54.255.138.78 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): Amazon Data Services Japan

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Sep 3 21:29:28 kapalua sshd\[19653\]: Invalid user fax from 54.255.138.78 Sep 3 21:29:28 kapalua sshd\[19653\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-54-255-138-78.ap-southeast-1.compute.amazonaws.com Sep 3 21:29:29 kapalua sshd\[19653\]: Failed password for invalid user fax from 54.255.138.78 port 53504 ssh2 Sep 3 21:33:58 kapalua sshd\[20177\]: Invalid user vampire from 54.255.138.78 Sep 3 21:33:58 kapalua sshd\[20177\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-54-255-138-78.ap-southeast-1.compute.amazonaws.com	2019-09-04 18:05:18

类型

评论内容

时间

attackspam

Sep  3 21:29:28 kapalua sshd\[19653\]: Invalid user fax from 54.255.138.78
Sep  3 21:29:28 kapalua sshd\[19653\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-54-255-138-78.ap-southeast-1.compute.amazonaws.com
Sep  3 21:29:29 kapalua sshd\[19653\]: Failed password for invalid user fax from 54.255.138.78 port 53504 ssh2
Sep  3 21:33:58 kapalua sshd\[20177\]: Invalid user vampire from 54.255.138.78
Sep  3 21:33:58 kapalua sshd\[20177\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-54-255-138-78.ap-southeast-1.compute.amazonaws.com

2019-09-04 18:05:18

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.255.138.78
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10740
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;54.255.138.78.			IN	A

;; AUTHORITY SECTION:
.			3144	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090400 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Sep 04 18:05:01 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

78.138.255.54.in-addr.arpa domain name pointer ec2-54-255-138-78.ap-southeast-1.compute.amazonaws.com.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
78.138.255.54.in-addr.arpa	name = ec2-54-255-138-78.ap-southeast-1.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
181.48.61.210	attackspambots	20/7/25@11:15:00: FAIL: Alarm-Network address from=181.48.61.210 20/7/25@11:15:00: FAIL: Alarm-Network address from=181.48.61.210 ...	2020-07-26 01:41:46
139.59.17.33	attackbots	Exploited Host.	2020-07-26 02:15:27
128.199.177.224	attack	Automatic Fail2ban report - Trying login SSH	2020-07-26 01:56:09
222.186.42.137	attackbotsspam	Jul 25 19:38:11 eventyay sshd[13662]: Failed password for root from 222.186.42.137 port 54530 ssh2 Jul 25 19:38:21 eventyay sshd[13675]: Failed password for root from 222.186.42.137 port 28872 ssh2 Jul 25 19:38:23 eventyay sshd[13675]: Failed password for root from 222.186.42.137 port 28872 ssh2 ...	2020-07-26 01:43:18
167.114.153.43	attack	Jul 25 19:45:15 eventyay sshd[14043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.153.43 Jul 25 19:45:17 eventyay sshd[14043]: Failed password for invalid user nikolay from 167.114.153.43 port 43052 ssh2 Jul 25 19:49:36 eventyay sshd[14257]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.153.43 ...	2020-07-26 01:57:17
51.254.207.92	attack	2020-07-25T16:27:45.362227dmca.cloudsearch.cf sshd[24644]: Invalid user edward from 51.254.207.92 port 35106 2020-07-25T16:27:45.368493dmca.cloudsearch.cf sshd[24644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.ip-51-254-207.eu 2020-07-25T16:27:45.362227dmca.cloudsearch.cf sshd[24644]: Invalid user edward from 51.254.207.92 port 35106 2020-07-25T16:27:47.399000dmca.cloudsearch.cf sshd[24644]: Failed password for invalid user edward from 51.254.207.92 port 35106 ssh2 2020-07-25T16:34:49.028798dmca.cloudsearch.cf sshd[24902]: Invalid user ht from 51.254.207.92 port 57410 2020-07-25T16:34:49.033927dmca.cloudsearch.cf sshd[24902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.ip-51-254-207.eu 2020-07-25T16:34:49.028798dmca.cloudsearch.cf sshd[24902]: Invalid user ht from 51.254.207.92 port 57410 2020-07-25T16:34:51.269797dmca.cloudsearch.cf sshd[24902]: Failed password for invalid user ht from 51.2 ...	2020-07-26 02:11:14
14.29.163.35	attack	Exploited Host.	2020-07-26 01:53:21
118.240.247.75	attack	Jul 25 19:18:25 dev0-dcde-rnet sshd[4931]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.240.247.75 Jul 25 19:18:27 dev0-dcde-rnet sshd[4931]: Failed password for invalid user drone from 118.240.247.75 port 59426 ssh2 Jul 25 19:23:00 dev0-dcde-rnet sshd[4943]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.240.247.75	2020-07-26 01:42:11
218.92.0.223	attack	2020-07-25T17:43:10.261247vps1033 sshd[30408]: Failed password for root from 218.92.0.223 port 29159 ssh2 2020-07-25T17:43:13.314252vps1033 sshd[30408]: Failed password for root from 218.92.0.223 port 29159 ssh2 2020-07-25T17:43:16.445411vps1033 sshd[30408]: Failed password for root from 218.92.0.223 port 29159 ssh2 2020-07-25T17:43:19.989305vps1033 sshd[30408]: Failed password for root from 218.92.0.223 port 29159 ssh2 2020-07-25T17:43:23.410287vps1033 sshd[30408]: Failed password for root from 218.92.0.223 port 29159 ssh2 ...	2020-07-26 01:46:22
49.232.162.53	attack	Jul 25 19:17:09 sso sshd[5659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.162.53 Jul 25 19:17:11 sso sshd[5659]: Failed password for invalid user madison from 49.232.162.53 port 58768 ssh2 ...	2020-07-26 02:20:45
14.29.171.50	attackspambots	Exploited Host.	2020-07-26 01:51:59
139.155.79.110	attackbotsspam	Jul 25 19:50:47 vm0 sshd[15152]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.79.110 Jul 25 19:50:49 vm0 sshd[15152]: Failed password for invalid user zeppelin from 139.155.79.110 port 41534 ssh2 ...	2020-07-26 02:03:10
14.36.242.116	attackspambots	Exploited Host.	2020-07-26 01:47:48
192.200.207.127	attackbotsspam	Invalid user xiaowei from 192.200.207.127 port 35308	2020-07-26 02:19:04
139.255.35.181	attack	Exploited Host.	2020-07-26 02:23:04

最近上报的IP列表

119.77.233.99	49.206.31.217	83.13.115.58	220.232.33.237
201.182.223.16	190.56.108.214	185.217.228.29	121.184.176.162
77.244.217.179	167.211.119.225	64.63.91.191	185.217.228.30
148.221.175.78	68.155.222.179	2002:726a:965c::726a:965c	54.202.102.34
49.49.242.104	95.24.202.39	113.118.93.8	94.249.7.185