107.20.12.195 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
107.20.123.28	attackbots	Jul 12 14:59:47 webctf sshd[17327]: User root from 107.20.123.28 not allowed because not listed in AllowUsers Jul 12 15:05:34 webctf sshd[18965]: User root from 107.20.123.28 not allowed because not listed in AllowUsers Jul 12 15:10:14 webctf sshd[20415]: User root from 107.20.123.28 not allowed because not listed in AllowUsers Jul 12 15:14:39 webctf sshd[21648]: User root from 107.20.123.28 not allowed because not listed in AllowUsers Jul 12 15:20:08 webctf sshd[23146]: User root from 107.20.123.28 not allowed because not listed in AllowUsers Jul 12 15:25:12 webctf sshd[24483]: User root from 107.20.123.28 not allowed because not listed in AllowUsers Jul 12 15:29:11 webctf sshd[25536]: User root from 107.20.123.28 not allowed because not listed in AllowUsers Jul 12 15:34:53 webctf sshd[27143]: User root from 107.20.123.28 not allowed because not listed in AllowUsers Jul 12 15:40:10 webctf sshd[28612]: User root from 107.20.123.28 not allowed because not listed in AllowUsers Jul 12 15: ...	2020-07-13 02:20:22

类型

评论内容

时间

107.20.123.28

attackbots

Jul 12 14:59:47 webctf sshd[17327]: User root from 107.20.123.28 not allowed because not listed in AllowUsers
Jul 12 15:05:34 webctf sshd[18965]: User root from 107.20.123.28 not allowed because not listed in AllowUsers
Jul 12 15:10:14 webctf sshd[20415]: User root from 107.20.123.28 not allowed because not listed in AllowUsers
Jul 12 15:14:39 webctf sshd[21648]: User root from 107.20.123.28 not allowed because not listed in AllowUsers
Jul 12 15:20:08 webctf sshd[23146]: User root from 107.20.123.28 not allowed because not listed in AllowUsers
Jul 12 15:25:12 webctf sshd[24483]: User root from 107.20.123.28 not allowed because not listed in AllowUsers
Jul 12 15:29:11 webctf sshd[25536]: User root from 107.20.123.28 not allowed because not listed in AllowUsers
Jul 12 15:34:53 webctf sshd[27143]: User root from 107.20.123.28 not allowed because not listed in AllowUsers
Jul 12 15:40:10 webctf sshd[28612]: User root from 107.20.123.28 not allowed because not listed in AllowUsers
Jul 12 15:
...

2020-07-13 02:20:22

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 107.20.12.195
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46069
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;107.20.12.195.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020500 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 19:36:19 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

195.12.20.107.in-addr.arpa domain name pointer ec2-107-20-12-195.compute-1.amazonaws.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
195.12.20.107.in-addr.arpa	name = ec2-107-20-12-195.compute-1.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
117.107.140.162	attack	Joomla HTTP User Agent Object Injection Vulnerability	2019-07-27 08:44:58
142.93.49.103	attack	Jul 27 01:22:31 mail sshd\[6316\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.49.103 user=root Jul 27 01:22:33 mail sshd\[6316\]: Failed password for root from 142.93.49.103 port 36830 ssh2 ...	2019-07-27 08:24:22
103.31.82.122	attackbots	SSH Brute-Force reported by Fail2Ban	2019-07-27 08:09:02
149.56.193.184	attackbots	ssh failed login	2019-07-27 08:46:37
1.174.94.76	attack	Jul 26 02:34:55 localhost kernel: [15367088.673956] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=1.174.94.76 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=34979 PROTO=TCP SPT=22849 DPT=37215 WINDOW=31077 RES=0x00 SYN URGP=0 Jul 26 02:34:55 localhost kernel: [15367088.673983] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=1.174.94.76 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=34979 PROTO=TCP SPT=22849 DPT=37215 SEQ=758669438 ACK=0 WINDOW=31077 RES=0x00 SYN URGP=0 Jul 26 15:45:29 localhost kernel: [15414522.351007] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=1.174.94.76 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=11009 PROTO=TCP SPT=22849 DPT=37215 WINDOW=31077 RES=0x00 SYN URGP=0 Jul 26 15:45:29 localhost kernel: [15414522.351015] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=1.174.94.76 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0	2019-07-27 08:40:00
122.152.227.144	attack	122.152.227.144 - - \[26/Jul/2019:21:45:13 +0200\] "POST /wp-content/themes/AdvanceImage5/header.php HTTP/1.1" 404 15212 "-" "-"	2019-07-27 08:48:02
157.230.249.249	attackbotsspam	Jul 26 20:03:33 plusreed sshd[28483]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.249.249 user=root Jul 26 20:03:35 plusreed sshd[28483]: Failed password for root from 157.230.249.249 port 35198 ssh2 ...	2019-07-27 08:12:09
150.254.222.97	attackbots	Jul 26 21:45:33 [munged] sshd[26555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.254.222.97 user=root Jul 26 21:45:35 [munged] sshd[26555]: Failed password for root from 150.254.222.97 port 56112 ssh2	2019-07-27 08:36:33
51.83.47.39	attack	authentication failure - BruteForce	2019-07-27 08:36:53
148.70.217.225	attackspambots	148.70.217.225 - - [26/Jul/2019:21:46:00 +0200] "POST [munged]wp-login.php HTTP/1.1" 444 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 0.000	2019-07-27 08:23:49
103.104.58.36	attackbotsspam	Jul 27 02:02:28 h2177944 sshd\[7649\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.58.36 user=root Jul 27 02:02:30 h2177944 sshd\[7649\]: Failed password for root from 103.104.58.36 port 55608 ssh2 Jul 27 02:08:13 h2177944 sshd\[7805\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.104.58.36 user=root Jul 27 02:08:15 h2177944 sshd\[7805\]: Failed password for root from 103.104.58.36 port 34188 ssh2 ...	2019-07-27 08:28:39
106.13.4.172	attack	DATE:2019-07-27 01:40:19, IP:106.13.4.172, PORT:ssh brute force auth on SSH service (patata)	2019-07-27 08:41:49
80.82.64.98	attackspam	Jul 26 22:58:34 pop3-login: Info: Aborted login \(auth failed, 1 attempts in 2 secs\): user=\, method=PLAIN, rip=80.82.64.98, lip=192.168.100.101, session=\\ Jul 26 23:14:56 pop3-login: Info: Aborted login \(auth failed, 1 attempts in 2 secs\): user=\, method=PLAIN, rip=80.82.64.98, lip=192.168.100.101, session=\\ Jul 26 23:39:05 pop3-login: Info: Aborted login \(auth failed, 1 attempts in 2 secs\): user=\, method=PLAIN, rip=80.82.64.98, lip=192.168.100.101, session=\\ Jul 26 23:51:28 pop3-login: Info: Aborted login \(auth failed, 1 attempts in 2 secs\): user=\, method=PLAIN, rip=80.82.64.98, lip=192.168.100.101, session=\<53BNi5yOEgBQUkBi\>\ Jul 26 23:54:16 pop3-login: Info: Aborted login \(auth failed, 1 attempts in 2 secs\): user=\, method=PLAIN, rip=80.82.64.98, lip=192.168.100.101, session=\\ Jul 26 23:57:22 pop3-login	2019-07-27 08:13:02
202.29.98.39	attack	2019-07-27T01:04:03.869122 sshd[3094]: Invalid user qc from 202.29.98.39 port 53542 2019-07-27T01:04:03.882755 sshd[3094]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.98.39 2019-07-27T01:04:03.869122 sshd[3094]: Invalid user qc from 202.29.98.39 port 53542 2019-07-27T01:04:06.335119 sshd[3094]: Failed password for invalid user qc from 202.29.98.39 port 53542 ssh2 2019-07-27T01:09:37.744304 sshd[3127]: Invalid user prosper from 202.29.98.39 port 47604 ...	2019-07-27 08:08:00
41.35.247.219	attack	Jul 26 22:45:13 srv-4 sshd\[25980\]: Invalid user admin from 41.35.247.219 Jul 26 22:45:13 srv-4 sshd\[25980\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.35.247.219 Jul 26 22:45:16 srv-4 sshd\[25980\]: Failed password for invalid user admin from 41.35.247.219 port 43920 ssh2 ...	2019-07-27 08:46:22

最近上报的IP列表

145.225.120.13	99.137.86.165	108.214.99.81	90.128.11.17
71.118.45.139	241.56.37.126	186.90.198.175	233.143.83.90
16.243.195.94	229.1.39.30	237.241.219.152	189.191.178.94
72.13.231.148	176.222.146.163	157.125.160.163	35.192.162.212
189.241.120.143	169.81.157.29	245.116.123.110	18.185.196.4