104.43.20.114 - IPInfo

基本信息:

城市(city): Singapore

省份(region): unknown

国家(country): Singapore

运营商(isp): Microsoft Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	2020-04-09T15:57:15.622349linuxbox-skyline sshd[3898]: Invalid user ts from 104.43.20.114 port 43618 ...	2020-04-10 06:16:09

相同子网IP讨论:

IP	类型	评论内容	时间
104.43.209.168	attack	apache exploit attempt	2020-08-03 20:22:34
104.43.203.198	attackbotsspam	Jul 27 06:19:00 vps647732 sshd[30669]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.43.203.198 Jul 27 06:19:02 vps647732 sshd[30669]: Failed password for invalid user info3 from 104.43.203.198 port 58738 ssh2 ...	2020-07-27 13:36:28
104.43.20.117	attack	Jul 18 12:09:08 gw1 sshd[11275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.43.20.117 Jul 18 12:09:11 gw1 sshd[11275]: Failed password for invalid user admin from 104.43.20.117 port 48090 ssh2 ...	2020-07-18 15:12:42
104.43.20.117	attackbotsspam	Brute-force attempt banned	2020-07-18 06:53:52
104.43.204.47	attack	Invalid user admin from 104.43.204.47 port 14769	2020-07-16 07:27:09
104.43.20.117	attackbotsspam	Jul 15 13:36:25 main sshd[23308]: Failed password for invalid user admin from 104.43.20.117 port 4620 ssh2	2020-07-16 04:03:45
104.43.204.47	attackbots	Jul 15 14:56:50 vlre-nyc-1 sshd\[2663\]: Invalid user govlre from 104.43.204.47 Jul 15 14:56:50 vlre-nyc-1 sshd\[2664\]: Invalid user govlre.com from 104.43.204.47 Jul 15 14:56:50 vlre-nyc-1 sshd\[2664\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.43.204.47 Jul 15 14:56:50 vlre-nyc-1 sshd\[2663\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.43.204.47 Jul 15 14:56:52 vlre-nyc-1 sshd\[2664\]: Failed password for invalid user govlre.com from 104.43.204.47 port 54188 ssh2 Jul 15 14:56:52 vlre-nyc-1 sshd\[2663\]: Failed password for invalid user govlre from 104.43.204.47 port 54187 ssh2 ...	2020-07-15 23:01:05
104.43.204.47	attackspam	$f2bV_matches	2020-07-15 15:16:07
104.43.203.198	attackbots	Invalid user alexie from 104.43.203.198 port 40142	2020-07-12 00:50:27
104.43.203.198	attackbots	Jul 7 19:49:35 ns381471 sshd[7711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.43.203.198 Jul 7 19:49:37 ns381471 sshd[7711]: Failed password for invalid user avinash from 104.43.203.198 port 41726 ssh2	2020-07-08 03:13:11
104.43.205.69	attack	URL Probing: /wp/wp-admin/setup-config.php	2020-06-12 13:16:10
104.43.203.120	attackspam	RDP Brute-Force (Grieskirchen RZ2)	2019-07-16 12:59:47

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.43.20.114
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61044
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;104.43.20.114.			IN	A

;; AUTHORITY SECTION:
.			293	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040903 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 10 06:16:06 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 114.20.43.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 114.20.43.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
138.68.80.235	attackbotsspam	WordPress login Brute force / Web App Attack on client site.	2020-05-21 20:09:40
51.83.75.97	attackspambots	May 21 10:40:36 IngegnereFirenze sshd[6721]: Failed password for invalid user cbj from 51.83.75.97 port 59122 ssh2 ...	2020-05-21 19:58:36
67.169.77.173	attack	Repeated attempts against wp-login	2020-05-21 19:49:49
51.75.121.252	attack	May 21 13:15:33 vps687878 sshd\[7791\]: Failed password for invalid user ojg from 51.75.121.252 port 41048 ssh2 May 21 13:19:08 vps687878 sshd\[8028\]: Invalid user ckr from 51.75.121.252 port 47338 May 21 13:19:08 vps687878 sshd\[8028\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.121.252 May 21 13:19:10 vps687878 sshd\[8028\]: Failed password for invalid user ckr from 51.75.121.252 port 47338 ssh2 May 21 13:23:00 vps687878 sshd\[8416\]: Invalid user nrn from 51.75.121.252 port 53630 May 21 13:23:00 vps687878 sshd\[8416\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.121.252 ...	2020-05-21 19:35:41
101.108.138.150	attack	SSH bruteforce more then 50 syn to 22 port per 10 seconds.	2020-05-21 19:34:41
94.141.232.246	attackbotsspam	Unauthorised access (May 21) SRC=94.141.232.246 LEN=52 PREC=0x20 TTL=117 ID=25051 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (May 21) SRC=94.141.232.246 LEN=52 TTL=119 ID=18849 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (May 20) SRC=94.141.232.246 LEN=52 PREC=0x20 TTL=119 ID=11591 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (May 19) SRC=94.141.232.246 LEN=52 PREC=0x20 TTL=119 ID=24844 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (May 19) SRC=94.141.232.246 LEN=52 PREC=0x20 TTL=119 ID=4461 DF TCP DPT=445 WINDOW=8192 SYN	2020-05-21 19:39:30
113.53.231.178	attack	(sshd) Failed SSH login from 113.53.231.178 (TH/Thailand/113-53-231-178.totisp.net): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 21 05:48:33 ubnt-55d23 sshd[24159]: Did not receive identification string from 113.53.231.178 port 63699 May 21 05:48:38 ubnt-55d23 sshd[24186]: Invalid user ubnt from 113.53.231.178 port 64461	2020-05-21 19:36:06
122.224.241.164	attackspam	Invalid user ent from 122.224.241.164 port 56902	2020-05-21 19:59:31
152.32.240.76	attack	May 21 14:04:15 sshd\[11589\]: Invalid user bda from 152.32.240.76May 21 14:04:18 sshd\[11589\]: Failed password for invalid user bda from 152.32.240.76 port 46534 ssh2 ...	2020-05-21 20:08:46
80.82.65.253	attack	May 21 13:48:18 debian-2gb-nbg1-2 kernel: \[12320520.485963\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=80.82.65.253 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=10566 PROTO=TCP SPT=50436 DPT=4372 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-21 19:59:52
197.44.46.114	attackspam	Unauthorized access to SSH at 21/May/2020:03:48:20 +0000. Received: (SSH-2.0-libssh2_1.9.0)	2020-05-21 19:47:46
201.40.244.146	attackspam	May 21 01:25:48 web9 sshd\[19639\]: Invalid user tjy from 201.40.244.146 May 21 01:25:48 web9 sshd\[19639\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.40.244.146 May 21 01:25:50 web9 sshd\[19639\]: Failed password for invalid user tjy from 201.40.244.146 port 35290 ssh2 May 21 01:26:32 web9 sshd\[19750\]: Invalid user oyx from 201.40.244.146 May 21 01:26:32 web9 sshd\[19750\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.40.244.146	2020-05-21 19:42:26
138.197.149.97	attack	May 21 14:05:40 ift sshd\[12509\]: Invalid user yvx from 138.197.149.97May 21 14:05:42 ift sshd\[12509\]: Failed password for invalid user yvx from 138.197.149.97 port 59852 ssh2May 21 14:09:02 ift sshd\[12603\]: Invalid user bgd from 138.197.149.97May 21 14:09:04 ift sshd\[12603\]: Failed password for invalid user bgd from 138.197.149.97 port 38084 ssh2May 21 14:12:20 ift sshd\[13098\]: Invalid user tiu from 138.197.149.97 ...	2020-05-21 19:35:29
109.116.196.174	attack	Auto Fail2Ban report, multiple SSH login attempts.	2020-05-21 19:56:17
113.214.30.171	attackspam	6380/tcp 6378/tcp 6379/tcp... [2020-03-21/05-20]748pkt,4pt.(tcp)	2020-05-21 19:51:43

最近上报的IP列表

63.6.228.90	49.159.23.18	148.62.145.125	85.218.46.76
27.13.134.114	156.252.24.105	207.219.31.158	75.14.249.104
87.89.65.195	201.255.75.249	137.45.128.187	190.205.162.113
145.29.224.253	92.188.95.164	44.247.144.7	158.255.212.111
201.31.205.61	46.190.23.43	186.37.50.224	86.243.31.33