城市(city): unknown
省份(region): unknown
国家(country): United States of America (the)
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.145.30.27
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62792
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;54.145.30.27. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025020900 1800 900 604800 86400
;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 00:34:25 CST 2025
;; MSG SIZE rcvd: 10527.30.145.54.in-addr.arpa domain name pointer ec2-54-145-30-27.compute-1.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
27.30.145.54.in-addr.arpa name = ec2-54-145-30-27.compute-1.amazonaws.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 171.96.217.241 | attackspam | Attempt to attack host OS, exploiting network vulnerabilities, on 28-10-2019 11:50:23. |
2019-10-29 00:27:46 |
| 51.83.77.224 | attack | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/51.83.77.224/ FR - 1H : (81) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : FR NAME ASN : ASN16276 IP : 51.83.77.224 CIDR : 51.83.0.0/16 PREFIX COUNT : 132 UNIQUE IP COUNT : 3052544 ATTACKS DETECTED ASN16276 : 1H - 2 3H - 15 6H - 24 12H - 31 24H - 48 DateTime : 2019-10-28 13:28:50 INFO : Port SSH 22 Scan Detected and Blocked by ADMIN - data recovery |
2019-10-29 01:09:24 |
| 51.255.39.143 | attackspambots | Oct 28 04:04:37 php1 sshd\[30117\]: Invalid user admin from 51.255.39.143 Oct 28 04:04:37 php1 sshd\[30117\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.39.143 Oct 28 04:04:39 php1 sshd\[30117\]: Failed password for invalid user admin from 51.255.39.143 port 43222 ssh2 Oct 28 04:08:19 php1 sshd\[30409\]: Invalid user redmine from 51.255.39.143 Oct 28 04:08:19 php1 sshd\[30409\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.39.143 |
2019-10-29 01:04:22 |
| 121.121.104.82 | attackbotsspam | Automatic report - Banned IP Access |
2019-10-29 00:32:10 |
| 117.245.137.9 | attack | Attempt to attack host OS, exploiting network vulnerabilities, on 28-10-2019 11:50:21. |
2019-10-29 00:32:25 |
| 106.75.134.239 | attackbots | Oct 28 05:39:43 tdfoods sshd\[15656\]: Invalid user Pass123 from 106.75.134.239 Oct 28 05:39:43 tdfoods sshd\[15656\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.134.239 Oct 28 05:39:45 tdfoods sshd\[15656\]: Failed password for invalid user Pass123 from 106.75.134.239 port 42398 ssh2 Oct 28 05:45:42 tdfoods sshd\[16142\]: Invalid user leeloo from 106.75.134.239 Oct 28 05:45:42 tdfoods sshd\[16142\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.134.239 |
2019-10-29 01:00:55 |
| 218.64.27.49 | attack | 2019-10-28 06:49:17 dovecot_login authenticator failed for (puznl.com) [218.64.27.49]:49284 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=ler@lerctr.org) 2019-10-28 06:49:33 dovecot_login authenticator failed for (puznl.com) [218.64.27.49]:50340 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=ler@lerctr.org) 2019-10-28 06:49:52 dovecot_login authenticator failed for (puznl.com) [218.64.27.49]:51886 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=ler@lerctr.org) ... |
2019-10-29 01:05:20 |
| 167.99.81.101 | attackbots | Oct 28 17:20:08 meumeu sshd[21577]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.81.101 Oct 28 17:20:09 meumeu sshd[21577]: Failed password for invalid user super from 167.99.81.101 port 41984 ssh2 Oct 28 17:24:40 meumeu sshd[22075]: Failed password for root from 167.99.81.101 port 52344 ssh2 ... |
2019-10-29 00:40:48 |
| 106.12.81.233 | attack | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/106.12.81.233/ CN - 1H : (837) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN38365 IP : 106.12.81.233 CIDR : 106.12.80.0/23 PREFIX COUNT : 308 UNIQUE IP COUNT : 237568 ATTACKS DETECTED ASN38365 : 1H - 3 3H - 5 6H - 5 12H - 5 24H - 7 DateTime : 2019-10-28 15:12:26 INFO : Port SSH 22 Scan Detected and Blocked by ADMIN - data recovery |
2019-10-29 00:55:58 |
| 42.86.158.185 | attackbotsspam | 8080/tcp 8080/tcp [2019-10-26]2pkt |
2019-10-29 00:30:48 |
| 103.61.39.106 | attackspam | Oct 28 13:47:01 marvibiene sshd[2621]: Invalid user scan from 103.61.39.106 port 33672 Oct 28 13:47:01 marvibiene sshd[2621]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.61.39.106 Oct 28 13:47:01 marvibiene sshd[2621]: Invalid user scan from 103.61.39.106 port 33672 Oct 28 13:47:03 marvibiene sshd[2621]: Failed password for invalid user scan from 103.61.39.106 port 33672 ssh2 ... |
2019-10-29 00:45:43 |
| 182.75.54.26 | attack | 1433/tcp 1433/tcp [2019-10-22/28]2pkt |
2019-10-29 00:41:50 |
| 176.65.187.139 | attackspambots | Honeypot attack, port: 23, PTR: PTR record not found |
2019-10-29 00:59:41 |
| 72.11.168.29 | attack | IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/72.11.168.29/ CA - 1H : (20) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CA NAME ASN : ASN30466 IP : 72.11.168.29 CIDR : 72.11.168.0/24 PREFIX COUNT : 171 UNIQUE IP COUNT : 43776 ATTACKS DETECTED ASN30466 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-28 15:30:23 INFO : Port SSH 22 Scan Detected and Blocked by ADMIN - data recovery |
2019-10-29 01:16:54 |
| 103.89.91.177 | attackspam | MultiHost/MultiPort Probe, Scan, Hack - |
2019-10-29 00:50:45 |