104.20.5.201 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.20.5.201
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60477
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.20.5.201.			IN	A

;; AUTHORITY SECTION:
.			226	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022401 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 12:09:48 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 201.5.20.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 201.5.20.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
172.245.66.53	attack	Aug 20 10:28:19 roki-contabo sshd\[21198\]: Invalid user sam from 172.245.66.53 Aug 20 10:28:19 roki-contabo sshd\[21198\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.245.66.53 Aug 20 10:28:21 roki-contabo sshd\[21198\]: Failed password for invalid user sam from 172.245.66.53 port 49766 ssh2 Aug 20 10:29:04 roki-contabo sshd\[21201\]: Invalid user ftp from 172.245.66.53 Aug 20 10:29:04 roki-contabo sshd\[21201\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.245.66.53 ...	2020-08-20 19:02:25
118.24.123.34	attack	Aug 20 02:34:05 askasleikir sshd[5352]: Failed password for root from 118.24.123.34 port 45896 ssh2	2020-08-20 19:28:23
188.152.100.60	attackspambots	2020-08-20T12:12:31+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)	2020-08-20 19:03:12
112.197.0.92	attackbotsspam	20/8/19@23:47:41: FAIL: Alarm-Intrusion address from=112.197.0.92 ...	2020-08-20 19:31:07
218.250.7.211	attackspam	Telnet Server BruteForce Attack	2020-08-20 19:19:56
45.230.81.150	attack	failed_logins	2020-08-20 19:29:15
13.233.136.39	attackspambots	1 Attack(s) Detected [DoS Attack: Ping Sweep] from source: 13.233.136.39, Tuesday, August 18, 2020 10:08:13	2020-08-20 18:51:53
51.255.168.254	attack	Invalid user iva from 51.255.168.254 port 36496	2020-08-20 19:21:54
97.74.4.42	attackspambots	Automatic report - XMLRPC Attack	2020-08-20 19:32:55
51.210.151.242	attackspambots	Invalid user odoo from 51.210.151.242 port 42752	2020-08-20 19:01:34
213.230.107.202	attackspam	Aug 20 10:42:27 haigwepa sshd[5334]: Failed password for root from 213.230.107.202 port 64570 ssh2 ...	2020-08-20 19:00:32
176.126.175.49	attack	08/20/2020 05:54:07 UDP Loop 176.126.175.49, 46956->> 77.173.xxx.xxx	2020-08-20 19:19:02
61.177.172.41	attackbots	Aug 20 08:52:10 ajax sshd[29070]: Failed password for root from 61.177.172.41 port 14077 ssh2 Aug 20 08:52:15 ajax sshd[29070]: Failed password for root from 61.177.172.41 port 14077 ssh2	2020-08-20 19:05:54
157.55.39.85	attackbots	[Thu Aug 20 10:47:50.008433 2020] [:error] [pid 24698:tid 140548207650560] [client 157.55.39.85:2681] [client 157.55.39.85] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/swiper-v77.js"] [unique_id "Xz3yZqGeI0GCUMzG@ueWgAAAAC0"] ...	2020-08-20 19:24:46
23.129.64.207	attack	Aug 20 06:31:49 master sshd[28279]: Failed password for root from 23.129.64.207 port 58060 ssh2 Aug 20 06:31:52 master sshd[28279]: Failed password for root from 23.129.64.207 port 58060 ssh2 Aug 20 06:31:55 master sshd[28279]: Failed password for root from 23.129.64.207 port 58060 ssh2	2020-08-20 19:18:16

最近上报的IP列表

104.20.5.194	104.20.50.102	104.20.47.237	104.22.79.163
104.20.56.16	104.20.56.246	104.20.57.246	104.20.58.127
104.20.55.16	104.22.79.197	104.20.59.127	104.20.58.39
104.22.79.80	104.22.79.91	104.22.79.99	104.20.75.38
104.20.76.104	104.20.75.178	104.20.76.229	104.20.76.15