104.20.49.208 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.20.49.208
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6443
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.20.49.208.			IN	A

;; AUTHORITY SECTION:
.			448	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030302 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 11:49:39 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 208.49.20.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 208.49.20.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
46.101.238.35	attack	[munged]::443 46.101.238.35 - - [29/Feb/2020:06:39:59 +0100] "POST /[munged]: HTTP/1.1" 200 7275 "-" "-" [munged]::443 46.101.238.35 - - [29/Feb/2020:06:40:14 +0100] "POST /[munged]: HTTP/1.1" 200 7275 "-" "-" [munged]::443 46.101.238.35 - - [29/Feb/2020:06:40:14 +0100] "POST /[munged]: HTTP/1.1" 200 7275 "-" "-" [munged]::443 46.101.238.35 - - [29/Feb/2020:06:40:30 +0100] "POST /[munged]: HTTP/1.1" 200 7275 "-" "-" [munged]::443 46.101.238.35 - - [29/Feb/2020:06:40:30 +0100] "POST /[munged]: HTTP/1.1" 200 7275 "-" "-" [munged]::443 46.101.238.35 - - [29/Feb/2020:06:40:46 +0100] "POST /[munged]: HTTP/1.1" 200 7275 "-" "-"	2020-02-29 19:14:12
104.131.190.193	attackbots	Feb 29 11:20:41 MK-Soft-VM6 sshd[11321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.190.193 Feb 29 11:20:43 MK-Soft-VM6 sshd[11321]: Failed password for invalid user justinbiberx from 104.131.190.193 port 37986 ssh2 ...	2020-02-29 19:07:24
185.242.4.206	attackspam	Lines containing failures of 185.242.4.206 Feb 29 06:33:50 shared11 sshd[12340]: Invalid user admin from 185.242.4.206 port 60526 Feb 29 06:33:50 shared11 sshd[12340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.242.4.206 Feb 29 06:33:53 shared11 sshd[12340]: Failed password for invalid user admin from 185.242.4.206 port 60526 ssh2 Feb 29 06:33:53 shared11 sshd[12340]: Connection closed by invalid user admin 185.242.4.206 port 60526 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=185.242.4.206	2020-02-29 19:03:44
5.74.63.129	attackbotsspam	Feb 29 06:35:20 mxgate1 postfix/postscreen[25639]: CONNECT from [5.74.63.129]:63523 to [176.31.12.44]:25 Feb 29 06:35:20 mxgate1 postfix/dnsblog[25641]: addr 5.74.63.129 listed by domain b.barracudacentral.org as 127.0.0.2 Feb 29 06:35:22 mxgate1 postfix/postscreen[25639]: PREGREET 19 after 1.7 from [5.74.63.129]:63523: HELO lgafopmo.com Feb 29 06:35:23 mxgate1 postfix/dnsblog[25643]: addr 5.74.63.129 listed by domain zen.spamhaus.org as 127.0.0.11 Feb 29 06:35:23 mxgate1 postfix/dnsblog[25643]: addr 5.74.63.129 listed by domain zen.spamhaus.org as 127.0.0.4 Feb 29 06:35:23 mxgate1 postfix/dnsblog[25644]: addr 5.74.63.129 listed by domain cbl.abuseat.org as 127.0.0.2 Feb 29 06:35:25 mxgate1 postfix/postscreen[25639]: DNSBL rank 4 for [5.74.63.129]:63523 Feb x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=5.74.63.129	2020-02-29 19:08:18
180.76.167.9	attackbots	Feb 29 06:17:53 firewall sshd[28049]: Invalid user nginx from 180.76.167.9 Feb 29 06:17:54 firewall sshd[28049]: Failed password for invalid user nginx from 180.76.167.9 port 44004 ssh2 Feb 29 06:26:07 firewall sshd[28384]: Invalid user nitish from 180.76.167.9 ...	2020-02-29 19:13:30
178.128.68.121	attack	Automatic report - XMLRPC Attack	2020-02-29 18:53:45
159.203.82.179	attackspambots	Feb 29 01:06:28 web1 sshd\[25389\]: Invalid user lms from 159.203.82.179 Feb 29 01:06:28 web1 sshd\[25389\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.82.179 Feb 29 01:06:30 web1 sshd\[25389\]: Failed password for invalid user lms from 159.203.82.179 port 41069 ssh2 Feb 29 01:11:10 web1 sshd\[25880\]: Invalid user linux from 159.203.82.179 Feb 29 01:11:10 web1 sshd\[25880\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.82.179	2020-02-29 19:24:36
83.9.140.177	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/83.9.140.177/ PL - 1H : (189) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : PL NAME ASN : ASN5617 IP : 83.9.140.177 CIDR : 83.8.0.0/13 PREFIX COUNT : 183 UNIQUE IP COUNT : 5363456 ATTACKS DETECTED ASN5617 : 1H - 5 3H - 19 6H - 24 12H - 42 24H - 93 DateTime : 2020-02-29 06:40:44 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2020-02-29 19:17:30
103.237.144.246	attackbots	Feb 29 12:26:46 debian-2gb-nbg1-2 kernel: \[5234795.542732\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=103.237.144.246 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=4285 PROTO=TCP SPT=57134 DPT=3633 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-29 19:34:08
77.40.62.243	attack	(smtpauth) Failed SMTP AUTH login from 77.40.62.243 (RU/Russia/243.62.pppoe.mari-el.ru): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-02-29 09:33:06 login authenticator failed for (localhost.localdomain) [77.40.62.243]: 535 Incorrect authentication data (set_id=care@safanicu.com)	2020-02-29 19:25:10
194.55.12.252	attackspam	Feb 29 00:56:14 hanapaa sshd\[8238\]: Invalid user vbox from 194.55.12.252 Feb 29 00:56:14 hanapaa sshd\[8238\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=v22018114176276181.bestsrv.de Feb 29 00:56:16 hanapaa sshd\[8238\]: Failed password for invalid user vbox from 194.55.12.252 port 58318 ssh2 Feb 29 01:04:28 hanapaa sshd\[8859\]: Invalid user postgres from 194.55.12.252 Feb 29 01:04:28 hanapaa sshd\[8859\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=v22018114176276181.bestsrv.de	2020-02-29 19:14:48
131.108.130.31	attackbotsspam	Feb 29 16:38:15 our-server-hostname postfix/smtpd[5312]: connect from unknown[131.108.130.31] Feb x@x Feb x@x Feb x@x Feb x@x Feb x@x Feb x@x Feb x@x Feb x@x Feb x@x Feb x@x Feb x@x Feb x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=131.108.130.31	2020-02-29 19:12:11
49.235.32.108	attackspam	Feb 29 12:03:22 vps691689 sshd[22091]: Failed password for sys from 49.235.32.108 port 56162 ssh2 Feb 29 12:12:22 vps691689 sshd[22261]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.32.108 ...	2020-02-29 19:22:11
106.13.7.186	attack	DATE:2020-02-29 06:41:10, IP:106.13.7.186, PORT:ssh SSH brute force auth (docker-dc)	2020-02-29 18:56:02
112.161.204.57	attack	Unauthorized connection attempt detected from IP address 112.161.204.57 to port 23 [J]	2020-02-29 19:23:07

最近上报的IP列表

112.78.125.88	104.20.46.91	104.20.47.133	104.20.50.208
104.20.5.85	104.20.53.249	104.20.56.169	104.20.58.226
104.20.55.169	104.20.52.249	112.78.125.89	104.20.59.112
104.20.6.160	104.20.59.226	104.20.6.61	104.20.6.34
224.34.127.16	104.20.6.85	104.20.60.112	112.78.125.95