54.161.42.103 - IPInfo

基本信息:

城市(city): Ashburn

省份(region): Virginia

国家(country): United States

运营商(isp): Amazon Technologies Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 54.161.42.103 to port 9200	2020-06-22 08:14:16

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.161.42.103
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16902
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;54.161.42.103.			IN	A

;; AUTHORITY SECTION:
.			235	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062101 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 22 08:14:12 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

103.42.161.54.in-addr.arpa domain name pointer ec2-54-161-42-103.compute-1.amazonaws.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
103.42.161.54.in-addr.arpa	name = ec2-54-161-42-103.compute-1.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
134.209.157.18	attackspambots	Aug 7 12:39:47 MK-Soft-Root1 sshd\[8172\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.157.18 user=root Aug 7 12:39:49 MK-Soft-Root1 sshd\[8172\]: Failed password for root from 134.209.157.18 port 42766 ssh2 Aug 7 12:45:39 MK-Soft-Root1 sshd\[9060\]: Invalid user username from 134.209.157.18 port 44774 Aug 7 12:45:39 MK-Soft-Root1 sshd\[9060\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.157.18 ...	2019-08-08 00:57:45
36.71.45.160	attackbots	Aug 7 08:26:25 v26 sshd[14385]: Did not receive identification string from 36.71.45.160 port 58528 Aug 7 08:26:25 v26 sshd[14386]: Did not receive identification string from 36.71.45.160 port 53878 Aug 7 08:26:25 v26 sshd[14387]: Did not receive identification string from 36.71.45.160 port 59063 Aug 7 08:26:29 v26 sshd[14392]: Did not receive identification string from 36.71.45.160 port 53049 Aug 7 08:26:29 v26 sshd[14391]: Did not receive identification string from 36.71.45.160 port 53051 Aug 7 08:26:29 v26 sshd[14390]: Did not receive identification string from 36.71.45.160 port 53047 Aug 7 08:26:33 v26 sshd[14388]: Invalid user sniffer from 36.71.45.160 port 55133 Aug 7 08:26:34 v26 sshd[14389]: Invalid user sniffer from 36.71.45.160 port 56826 Aug 7 08:26:36 v26 sshd[14388]: Failed password for invalid user sniffer from 36.71.45.160 port 55133 ssh2 Aug 7 08:26:36 v26 sshd[14389]: Failed password for invalid user sniffer from 36.71.45.160 port 56826 ssh2 Au........ -------------------------------	2019-08-08 00:22:45
90.189.116.235	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-07 05:14:27,582 INFO [amun_request_handler] PortScan Detected on Port: 445 (90.189.116.235)	2019-08-08 00:50:27
121.26.194.238	attackspam	Aug708:48:07server4pure-ftpd:\(\?@121.26.194.238\)[WARNING]Authenticationfailedforuser[anonymous]Aug708:48:12server4pure-ftpd:\(\?@121.26.194.238\)[WARNING]Authenticationfailedforuser[www]Aug708:48:17server4pure-ftpd:\(\?@121.26.194.238\)[WARNING]Authenticationfailedforuser[www]Aug708:48:24server4pure-ftpd:\(\?@121.26.194.238\)[WARNING]Authenticationfailedforuser[mgevents]Aug708:48:31server4pure-ftpd:\(\?@121.26.194.238\)[WARNING]Authenticationfailedforuser[mgevents]Aug708:48:37server4pure-ftpd:\(\?@121.26.194.238\)[WARNING]Authenticationfailedforuser[mgevents]Aug708:48:43server4pure-ftpd:\(\?@121.26.194.238\)[WARNING]Authenticationfailedforuser[www]Aug708:48:49server4pure-ftpd:\(\?@121.26.194.238\)[WARNING]Authenticationfailedforuser[mgevents]Aug708:49:00server4pure-ftpd:\(\?@121.26.194.238\)[WARNING]Authenticationfailedforuser[mgevents]Aug708:49:13server4pure-ftpd:\(\?@121.26.194.238\)[WARNING]Authenticationfailedforuser[mgevents]	2019-08-08 01:06:26
134.175.141.166	attackspam	Aug 7 19:02:15 areeb-Workstation sshd\[3979\]: Invalid user oracle from 134.175.141.166 Aug 7 19:02:15 areeb-Workstation sshd\[3979\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.141.166 Aug 7 19:02:18 areeb-Workstation sshd\[3979\]: Failed password for invalid user oracle from 134.175.141.166 port 33500 ssh2 ...	2019-08-07 23:55:26
217.125.110.139	attackbots	Aug 7 12:21:34 *** sshd[26867]: Invalid user nathan from 217.125.110.139	2019-08-08 00:24:52
36.72.42.109	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-07 05:17:24,351 INFO [amun_request_handler] PortScan Detected on Port: 445 (36.72.42.109)	2019-08-08 00:19:41
195.137.200.2	attack	[portscan] Port scan	2019-08-08 01:03:26
198.108.66.168	attack	08/07/2019-02:49:30.282361 198.108.66.168 Protocol: 6 ET SCAN Suspicious inbound to PostgreSQL port 5432	2019-08-08 00:58:37
203.205.29.86	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-07 05:10:30,822 INFO [amun_request_handler] PortScan Detected on Port: 445 (203.205.29.86)	2019-08-08 01:05:49
14.225.3.37	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-08 00:04:21
40.78.133.79	attackspam	Aug 7 12:43:16 microserver sshd[2479]: Invalid user userftp from 40.78.133.79 port 45142 Aug 7 12:43:16 microserver sshd[2479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.78.133.79 Aug 7 12:43:18 microserver sshd[2479]: Failed password for invalid user userftp from 40.78.133.79 port 45142 ssh2 Aug 7 12:48:11 microserver sshd[3223]: Invalid user prueba1 from 40.78.133.79 port 42950 Aug 7 12:48:11 microserver sshd[3223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.78.133.79 Aug 7 13:02:45 microserver sshd[5281]: Invalid user amar from 40.78.133.79 port 35866 Aug 7 13:02:45 microserver sshd[5281]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.78.133.79 Aug 7 13:02:47 microserver sshd[5281]: Failed password for invalid user amar from 40.78.133.79 port 35866 ssh2 Aug 7 13:07:35 microserver sshd[5934]: Invalid user vicente from 40.78.133.79 port 33552 Aug 7 13:07:35 m	2019-08-07 23:46:51
134.209.155.245	attack	SSH Server BruteForce Attack	2019-08-08 00:14:52
183.88.214.143	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-07 05:10:24,807 INFO [amun_request_handler] PortScan Detected on Port: 445 (183.88.214.143)	2019-08-08 01:07:35
183.171.74.113	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-07 05:18:04,856 INFO [amun_request_handler] PortScan Detected on Port: 445 (183.171.74.113)	2019-08-08 00:07:10

最近上报的IP列表

70.40.230.189	2.226.152.75	47.12.44.122	161.202.160.6
205.247.212.116	2.190.252.166	1.170.62.169	79.237.172.248
1.254.88.13	159.0.114.47	175.0.105.39	128.204.161.149
181.141.136.246	220.153.166.215	211.106.11.199	99.119.230.120
175.62.165.26	190.218.77.2	44.144.173.38	60.45.4.133