1.189.90.30 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom Heilongjiang Province Network

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Port probing on unauthorized port 2323	2020-02-18 21:51:38

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.189.90.30
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57054
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.189.90.30.			IN	A

;; AUTHORITY SECTION:
.			422	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021801 1800 900 604800 86400

;; Query time: 479 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 18 21:51:30 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 30.90.189.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 30.90.189.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
116.48.131.49	attack	Unauthorized connection attempt from IP address 116.48.131.49 on Port 445(SMB)	2020-07-26 00:42:37
158.69.197.113	attackspambots	Jul 26 02:48:13 localhost sshd[364028]: Invalid user ldf from 158.69.197.113 port 54800 ...	2020-07-26 00:49:11
107.148.130.47	attackbotsspam	Portscan or hack attempt detected by psad/fwsnort	2020-07-26 00:15:03
125.165.154.170	attackspam	Unauthorized connection attempt from IP address 125.165.154.170 on Port 445(SMB)	2020-07-26 00:16:57
193.27.229.15	attack	Brute force RDP 3389.	2020-07-26 00:38:31
200.91.216.210	attackbotsspam	Unauthorized connection attempt from IP address 200.91.216.210 on Port 445(SMB)	2020-07-26 00:48:55
112.133.236.17	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-07-26 00:24:57
178.128.232.77	attack	Jul 25 17:13:04 home sshd[670996]: Invalid user test from 178.128.232.77 port 36566 Jul 25 17:13:04 home sshd[670996]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.232.77 Jul 25 17:13:04 home sshd[670996]: Invalid user test from 178.128.232.77 port 36566 Jul 25 17:13:07 home sshd[670996]: Failed password for invalid user test from 178.128.232.77 port 36566 ssh2 Jul 25 17:17:40 home sshd[671445]: Invalid user alejo from 178.128.232.77 port 51588 ...	2020-07-26 00:31:31
222.186.31.127	attackbotsspam	Jul 25 16:28:37 ip-172-31-62-245 sshd\[1958\]: Failed password for root from 222.186.31.127 port 52120 ssh2\ Jul 25 16:28:41 ip-172-31-62-245 sshd\[1958\]: Failed password for root from 222.186.31.127 port 52120 ssh2\ Jul 25 16:28:44 ip-172-31-62-245 sshd\[1958\]: Failed password for root from 222.186.31.127 port 52120 ssh2\ Jul 25 16:35:54 ip-172-31-62-245 sshd\[2030\]: Failed password for root from 222.186.31.127 port 52564 ssh2\ Jul 25 16:35:56 ip-172-31-62-245 sshd\[2030\]: Failed password for root from 222.186.31.127 port 52564 ssh2\	2020-07-26 00:52:27
140.246.225.169	attackbots	Jul 25 17:16:19 ns382633 sshd\[26338\]: Invalid user demo from 140.246.225.169 port 43658 Jul 25 17:16:19 ns382633 sshd\[26338\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.246.225.169 Jul 25 17:16:21 ns382633 sshd\[26338\]: Failed password for invalid user demo from 140.246.225.169 port 43658 ssh2 Jul 25 17:31:27 ns382633 sshd\[29242\]: Invalid user chy from 140.246.225.169 port 40530 Jul 25 17:31:27 ns382633 sshd\[29242\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.246.225.169	2020-07-26 00:23:45
40.114.87.2	attackspambots	TCP (SYN) 40.114.87.2:57325 -> port 445, len 40	2020-07-26 00:47:06
140.82.17.48	attack	Exploited Host.	2020-07-26 00:20:15
104.121.187.101	attackspambots	trying to access non-authorized port	2020-07-26 00:17:14
195.161.162.46	attack	Invalid user sean from 195.161.162.46 port 39768	2020-07-26 00:28:23
222.239.124.19	attackspam	Jul 25 18:44:23 ift sshd\[56172\]: Invalid user tt from 222.239.124.19Jul 25 18:44:26 ift sshd\[56172\]: Failed password for invalid user tt from 222.239.124.19 port 44810 ssh2Jul 25 18:47:37 ift sshd\[56875\]: Invalid user master from 222.239.124.19Jul 25 18:47:39 ift sshd\[56875\]: Failed password for invalid user master from 222.239.124.19 port 39918 ssh2Jul 25 18:50:48 ift sshd\[57283\]: Invalid user misson from 222.239.124.19 ...	2020-07-26 00:50:34

Recently Reported IPs

186.102.108.12	45.119.82.17	220.227.136.240	197.233.198.96
84.228.228.38	186.207.180.25	44.208.51.87	135.206.254.11
185.19.190.128	181.126.86.63	211.36.208.202	165.212.41.76
105.149.8.202	213.77.77.253	250.56.140.170	253.79.149.181
46.101.65.87	184.27.207.43	54.192.213.32	211.159.171.57