54.201.107.29 - IPInfo

基本信息:

城市(city): Boardman

省份(region): Oregon

国家(country): United States

运营商(isp): Amazon.com Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	09/26/2019-05:58:02.648085 54.201.107.29 Protocol: 6 SURICATA TLS invalid handshake message	2019-09-26 12:32:42
attack	09/25/2019-23:00:02.598910 54.201.107.29 Protocol: 6 SURICATA TLS invalid handshake message	2019-09-26 05:08:43
attack	09/24/2019-17:19:02.678946 54.201.107.29 Protocol: 6 SURICATA TLS invalid handshake message	2019-09-24 23:35:24
attack	09/23/2019-20:54:22.117544 54.201.107.29 Protocol: 6 SURICATA TLS invalid handshake message	2019-09-24 03:15:54

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.201.107.29
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52128
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;54.201.107.29.			IN	A

;; AUTHORITY SECTION:
.			497	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092301 1800 900 604800 86400

;; Query time: 568 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Sep 24 03:15:51 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

29.107.201.54.in-addr.arpa domain name pointer ec2-54-201-107-29.us-west-2.compute.amazonaws.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
29.107.201.54.in-addr.arpa	name = ec2-54-201-107-29.us-west-2.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
45.174.166.135	attack	Aug 27 05:00:07 mail.srvfarm.net postfix/smtpd[1336013]: warning: unknown[45.174.166.135]: SASL PLAIN authentication failed: Aug 27 05:00:07 mail.srvfarm.net postfix/smtpd[1336013]: lost connection after AUTH from unknown[45.174.166.135] Aug 27 05:04:33 mail.srvfarm.net postfix/smtps/smtpd[1340826]: warning: unknown[45.174.166.135]: SASL PLAIN authentication failed: Aug 27 05:04:33 mail.srvfarm.net postfix/smtps/smtpd[1340826]: lost connection after AUTH from unknown[45.174.166.135] Aug 27 05:06:15 mail.srvfarm.net postfix/smtpd[1355303]: warning: unknown[45.174.166.135]: SASL PLAIN authentication failed:	2020-08-28 08:41:17
103.40.201.66	attack	Aug 27 05:20:08 mail.srvfarm.net postfix/smtpd[1347716]: warning: unknown[103.40.201.66]: SASL PLAIN authentication failed: Aug 27 05:20:09 mail.srvfarm.net postfix/smtpd[1347716]: lost connection after AUTH from unknown[103.40.201.66] Aug 27 05:27:11 mail.srvfarm.net postfix/smtps/smtpd[1356766]: warning: unknown[103.40.201.66]: SASL PLAIN authentication failed: Aug 27 05:27:12 mail.srvfarm.net postfix/smtps/smtpd[1356766]: lost connection after AUTH from unknown[103.40.201.66] Aug 27 05:29:54 mail.srvfarm.net postfix/smtpd[1342033]: warning: unknown[103.40.201.66]: SASL PLAIN authentication failed:	2020-08-28 08:15:27
51.103.129.9	attackbotsspam	Aug 27 14:12:43 web02.agentur-b-2.de postfix/smtps/smtpd[306243]: warning: unknown[51.103.129.9]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 14:14:30 web02.agentur-b-2.de postfix/smtps/smtpd[306489]: warning: unknown[51.103.129.9]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 14:16:19 web02.agentur-b-2.de postfix/smtps/smtpd[306718]: warning: unknown[51.103.129.9]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 14:18:08 web02.agentur-b-2.de postfix/smtps/smtpd[306958]: warning: unknown[51.103.129.9]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 27 14:19:55 web02.agentur-b-2.de postfix/smtps/smtpd[307080]: warning: unknown[51.103.129.9]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-08-28 08:19:53
187.85.157.143	attackbotsspam	Aug 27 07:49:54 mail.srvfarm.net postfix/smtpd[1414537]: warning: 187-85-157-143.gegnet.com.br[187.85.157.143]: SASL PLAIN authentication failed: Aug 27 07:49:55 mail.srvfarm.net postfix/smtpd[1414537]: lost connection after AUTH from 187-85-157-143.gegnet.com.br[187.85.157.143] Aug 27 07:51:41 mail.srvfarm.net postfix/smtps/smtpd[1410578]: warning: 187-85-157-143.gegnet.com.br[187.85.157.143]: SASL PLAIN authentication failed: Aug 27 07:51:42 mail.srvfarm.net postfix/smtps/smtpd[1410578]: lost connection after AUTH from 187-85-157-143.gegnet.com.br[187.85.157.143] Aug 27 07:54:24 mail.srvfarm.net postfix/smtpd[1414538]: warning: 187-85-157-143.gegnet.com.br[187.85.157.143]: SASL PLAIN authentication failed:	2020-08-28 08:30:26
41.139.4.90	attackspambots	Aug 27 04:59:50 mail.srvfarm.net postfix/smtpd[1342033]: warning: unknown[41.139.4.90]: SASL PLAIN authentication failed: Aug 27 04:59:50 mail.srvfarm.net postfix/smtpd[1342033]: lost connection after AUTH from unknown[41.139.4.90] Aug 27 05:00:51 mail.srvfarm.net postfix/smtpd[1347722]: warning: unknown[41.139.4.90]: SASL PLAIN authentication failed: Aug 27 05:00:51 mail.srvfarm.net postfix/smtpd[1347722]: lost connection after AUTH from unknown[41.139.4.90] Aug 27 05:01:30 mail.srvfarm.net postfix/smtps/smtpd[1337554]: warning: unknown[41.139.4.90]: SASL PLAIN authentication failed:	2020-08-28 08:42:48
37.187.0.20	attackspam	Aug 27 22:37:43 rocket sshd[30964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.0.20 Aug 27 22:37:45 rocket sshd[30964]: Failed password for invalid user angelo from 37.187.0.20 port 38596 ssh2 Aug 27 22:44:01 rocket sshd[31930]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.0.20 ...	2020-08-28 08:51:07
218.92.0.173	attackspam	Aug 28 02:45:36 ovpn sshd\[3848\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.173 user=root Aug 28 02:45:38 ovpn sshd\[3848\]: Failed password for root from 218.92.0.173 port 5754 ssh2 Aug 28 02:45:51 ovpn sshd\[3848\]: Failed password for root from 218.92.0.173 port 5754 ssh2 Aug 28 02:45:54 ovpn sshd\[3909\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.173 user=root Aug 28 02:45:57 ovpn sshd\[3909\]: Failed password for root from 218.92.0.173 port 32659 ssh2	2020-08-28 08:51:30
79.110.36.63	attack	Aug 27 05:14:35 mail.srvfarm.net postfix/smtps/smtpd[1340827]: warning: unknown[79.110.36.63]: SASL PLAIN authentication failed: Aug 27 05:14:35 mail.srvfarm.net postfix/smtps/smtpd[1340827]: lost connection after AUTH from unknown[79.110.36.63] Aug 27 05:18:05 mail.srvfarm.net postfix/smtps/smtpd[1355455]: warning: unknown[79.110.36.63]: SASL PLAIN authentication failed: Aug 27 05:18:05 mail.srvfarm.net postfix/smtps/smtpd[1355455]: lost connection after AUTH from unknown[79.110.36.63] Aug 27 05:24:08 mail.srvfarm.net postfix/smtps/smtpd[1353979]: warning: unknown[79.110.36.63]: SASL PLAIN authentication failed:	2020-08-28 08:18:33
212.182.124.99	attackbots	$f2bV_matches	2020-08-28 08:25:31
150.128.97.138	attackspambots	Fail2Ban strikes again	2020-08-28 08:45:17
186.216.68.156	attack	Aug 27 04:55:26 mail.srvfarm.net postfix/smtps/smtpd[1335344]: warning: unknown[186.216.68.156]: SASL PLAIN authentication failed: Aug 27 04:55:27 mail.srvfarm.net postfix/smtps/smtpd[1335344]: lost connection after AUTH from unknown[186.216.68.156] Aug 27 04:58:56 mail.srvfarm.net postfix/smtpd[1336010]: warning: unknown[186.216.68.156]: SASL PLAIN authentication failed: Aug 27 04:58:57 mail.srvfarm.net postfix/smtpd[1336010]: lost connection after AUTH from unknown[186.216.68.156] Aug 27 05:04:12 mail.srvfarm.net postfix/smtpd[1341948]: warning: unknown[186.216.68.156]: SASL PLAIN authentication failed:	2020-08-28 08:31:48
45.167.9.13	attack	Aug 27 04:55:05 mail.srvfarm.net postfix/smtps/smtpd[1340607]: warning: unknown[45.167.9.13]: SASL PLAIN authentication failed: Aug 27 04:55:05 mail.srvfarm.net postfix/smtps/smtpd[1340607]: lost connection after AUTH from unknown[45.167.9.13] Aug 27 04:56:54 mail.srvfarm.net postfix/smtps/smtpd[1338009]: warning: unknown[45.167.9.13]: SASL PLAIN authentication failed: Aug 27 04:56:55 mail.srvfarm.net postfix/smtps/smtpd[1338009]: lost connection after AUTH from unknown[45.167.9.13] Aug 27 05:04:38 mail.srvfarm.net postfix/smtps/smtpd[1338009]: warning: unknown[45.167.9.13]: SASL PLAIN authentication failed:	2020-08-28 08:42:10
42.194.207.254	attack	Aug 28 01:37:59 cho sshd[1766693]: Failed password for invalid user fabian from 42.194.207.254 port 44088 ssh2 Aug 28 01:41:45 cho sshd[1766946]: Invalid user katja from 42.194.207.254 port 57876 Aug 28 01:41:45 cho sshd[1766946]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.194.207.254 Aug 28 01:41:45 cho sshd[1766946]: Invalid user katja from 42.194.207.254 port 57876 Aug 28 01:41:47 cho sshd[1766946]: Failed password for invalid user katja from 42.194.207.254 port 57876 ssh2 ...	2020-08-28 08:48:50
37.19.94.200	attackspambots	Aug 27 21:21:58 mail.srvfarm.net postfix/smtpd[1742866]: warning: unknown[37.19.94.200]: SASL PLAIN authentication failed: Aug 27 21:21:58 mail.srvfarm.net postfix/smtpd[1742866]: lost connection after AUTH from unknown[37.19.94.200] Aug 27 21:23:56 mail.srvfarm.net postfix/smtps/smtpd[1742503]: warning: unknown[37.19.94.200]: SASL PLAIN authentication failed: Aug 27 21:23:56 mail.srvfarm.net postfix/smtps/smtpd[1742503]: lost connection after AUTH from unknown[37.19.94.200] Aug 27 21:30:58 mail.srvfarm.net postfix/smtps/smtpd[1745225]: warning: unknown[37.19.94.200]: SASL PLAIN authentication failed:	2020-08-28 08:23:27
213.39.55.13	attack	2020-08-28T00:31:33.411082vps1033 sshd[13714]: Invalid user tspeak from 213.39.55.13 port 42320 2020-08-28T00:31:33.415524vps1033 sshd[13714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.39.55.13 2020-08-28T00:31:33.411082vps1033 sshd[13714]: Invalid user tspeak from 213.39.55.13 port 42320 2020-08-28T00:31:35.581223vps1033 sshd[13714]: Failed password for invalid user tspeak from 213.39.55.13 port 42320 ssh2 2020-08-28T00:35:42.234346vps1033 sshd[22445]: Invalid user fileshare from 213.39.55.13 port 48494 ...	2020-08-28 08:43:52

最近上报的IP列表

131.118.57.175	117.193.122.225	217.64.38.214	1.2.60.117
139.190.19.208	24.117.247.12	140.91.62.198	212.231.31.148
207.24.50.95	2.106.50.123	209.208.99.150	191.126.145.114
92.134.25.201	212.129.138.67	2.72.203.185	119.189.52.240
41.30.249.172	194.226.171.214	196.32.6.165	93.25.73.201