54.209.19.106 - IPInfo

基本信息:

城市(city): Ashburn

省份(region): Virginia

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): Amazon.com, Inc.

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.209.19.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9397
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;54.209.19.106.			IN	A

;; AUTHORITY SECTION:
.			2674	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052600 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun May 26 19:12:08 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

106.19.209.54.in-addr.arpa domain name pointer ec2-54-209-19-106.compute-1.amazonaws.com.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
106.19.209.54.in-addr.arpa	name = ec2-54-209-19-106.compute-1.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
99.108.141.4	attackbots	Jul 15 06:50:56 Aberdeen-m4-Access auth.info sshd[1113]: Invalid user mysql from 99.108.141.4 port 47606 Jul 15 06:50:56 Aberdeen-m4-Access auth.info sshd[1113]: Failed password for invalid user mysql from 99.108.141.4 port 47606 ssh2 Jul 15 06:50:56 Aberdeen-m4-Access auth.notice sshguard[22701]: Attack from "99.108.141.4" on service 100 whostnameh danger 10. Jul 15 06:50:56 Aberdeen-m4-Access auth.notice sshguard[22701]: Attack from "99.108.141.4" on service 100 whostnameh danger 10. Jul 15 06:50:56 Aberdeen-m4-Access auth.info sshd[1113]: Received disconnect from 99.108.141.4 port 47606:11: Bye Bye [preauth] Jul 15 06:50:56 Aberdeen-m4-Access auth.info sshd[1113]: Disconnected from 99.108.141.4 port 47606 [preauth] Jul 15 06:50:56 Aberdeen-m4-Access auth.notice sshguard[22701]: Attack from "99.108.141.4" on service 100 whostnameh danger 10. Jul 15 06:50:56 Aberdeen-m4-Access auth.warn sshguard[22701]: Blocking "99.108.141.4/32" forever (3 attacks in 0 secs, after 3 ab........ ------------------------------	2019-07-18 06:08:23
105.226.165.88	attackspam	Jul 17 18:11:14 fv15 sshd[31990]: reveeclipse mapping checking getaddrinfo for 165-226-105-88.north.dsl.telkomsa.net [105.226.165.88] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 17 18:11:14 fv15 sshd[31990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=105.226.165.88 user=r.r Jul 17 18:11:16 fv15 sshd[31990]: Failed password for r.r from 105.226.165.88 port 42121 ssh2 Jul 17 18:11:18 fv15 sshd[31990]: Failed password for r.r from 105.226.165.88 port 42121 ssh2 Jul 17 18:11:20 fv15 sshd[31990]: Failed password for r.r from 105.226.165.88 port 42121 ssh2 Jul 17 18:11:20 fv15 sshd[31990]: Disconnecting: Too many authentication failures for r.r from 105.226.165.88 port 42121 ssh2 [preauth] Jul 17 18:11:20 fv15 sshd[31990]: PAM 2 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=105.226.165.88 user=r.r Jul 17 18:11:28 fv15 sshd[32505]: reveeclipse mapping checking getaddrinfo for 165-226-105-88.north.dsl.telkoms........ -------------------------------	2019-07-18 06:26:40
37.14.204.204	attackbots	Jul 17 11:53:57 shared03 sshd[9857]: Invalid user wqa from 37.14.204.204 Jul 17 11:53:57 shared03 sshd[9857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.14.204.204 Jul 17 11:54:00 shared03 sshd[9857]: Failed password for invalid user wqa from 37.14.204.204 port 51356 ssh2 Jul 17 11:54:00 shared03 sshd[9857]: Received disconnect from 37.14.204.204 port 51356:11: Bye Bye [preauth] Jul 17 11:54:00 shared03 sshd[9857]: Disconnected from 37.14.204.204 port 51356 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=37.14.204.204	2019-07-18 06:12:41
217.112.128.61	attack	Sent Mail to address hacked/leaked/bought from crystalproductions.cz between 2011 and 2018	2019-07-18 06:17:20
78.46.233.89	attackspam	Jul 18 00:06:05 vps691689 sshd[23752]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.46.233.89 Jul 18 00:06:07 vps691689 sshd[23752]: Failed password for invalid user vikas from 78.46.233.89 port 51600 ssh2 Jul 18 00:11:39 vps691689 sshd[23837]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.46.233.89 ...	2019-07-18 06:18:53
185.222.211.246	attack	17.07.2019 21:00:36 SMTP access blocked by firewall	2019-07-18 06:24:51
149.202.56.194	attack	Jul 17 12:06:36 vtv3 sshd\[28036\]: Invalid user exim from 149.202.56.194 port 42476 Jul 17 12:06:36 vtv3 sshd\[28036\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.56.194 Jul 17 12:06:38 vtv3 sshd\[28036\]: Failed password for invalid user exim from 149.202.56.194 port 42476 ssh2 Jul 17 12:13:51 vtv3 sshd\[31718\]: Invalid user lee from 149.202.56.194 port 46168 Jul 17 12:13:51 vtv3 sshd\[31718\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.56.194 Jul 17 12:26:42 vtv3 sshd\[5748\]: Invalid user ftptest from 149.202.56.194 port 41102 Jul 17 12:26:42 vtv3 sshd\[5748\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.56.194 Jul 17 12:26:44 vtv3 sshd\[5748\]: Failed password for invalid user ftptest from 149.202.56.194 port 41102 ssh2 Jul 17 12:31:12 vtv3 sshd\[8008\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= r	2019-07-18 06:24:03
104.248.57.21	attackbotsspam	Jul 18 00:39:22 MainVPS sshd[10925]: Invalid user frappe from 104.248.57.21 port 55058 Jul 18 00:39:22 MainVPS sshd[10925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.57.21 Jul 18 00:39:22 MainVPS sshd[10925]: Invalid user frappe from 104.248.57.21 port 55058 Jul 18 00:39:24 MainVPS sshd[10925]: Failed password for invalid user frappe from 104.248.57.21 port 55058 ssh2 Jul 18 00:43:48 MainVPS sshd[11231]: Invalid user squirrelmail from 104.248.57.21 port 51752 ...	2019-07-18 06:50:19
210.245.2.226	attackspambots	Jul 17 22:34:10 v22018076622670303 sshd\[18404\]: Invalid user plex from 210.245.2.226 port 51980 Jul 17 22:34:10 v22018076622670303 sshd\[18404\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.245.2.226 Jul 17 22:34:12 v22018076622670303 sshd\[18404\]: Failed password for invalid user plex from 210.245.2.226 port 51980 ssh2 ...	2019-07-18 06:11:27
165.22.244.146	attackbots	Invalid user webmaster from 165.22.244.146 port 56634 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.244.146 Failed password for invalid user webmaster from 165.22.244.146 port 56634 ssh2 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.244.146 user=www-data Failed password for www-data from 165.22.244.146 port 54666 ssh2	2019-07-18 06:28:18
178.158.17.188	attackspam	Automatic report - Port Scan Attack	2019-07-18 06:27:09
89.248.169.12	attackspambots	Scanning (more than 2 packets) random ports - tries to find possible vulnerable services	2019-07-18 06:42:23
104.206.128.62	attackbots	Honeypot attack, port: 23, PTR: 62-128.206.104.serverhubrdns.in-addr.arpa.	2019-07-18 06:14:11
142.93.49.103	attackbots	Jul 18 00:16:56 vps647732 sshd[17810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.49.103 Jul 18 00:16:58 vps647732 sshd[17810]: Failed password for invalid user temp from 142.93.49.103 port 41258 ssh2 ...	2019-07-18 06:37:44
104.198.93.19	attackspambots	Jul 17 22:31:31 sshgateway sshd\[23193\]: Invalid user monitor from 104.198.93.19 Jul 17 22:31:31 sshgateway sshd\[23193\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.198.93.19 Jul 17 22:31:33 sshgateway sshd\[23193\]: Failed password for invalid user monitor from 104.198.93.19 port 50662 ssh2	2019-07-18 06:32:16

最近上报的IP列表

129.107.243.43	158.169.185.200	13.71.167.142	128.199.46.189
68.244.203.240	40.41.55.196	39.50.59.127	47.48.218.113
196.223.107.9	116.132.185.230	124.80.169.119	95.55.253.119
107.206.10.70	49.49.37.11	87.196.49.193	149.12.167.191
32.52.54.52	85.135.39.34	197.251.34.27	62.63.91.11