54.193.44.116 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Amazon.com Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Request: "GET / HTTP/1.1"	2019-06-22 09:52:23

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.193.44.116
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53382
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;54.193.44.116.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062200 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jun 22 09:52:16 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

116.44.193.54.in-addr.arpa domain name pointer ec2-54-193-44-116.us-west-1.compute.amazonaws.com.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
116.44.193.54.in-addr.arpa	name = ec2-54-193-44-116.us-west-1.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
174.138.30.233	attack	174.138.30.233 - - [01/Oct/2020:13:04:47 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 174.138.30.233 - - [01/Oct/2020:13:04:55 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 174.138.30.233 - - [01/Oct/2020:13:04:56 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-02 00:26:06
193.112.18.214	attack	$f2bV_matches	2020-10-02 00:52:47
178.128.45.173	attackbotsspam	TCP (SYN) 178.128.45.173:55604 -> port 26747, len 44	2020-10-02 00:58:09
51.38.51.200	attackbotsspam	SSH login attempts.	2020-10-02 00:49:15
190.111.151.207	attack	Lines containing failures of 190.111.151.207 Sep 30 17:33:09 shared10 sshd[8440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.111.151.207 user=r.r Sep 30 17:33:11 shared10 sshd[8440]: Failed password for r.r from 190.111.151.207 port 37212 ssh2 Sep 30 17:33:11 shared10 sshd[8440]: Received disconnect from 190.111.151.207 port 37212:11: Bye Bye [preauth] Sep 30 17:33:11 shared10 sshd[8440]: Disconnected from authenticating user r.r 190.111.151.207 port 37212 [preauth] Sep 30 17:46:35 shared10 sshd[13395]: Invalid user jenkins from 190.111.151.207 port 56401 Sep 30 17:46:35 shared10 sshd[13395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.111.151.207 Sep 30 17:46:37 shared10 sshd[13395]: Failed password for invalid user jenkins from 190.111.151.207 port 56401 ssh2 Sep 30 17:46:37 shared10 sshd[13395]: Received disconnect from 190.111.151.207 port 56401:11: Bye Bye [preauth] Sep........ ------------------------------	2020-10-02 00:36:20
91.193.103.165	attackspambots	Invalid user git from 91.193.103.165 port 51580	2020-10-02 00:34:02
167.71.218.222	attackbotsspam	Invalid user ronald from 167.71.218.222 port 60046	2020-10-02 00:30:16
51.158.111.168	attack	Invalid user terry from 51.158.111.168 port 34348	2020-10-02 00:44:20
101.32.34.76	attack	Oct 1 12:41:04 NPSTNNYC01T sshd[14123]: Failed password for root from 101.32.34.76 port 39502 ssh2 Oct 1 12:45:19 NPSTNNYC01T sshd[14281]: Failed password for root from 101.32.34.76 port 49892 ssh2 ...	2020-10-02 00:51:30
122.51.241.12	attackspam	SSH login attempts.	2020-10-02 00:33:03
51.79.79.151	attackbotsspam	[2020-10-01 12:33:41] NOTICE[1182] chan_sip.c: Registration from '' failed for '51.79.79.151:56064' - Wrong password [2020-10-01 12:33:41] SECURITY[1204] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-10-01T12:33:41.586-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="5347",SessionID="0x7f22f805e308",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/51.79.79.151/56064",Challenge="340cef4f",ReceivedChallenge="340cef4f",ReceivedHash="0fda78d0518aec17e2d82641d3865164" [2020-10-01 12:33:53] NOTICE[1182] chan_sip.c: Registration from '' failed for '51.79.79.151:63169' - Wrong password [2020-10-01 12:33:53] SECURITY[1204] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-10-01T12:33:53.927-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="5359",SessionID="0x7f22f801fc98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/51.79.79.151/631 ...	2020-10-02 00:39:04
192.241.238.80	attackbotsspam	[N1.H1.VM1] Port Scanner Detected Blocked by UFW	2020-10-02 00:48:29
119.29.173.247	attackbotsspam	$f2bV_matches	2020-10-02 00:47:41
176.67.86.156	attack	Auto report Web spam and bad bot from Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 OPR/55.0.2994.44 \| HTTP/1.1 \| GET \| Wednesday, September 30th 2020 @ 23:17:59	2020-10-02 00:36:46
152.136.230.126	attack	Oct 1 15:29:51 abendstille sshd\[12717\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.230.126 user=root Oct 1 15:29:53 abendstille sshd\[12717\]: Failed password for root from 152.136.230.126 port 59588 ssh2 Oct 1 15:34:53 abendstille sshd\[18178\]: Invalid user yu from 152.136.230.126 Oct 1 15:34:53 abendstille sshd\[18178\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.230.126 Oct 1 15:34:56 abendstille sshd\[18178\]: Failed password for invalid user yu from 152.136.230.126 port 56062 ssh2 ...	2020-10-02 00:50:50

最近上报的IP列表

80.212.102.169	138.122.39.172	185.252.103.82	40.115.190.236
187.94.112.99	185.224.128.70	93.79.199.235	201.0.24.252
170.254.212.159	46.166.186.231	60.199.132.219	39.69.98.16
81.82.253.206	109.201.138.229	206.81.13.205	88.198.20.57
27.17.102.102	213.219.38.44	179.228.207.33	101.64.38.169