179.104.54.20 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Brazil

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 179.104.54.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47552
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;179.104.54.20.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022100700 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 07 15:44:03 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

20.54.104.179.in-addr.arpa domain name pointer 179-104-054-20.xd-dynamic.algarnetsuper.com.br.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.54.104.179.in-addr.arpa	name = 179-104-054-20.xd-dynamic.algarnetsuper.com.br.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
115.74.215.224	attackspambots	May 15 14:21:21 vps339862 kernel: \[8764197.453185\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=115.74.215.224 DST=51.254.206.43 LEN=52 TOS=0x00 PREC=0x00 TTL=107 ID=15261 DF PROTO=TCP SPT=52213 DPT=8291 SEQ=490590118 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT \(020405A00103030801010402\) May 15 14:21:24 vps339862 kernel: \[8764200.433833\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=115.74.215.224 DST=51.254.206.43 LEN=52 TOS=0x00 PREC=0x00 TTL=107 ID=15831 DF PROTO=TCP SPT=52473 DPT=8291 SEQ=3455178465 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT \(020405A00103030801010402\) May 15 14:21:28 vps339862 kernel: \[8764203.748081\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=115.74.215.224 DST=51.254.206.43 LEN=52 TOS=0x00 PREC=0x00 TTL=107 ID=16923 DF PROTO=TCP SPT=53001 DPT=8291 SEQ=921461566 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT \(020405A001030308010 ...	2020-05-16 02:35:28
96.77.182.189	attackbotsspam	May 15 23:41:56 itv-usvr-02 sshd[21605]: Invalid user deploy from 96.77.182.189 port 49816 May 15 23:41:56 itv-usvr-02 sshd[21605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.77.182.189 May 15 23:41:56 itv-usvr-02 sshd[21605]: Invalid user deploy from 96.77.182.189 port 49816 May 15 23:41:58 itv-usvr-02 sshd[21605]: Failed password for invalid user deploy from 96.77.182.189 port 49816 ssh2	2020-05-16 02:30:43
163.172.61.214	attackbotsspam	2020-05-15T16:04:06.632987abusebot-6.cloudsearch.cf sshd[3663]: Invalid user admin from 163.172.61.214 port 56623 2020-05-15T16:04:06.641466abusebot-6.cloudsearch.cf sshd[3663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.61.214 2020-05-15T16:04:06.632987abusebot-6.cloudsearch.cf sshd[3663]: Invalid user admin from 163.172.61.214 port 56623 2020-05-15T16:04:08.251762abusebot-6.cloudsearch.cf sshd[3663]: Failed password for invalid user admin from 163.172.61.214 port 56623 ssh2 2020-05-15T16:09:41.426614abusebot-6.cloudsearch.cf sshd[3937]: Invalid user postgres from 163.172.61.214 port 59724 2020-05-15T16:09:41.433201abusebot-6.cloudsearch.cf sshd[3937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.61.214 2020-05-15T16:09:41.426614abusebot-6.cloudsearch.cf sshd[3937]: Invalid user postgres from 163.172.61.214 port 59724 2020-05-15T16:09:43.364769abusebot-6.cloudsearch.cf sshd[3937]: F ...	2020-05-16 02:33:37
49.233.171.219	attack	5x Failed Password	2020-05-16 02:49:00
45.143.223.248	attackbots	Brute forcing email accounts	2020-05-16 02:44:40
206.81.8.155	attackbotsspam	DATE:2020-05-15 19:53:36, IP:206.81.8.155, PORT:ssh SSH brute force auth (docker-dc)	2020-05-16 02:38:01
58.37.214.154	attackspam	"Unauthorized connection attempt on SSHD detected"	2020-05-16 02:34:04
218.78.54.84	attack	May 15 14:13:21 srv-ubuntu-dev3 sshd[19130]: Invalid user nagios from 218.78.54.84 May 15 14:13:21 srv-ubuntu-dev3 sshd[19130]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.78.54.84 May 15 14:13:21 srv-ubuntu-dev3 sshd[19130]: Invalid user nagios from 218.78.54.84 May 15 14:13:23 srv-ubuntu-dev3 sshd[19130]: Failed password for invalid user nagios from 218.78.54.84 port 51758 ssh2 May 15 14:17:01 srv-ubuntu-dev3 sshd[20602]: Invalid user ubuntu from 218.78.54.84 May 15 14:17:01 srv-ubuntu-dev3 sshd[20602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.78.54.84 May 15 14:17:01 srv-ubuntu-dev3 sshd[20602]: Invalid user ubuntu from 218.78.54.84 May 15 14:17:03 srv-ubuntu-dev3 sshd[20602]: Failed password for invalid user ubuntu from 218.78.54.84 port 49156 ssh2 May 15 14:20:57 srv-ubuntu-dev3 sshd[21227]: Invalid user webmaster from 218.78.54.84 ...	2020-05-16 03:03:00
89.127.12.78	attack	Brute force SMTP login attempted. ...	2020-05-16 03:04:40
96.88.129.65	attackbots	May 15 19:07:10 vps339862 kernel: \[8781345.596665\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=96.88.129.65 DST=51.254.206.43 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=56716 PROTO=TCP SPT=1121 DPT=9000 SEQ=872336939 ACK=0 WINDOW=24841 RES=0x00 SYN URGP=0 May 15 19:07:20 vps339862 kernel: \[8781356.196180\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=96.88.129.65 DST=51.254.206.43 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=56716 PROTO=TCP SPT=1121 DPT=9000 SEQ=872336939 ACK=0 WINDOW=24841 RES=0x00 SYN URGP=0 May 15 19:12:34 vps339862 kernel: \[8781670.221612\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a1:f6:06:39:8f:aa:3b:a2:08:00 SRC=96.88.129.65 DST=51.254.206.43 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=56716 PROTO=TCP SPT=1121 DPT=9000 SEQ=872336939 ACK=0 WINDOW=24841 RES=0x00 SYN URGP=0 May 15 19:13:42 vps339862 kernel: \[8781738.148591\] \[iptables\] PORT DENIED: IN=eth0 OUT= MAC=fa:16:3e:65:a ...	2020-05-16 03:03:34
103.248.33.51	attackbotsspam	detected by Fail2Ban	2020-05-16 02:30:19
106.52.179.55	attack	May 15 16:23:53 ArkNodeAT sshd\[1067\]: Invalid user nagios from 106.52.179.55 May 15 16:23:53 ArkNodeAT sshd\[1067\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.179.55 May 15 16:23:55 ArkNodeAT sshd\[1067\]: Failed password for invalid user nagios from 106.52.179.55 port 38800 ssh2	2020-05-16 02:50:54
178.128.121.137	attackspam	Invalid user deploy from 178.128.121.137 port 36488	2020-05-16 03:13:33
36.73.110.98	attackspambots	May 15 05:14:58 spidey sshd[10492]: Invalid user tech from 36.73.110.98 port 62886 May 15 05:14:58 spidey sshd[10494]: Invalid user tech from 36.73.110.98 port 62889 May 15 05:14:59 spidey sshd[10497]: Invalid user tech from 36.73.110.98 port 63128 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=36.73.110.98	2020-05-16 02:46:07
64.227.30.91	attackbotsspam	2020-05-15T18:04:35.431907abusebot-4.cloudsearch.cf sshd[4955]: Invalid user aq from 64.227.30.91 port 33530 2020-05-15T18:04:35.438128abusebot-4.cloudsearch.cf sshd[4955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.227.30.91 2020-05-15T18:04:35.431907abusebot-4.cloudsearch.cf sshd[4955]: Invalid user aq from 64.227.30.91 port 33530 2020-05-15T18:04:38.131399abusebot-4.cloudsearch.cf sshd[4955]: Failed password for invalid user aq from 64.227.30.91 port 33530 ssh2 2020-05-15T18:13:02.187361abusebot-4.cloudsearch.cf sshd[5375]: Invalid user rtkit from 64.227.30.91 port 35336 2020-05-15T18:13:02.196778abusebot-4.cloudsearch.cf sshd[5375]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.227.30.91 2020-05-15T18:13:02.187361abusebot-4.cloudsearch.cf sshd[5375]: Invalid user rtkit from 64.227.30.91 port 35336 2020-05-15T18:13:03.826059abusebot-4.cloudsearch.cf sshd[5375]: Failed password for invalid us ...	2020-05-16 02:31:07

最近上报的IP列表

3.34.132.96	47.242.34.249	82.115.16.194	182.253.45.90
187.20.53.155	157.230.230.9	164.68.97.251	20.118.132.80
23.88.105.249	27.22.50.51	14.229.91.233	101.51.121.7
103.209.11.161	121.131.95.248	38.65.156.174	20.55.114.34
20.169.219.87	62.212.39.200	168.121.105.117	177.17.231.110