54.92.79.2 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Japan

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.92.79.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17081
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;54.92.79.2.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021100 1800 900 604800 86400

;; Query time: 33 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 11 19:03:31 CST 2025
;; MSG SIZE  rcvd: 103

HOST信息:

2.79.92.54.in-addr.arpa domain name pointer ec2-54-92-79-2.ap-northeast-1.compute.amazonaws.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
2.79.92.54.in-addr.arpa	name = ec2-54-92-79-2.ap-northeast-1.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
63.88.23.210	attackbots	63.88.23.210 was recorded 9 times by 6 hosts attempting to connect to the following ports: 80. Incident counter (4h, 24h, all-time): 9, 74, 683	2019-11-26 09:25:53
51.15.48.39	attackspambots	port scan and connect, tcp 3128 (squid-http)	2019-11-26 09:20:59
113.240.251.178	attackspambots	RDP Bruteforce	2019-11-26 09:00:27
14.233.228.136	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 26-11-2019 04:55:27.	2019-11-26 13:03:36
165.22.28.230	attack	212.218.19.43 165.22.28.230 \[26/Nov/2019:01:28:52 +0100\] "GET /phpMyAdmin/scripts/setup.php HTTP/1.1" 301 532 "-" "ZmEu" 212.218.19.43 165.22.28.230 \[26/Nov/2019:01:28:52 +0100\] "GET /phpmyadmin/scripts/setup.php HTTP/1.1" 301 532 "-" "ZmEu" 212.218.19.43 165.22.28.230 \[26/Nov/2019:01:28:52 +0100\] "GET /pma/scripts/setup.php HTTP/1.1" 301 518 "-" "ZmEu"	2019-11-26 09:08:10
218.92.0.187	attack	Nov 26 02:00:49 tux-35-217 sshd\[3759\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.187 user=root Nov 26 02:00:51 tux-35-217 sshd\[3759\]: Failed password for root from 218.92.0.187 port 62238 ssh2 Nov 26 02:00:54 tux-35-217 sshd\[3759\]: Failed password for root from 218.92.0.187 port 62238 ssh2 Nov 26 02:00:58 tux-35-217 sshd\[3759\]: Failed password for root from 218.92.0.187 port 62238 ssh2 ...	2019-11-26 09:20:02
218.92.0.134	attackspam	Nov 26 02:03:35 dedicated sshd[21048]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.134 user=root Nov 26 02:03:37 dedicated sshd[21048]: Failed password for root from 218.92.0.134 port 35984 ssh2	2019-11-26 09:07:34
185.176.27.54	attackspambots	11/25/2019-20:15:36.805274 185.176.27.54 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-26 09:16:04
116.239.105.28	attack	Nov 24 21:07:14 eola postfix/smtpd[32636]: connect from unknown[116.239.105.28] Nov 24 21:07:15 eola postfix/smtpd[32636]: lost connection after AUTH from unknown[116.239.105.28] Nov 24 21:07:15 eola postfix/smtpd[32636]: disconnect from unknown[116.239.105.28] ehlo=1 auth=0/1 commands=1/2 Nov 24 21:07:16 eola postfix/smtpd[32636]: connect from unknown[116.239.105.28] Nov 24 21:07:16 eola postfix/smtpd[32636]: lost connection after AUTH from unknown[116.239.105.28] Nov 24 21:07:16 eola postfix/smtpd[32636]: disconnect from unknown[116.239.105.28] ehlo=1 auth=0/1 commands=1/2 Nov 24 21:07:16 eola postfix/smtpd[32636]: connect from unknown[116.239.105.28] Nov 24 21:07:17 eola postfix/smtpd[32636]: lost connection after AUTH from unknown[116.239.105.28] Nov 24 21:07:17 eola postfix/smtpd[32636]: disconnect from unknown[116.239.105.28] ehlo=1 auth=0/1 commands=1/2 Nov 24 21:07:17 eola postfix/smtpd[32636]: connect from unknown[116.239.105.28] Nov 24 21:07:18 eola postfix/sm........ -------------------------------	2019-11-26 09:20:35
142.54.172.230	spamattack		2019-11-26 12:48:30
171.224.24.210	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 26-11-2019 04:55:29.	2019-11-26 13:00:07
117.221.50.84	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 26-11-2019 04:55:25.	2019-11-26 13:09:13
49.88.112.114	attackspambots	Nov 25 15:02:49 tdfoods sshd\[32249\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Nov 25 15:02:51 tdfoods sshd\[32249\]: Failed password for root from 49.88.112.114 port 55217 ssh2 Nov 25 15:02:54 tdfoods sshd\[32249\]: Failed password for root from 49.88.112.114 port 55217 ssh2 Nov 25 15:02:56 tdfoods sshd\[32249\]: Failed password for root from 49.88.112.114 port 55217 ssh2 Nov 25 15:03:37 tdfoods sshd\[32330\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root	2019-11-26 09:14:24
151.80.75.127	attackspambots	Nov 26 01:14:48 postfix/smtpd: warning: unknown[151.80.75.127]: SASL LOGIN authentication failed	2019-11-26 09:18:07
116.236.185.64	attack	Nov 26 02:02:38 minden010 sshd[1973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.236.185.64 Nov 26 02:02:40 minden010 sshd[1973]: Failed password for invalid user shell from 116.236.185.64 port 8334 ssh2 Nov 26 02:09:38 minden010 sshd[10855]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.236.185.64 ...	2019-11-26 09:25:11

最近上报的IP列表

88.67.243.137	109.227.27.180	180.44.74.81	88.2.6.56
145.243.6.106	220.64.250.159	42.116.20.67	174.193.199.50
149.63.215.228	166.182.249.197	149.72.73.26	79.192.114.67
120.7.153.178	34.118.160.216	195.231.181.149	207.47.122.45
3.186.176.92	118.213.109.16	74.87.15.12	40.185.28.188