104.20.96.150 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.20.96.150
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55978
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.20.96.150.			IN	A

;; AUTHORITY SECTION:
.			299	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022031500 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 16 01:39:02 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 150.96.20.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 150.96.20.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
194.5.207.227	attack	DATE:2020-06-11 09:51:47, IP:194.5.207.227, PORT:ssh SSH brute force auth (docker-dc)	2020-06-11 16:25:09
202.38.10.50	attack	Jun 11 09:01:59 srv sshd[23588]: Failed password for root from 202.38.10.50 port 50054 ssh2	2020-06-11 16:38:35
43.227.23.76	attack	Jun 11 02:57:29 firewall sshd[29335]: Invalid user sampserver from 43.227.23.76 Jun 11 02:57:31 firewall sshd[29335]: Failed password for invalid user sampserver from 43.227.23.76 port 53910 ssh2 Jun 11 03:00:18 firewall sshd[29437]: Invalid user zwz from 43.227.23.76 ...	2020-06-11 16:01:59
185.200.118.53	attackspam	ET DROP Dshield Block Listed Source group 1 - port: 3389 proto: TCP cat: Misc Attack	2020-06-11 16:27:58
142.93.203.168	attackspambots	142.93.203.168 - - [11/Jun/2020:08:51:59 +0200] "GET /wp-login.php HTTP/1.1" 200 5861 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.203.168 - - [11/Jun/2020:08:52:00 +0200] "POST /wp-login.php HTTP/1.1" 200 6166 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.203.168 - - [11/Jun/2020:08:52:02 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-11 16:13:57
185.128.41.50	attack	TCP (SYN) 185.128.41.50:51859 -> port 8081, len 44	2020-06-11 16:25:27
202.150.143.90	attackbots	(imapd) Failed IMAP login from 202.150.143.90 (ID/Indonesia/host90.subnet143.comnet.net.id): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Jun 11 08:23:15 ir1 dovecot[2885757]: imap-login: Disconnected (auth failed, 4 attempts in 26 secs): user=, method=PLAIN, rip=202.150.143.90, lip=5.63.12.44, TLS: Connection closed, session=<2l7w5ManBNjKlo9a>	2020-06-11 16:28:57
103.19.58.23	attackbotsspam	Jun 9 04:13:05 odroid64 sshd\[4131\]: Invalid user admin from 103.19.58.23 Jun 9 04:13:05 odroid64 sshd\[4131\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.19.58.23 ...	2020-06-11 16:03:48
122.51.183.135	attack	Jun 11 10:11:37 vps647732 sshd[2246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.183.135 Jun 11 10:11:39 vps647732 sshd[2246]: Failed password for invalid user admin from 122.51.183.135 port 54928 ssh2 ...	2020-06-11 16:31:05
219.144.67.60	attackspambots	Jun 11 03:08:04 firewall sshd[29791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.144.67.60 user=root Jun 11 03:08:06 firewall sshd[29791]: Failed password for root from 219.144.67.60 port 41948 ssh2 Jun 11 03:12:11 firewall sshd[29931]: Invalid user kunxu from 219.144.67.60 ...	2020-06-11 16:04:47
112.30.125.25	attackspambots	Jun 11 02:57:51 vps46666688 sshd[4016]: Failed password for root from 112.30.125.25 port 47030 ssh2 ...	2020-06-11 16:18:18
59.46.173.153	attackspam	Jun 11 10:15:57 ns382633 sshd\[29928\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.46.173.153 user=root Jun 11 10:15:59 ns382633 sshd\[29928\]: Failed password for root from 59.46.173.153 port 22904 ssh2 Jun 11 10:22:47 ns382633 sshd\[31047\]: Invalid user mn from 59.46.173.153 port 13967 Jun 11 10:22:47 ns382633 sshd\[31047\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.46.173.153 Jun 11 10:22:49 ns382633 sshd\[31047\]: Failed password for invalid user mn from 59.46.173.153 port 13967 ssh2	2020-06-11 16:31:31
103.86.130.43	attackspam	May 27 12:50:00 odroid64 sshd\[28152\]: Invalid user naoneo from 103.86.130.43 May 27 12:50:00 odroid64 sshd\[28152\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.86.130.43 ...	2020-06-11 16:24:20
78.111.166.3	attackspambots	[ThuJun1105:37:27.9929412020][:error][pid26339:tid46962518791936][client78.111.166.3:35716][client78.111.166.3]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\$mozilla\^\\|mozilla/[45]\\\\\\\\.[1-9]\\|\^mozilla/4\\\\\\\\.0\$$"atREQUEST_HEADERS:User-Agent.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"426"][id"330131"][rev"3"][msg"Atomicorp.comWAFRules:MaliciousBotBlocked$FakeMozillaUserAgentStringDetected$"][severity"CRITICAL"][hostname"euromacleaning.ch"][uri"/ajax-index.php"][unique_id"XuGm90MxmRA97-ggwMNjDAAAANU"]\,referer:euromacleaning.ch[ThuJun1105:53:49.8308532020][:error][pid26339:tid46962417182464][client78.111.166.3:43272][client78.111.166.3]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\$mozilla\^\\|mozilla/[45]\\\\\\\\.[1-9]\\|\^mozilla/4\\\\\\\\.0\$$"atREQUEST_HEADERS:User-Agent.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"426"][id"330131"][rev"3"][msg"Atomicorp.comWAFRule	2020-06-11 16:10:06
49.233.32.169	attack	Jun 9 01:37:13 www sshd[6673]: Invalid user abigale from 49.233.32.169 Jun 9 01:37:13 www sshd[6673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.32.169 Jun 9 01:37:15 www sshd[6673]: Failed password for invalid user abigale from 49.233.32.169 port 41058 ssh2 Jun 9 01:37:15 www sshd[6673]: Received disconnect from 49.233.32.169: 11: Bye Bye [preauth] Jun 9 01:44:41 www sshd[6767]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.32.169 user=r.r Jun 9 01:44:43 www sshd[6767]: Failed password for r.r from 49.233.32.169 port 59364 ssh2 Jun 9 01:44:43 www sshd[6767]: Received disconnect from 49.233.32.169: 11: Bye Bye [preauth] Jun 9 01:49:27 www sshd[6813]: Connection closed by 49.233.32.169 [preauth] Jun 9 01:53:40 www sshd[6925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.32.169 user=r.r Jun 9 01:53:42 www sshd[........ -------------------------------	2020-06-11 16:01:41

最近上报的IP列表

74.22.214.228	104.20.96.81	104.20.97.123	104.20.97.150
104.207.227.55	104.207.228.179	104.207.228.3	104.207.230.216
104.207.236.46	104.207.237.249	104.207.238.33	104.207.239.47
104.207.24.67	104.207.240.165	104.207.241.114	104.207.241.33
104.207.243.77	104.207.244.91	104.207.246.109	104.207.246.59