1.20.102.56 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Thailand

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
1.20.102.54	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/1.20.102.54/ TH - 1H : (31) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TH NAME ASN : ASN23969 IP : 1.20.102.54 CIDR : 1.20.102.0/24 PREFIX COUNT : 1783 UNIQUE IP COUNT : 1183744 ATTACKS DETECTED ASN23969 : 1H - 2 3H - 3 6H - 5 12H - 6 24H - 9 DateTime : 2019-10-20 14:02:17 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-10-20 22:46:58

类型

评论内容

时间

1.20.102.54

attackbotsspam

IP Ban Report :  
 https://help-dysk.pl/wordpress-firewall-plugins/ip/1.20.102.54/ 
 
 TH - 1H : (31)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : TH 
 NAME ASN : ASN23969 
 
 IP : 1.20.102.54 
 
 CIDR : 1.20.102.0/24 
 
 PREFIX COUNT : 1783 
 
 UNIQUE IP COUNT : 1183744 
 
 
 ATTACKS DETECTED ASN23969 :  
  1H - 2 
  3H - 3 
  6H - 5 
 12H - 6 
 24H - 9 
 
 DateTime : 2019-10-20 14:02:17 
 
 INFO :  HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN  - data recovery

2019-10-20 22:46:58

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.20.102.56
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28704
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.20.102.56.			IN	A

;; AUTHORITY SECTION:
.			542	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022400 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 19:46:07 CST 2022
;; MSG SIZE  rcvd: 104

HOST信息:

Host 56.102.20.1.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 56.102.20.1.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
218.92.0.204	attackbotsspam	Apr 3 06:38:24 vpn01 sshd[4377]: Failed password for root from 218.92.0.204 port 43922 ssh2 ...	2020-04-03 13:08:17
222.186.173.226	attackspambots	Apr 3 06:44:49 santamaria sshd\[28895\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.226 user=root Apr 3 06:44:51 santamaria sshd\[28895\]: Failed password for root from 222.186.173.226 port 21670 ssh2 Apr 3 06:45:04 santamaria sshd\[28895\]: Failed password for root from 222.186.173.226 port 21670 ssh2 ...	2020-04-03 12:53:16
2002:b9ea:d8ce::b9ea:d8ce	attack	Apr 3 05:24:37 web01.agentur-b-2.de postfix/smtpd[479734]: warning: unknown[2002:b9ea:d8ce::b9ea:d8ce]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 3 05:24:37 web01.agentur-b-2.de postfix/smtpd[479734]: lost connection after AUTH from unknown[2002:b9ea:d8ce::b9ea:d8ce] Apr 3 05:26:49 web01.agentur-b-2.de postfix/smtpd[480876]: warning: unknown[2002:b9ea:d8ce::b9ea:d8ce]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 3 05:26:49 web01.agentur-b-2.de postfix/smtpd[480876]: lost connection after AUTH from unknown[2002:b9ea:d8ce::b9ea:d8ce] Apr 3 05:32:45 web01.agentur-b-2.de postfix/smtpd[480876]: warning: unknown[2002:b9ea:d8ce::b9ea:d8ce]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 3 05:32:45 web01.agentur-b-2.de postfix/smtpd[480876]: lost connection after AUTH from unknown[2002:b9ea:d8ce::b9ea:d8ce]	2020-04-03 12:44:16
196.52.84.9	attack	(From tumtum5587@yahoo.com) How to Make $9936 FАST, Quick Саsh, Тhe Busу Вudgеtеr: http://tjvvzh.cbdhempthrone.com/1ec2c353c	2020-04-03 13:02:37
150.95.140.160	attack	SSH Brute-Forcing (server2)	2020-04-03 12:50:54
217.112.142.110	attack	Apr 3 05:37:00 mail.srvfarm.net postfix/smtpd[2428295]: NOQUEUE: reject: RCPT from unknown[217.112.142.110]: 554 5.7.1 Service unavailable; Client host [217.112.142.110] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo= Apr 3 05:38:45 mail.srvfarm.net postfix/smtpd[2428264]: NOQUEUE: reject: RCPT from unknown[217.112.142.110]: 554 5.7.1 Service unavailable; Client host [217.112.142.110] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo= Apr 3 05:38:52 mail.srvfarm.net postfix/smtpd[2428295]: NOQUEUE: reject: RCPT from unknown[217.112.142.110]: 554 5.7.1 Service unavailable; Client host [217.112.142.110] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=	2020-04-03 12:37:34
45.55.145.31	attackspambots	5x Failed Password	2020-04-03 13:08:38
124.30.44.214	attack	Apr 3 05:56:00 ns3164893 sshd[24727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.30.44.214 Apr 3 05:56:03 ns3164893 sshd[24727]: Failed password for invalid user fw from 124.30.44.214 port 14561 ssh2 ...	2020-04-03 12:59:33
222.186.175.169	attackbots	Apr 3 06:50:43 vps sshd[603585]: Failed password for root from 222.186.175.169 port 41046 ssh2 Apr 3 06:50:46 vps sshd[603585]: Failed password for root from 222.186.175.169 port 41046 ssh2 Apr 3 06:50:49 vps sshd[603585]: Failed password for root from 222.186.175.169 port 41046 ssh2 Apr 3 06:50:53 vps sshd[603585]: Failed password for root from 222.186.175.169 port 41046 ssh2 Apr 3 06:50:56 vps sshd[603585]: Failed password for root from 222.186.175.169 port 41046 ssh2 ...	2020-04-03 12:59:14
45.133.99.8	attack	Apr 3 06:32:45 websrv1.aknwsrv.net postfix/smtpd[115285]: warning: unknown[45.133.99.8]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 3 06:32:45 websrv1.aknwsrv.net postfix/smtpd[115285]: lost connection after AUTH from unknown[45.133.99.8] Apr 3 06:32:52 websrv1.aknwsrv.net postfix/smtpd[115285]: lost connection after AUTH from unknown[45.133.99.8] Apr 3 06:33:03 websrv1.aknwsrv.net postfix/smtpd[115469]: warning: unknown[45.133.99.8]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 3 06:33:04 websrv1.aknwsrv.net postfix/smtpd[115469]: lost connection after AUTH from unknown[45.133.99.8]	2020-04-03 12:43:45
94.102.49.159	attackspambots	Apr 3 06:43:08 debian-2gb-nbg1-2 kernel: \[8148029.087359\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=94.102.49.159 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=61599 PROTO=TCP SPT=47527 DPT=12735 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-03 12:52:09
159.65.110.91	attack	Apr 3 05:53:44 v22019038103785759 sshd\[4051\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.110.91 user=root Apr 3 05:53:46 v22019038103785759 sshd\[4051\]: Failed password for root from 159.65.110.91 port 35688 ssh2 Apr 3 05:56:20 v22019038103785759 sshd\[4223\]: Invalid user lusifen from 159.65.110.91 port 50688 Apr 3 05:56:20 v22019038103785759 sshd\[4223\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.110.91 Apr 3 05:56:22 v22019038103785759 sshd\[4223\]: Failed password for invalid user lusifen from 159.65.110.91 port 50688 ssh2 ...	2020-04-03 12:46:29
222.186.175.140	attackspambots	Apr 3 06:30:51 silence02 sshd[22215]: Failed password for root from 222.186.175.140 port 44978 ssh2 Apr 3 06:30:56 silence02 sshd[22215]: Failed password for root from 222.186.175.140 port 44978 ssh2 Apr 3 06:30:59 silence02 sshd[22215]: Failed password for root from 222.186.175.140 port 44978 ssh2 Apr 3 06:31:02 silence02 sshd[22215]: Failed password for root from 222.186.175.140 port 44978 ssh2	2020-04-03 12:33:19
106.52.114.166	attackspambots	Apr 3 10:52:13 itv-usvr-02 sshd[23973]: Invalid user ss from 106.52.114.166 port 41446 Apr 3 10:52:13 itv-usvr-02 sshd[23973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.114.166 Apr 3 10:52:13 itv-usvr-02 sshd[23973]: Invalid user ss from 106.52.114.166 port 41446 Apr 3 10:52:16 itv-usvr-02 sshd[23973]: Failed password for invalid user ss from 106.52.114.166 port 41446 ssh2 Apr 3 10:56:14 itv-usvr-02 sshd[24088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.114.166 user=root Apr 3 10:56:16 itv-usvr-02 sshd[24088]: Failed password for root from 106.52.114.166 port 60898 ssh2	2020-04-03 12:50:01
49.235.91.59	attackbots	2020-04-03T05:50:47.146567librenms sshd[28787]: Failed password for root from 49.235.91.59 port 43568 ssh2 2020-04-03T05:56:04.562230librenms sshd[29499]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.91.59 user=root 2020-04-03T05:56:06.356603librenms sshd[29499]: Failed password for root from 49.235.91.59 port 44786 ssh2 ...	2020-04-03 12:58:11

最近上报的IP列表

1.20.102.40	1.20.102.58	105.66.159.171	1.20.108.197
1.20.109.123	1.20.110.107	1.20.110.114	1.20.110.125
1.20.110.152	1.20.110.165	1.20.110.225	1.20.110.233
1.20.110.251	1.20.110.26	1.20.110.30	1.20.110.35
1.20.110.54	1.20.110.64	1.20.110.7	1.20.110.74