54.93.3.64 - IPInfo

基本信息:

城市(city): Frankfurt am Main

省份(region): Hesse

国家(country): Germany

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
54.93.35.219	attackbots	Unsolicited bulk porn & phishing - varying ISPs (primarily Chinanet); repetitive redirects from blacklisted IP 92.63.192.124 & .151; spam volume up to 15/day. Spam link 4-gkb.ru = 92.63.192.151 NVFOPServer-net (previous IP 92.63.192.124) - repetitive redirects: - www.benaughty.com = 2.17.43.33, 2.17.43.17 Akamai - walkondates.com = 52.57.168.236, 52.58.193.171 Amazon - retargetcore.com = 52.29.68.89, 35.158.186.87 Amazon - t.insigit.com = 52.28.205.175, 54.93.35.219 Amazon - uf.noclef.com = 3.121.133.104, 52.59.105.243 Amazon Unsolicited bulk spam - unimplemented.likethin.eu, China Mobile Communications Corporation - 120.208.209.206 Sender domain harmsenheftrucks.nl = 136.144.206.196 TransIP BV	2019-10-12 22:25:34

类型

评论内容

时间

54.93.35.219

attackbots

Unsolicited bulk porn & phishing - varying ISPs (primarily Chinanet); repetitive redirects from blacklisted IP 92.63.192.124 & .151; spam volume up to 15/day.  

Spam link 4-gkb.ru = 92.63.192.151 NVFOPServer-net (previous IP 92.63.192.124) - repetitive redirects:
-	www.benaughty.com = 2.17.43.33, 2.17.43.17 Akamai
-	walkondates.com = 52.57.168.236, 52.58.193.171 Amazon
-	retargetcore.com = 52.29.68.89, 35.158.186.87 Amazon
-	t.insigit.com = 52.28.205.175, 54.93.35.219 Amazon
-	uf.noclef.com = 3.121.133.104, 52.59.105.243 Amazon

Unsolicited bulk spam - unimplemented.likethin.eu, China Mobile Communications Corporation - 120.208.209.206

Sender domain harmsenheftrucks.nl = 136.144.206.196 TransIP BV

2019-10-12 22:25:34

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.93.3.64
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8851
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;54.93.3.64.			IN	A

;; AUTHORITY SECTION:
.			598	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030500 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 05 13:44:56 CST 2022
;; MSG SIZE  rcvd: 103

HOST信息:

64.3.93.54.in-addr.arpa domain name pointer ec2-54-93-3-64.eu-central-1.compute.amazonaws.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
64.3.93.54.in-addr.arpa	name = ec2-54-93-3-64.eu-central-1.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
119.146.150.134	attack	Mar 23 16:45:23 mout sshd[28105]: Connection closed by 119.146.150.134 port 48567 [preauth]	2020-03-24 03:45:28
49.89.255.86	attack	Mar 23 16:22:40 garuda postfix/smtpd[38227]: warning: hostname 86.255.89.49.broad.sz.js.dynamic.163data.com.cn does not resolve to address 49.89.255.86: Name or service not known Mar 23 16:22:40 garuda postfix/smtpd[38227]: connect from unknown[49.89.255.86] Mar 23 16:22:42 garuda postfix/smtpd[38227]: warning: unknown[49.89.255.86]: SASL LOGIN authentication failed: generic failure Mar 23 16:22:42 garuda postfix/smtpd[38227]: lost connection after AUTH from unknown[49.89.255.86] Mar 23 16:22:42 garuda postfix/smtpd[38227]: disconnect from unknown[49.89.255.86] ehlo=1 auth=0/1 commands=1/2 Mar 23 16:23:06 garuda postfix/smtpd[38327]: warning: hostname 86.255.89.49.broad.sz.js.dynamic.163data.com.cn does not resolve to address 49.89.255.86: Name or service not known Mar 23 16:23:06 garuda postfix/smtpd[38327]: connect from unknown[49.89.255.86] Mar 23 16:23:08 garuda postfix/smtpd[38327]: warning: unknown[49.89.255.86]: SASL LOGIN authentication failed: generic failure M........ -------------------------------	2020-03-24 04:00:42
142.129.152.171	attackspam	Automatic report - Port Scan Attack	2020-03-24 03:57:31
202.125.150.234	attackbots	Unauthorized connection attempt from IP address 202.125.150.234 on Port 445(SMB)	2020-03-24 03:46:13
70.113.242.156	attack	Mar 23 15:44:37 marvibiene sshd[28863]: Invalid user can from 70.113.242.156 port 44320 Mar 23 15:44:37 marvibiene sshd[28863]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.113.242.156 Mar 23 15:44:37 marvibiene sshd[28863]: Invalid user can from 70.113.242.156 port 44320 Mar 23 15:44:40 marvibiene sshd[28863]: Failed password for invalid user can from 70.113.242.156 port 44320 ssh2 ...	2020-03-24 04:20:55
122.51.94.92	attack	Automatic report - SSH Brute-Force Attack	2020-03-24 03:48:04
175.24.36.114	attackspam	Mar 23 20:36:18 h2779839 sshd[10635]: Invalid user sinusbot from 175.24.36.114 port 47762 Mar 23 20:36:18 h2779839 sshd[10635]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.36.114 Mar 23 20:36:18 h2779839 sshd[10635]: Invalid user sinusbot from 175.24.36.114 port 47762 Mar 23 20:36:20 h2779839 sshd[10635]: Failed password for invalid user sinusbot from 175.24.36.114 port 47762 ssh2 Mar 23 20:42:27 h2779839 sshd[10832]: Invalid user tighe from 175.24.36.114 port 43484 Mar 23 20:42:27 h2779839 sshd[10832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.36.114 Mar 23 20:42:27 h2779839 sshd[10832]: Invalid user tighe from 175.24.36.114 port 43484 Mar 23 20:42:29 h2779839 sshd[10832]: Failed password for invalid user tighe from 175.24.36.114 port 43484 ssh2 Mar 23 20:45:00 h2779839 sshd[10885]: Invalid user dc from 175.24.36.114 port 44786 ...	2020-03-24 03:47:45
88.249.43.105	attack	Unauthorized connection attempt from IP address 88.249.43.105 on Port 445(SMB)	2020-03-24 03:51:50
45.125.65.42	attack	Mar 23 20:42:43 srv01 postfix/smtpd\[15497\]: warning: unknown\[45.125.65.42\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 23 20:44:28 srv01 postfix/smtpd\[15497\]: warning: unknown\[45.125.65.42\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 23 20:45:03 srv01 postfix/smtpd\[18106\]: warning: unknown\[45.125.65.42\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 23 20:45:21 srv01 postfix/smtpd\[15497\]: warning: unknown\[45.125.65.42\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 23 20:59:50 srv01 postfix/smtpd\[15497\]: warning: unknown\[45.125.65.42\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-03-24 04:14:15
142.44.242.38	attackbots	Mar 23 17:48:53 * sshd[15750]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.242.38 Mar 23 17:48:55 * sshd[15750]: Failed password for invalid user deploy from 142.44.242.38 port 49928 ssh2	2020-03-24 03:55:08
193.56.28.230	attackbots	Brute forcing email accounts	2020-03-24 03:52:41
195.191.175.244	attack	20/3/23@11:44:44: FAIL: Alarm-Network address from=195.191.175.244 20/3/23@11:44:44: FAIL: Alarm-Network address from=195.191.175.244 ...	2020-03-24 04:18:57
104.206.117.37	attackbots	Mar x@x Mar x@x Mar x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=104.206.117.37	2020-03-24 04:10:35
113.160.18.238	attack	Unauthorized connection attempt from IP address 113.160.18.238 on Port 445(SMB)	2020-03-24 03:59:22
128.199.239.8	attackbotsspam	Unauthorized connection attempt from IP address 128.199.239.8 on Port 445(SMB)	2020-03-24 04:03:01

最近上报的IP列表

219.3.184.153	201.189.88.253	7.14.221.5	31.127.129.62
137.23.45.105	145.65.83.59	114.205.0.63	6.110.167.193
244.174.133.216	135.38.165.57	128.239.132.235	225.206.190.255
104.194.8.39	0.76.58.158	143.114.145.0	178.28.54.166
49.36.138.191	198.137.84.135	229.36.237.126	2601:204:c300:2040:5967:d73d:f47a:920c