * src IP
Comment: * dest IP (your IP)
Comment: * dest port
Comment: * Accurate date/timestamp and timezone of activity
Comment: * Intensity/frequency (short log extracts)
Comment: * Your contact details (phone and email) Without these we will be unable to identify the correct owner of the IP address at that point in time.
Ref: https://rdap.arin.net/registry/entity/AT-88-Z
OrgRoutingHandle: IPROU3-ARIN
OrgRoutingName: IP Routing
OrgRoutingPhone: +1-206-555-0000
OrgRoutingEmail: aws-routing-poc@amazon.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/IPROU3-ARIN
OrgDNSHandle: DNS1131-ARIN
OrgDNSName: DNS
OrgDNSPhone: +1-202-555-0000
OrgDNSEmail: ipmanagement+dns@amazon.com
OrgDNSRef: https://rdap.arin.net/registry/entity/DNS1131-ARIN
OrgRoutingHandle: ARMP-ARIN
OrgRoutingName: AWS RPKI Management POC
OrgRoutingPhone: +1-206-555-0000
OrgRoutingEmail: aws-rpki-routing-poc@amazon.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/ARMP-ARIN
OrgNOCHandle: AANO1-ARIN
OrgNOCName: Amazon AWS Network Operations
OrgNOCPhone: +1-206-555-0000
OrgNOCEmail: amzn-noc-contact@amazon.com
OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN
OrgAbuseHandle: AEA8-ARIN
OrgAbuseName: Amazon EC2 Abuse
OrgAbusePhone: +1-206-555-0000
OrgAbuseEmail: trustandsafety@support.aws.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN
OrgTechHandle: ANO24-ARIN
OrgTechName: Amazon EC2 Network Operations
OrgTechPhone: +1-206-555-0000
OrgTechEmail: amzn-noc-contact@amazon.com
OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 18.207.149.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60411
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;18.207.149.68. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026050101 1800 900 604800 86400
;; Query time: 29 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat May 02 05:00:33 CST 2026
;; MSG SIZE rcvd: 10668.149.207.18.in-addr.arpa domain name pointer ec2-18-207-149-68.compute-1.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
68.149.207.18.in-addr.arpa name = ec2-18-207-149-68.compute-1.amazonaws.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 150.95.138.39 | attackbotsspam | Fail2Ban Ban Triggered |
2020-06-29 04:40:25 |
| 138.99.216.171 | attackbots | Jun 17 01:03:35 mail postfix/postscreen[3929]: DNSBL rank 3 for [138.99.216.171]:61000 ... |
2020-06-29 04:45:58 |
| 172.250.12.97 | attackbotsspam | Unauthorized connection attempt detected from IP address 172.250.12.97 to port 23 |
2020-06-29 04:38:11 |
| 218.255.148.182 | attackbots | 20/6/28@16:38:54: FAIL: Alarm-Network address from=218.255.148.182 20/6/28@16:38:54: FAIL: Alarm-Network address from=218.255.148.182 ... |
2020-06-29 04:51:52 |
| 49.51.153.23 | attack | Unauthorized connection attempt detected from IP address 49.51.153.23 to port 9668 |
2020-06-29 04:27:56 |
| 79.70.29.218 | attackbotsspam | Jun 29 03:38:44 webhost01 sshd[27168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.70.29.218 Jun 29 03:38:46 webhost01 sshd[27168]: Failed password for invalid user devuser from 79.70.29.218 port 34944 ssh2 ... |
2020-06-29 04:58:46 |
| 58.237.91.136 | attack | Unauthorized connection attempt detected from IP address 58.237.91.136 to port 88 |
2020-06-29 04:27:04 |
| 37.49.144.133 | attackspam | Unauthorized connection attempt detected from IP address 37.49.144.133 to port 23 |
2020-06-29 04:30:25 |
| 114.247.215.221 | attack | Jun 23 23:26:42 mail postfix/postscreen[6418]: DNSBL rank 4 for [114.247.215.221]:54417 ... |
2020-06-29 04:53:33 |
| 190.96.117.86 | attackspam | Unauthorized connection attempt detected from IP address 190.96.117.86 to port 23 |
2020-06-29 04:35:58 |
| 51.158.118.70 | attack | Jun 28 22:53:36 vps sshd[422174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.118.70 Jun 28 22:53:38 vps sshd[422174]: Failed password for invalid user temp from 51.158.118.70 port 54696 ssh2 Jun 28 22:56:35 vps sshd[438898]: Invalid user shipping from 51.158.118.70 port 52552 Jun 28 22:56:35 vps sshd[438898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.118.70 Jun 28 22:56:37 vps sshd[438898]: Failed password for invalid user shipping from 51.158.118.70 port 52552 ssh2 ... |
2020-06-29 05:05:00 |
| 190.153.249.99 | attack | Jun 28 22:36:00 ns381471 sshd[2833]: Failed password for root from 190.153.249.99 port 39969 ssh2 |
2020-06-29 04:54:14 |
| 103.89.89.164 | attack | Port scan: Attack repeated for 24 hours |
2020-06-29 04:47:12 |
| 103.45.147.10 | attack | Jun 28 13:40:58 dignus sshd[16800]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.147.10 Jun 28 13:41:00 dignus sshd[16800]: Failed password for invalid user doctor from 103.45.147.10 port 37694 ssh2 Jun 28 13:43:53 dignus sshd[18116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.147.10 user=root Jun 28 13:43:54 dignus sshd[18116]: Failed password for root from 103.45.147.10 port 35142 ssh2 Jun 28 13:46:40 dignus sshd[19351]: Invalid user vikram from 103.45.147.10 port 60454 ... |
2020-06-29 05:02:09 |
| 108.178.61.58 | attack | Jun 23 05:08:04 mail postfix/postscreen[26908]: DNSBL rank 3 for [108.178.61.58]:40932 ... |
2020-06-29 05:05:52 |