54.70.117.67 - IPInfo

基本信息:

城市(city): Boardman

省份(region): Oregon

国家(country): United States

运营商(isp): Amazon Technologies Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Unauthorized connection attempt detected from IP address 54.70.117.67 to port 8008	2019-12-29 03:32:38

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.70.117.67
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25662
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;54.70.117.67.			IN	A

;; AUTHORITY SECTION:
.			438	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122800 1800 900 604800 86400

;; Query time: 204 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 29 03:32:34 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

67.117.70.54.in-addr.arpa domain name pointer ec2-54-70-117-67.us-west-2.compute.amazonaws.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
67.117.70.54.in-addr.arpa	name = ec2-54-70-117-67.us-west-2.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
117.239.4.147	attack	Unauthorised access (Sep 16) SRC=117.239.4.147 LEN=52 TTL=108 ID=8031 DF TCP DPT=445 WINDOW=8192 SYN	2020-09-17 16:53:52
177.133.116.125	attackbotsspam	Honeypot attack, port: 445, PTR: 177.133.116.125.dynamic.adsl.gvt.net.br.	2020-09-17 16:40:08
171.241.145.218	attackspambots	Honeypot attack, port: 5555, PTR: dynamic-ip-adsl.viettel.vn.	2020-09-17 16:42:54
79.166.186.140	attackspambots	Hits on port : 23	2020-09-17 17:09:49
77.55.213.52	attackspam	[f2b] sshd bruteforce, retries: 1	2020-09-17 17:05:51
192.241.237.71	attack	Icarus honeypot on github	2020-09-17 16:34:34
198.98.49.181	attack	2020-09-17T09:07:13.772334ns386461 sshd\[32034\]: Invalid user test from 198.98.49.181 port 55422 2020-09-17T09:07:13.772648ns386461 sshd\[32031\]: Invalid user alfresco from 198.98.49.181 port 55430 2020-09-17T09:07:13.773409ns386461 sshd\[32036\]: Invalid user jenkins from 198.98.49.181 port 55426 2020-09-17T09:07:13.780013ns386461 sshd\[32032\]: Invalid user centos from 198.98.49.181 port 55420 2020-09-17T09:07:13.780065ns386461 sshd\[32033\]: Invalid user vagrant from 198.98.49.181 port 55416 ...	2020-09-17 17:03:46
112.85.42.181	attackbots	Sep 17 10:58:16 srv-ubuntu-dev3 sshd[76830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.181 user=root Sep 17 10:58:18 srv-ubuntu-dev3 sshd[76830]: Failed password for root from 112.85.42.181 port 20271 ssh2 Sep 17 10:58:20 srv-ubuntu-dev3 sshd[76830]: Failed password for root from 112.85.42.181 port 20271 ssh2 Sep 17 10:58:16 srv-ubuntu-dev3 sshd[76830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.181 user=root Sep 17 10:58:18 srv-ubuntu-dev3 sshd[76830]: Failed password for root from 112.85.42.181 port 20271 ssh2 Sep 17 10:58:20 srv-ubuntu-dev3 sshd[76830]: Failed password for root from 112.85.42.181 port 20271 ssh2 Sep 17 10:58:16 srv-ubuntu-dev3 sshd[76830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.181 user=root Sep 17 10:58:18 srv-ubuntu-dev3 sshd[76830]: Failed password for root from 112.85.42.181 port 20271 ssh2 S ...	2020-09-17 17:03:01
145.255.5.101	attackspambots	Honeypot attack, port: 445, PTR: 145.255.5.101.static.ufanet.ru.	2020-09-17 16:53:00
167.114.113.141	attackspam	Sep 17 10:54:52 cho sshd[3108869]: Invalid user ftp from 167.114.113.141 port 57278 Sep 17 10:54:52 cho sshd[3108869]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.113.141 Sep 17 10:54:52 cho sshd[3108869]: Invalid user ftp from 167.114.113.141 port 57278 Sep 17 10:54:55 cho sshd[3108869]: Failed password for invalid user ftp from 167.114.113.141 port 57278 ssh2 Sep 17 10:59:18 cho sshd[3109081]: Invalid user rpc from 167.114.113.141 port 41686 ...	2020-09-17 17:05:19
209.95.51.11	attackbots	2020-09-17T08:40:29.250202shield sshd\[5568\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.95.51.11 user=root 2020-09-17T08:40:31.041202shield sshd\[5568\]: Failed password for root from 209.95.51.11 port 34296 ssh2 2020-09-17T08:40:33.367810shield sshd\[5568\]: Failed password for root from 209.95.51.11 port 34296 ssh2 2020-09-17T08:40:36.017557shield sshd\[5568\]: Failed password for root from 209.95.51.11 port 34296 ssh2 2020-09-17T08:40:38.371724shield sshd\[5568\]: Failed password for root from 209.95.51.11 port 34296 ssh2	2020-09-17 16:42:12
117.27.88.61	attackspam	20 attempts against mh-ssh on pcx	2020-09-17 16:57:26
175.125.94.166	attackbotsspam	2020-09-17T14:55:14.821097hostname sshd[15335]: Failed password for root from 175.125.94.166 port 59238 ssh2 2020-09-17T14:59:44.503199hostname sshd[17064]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.125.94.166 user=root 2020-09-17T14:59:45.980579hostname sshd[17064]: Failed password for root from 175.125.94.166 port 41366 ssh2 ...	2020-09-17 17:06:03
111.204.204.72	attackspam	DATE:2020-09-17 06:55:34,IP:111.204.204.72,MATCHES:10,PORT:ssh	2020-09-17 16:52:03
208.184.162.181	attack	Brute forcing email accounts	2020-09-17 16:56:13

最近上报的IP列表

35.193.129.95	78.232.141.32	12.221.2.130	180.29.194.197
2.110.41.186	66.126.96.145	77.211.76.75	222.106.6.80
65.209.37.159	58.225.99.248	14.21.168.186	213.108.116.120
171.249.84.65	3.22.59.49	211.192.157.4	60.146.246.135
150.147.88.163	87.31.58.254	200.0.91.29	100.43.218.71