34.195.130.18 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Amazon Technologies Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Attempt to log in with non-existing username: member1	2019-07-02 09:46:02

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 34.195.130.18
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41792
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;34.195.130.18.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070102 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 02 09:45:56 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

18.130.195.34.in-addr.arpa domain name pointer ec2-34-195-130-18.compute-1.amazonaws.com.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
18.130.195.34.in-addr.arpa	name = ec2-34-195-130-18.compute-1.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
222.186.173.215	attackspambots	Mar 16 05:10:06 php1 sshd\[26940\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.215 user=root Mar 16 05:10:07 php1 sshd\[26940\]: Failed password for root from 222.186.173.215 port 53196 ssh2 Mar 16 05:10:16 php1 sshd\[26940\]: Failed password for root from 222.186.173.215 port 53196 ssh2 Mar 16 05:10:22 php1 sshd\[26940\]: Failed password for root from 222.186.173.215 port 53196 ssh2 Mar 16 05:10:29 php1 sshd\[26970\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.215 user=root	2020-03-16 23:12:25
20.44.211.111	attackspambots	Mar 16 15:22:42 mail1 sshd[9590]: Invalid user default from 20.44.211.111 port 55152 Mar 16 15:22:42 mail1 sshd[9590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.44.211.111 Mar 16 15:22:44 mail1 sshd[9590]: Failed password for invalid user default from 20.44.211.111 port 55152 ssh2 Mar 16 15:22:45 mail1 sshd[9590]: Received disconnect from 20.44.211.111 port 55152:11: Bye Bye [preauth] Mar 16 15:22:45 mail1 sshd[9590]: Disconnected from 20.44.211.111 port 55152 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=20.44.211.111	2020-03-17 00:06:11
193.77.44.150	attackbots	Chat Spam	2020-03-16 23:06:33
203.148.214.211	attackspambots	Unauthorized connection attempt from IP address 203.148.214.211 on Port 445(SMB)	2020-03-16 23:53:37
63.82.50.249	attack	Mar 16 13:20:24 web01 postfix/smtpd[12369]: connect from medical.jdmbrosllc.com[63.82.50.249] Mar 16 13:20:24 web01 policyd-spf[12373]: None; identhostnamey=helo; client-ip=63.82.50.249; helo=medical.felezyabkhostname.co; envelope-from=x@x Mar 16 13:20:24 web01 policyd-spf[12373]: Pass; identhostnamey=mailfrom; client-ip=63.82.50.249; helo=medical.felezyabkhostname.co; envelope-from=x@x Mar x@x Mar 16 13:20:25 web01 postfix/smtpd[12369]: disconnect from medical.jdmbrosllc.com[63.82.50.249] Mar 16 13:20:45 web01 postfix/smtpd[12368]: connect from medical.jdmbrosllc.com[63.82.50.249] Mar 16 13:20:46 web01 policyd-spf[12371]: None; identhostnamey=helo; client-ip=63.82.50.249; helo=medical.felezyabkhostname.co; envelope-from=x@x Mar 16 13:20:46 web01 policyd-spf[12371]: Pass; identhostnamey=mailfrom; client-ip=63.82.50.249; helo=medical.felezyabkhostname.co; envelope-from=x@x Mar x@x Mar 16 13:20:46 web01 postfix/smtpd[12368]: disconnect from medical.jdmbrosllc.com[63.82.50........ -------------------------------	2020-03-16 23:05:09
63.82.48.182	attack	Mar 16 15:26:48 web01 postfix/smtpd[19527]: connect from face.vidyad.com[63.82.48.182] Mar 16 15:26:48 web01 policyd-spf[20897]: None; identhostnamey=helo; client-ip=63.82.48.182; helo=face.birpack.com; envelope-from=x@x Mar 16 15:26:48 web01 policyd-spf[20897]: Pass; identhostnamey=mailfrom; client-ip=63.82.48.182; helo=face.birpack.com; envelope-from=x@x Mar x@x Mar 16 15:26:48 web01 postfix/smtpd[19527]: disconnect from face.vidyad.com[63.82.48.182] Mar 16 15:27:09 web01 postfix/smtpd[21075]: connect from face.vidyad.com[63.82.48.182] Mar 16 15:27:10 web01 policyd-spf[21078]: None; identhostnamey=helo; client-ip=63.82.48.182; helo=face.birpack.com; envelope-from=x@x Mar 16 15:27:10 web01 policyd-spf[21078]: Pass; identhostnamey=mailfrom; client-ip=63.82.48.182; helo=face.birpack.com; envelope-from=x@x Mar x@x Mar 16 15:27:10 web01 postfix/smtpd[21075]: disconnect from face.vidyad.com[63.82.48.182] Mar 16 15:33:24 web01 postfix/smtpd[22025]: connect from face.vidyad.c........ -------------------------------	2020-03-16 23:36:26
122.51.117.82	attackbotsspam	firewall-block, port(s): 23/tcp	2020-03-17 00:09:32
139.199.50.159	attackbots	Mar 16 15:58:58 OPSO sshd\[22175\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.50.159 user=root Mar 16 15:59:00 OPSO sshd\[22175\]: Failed password for root from 139.199.50.159 port 60637 ssh2 Mar 16 16:08:51 OPSO sshd\[23393\]: Invalid user kigwasshoi from 139.199.50.159 port 35311 Mar 16 16:08:51 OPSO sshd\[23393\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.50.159 Mar 16 16:08:53 OPSO sshd\[23393\]: Failed password for invalid user kigwasshoi from 139.199.50.159 port 35311 ssh2	2020-03-17 00:07:43
42.118.98.169	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 16-03-2020 14:45:15.	2020-03-16 23:52:10
85.96.203.162	attackbotsspam	85.96.203.162 - - \[16/Mar/2020:07:44:59 -0700\] "POST /index.php/admin HTTP/1.1" 404 2040785.96.203.162 - - \[16/Mar/2020:07:44:59 -0700\] "POST /index.php/admin/index/ HTTP/1.1" 404 2043585.96.203.162 - ADMIN1 \[16/Mar/2020:07:45:00 -0700\] "GET /rss/catalog/notifystock/ HTTP/1.1" 401 25 ...	2020-03-17 00:11:43
49.233.69.121	attackspam	Mar 16 19:38:13 gw1 sshd[10351]: Failed password for root from 49.233.69.121 port 49622 ssh2 ...	2020-03-16 23:05:36
185.176.27.18	attackbotsspam	[MK-VM2] Blocked by UFW	2020-03-16 23:21:25
41.45.124.63	attackspam	Telnetd brute force attack detected by fail2ban	2020-03-16 23:50:43
187.19.165.243	attackspambots	Unauthorized connection attempt from IP address 187.19.165.243 on Port 445(SMB)	2020-03-16 23:51:10
87.248.174.125	attackspam	Icarus honeypot on github	2020-03-16 23:18:28

最近上报的IP列表

254.8.50.217	189.124.85.12	248.206.77.18	92.251.38.170
187.120.141.127	50.137.175.254	254.225.255.52	94.221.138.58
185.10.207.222	128.199.160.219	77.22.11.19	134.54.112.234
10.0.167.108	145.159.70.148	96.8.112.14	152.118.178.39
126.55.66.175	206.189.209.142	73.95.225.102	114.112.128.2