54.157.254.239

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Amazon Technologies Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 54.157.254.239 to port 80 [J]	2020-01-30 23:40:28

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.157.254.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27015
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;54.157.254.239.			IN	A

;; AUTHORITY SECTION:
.			241	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020013001 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 30 23:40:16 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

239.254.157.54.in-addr.arpa domain name pointer ec2-54-157-254-239.compute-1.amazonaws.com.

NSLOOKUP信息:

Server:		100.100.2.136
Address:	100.100.2.136#53

Non-authoritative answer:
239.254.157.54.in-addr.arpa	name = ec2-54-157-254-239.compute-1.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
36.89.31.98	attack	2019-10-13T13:31:55.630356abusebot.cloudsearch.cf sshd\[16901\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.89.31.98 user=root	2019-10-13 21:42:12
167.71.244.67	attackbots	Oct 13 10:00:25 firewall sshd[10693]: Failed password for root from 167.71.244.67 port 40918 ssh2 Oct 13 10:04:29 firewall sshd[10943]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.244.67 user=root Oct 13 10:04:31 firewall sshd[10943]: Failed password for root from 167.71.244.67 port 52494 ssh2 ...	2019-10-13 21:56:22
94.102.51.108	attack	Port Scan detected from 94.102.51.108 (NL/Netherlands/-). 4 hits in the last 211 seconds	2019-10-13 21:33:29
51.75.24.200	attackbotsspam	Oct 13 02:23:14 hanapaa sshd\[30244\]: Invalid user Senha@123 from 51.75.24.200 Oct 13 02:23:14 hanapaa sshd\[30244\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.ip-51-75-24.eu Oct 13 02:23:16 hanapaa sshd\[30244\]: Failed password for invalid user Senha@123 from 51.75.24.200 port 58890 ssh2 Oct 13 02:27:22 hanapaa sshd\[30548\]: Invalid user Azur!23 from 51.75.24.200 Oct 13 02:27:22 hanapaa sshd\[30548\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.ip-51-75-24.eu	2019-10-13 21:47:07
220.164.2.80	attackspambots	Oct 13 REMOVED dovecot: imap-login: Disconnected $auth failed, 1 attempts in 6 secs$: user=\, method=PLAIN, rip=220.164.2.80, lip=REMOVED, TLS: Disconnected, session=\ Oct 13 REMOVED dovecot: imap-login: Disconnected $auth failed, 1 attempts in 6 secs$: user=\<REMOVED.dewarner@REMOVED.de\>, method=PLAIN, rip=220.164.2.80, lip=REMOVED, TLS: Disconnected, session=\ Oct 13 REMOVED dovecot: imap-login: Disconnected $auth failed, 1 attempts in 5 secs$: user=\, method=PLAIN, rip=220.164.2.80, lip=REMOVED, TLS, session=\<7gFi08qUoYvcpAJQ\>	2019-10-13 21:50:40
58.199.164.240	attackbots	2019-10-13T13:27:30.584699abusebot-5.cloudsearch.cf sshd\[6587\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.199.164.240 user=bin	2019-10-13 21:51:00
222.186.42.163	attackspam	13.10.2019 13:33:18 SSH access blocked by firewall	2019-10-13 21:34:02
177.67.4.95	attack	Oct 13 11:54:07 system,error,critical: login failure for user admin from 177.67.4.95 via telnet Oct 13 11:54:09 system,error,critical: login failure for user admin from 177.67.4.95 via telnet Oct 13 11:54:11 system,error,critical: login failure for user admin from 177.67.4.95 via telnet Oct 13 11:54:15 system,error,critical: login failure for user root from 177.67.4.95 via telnet Oct 13 11:54:17 system,error,critical: login failure for user supervisor from 177.67.4.95 via telnet Oct 13 11:54:19 system,error,critical: login failure for user supervisor from 177.67.4.95 via telnet Oct 13 11:54:24 system,error,critical: login failure for user root from 177.67.4.95 via telnet Oct 13 11:54:25 system,error,critical: login failure for user Admin from 177.67.4.95 via telnet Oct 13 11:54:27 system,error,critical: login failure for user root from 177.67.4.95 via telnet Oct 13 11:54:32 system,error,critical: login failure for user mother from 177.67.4.95 via telnet	2019-10-13 21:57:41
222.186.175.212	attack	Oct 13 09:44:11 TORMINT sshd\[14912\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.212 user=root Oct 13 09:44:13 TORMINT sshd\[14912\]: Failed password for root from 222.186.175.212 port 58532 ssh2 Oct 13 09:44:40 TORMINT sshd\[14928\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.212 user=root ...	2019-10-13 21:45:48
222.186.52.107	attackbots	Oct 13 15:44:08 dedicated sshd[16786]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.52.107 user=root Oct 13 15:44:10 dedicated sshd[16786]: Failed password for root from 222.186.52.107 port 56682 ssh2	2019-10-13 21:53:00
79.11.181.225	attack	Oct 13 13:45:21 hcbbdb sshd\[23051\]: Invalid user P@\$\$w0rd from 79.11.181.225 Oct 13 13:45:21 hcbbdb sshd\[23051\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host225-181-static.11-79-b.business.telecomitalia.it Oct 13 13:45:23 hcbbdb sshd\[23051\]: Failed password for invalid user P@\$\$w0rd from 79.11.181.225 port 51031 ssh2 Oct 13 13:50:44 hcbbdb sshd\[23664\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host225-181-static.11-79-b.business.telecomitalia.it user=root Oct 13 13:50:47 hcbbdb sshd\[23664\]: Failed password for root from 79.11.181.225 port 61020 ssh2	2019-10-13 22:15:22
165.22.86.38	attackspam	2019-10-13T13:59:13.362916abusebot-5.cloudsearch.cf sshd\[6959\]: Invalid user bjorn from 165.22.86.38 port 56944	2019-10-13 22:21:12
91.134.135.220	attack	Oct 13 14:13:15 SilenceServices sshd[15132]: Failed password for root from 91.134.135.220 port 32942 ssh2 Oct 13 14:17:01 SilenceServices sshd[16140]: Failed password for root from 91.134.135.220 port 44314 ssh2	2019-10-13 21:46:33
89.42.217.12	attackbots	Automatic report - XMLRPC Attack	2019-10-13 22:18:55
106.12.82.84	attackbots	2019-10-13T13:27:46.861990abusebot-7.cloudsearch.cf sshd\[17980\]: Invalid user Admin3@1 from 106.12.82.84 port 35864	2019-10-13 21:52:02

最近上报的IP列表

123.16.212.131	120.136.28.34	230.236.6.42	119.236.116.2
166.200.202.56	113.22.194.182	65.39.4.60	103.141.136.42
103.129.33.174	80.53.203.170	77.159.72.200	45.224.105.41
77.42.92.118	59.126.53.137	52.87.242.121	45.165.5.161
211.51.247.88	202.179.190.122	202.79.48.22	189.205.159.204