54.69.30.148 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.69.30.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20309
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;54.69.30.148.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020302 1800 900 604800 86400

;; Query time: 43 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 07:42:51 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

148.30.69.54.in-addr.arpa domain name pointer ec2-54-69-30-148.us-west-2.compute.amazonaws.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
148.30.69.54.in-addr.arpa	name = ec2-54-69-30-148.us-west-2.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
103.76.175.130	attackbotsspam	Automatic report - Banned IP Access	2020-08-10 05:00:59
103.92.31.32	attackbots	SSH brutforce	2020-08-10 05:22:10
35.220.160.164	attackspam	TCP Port Scanning	2020-08-10 05:11:11
114.98.236.124	attackspambots	"$f2bV_matches"	2020-08-10 05:02:58
85.209.0.115	attackbots	Aug 9 23:25:38 server2 sshd\[22974\]: User root from 85.209.0.115 not allowed because not listed in AllowUsers Aug 9 23:25:38 server2 sshd\[22973\]: User root from 85.209.0.115 not allowed because not listed in AllowUsers Aug 9 23:25:38 server2 sshd\[22969\]: User root from 85.209.0.115 not allowed because not listed in AllowUsers Aug 9 23:25:39 server2 sshd\[22978\]: User root from 85.209.0.115 not allowed because not listed in AllowUsers Aug 9 23:25:39 server2 sshd\[22977\]: User root from 85.209.0.115 not allowed because not listed in AllowUsers Aug 9 23:25:41 server2 sshd\[22981\]: User root from 85.209.0.115 not allowed because not listed in AllowUsers	2020-08-10 05:21:00
51.178.142.220	attackbotsspam	prod6 ...	2020-08-10 05:19:42
192.99.9.25	attackspam	[Mon Aug 10 03:25:34.789896 2020] [:error] [pid 25870:tid 139856589379328] [client 192.99.9.25:37236] [client 192.99.9.25] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "MJ12bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-913-SCANNER-DETECTION.conf"] [line "183"] [id "913102"] [msg "Found User-Agent associated with web crawler/bot"] [data "Matched Data: MJ12bot found within REQUEST_HEADERS:User-Agent: mozilla/5.0 (compatible; mj12bot/v1.4.8; http://mj12bot.com/)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-reputation-crawler"] [tag "OWASP_CRS"] [tag "OWASP_CRS/AUTOMATION/CRAWLER"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [tag "paranoia-level/2"] [hostname "staklim-malang.info"] [uri "/robots.txt"] [unique_id "XzBbvjnt7F0RJ3@eib4OwwAAAks"] ...	2020-08-10 05:27:56
101.231.166.39	attack	Lines containing failures of 101.231.166.39 Aug 3 04:45:55 newdogma sshd[31658]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.231.166.39 user=r.r Aug 3 04:45:58 newdogma sshd[31658]: Failed password for r.r from 101.231.166.39 port 2048 ssh2 Aug 3 04:45:59 newdogma sshd[31658]: Received disconnect from 101.231.166.39 port 2048:11: Bye Bye [preauth] Aug 3 04:45:59 newdogma sshd[31658]: Disconnected from authenticating user r.r 101.231.166.39 port 2048 [preauth] Aug 3 05:01:13 newdogma sshd[32299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.231.166.39 user=r.r Aug 3 05:01:15 newdogma sshd[32299]: Failed password for r.r from 101.231.166.39 port 2049 ssh2 Aug 3 05:01:17 newdogma sshd[32299]: Received disconnect from 101.231.166.39 port 2049:11: Bye Bye [preauth] Aug 3 05:01:17 newdogma sshd[32299]: Disconnected from authenticating user r.r 101.231.166.39 port 2049 [prea........ ------------------------------	2020-08-10 05:14:42
58.56.40.210	attack	2020-08-10T03:21:39.685775hostname sshd[15089]: Failed password for root from 58.56.40.210 port 43160 ssh2 2020-08-10T03:25:42.689348hostname sshd[16678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.56.40.210 user=root 2020-08-10T03:25:44.932593hostname sshd[16678]: Failed password for root from 58.56.40.210 port 46557 ssh2 ...	2020-08-10 05:15:27
163.158.162.189	attack	Automatic report - XMLRPC Attack	2020-08-10 05:18:10
218.92.0.248	attack	Aug 9 22:56:51 vps sshd[968933]: Failed password for root from 218.92.0.248 port 46706 ssh2 Aug 9 22:56:54 vps sshd[968933]: Failed password for root from 218.92.0.248 port 46706 ssh2 Aug 9 22:56:56 vps sshd[968933]: Failed password for root from 218.92.0.248 port 46706 ssh2 Aug 9 22:56:59 vps sshd[968933]: Failed password for root from 218.92.0.248 port 46706 ssh2 Aug 9 22:57:03 vps sshd[968933]: Failed password for root from 218.92.0.248 port 46706 ssh2 ...	2020-08-10 04:59:06
95.66.162.203	attackbots	20/8/9@16:25:52: FAIL: Alarm-Network address from=95.66.162.203 ...	2020-08-10 05:10:10
79.25.87.254	attack	(sshd) Failed SSH login from 79.25.87.254 (IT/Italy/host-79-25-87-254.retail.telecomitalia.it): 5 in the last 300 secs	2020-08-10 04:54:00
159.65.176.156	attack	SSH Brute Force	2020-08-10 05:12:02
190.210.62.45	attack	Aug 9 22:22:47 jane sshd[7137]: Failed password for root from 190.210.62.45 port 35146 ssh2 ...	2020-08-10 05:27:02

最近上报的IP列表

246.122.90.172	34.180.160.21	174.73.125.115	205.170.34.168
228.249.201.235	230.69.77.237	195.121.156.158	124.226.19.17
139.58.89.189	202.40.202.94	223.45.210.24	241.201.161.169
140.173.207.233	42.224.55.153	4.158.89.41	254.141.91.56
140.39.194.198	16.184.49.150	183.60.94.91	150.52.228.156