154.72.43.21 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): South Africa

运营商(isp): China Telecom South Africa (Pty) Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	firewall-block, port(s): 3389/tcp	2019-06-25 12:27:27

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 154.72.43.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53960
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;154.72.43.21.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062401 1800 900 604800 86400

;; Query time: 91 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jun 25 12:27:22 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 21.43.72.154.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 21.43.72.154.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
111.231.144.219	attackspambots	May 23 08:19:38 ubuntu sshd[1263]: Failed password for invalid user danny from 111.231.144.219 port 49202 ssh2 May 23 08:23:52 ubuntu sshd[1683]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.144.219 May 23 08:23:54 ubuntu sshd[1683]: Failed password for invalid user screen from 111.231.144.219 port 34317 ssh2	2019-10-08 17:12:45
129.211.77.44	attackspambots	Oct 8 15:41:26 webhost01 sshd[30890]: Failed password for root from 129.211.77.44 port 46342 ssh2 ...	2019-10-08 16:54:43
106.13.165.94	attackbotsspam	2019-10-08T08:31:16.156288abusebot-4.cloudsearch.cf sshd\[22977\]: Invalid user Giovanni1@3 from 106.13.165.94 port 38588	2019-10-08 17:29:37
111.231.217.253	attackspam	Apr 30 21:32:07 ubuntu sshd[22511]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.217.253 Apr 30 21:32:09 ubuntu sshd[22511]: Failed password for invalid user wd from 111.231.217.253 port 39173 ssh2 Apr 30 21:33:54 ubuntu sshd[22546]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.217.253	2019-10-08 17:02:36
218.17.185.45	attack	Oct 5 20:14:42 finn sshd[16380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.17.185.45 user=r.r Oct 5 20:14:44 finn sshd[16380]: Failed password for r.r from 218.17.185.45 port 51272 ssh2 Oct 5 20:14:44 finn sshd[16380]: Received disconnect from 218.17.185.45 port 51272:11: Bye Bye [preauth] Oct 5 20:14:44 finn sshd[16380]: Disconnected from 218.17.185.45 port 51272 [preauth] Oct 5 20:40:20 finn sshd[21729]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.17.185.45 user=r.r Oct 5 20:40:22 finn sshd[21729]: Failed password for r.r from 218.17.185.45 port 43276 ssh2 Oct 5 20:40:22 finn sshd[21729]: Received disconnect from 218.17.185.45 port 43276:11: Bye Bye [preauth] Oct 5 20:40:22 finn sshd[21729]: Disconnected from 218.17.185.45 port 43276 [preauth] Oct 5 20:44:14 finn sshd[22144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhos........ -------------------------------	2019-10-08 17:24:07
62.234.49.247	attack	$f2bV_matches	2019-10-08 17:04:23
61.224.181.125	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/61.224.181.125/ TW - 1H : (321) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TW NAME ASN : ASN3462 IP : 61.224.181.125 CIDR : 61.224.0.0/16 PREFIX COUNT : 390 UNIQUE IP COUNT : 12267520 WYKRYTE ATAKI Z ASN3462 : 1H - 16 3H - 36 6H - 70 12H - 139 24H - 310 DateTime : 2019-10-08 05:53:29 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-08 16:59:14
177.156.104.223	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/177.156.104.223/ BR - 1H : (312) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BR NAME ASN : ASN18881 IP : 177.156.104.223 CIDR : 177.156.96.0/19 PREFIX COUNT : 938 UNIQUE IP COUNT : 4233472 WYKRYTE ATAKI Z ASN18881 : 1H - 5 3H - 11 6H - 22 12H - 44 24H - 78 DateTime : 2019-10-08 05:52:54 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-08 17:30:47
111.93.235.210	attack	Oct 8 11:17:04 MK-Soft-Root2 sshd[31452]: Failed password for root from 111.93.235.210 port 50856 ssh2 ...	2019-10-08 17:27:46
162.213.33.50	attackspambots	10/08/2019-09:52:52.374499 162.213.33.50 Protocol: 6 SURICATA TLS invalid record/traffic	2019-10-08 17:35:25
62.234.109.203	attack	Oct 7 23:05:38 php1 sshd\[21677\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.109.203 user=root Oct 7 23:05:40 php1 sshd\[21677\]: Failed password for root from 62.234.109.203 port 41518 ssh2 Oct 7 23:10:30 php1 sshd\[22201\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.109.203 user=root Oct 7 23:10:32 php1 sshd\[22201\]: Failed password for root from 62.234.109.203 port 59732 ssh2 Oct 7 23:15:25 php1 sshd\[22580\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.109.203 user=root	2019-10-08 17:23:44
69.176.95.240	attackspam	2019-10-08T08:53:57.889138abusebot-5.cloudsearch.cf sshd\[1215\]: Invalid user lxm from 69.176.95.240 port 36950 2019-10-08T08:53:57.893989abusebot-5.cloudsearch.cf sshd\[1215\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.176.95.240	2019-10-08 17:13:13
111.231.251.191	attackspam	Apr 17 23:51:01 ubuntu sshd[12945]: Failed password for invalid user director from 111.231.251.191 port 57540 ssh2 Apr 17 23:54:07 ubuntu sshd[13344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.251.191 Apr 17 23:54:09 ubuntu sshd[13344]: Failed password for invalid user mb from 111.231.251.191 port 51768 ssh2 Apr 17 23:56:54 ubuntu sshd[13704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.251.191	2019-10-08 16:56:08
111.231.114.109	attackspambots	Jun 15 04:33:52 ubuntu sshd[25854]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.114.109 Jun 15 04:33:55 ubuntu sshd[25854]: Failed password for invalid user q1w2e3r4t5y6 from 111.231.114.109 port 38834 ssh2 Jun 15 04:35:09 ubuntu sshd[25890]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.114.109	2019-10-08 17:35:55
111.231.138.136	attackbotsspam	Jul 10 05:32:24 dallas01 sshd[18857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.138.136 Jul 10 05:32:27 dallas01 sshd[18857]: Failed password for invalid user xxxxxxxx from 111.231.138.136 port 60934 ssh2 Jul 10 05:40:41 dallas01 sshd[20797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.138.136 Jul 10 05:40:43 dallas01 sshd[20797]: Failed password for invalid user alpha from 111.231.138.136 port 44172 ssh2	2019-10-08 17:18:27

最近上报的IP列表

178.235.185.247	178.235.184.210	178.235.176.121	178.234.43.8
142.44.160.173	178.232.173.1	178.222.243.30	224.152.14.71
2604:a880:400:d1::770:3001	178.213.185.150	70.120.172.70	178.210.224.196
56.232.220.96	66.249.66.93	178.2.107.19	178.187.102.4
178.186.53.222	178.153.87.157	178.153.224.113	178.152.157.120