54.200.124.131

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Amazon.com Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Unauthorized connection attempt detected from IP address 54.200.124.131 to port 7550	2020-07-25 21:08:07

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.200.124.131
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9665
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;54.200.124.131.			IN	A

;; AUTHORITY SECTION:
.			318	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072500 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 25 21:08:01 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

131.124.200.54.in-addr.arpa domain name pointer ec2-54-200-124-131.us-west-2.compute.amazonaws.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
131.124.200.54.in-addr.arpa	name = ec2-54-200-124-131.us-west-2.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
81.163.14.200	attackspam	Jun 5 15:12:36 mail.srvfarm.net postfix/smtps/smtpd[3109500]: warning: unknown[81.163.14.200]: SASL PLAIN authentication failed: Jun 5 15:12:36 mail.srvfarm.net postfix/smtps/smtpd[3109500]: lost connection after AUTH from unknown[81.163.14.200] Jun 5 15:12:54 mail.srvfarm.net postfix/smtps/smtpd[3097217]: warning: 81-163-14-200.net.lasnet.pl[81.163.14.200]: SASL PLAIN authentication failed: Jun 5 15:12:54 mail.srvfarm.net postfix/smtps/smtpd[3097217]: lost connection after AUTH from 81-163-14-200.net.lasnet.pl[81.163.14.200] Jun 5 15:17:54 mail.srvfarm.net postfix/smtps/smtpd[3108780]: warning: 81-163-14-200.net.lasnet.pl[81.163.14.200]: SASL PLAIN authentication failed:	2020-06-08 01:01:29
117.50.40.157	attack	Jun 7 15:11:58 home sshd[30941]: Failed password for root from 117.50.40.157 port 56530 ssh2 Jun 7 15:15:43 home sshd[31293]: Failed password for root from 117.50.40.157 port 38882 ssh2 ...	2020-06-08 01:03:22
222.186.175.202	attack	Jun 7 19:25:43 vps sshd[317378]: Failed password for root from 222.186.175.202 port 50420 ssh2 Jun 7 19:25:46 vps sshd[317378]: Failed password for root from 222.186.175.202 port 50420 ssh2 Jun 7 19:25:49 vps sshd[317378]: Failed password for root from 222.186.175.202 port 50420 ssh2 Jun 7 19:25:53 vps sshd[317378]: Failed password for root from 222.186.175.202 port 50420 ssh2 Jun 7 19:25:56 vps sshd[317378]: Failed password for root from 222.186.175.202 port 50420 ssh2 ...	2020-06-08 01:27:34
69.94.158.78	attackspam	Jun 5 15:31:48 mail.srvfarm.net postfix/smtpd[3113570]: NOQUEUE: reject: RCPT from unknown[69.94.158.78]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Jun 5 15:32:18 mail.srvfarm.net postfix/smtpd[3109485]: NOQUEUE: reject: RCPT from unknown[69.94.158.78]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Jun 5 15:32:26 mail.srvfarm.net postfix/smtpd[3109485]: NOQUEUE: reject: RCPT from unknown[69.94.158.78]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Jun 5 15:36:04 mail.srvfarm.net postfix/smtpd[3113153]: NOQUEUE: reject: RCPT from unknown[69.94.158.78]: 450 4.1.8	2020-06-08 00:53:09
144.91.67.203	attack	Unauthorized connection attempt detected from IP address 144.91.67.203 to port 23	2020-06-08 01:35:46
191.53.248.39	attackspam	Jun 6 08:39:57 mail.srvfarm.net postfix/smtps/smtpd[3607696]: lost connection after CONNECT from unknown[191.53.248.39] Jun 6 08:40:17 mail.srvfarm.net postfix/smtps/smtpd[3607703]: warning: unknown[191.53.248.39]: SASL PLAIN authentication failed: Jun 6 08:40:17 mail.srvfarm.net postfix/smtps/smtpd[3607703]: lost connection after AUTH from unknown[191.53.248.39] Jun 6 08:40:25 mail.srvfarm.net postfix/smtps/smtpd[3604646]: warning: unknown[191.53.248.39]: SASL PLAIN authentication failed: Jun 6 08:40:25 mail.srvfarm.net postfix/smtps/smtpd[3604646]: lost connection after AUTH from unknown[191.53.248.39]	2020-06-08 00:56:22
37.49.226.181	attackspam	Jun 7 19:03:54 server sshd[21101]: Failed password for root from 37.49.226.181 port 40888 ssh2 Jun 7 19:04:12 server sshd[21493]: Failed password for root from 37.49.226.181 port 45474 ssh2 Jun 7 19:04:31 server sshd[21862]: Failed password for root from 37.49.226.181 port 50050 ssh2	2020-06-08 01:20:54
186.216.71.50	attackbotsspam	Jun 5 14:48:38 mail.srvfarm.net postfix/smtpd[3095007]: warning: unknown[186.216.71.50]: SASL PLAIN authentication failed: Jun 5 14:48:38 mail.srvfarm.net postfix/smtpd[3095007]: lost connection after AUTH from unknown[186.216.71.50] Jun 5 14:55:01 mail.srvfarm.net postfix/smtps/smtpd[3094396]: warning: unknown[186.216.71.50]: SASL PLAIN authentication failed: Jun 5 14:55:01 mail.srvfarm.net postfix/smtps/smtpd[3094396]: lost connection after AUTH from unknown[186.216.71.50] Jun 5 14:57:10 mail.srvfarm.net postfix/smtpd[3093305]: warning: unknown[186.216.71.50]: SASL PLAIN authentication failed:	2020-06-08 00:57:01
62.234.83.138	attackspam	Jun 7 15:05:18 hosting sshd[16501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.83.138 user=root Jun 7 15:05:20 hosting sshd[16501]: Failed password for root from 62.234.83.138 port 59874 ssh2 ...	2020-06-08 01:12:57
140.213.25.34	attackbotsspam	Lines containing failures of 140.213.25.34 Jun 7 13:42:38 shared01 sshd[11190]: Did not receive identification string from 140.213.25.34 port 27283 Jun 7 13:42:42 shared01 sshd[11191]: Invalid user 666666 from 140.213.25.34 port 41704 Jun 7 13:42:42 shared01 sshd[11191]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.213.25.34 Jun 7 13:42:43 shared01 sshd[11191]: Failed password for invalid user 666666 from 140.213.25.34 port 41704 ssh2 Jun 7 13:42:44 shared01 sshd[11191]: Connection closed by invalid user 666666 140.213.25.34 port 41704 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=140.213.25.34	2020-06-08 01:28:33
83.250.26.80	attackbotsspam	Brute-force attempt banned	2020-06-08 01:20:02
35.186.145.141	attackspam	$f2bV_matches	2020-06-08 01:11:44
118.27.37.223	attackspam	Jun 7 17:57:37 server sshd[17930]: Failed password for root from 118.27.37.223 port 34036 ssh2 Jun 7 18:01:20 server sshd[18943]: Failed password for root from 118.27.37.223 port 37146 ssh2 ...	2020-06-08 01:28:10
186.216.68.58	attack	Jun 7 10:34:53 mail.srvfarm.net postfix/smtps/smtpd[61384]: warning: unknown[186.216.68.58]: SASL PLAIN authentication failed: Jun 7 10:34:53 mail.srvfarm.net postfix/smtps/smtpd[61384]: lost connection after AUTH from unknown[186.216.68.58] Jun 7 10:39:07 mail.srvfarm.net postfix/smtpd[74654]: warning: unknown[186.216.68.58]: SASL PLAIN authentication failed: Jun 7 10:39:07 mail.srvfarm.net postfix/smtpd[74654]: lost connection after AUTH from unknown[186.216.68.58] Jun 7 10:40:33 mail.srvfarm.net postfix/smtps/smtpd[77065]: warning: unknown[186.216.68.58]: SASL PLAIN authentication failed:	2020-06-08 00:58:02
94.74.133.234	attackbots	Jun 5 15:11:23 mail.srvfarm.net postfix/smtps/smtpd[3108734]: warning: unknown[94.74.133.234]: SASL PLAIN authentication failed: Jun 5 15:11:23 mail.srvfarm.net postfix/smtps/smtpd[3108734]: lost connection after AUTH from unknown[94.74.133.234] Jun 5 15:14:17 mail.srvfarm.net postfix/smtpd[3109366]: warning: unknown[94.74.133.234]: SASL PLAIN authentication failed: Jun 5 15:14:17 mail.srvfarm.net postfix/smtpd[3109366]: lost connection after AUTH from unknown[94.74.133.234] Jun 5 15:15:56 mail.srvfarm.net postfix/smtpd[3109220]: warning: unknown[94.74.133.234]: SASL PLAIN authentication failed:	2020-06-08 01:00:21

最近上报的IP列表

35.166.51.152	24.105.244.83	15.184.83.97	220.142.83.96
200.149.31.250	200.52.36.39	187.178.157.32	180.251.105.34
177.75.220.192	171.252.208.31	139.196.161.84	139.170.174.109
122.117.129.121	122.117.54.9	118.25.139.201	115.216.225.124
80.169.215.61	113.190.223.204	113.123.231.42	110.35.25.124