104.20.7.72 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.20.7.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47593
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.20.7.72.			IN	A

;; AUTHORITY SECTION:
.			270	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021700 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 02:06:05 CST 2022
;; MSG SIZE  rcvd: 104

HOST信息:

Host 72.7.20.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 72.7.20.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
35.226.246.200	attack	2020-04-05T23:33:13.039583librenms sshd[31049]: Failed password for root from 35.226.246.200 port 41858 ssh2 2020-04-05T23:36:30.117758librenms sshd[31680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.246.226.35.bc.googleusercontent.com user=root 2020-04-05T23:36:32.100613librenms sshd[31680]: Failed password for root from 35.226.246.200 port 51822 ssh2 ...	2020-04-06 08:39:10
106.54.40.11	attackbots	Apr 5 23:19:34 ns382633 sshd\[13752\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 user=root Apr 5 23:19:36 ns382633 sshd\[13752\]: Failed password for root from 106.54.40.11 port 57718 ssh2 Apr 5 23:31:36 ns382633 sshd\[16587\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 user=root Apr 5 23:31:39 ns382633 sshd\[16587\]: Failed password for root from 106.54.40.11 port 39070 ssh2 Apr 5 23:36:31 ns382633 sshd\[17685\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 user=root	2020-04-06 08:36:20
14.156.51.175	attack	Unauthorised access (Apr 6) SRC=14.156.51.175 LEN=40 TTL=52 ID=48236 TCP DPT=8080 WINDOW=52419 SYN Unauthorised access (Apr 5) SRC=14.156.51.175 LEN=40 TTL=52 ID=21091 TCP DPT=8080 WINDOW=30106 SYN	2020-04-06 08:07:16
134.209.100.26	attackbotsspam	Apr 6 06:16:08 itv-usvr-02 sshd[6575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.100.26 user=root Apr 6 06:20:09 itv-usvr-02 sshd[6777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.100.26 user=root Apr 6 06:24:02 itv-usvr-02 sshd[6979]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.100.26 user=root	2020-04-06 08:10:46
139.178.88.75	attackbotsspam	scan z	2020-04-06 08:24:07
103.42.57.65	attackbotsspam	Apr 6 02:11:55 nextcloud sshd\[17744\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.42.57.65 user=root Apr 6 02:11:57 nextcloud sshd\[17744\]: Failed password for root from 103.42.57.65 port 45276 ssh2 Apr 6 02:16:09 nextcloud sshd\[22475\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.42.57.65 user=root	2020-04-06 08:23:11
24.142.36.105	attackspam	Apr 6 01:11:57 vmd26974 sshd[5981]: Failed password for root from 24.142.36.105 port 38328 ssh2 ...	2020-04-06 08:12:19
94.130.237.96	attackbotsspam	[Mon Apr 06 04:36:54.650773 2020] [:error] [pid 435:tid 140022815487744] [client 94.130.237.96:49324] [client 94.130.237.96] ModSecurity: Access denied with code 403 (phase 2). Pattern match "((?:[~!@#\\\\$%\\\\^&\\\\\\\$\\\$\\\\-\\\\+=\\\\{\\\\}\\\\[\\\\]\\\\\|:;\"'\\xc2\\xb4\\xe2\\x80\\x99\\xe2\\x80\\x98`<>][^~!@#\\\\$%\\\\^&\\\\\\\$\\\$\\\\-\\\\+=\\\\{\\\\}\\\\[\\\\]\\\\\|:;\"'\\xc2\\xb4\\xe2\\x80\\x99\\xe2\\x80\\x98`<>]*?){12})" at ARGS:id. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "1255"] [id "942430"] [msg "Restricted SQL Character Anomaly Detection (args): # of special characters exceeded (12)"] [data "Matched Data: :prakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-berlaku-tanggal- found within ARGS:id: 1064:prakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-berlaku-tanggal-5-11-juli-2016"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platfo ...	2020-04-06 08:21:56
206.189.190.187	attackspambots	2020-04-05T23:43:14.182446Z e59a82af6bd5 New connection: 206.189.190.187:48716 (172.17.0.4:2222) [session: e59a82af6bd5] 2020-04-05T23:50:25.100488Z d370bfef3e72 New connection: 206.189.190.187:51034 (172.17.0.4:2222) [session: d370bfef3e72]	2020-04-06 08:41:56
114.204.218.154	attack	Apr 5 18:33:28 ws12vmsma01 sshd[30256]: Failed password for root from 114.204.218.154 port 53815 ssh2 Apr 5 18:36:29 ws12vmsma01 sshd[30713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.204.218.154 user=root Apr 5 18:36:31 ws12vmsma01 sshd[30713]: Failed password for root from 114.204.218.154 port 50490 ssh2 ...	2020-04-06 08:07:33
221.6.105.62	attackbots	Tried sshing with brute force.	2020-04-06 08:19:24
37.49.229.183	attack	[2020-04-05 19:59:47] NOTICE[12114][C-00001d44] chan_sip.c: Call from '' (37.49.229.183:41207) to extension '8522848323395006' rejected because extension not found in context 'public'. [2020-04-05 19:59:47] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-05T19:59:47.274-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="8522848323395006",SessionID="0x7f020c0db748",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/37.49.229.183/5060",ACLName="no_extension_match" [2020-04-05 20:00:54] NOTICE[12114][C-00001d45] chan_sip.c: Call from '' (37.49.229.183:39775) to extension '861048323395006' rejected because extension not found in context 'public'. [2020-04-05 20:00:54] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-05T20:00:54.609-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="861048323395006",SessionID="0x7f020c0ca898",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4 ...	2020-04-06 08:19:12
14.169.80.105	attackbots	SSH Authentication Attempts Exceeded	2020-04-06 08:32:03
162.243.128.197	attack	Icarus honeypot on github	2020-04-06 08:21:35
104.197.220.149	attack	Apr 5 13:27:51 fwservlet sshd[28703]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.197.220.149 user=r.r Apr 5 13:27:53 fwservlet sshd[28703]: Failed password for r.r from 104.197.220.149 port 41432 ssh2 Apr 5 13:27:53 fwservlet sshd[28703]: Received disconnect from 104.197.220.149 port 41432:11: Bye Bye [preauth] Apr 5 13:27:53 fwservlet sshd[28703]: Disconnected from 104.197.220.149 port 41432 [preauth] Apr 5 13:40:35 fwservlet sshd[29077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.197.220.149 user=r.r Apr 5 13:40:37 fwservlet sshd[29077]: Failed password for r.r from 104.197.220.149 port 60074 ssh2 Apr 5 13:40:37 fwservlet sshd[29077]: Received disconnect from 104.197.220.149 port 60074:11: Bye Bye [preauth] Apr 5 13:40:37 fwservlet sshd[29077]: Disconnected from 104.197.220.149 port 60074 [preauth] Apr 5 13:44:07 fwservlet sshd[29183]: pam_unix(sshd:auth): auth........ -------------------------------	2020-04-06 08:15:55

最近上报的IP列表

104.21.67.100	104.20.71.166	104.20.71.13	104.20.71.89
104.20.73.199	104.20.74.106	104.20.73.95	104.20.74.187
104.20.74.199	104.20.73.187	104.20.75.32	104.20.75.19
104.21.67.101	104.20.76.32	104.20.75.22	104.20.75.106
104.20.76.22	104.20.76.19	104.20.76.118	104.20.76.53