城市(city): unknown
省份(region): unknown
国家(country): IANA Special-Purpose Address
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 172.20.20.20 | bots | Stop hacking |
2024-05-27 11:22:45 |
| 172.20.20.20 | proxy | 2001:0002:14:5:1:2:bf35:2610. |
2024-05-27 11:20:27 |
| 172.20.20.20 | proxy | 2001:0002:14:5:1:2:bf35:2610. |
2024-05-27 11:20:18 |
| 172.20.20.20 | attack | 2001:0002:14:5:1:2:bf35:2610. |
2024-05-27 11:20:04 |
| 172.20.20.20 | attack | Bitches |
2024-05-27 11:18:56 |
| 172.20.20.20 | attack | Bitches |
2024-05-27 11:17:24 |
| 172.20.20.1 | attack | Bitches |
2024-05-27 11:17:09 |
| 172.20.243.93 | spam | Used for SPAM, PHISHING and SCAM on STOLLEN list we don't know, as usual with LIERS and ROBERS ! |
2020-02-10 19:29:18 |
| 172.20.21.30 | attackbots | Port 1433 Scan |
2019-10-12 07:25:27 |
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
NetRange: 172.16.0.0 - 172.31.255.255
CIDR: 172.16.0.0/12
NetName: PRIVATE-ADDRESS-BBLK-RFC1918-IANA-RESERVED
NetHandle: NET-172-16-0-0-1
Parent: NET172 (NET-172-0-0-0-0)
NetType: IANA Special Use
OriginAS:
Organization: Internet Assigned Numbers Authority (IANA)
RegDate: 1994-03-15
Updated: 2024-05-24
Comment: These addresses are in use by many millions of independently operated networks, which might be as small as a single computer connected to a home gateway, and are automatically configured in hundreds of millions of devices. They are only intended for use within a private context and traffic that needs to cross the Internet will need to use a different, unique address.
Comment:
Comment: These addresses can be used by anyone without any need to coordinate with IANA or an Internet registry. The traffic from these addresses does not come from ICANN or IANA. We are not the source of activity you may see on logs or in e-mail records. Please refer to http://www.iana.org/abuse/answers
Comment:
Comment: These addresses were assigned by the IETF, the organization that develops Internet protocols, in the Best Current Practice document, RFC 1918 which can be found at:
Comment: http://datatracker.ietf.org/doc/rfc1918
Ref: https://rdap.arin.net/registry/ip/172.16.0.0
OrgName: Internet Assigned Numbers Authority
OrgId: IANA
Address: 12025 Waterfront Drive
Address: Suite 300
City: Los Angeles
StateProv: CA
PostalCode: 90292
Country: US
RegDate:
Updated: 2024-05-24
Ref: https://rdap.arin.net/registry/entity/IANA
OrgTechHandle: IANA-IP-ARIN
OrgTechName: ICANN
OrgTechPhone: +1-310-301-5820
OrgTechEmail: abuse@iana.org
OrgTechRef: https://rdap.arin.net/registry/entity/IANA-IP-ARIN
OrgAbuseHandle: IANA-IP-ARIN
OrgAbuseName: ICANN
OrgAbusePhone: +1-310-301-5820
OrgAbuseEmail: abuse@iana.org
OrgAbuseRef: https://rdap.arin.net/registry/entity/IANA-IP-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 172.20.2.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20566
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;172.20.2.1. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025110901 1800 900 604800 86400
;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 10 11:42:45 CST 2025
;; MSG SIZE rcvd: 103Host 1.2.20.172.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 1.2.20.172.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 119.29.152.63 | attack | 2020-09-21T19:05:08.911341cyberdyne sshd[103620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.152.63 user=root 2020-09-21T19:05:11.011780cyberdyne sshd[103620]: Failed password for root from 119.29.152.63 port 40654 ssh2 2020-09-21T19:08:05.195065cyberdyne sshd[103719]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.152.63 user=root 2020-09-21T19:08:07.260668cyberdyne sshd[103719]: Failed password for root from 119.29.152.63 port 49020 ssh2 ... |
2020-09-22 06:24:52 |
| 185.191.171.22 | attackspambots | Unauthorized access detected from black listed ip! |
2020-09-22 06:30:05 |
| 176.31.162.82 | attackbotsspam | Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-09-21T22:05:56Z and 2020-09-21T22:12:28Z |
2020-09-22 06:19:30 |
| 212.83.190.22 | attack | 212.83.190.22 - - \[21/Sep/2020:23:16:43 +0200\] "POST /wp-login.php HTTP/1.0" 200 4128 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 212.83.190.22 - - \[21/Sep/2020:23:16:43 +0200\] "POST /wp-login.php HTTP/1.0" 200 3955 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 212.83.190.22 - - \[21/Sep/2020:23:16:44 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" |
2020-09-22 06:02:04 |
| 49.234.99.246 | attack | Sep 22 03:30:15 itv-usvr-01 sshd[11872]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.99.246 user=root Sep 22 03:30:17 itv-usvr-01 sshd[11872]: Failed password for root from 49.234.99.246 port 54692 ssh2 Sep 22 03:34:14 itv-usvr-01 sshd[12049]: Invalid user administrator from 49.234.99.246 Sep 22 03:34:14 itv-usvr-01 sshd[12049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.99.246 Sep 22 03:34:14 itv-usvr-01 sshd[12049]: Invalid user administrator from 49.234.99.246 Sep 22 03:34:16 itv-usvr-01 sshd[12049]: Failed password for invalid user administrator from 49.234.99.246 port 57310 ssh2 |
2020-09-22 06:42:20 |
| 177.23.58.23 | attack | (sshd) Failed SSH login from 177.23.58.23 (BR/Brazil/acesso-177.23.58.23.voxxtelecom.com): 5 in the last 3600 secs |
2020-09-22 06:05:57 |
| 119.45.40.87 | attackbots | Sep 21 21:38:22 vm2 sshd[22736]: Failed password for root from 119.45.40.87 port 60936 ssh2 ... |
2020-09-22 06:19:52 |
| 177.37.143.116 | attack | Automatic report - XMLRPC Attack |
2020-09-22 06:17:37 |
| 115.97.83.124 | attackspambots | Port probing on unauthorized port 23 |
2020-09-22 06:13:20 |
| 170.130.187.46 | attack |
|
2020-09-22 06:09:16 |
| 50.227.195.3 | attackbots | Fail2Ban Ban Triggered |
2020-09-22 06:34:37 |
| 186.250.89.72 | attackspambots | Sep 21 14:08:06 ws24vmsma01 sshd[126993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.250.89.72 Sep 21 14:08:08 ws24vmsma01 sshd[126993]: Failed password for invalid user t from 186.250.89.72 port 41016 ssh2 ... |
2020-09-22 06:05:42 |
| 128.199.156.25 | attack | Sep 21 23:59:39 [host] sshd[3553]: Invalid user fr Sep 21 23:59:39 [host] sshd[3553]: pam_unix(sshd:a Sep 21 23:59:40 [host] sshd[3553]: Failed password |
2020-09-22 06:06:26 |
| 34.64.218.102 | attack | 34.64.218.102 - - [21/Sep/2020:19:13:50 +0100] "POST /wp-login.php HTTP/1.1" 200 1996 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 34.64.218.102 - - [21/Sep/2020:19:13:53 +0100] "POST /wp-login.php HTTP/1.1" 200 1929 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 34.64.218.102 - - [21/Sep/2020:19:13:54 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-09-22 06:25:13 |
| 213.55.90.54 | attackspam | Unauthorized connection attempt from IP address 213.55.90.54 on Port 445(SMB) |
2020-09-22 06:03:36 |