54.67.50.2 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Amazon Technologies Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Connection by 54.67.50.2 on port: 6066 got caught by honeypot at 11/4/2019 5:21:21 AM	2019-11-04 21:22:23

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.67.50.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17742
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;54.67.50.2.			IN	A

;; AUTHORITY SECTION:
.			530	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110400 1800 900 604800 86400

;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 04 21:22:15 CST 2019
;; MSG SIZE  rcvd: 114

HOST信息:

2.50.67.54.in-addr.arpa domain name pointer ec2-54-67-50-2.us-west-1.compute.amazonaws.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
2.50.67.54.in-addr.arpa	name = ec2-54-67-50-2.us-west-1.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
201.186.243.225	attack	Sep 20 21:07:09 vps639187 sshd\[32343\]: Invalid user cablecom from 201.186.243.225 port 47286 Sep 20 21:07:09 vps639187 sshd\[32343\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.186.243.225 Sep 20 21:07:11 vps639187 sshd\[32343\]: Failed password for invalid user cablecom from 201.186.243.225 port 47286 ssh2 ...	2020-09-21 20:09:23
114.67.108.60	attackspam	Sep 21 06:13:25 staging sshd[23468]: Invalid user ftpadmin2 from 114.67.108.60 port 47420 Sep 21 06:13:27 staging sshd[23468]: Failed password for invalid user ftpadmin2 from 114.67.108.60 port 47420 ssh2 Sep 21 06:17:03 staging sshd[23538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.108.60 user=root Sep 21 06:17:05 staging sshd[23538]: Failed password for root from 114.67.108.60 port 38110 ssh2 ...	2020-09-21 20:13:50
102.65.90.61	attackbots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-21 20:17:21
41.38.180.226	attackbotsspam	20/9/20@12:57:11: FAIL: Alarm-Network address from=41.38.180.226 ...	2020-09-21 19:24:12
86.188.246.2	attackbots	2020-09-20 UTC: (11x) - deployer,guest1,nproc,qadmin,root(5x),service,ubuntu	2020-09-21 19:39:49
43.231.129.193	attackspam	(sshd) Failed SSH login from 43.231.129.193 (ID/Indonesia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 21 06:25:39 optimus sshd[30456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.231.129.193 user=root Sep 21 06:25:40 optimus sshd[30456]: Failed password for root from 43.231.129.193 port 55982 ssh2 Sep 21 06:30:01 optimus sshd[1133]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.231.129.193 user=root Sep 21 06:30:03 optimus sshd[1133]: Failed password for root from 43.231.129.193 port 38338 ssh2 Sep 21 06:34:31 optimus sshd[5642]: Invalid user postgres from 43.231.129.193	2020-09-21 19:28:49
101.99.20.59	attackbots	Sep 21 08:15:06 pve1 sshd[14084]: Failed password for root from 101.99.20.59 port 55874 ssh2 ...	2020-09-21 20:20:52
27.6.185.226	attackbots	Listed on zen-spamhaus also barracudaCentral and abuseat.org / proto=6 . srcport=37206 . dstport=8080 . (2351)	2020-09-21 20:15:52
190.5.242.114	attackspam	5x Failed Password	2020-09-21 20:23:46
184.17.81.72	attackspam	(sshd) Failed SSH login from 184.17.81.72 (US/United States/184-17-81-72.lfyt.in.frontiernet.net): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 21 12:40:24 elude sshd[26655]: Invalid user admin from 184.17.81.72 port 46116 Sep 21 12:40:26 elude sshd[26655]: Failed password for invalid user admin from 184.17.81.72 port 46116 ssh2 Sep 21 12:47:16 elude sshd[27625]: Invalid user oracle from 184.17.81.72 port 50682 Sep 21 12:47:19 elude sshd[27625]: Failed password for invalid user oracle from 184.17.81.72 port 50682 ssh2 Sep 21 12:49:28 elude sshd[27953]: Invalid user joe from 184.17.81.72 port 32986	2020-09-21 20:09:51
128.199.120.160	attackbotsspam	Found on CINS badguys / proto=17 . srcport=5248 . dstport=5060 . (2287)	2020-09-21 19:23:41
168.70.111.189	attackbots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-21 20:13:07
39.53.115.234	attackbots	39.53.115.234 - [20/Sep/2020:21:57:31 +0300] "POST /xmlrpc.php HTTP/1.1" 404 564 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" "-" 39.53.115.234 - [20/Sep/2020:21:58:33 +0300] "POST /xmlrpc.php HTTP/1.1" 404 564 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" "-" ...	2020-09-21 20:22:18
222.186.173.201	attackspam	Sep 21 12:17:17 ns308116 sshd[309]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.201 user=root Sep 21 12:17:18 ns308116 sshd[309]: Failed password for root from 222.186.173.201 port 8080 ssh2 Sep 21 12:17:21 ns308116 sshd[309]: Failed password for root from 222.186.173.201 port 8080 ssh2 Sep 21 12:17:23 ns308116 sshd[309]: Failed password for root from 222.186.173.201 port 8080 ssh2 Sep 21 12:17:27 ns308116 sshd[309]: Failed password for root from 222.186.173.201 port 8080 ssh2 ...	2020-09-21 19:42:34
64.202.184.249	attackspam	64.202.184.249 - - [21/Sep/2020:12:58:22 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 64.202.184.249 - - [21/Sep/2020:12:58:24 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 64.202.184.249 - - [21/Sep/2020:12:58:26 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-21 19:41:31

最近上报的IP列表

87.236.20.239	52.13.107.136	103.242.0.249	180.251.115.44
27.78.78.6	148.70.158.215	117.50.98.207	103.87.154.195
80.82.64.176	67.55.25.57	185.10.68.198	46.16.130.172
109.197.192.18	36.75.141.238	212.129.50.2	77.37.150.9
106.13.204.251	64.39.99.194	142.93.214.130	67.198.130.28