20.245.94.217 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 20.245.94.217
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10521
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;20.245.94.217.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025121400 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 14 16:36:33 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

Host 217.94.245.20.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 217.94.245.20.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
31.171.0.55	attackspambots	Oct 14 21:51:28 imap-login: Info: Disconnected $auth failed, 1 attempts in 14 secs$: user=\, method=PLAIN, rip=31.171.0.55, lip=192.168.100.101, session=\\ Oct 14 21:51:36 imap-login: Info: Disconnected $auth failed, 1 attempts in 14 secs$: user=\, method=PLAIN, rip=31.171.0.55, lip=192.168.100.101, session=\\ Oct 14 21:51:37 imap-login: Info: Disconnected $no auth attempts in 0 secs$: user=\<\>, rip=31.171.0.55, lip=192.168.100.101, session=\\ Oct 14 21:51:38 imap-login: Info: Disconnected $no auth attempts in 0 secs$: user=\<\>, rip=31.171.0.55, lip=192.168.100.101, session=\\ Oct 14 21:51:48 imap-login: Info: Disconnected $no auth attempts in 0 secs$: user=\<\>, rip=31.171.0.55, lip=192.168.100.101, session=\\ Oct 14 21:51:51 imap-login: Info: Disconnected $no auth attempts in 0 secs$: user=\<\>, rip=31.171.0.55, lip=192.168.100.101, session=\	2019-10-15 07:42:53
185.36.81.233	attackbots	Rude login attack (49 tries in 1d)	2019-10-15 07:50:18
80.211.158.23	attackbotsspam	Oct 15 01:39:37 dedicated sshd[32358]: Invalid user mo123 from 80.211.158.23 port 43520	2019-10-15 07:45:26
111.92.240.170	attackspam	Oct 14 23:47:11 minden010 sshd[9448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.92.240.170 Oct 14 23:47:13 minden010 sshd[9448]: Failed password for invalid user www from 111.92.240.170 port 41022 ssh2 Oct 14 23:51:18 minden010 sshd[12318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.92.240.170 ...	2019-10-15 07:27:28
89.110.48.143	attack	[munged]::443 89.110.48.143 - - [14/Oct/2019:23:40:34 +0200] "POST /[munged]: HTTP/1.1" 200 10072 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 89.110.48.143 - - [14/Oct/2019:23:40:34 +0200] "POST /[munged]: HTTP/1.1" 200 5396 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 89.110.48.143 - - [14/Oct/2019:23:40:35 +0200] "POST /[munged]: HTTP/1.1" 200 5396 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 89.110.48.143 - - [14/Oct/2019:23:40:35 +0200] "POST /[munged]: HTTP/1.1" 200 5396 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 89.110.48.143 - - [14/Oct/2019:23:40:36 +0200] "POST /[munged]: HTTP/1.1" 200 5396 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 89.110.48.143 - - [14/Oct/2019:23:40:37	2019-10-15 07:44:16
51.38.232.52	attackspam	Oct 14 09:45:56 web9 sshd\[3314\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.232.52 user=root Oct 14 09:45:58 web9 sshd\[3314\]: Failed password for root from 51.38.232.52 port 40299 ssh2 Oct 14 09:49:42 web9 sshd\[3834\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.232.52 user=root Oct 14 09:49:44 web9 sshd\[3834\]: Failed password for root from 51.38.232.52 port 59883 ssh2 Oct 14 09:53:30 web9 sshd\[4300\]: Invalid user tong from 51.38.232.52 Oct 14 09:53:30 web9 sshd\[4300\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.232.52	2019-10-15 07:49:16
123.231.236.196	attack	Port Scan detected from 123.231.236.196 (ID/Indonesia/-). 4 hits in the last 100 seconds	2019-10-15 12:03:05
109.185.181.14	attack	Oct 14 21:51:14 imap-login: Info: Disconnected $auth failed, 1 attempts in 9 secs$: user=\, method=PLAIN, rip=109.185.181.14, lip=192.168.100.101, session=\\ Oct 14 21:51:14 imap-login: Info: Disconnected $auth failed, 1 attempts in 9 secs$: user=\, method=PLAIN, rip=109.185.181.14, lip=192.168.100.101, session=\<71wvMOSU1ABtubUO\>\ Oct 14 21:51:32 imap-login: Info: Disconnected $auth failed, 1 attempts in 6 secs$: user=\, method=PLAIN, rip=109.185.181.14, lip=192.168.100.101, session=\\ Oct 14 21:51:33 imap-login: Info: Disconnected $auth failed, 1 attempts in 14 secs$: user=\, method=PLAIN, rip=109.185.181.14, lip=192.168.100.101, session=\\ Oct 14 21:51:38 imap-login: Info: Disconnected $no auth attempts in 16 secs$: user=\<\>, rip=109.185.181.14, lip=192.168.100.101, session=\<7IAmMuSUtwBtubUO\>\ Oct 14 21:51:47 imap-login: Info: Disconnected \(no aut	2019-10-15 07:49:04
128.199.243.138	attackbotsspam	Oct 14 21:44:21 rotator sshd\[18809\]: Invalid user toor from 128.199.243.138Oct 14 21:44:23 rotator sshd\[18809\]: Failed password for invalid user toor from 128.199.243.138 port 56910 ssh2Oct 14 21:48:47 rotator sshd\[19609\]: Invalid user 2wsx\#EDC from 128.199.243.138Oct 14 21:48:49 rotator sshd\[19609\]: Failed password for invalid user 2wsx\#EDC from 128.199.243.138 port 40598 ssh2Oct 14 21:53:18 rotator sshd\[20399\]: Invalid user 123ASDasd$%\^ from 128.199.243.138Oct 14 21:53:19 rotator sshd\[20399\]: Failed password for invalid user 123ASDasd$%\^ from 128.199.243.138 port 52520 ssh2 ...	2019-10-15 07:52:43
185.53.88.102	attack	\[2019-10-14 23:55:00\] NOTICE\[1887\] chan_sip.c: Registration from '"905" \' failed for '185.53.88.102:5553' - Wrong password \[2019-10-14 23:55:00\] SECURITY\[1898\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-14T23:55:00.926-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="905",SessionID="0x7fc3ac686538",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.102/5553",Challenge="5896bd61",ReceivedChallenge="5896bd61",ReceivedHash="1abc82492d6a940936cd1e0885a71128" \[2019-10-14 23:55:01\] NOTICE\[1887\] chan_sip.c: Registration from '"905" \' failed for '185.53.88.102:5553' - Wrong password \[2019-10-14 23:55:01\] SECURITY\[1898\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-10-14T23:55:01.033-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="905",SessionID="0x7fc3ad1ec8e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.	2019-10-15 12:00:29
96.44.134.98	attack	[munged]::443 96.44.134.98 - - [14/Oct/2019:23:51:38 +0200] "POST /[munged]: HTTP/1.1" 200 8960 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 96.44.134.98 - - [14/Oct/2019:23:51:41 +0200] "POST /[munged]: HTTP/1.1" 200 5270 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 96.44.134.98 - - [14/Oct/2019:23:51:44 +0200] "POST /[munged]: HTTP/1.1" 200 5270 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 96.44.134.98 - - [14/Oct/2019:23:51:46 +0200] "POST /[munged]: HTTP/1.1" 200 5270 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 96.44.134.98 - - [14/Oct/2019:23:51:49 +0200] "POST /[munged]: HTTP/1.1" 200 5270 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 96.44.134.98 - - [14/Oct/2019:23:51:52 +0200]	2019-10-15 07:35:57
93.61.141.84	attackbotsspam	Oct 14 21:51:14 imap-login: Info: Disconnected $auth failed, 1 attempts in 8 secs$: user=\, method=PLAIN, rip=93.61.141.84, lip=192.168.100.101, session=\\ Oct 14 21:51:34 imap-login: Info: Disconnected $auth failed, 1 attempts in 4 secs$: user=\, method=PLAIN, rip=93.61.141.84, lip=192.168.100.101, session=\\ Oct 14 21:52:19 imap-login: Info: Disconnected $auth failed, 1 attempts in 6 secs$: user=\, method=PLAIN, rip=93.61.141.84, lip=192.168.100.101, session=\\ Oct 14 21:52:22 imap-login: Info: Disconnected $auth failed, 1 attempts in 11 secs$: user=\, method=PLAIN, rip=93.61.141.84, lip=192.168.100.101, session=\\ Oct 14 21:52:30 imap-login: Info: Disconnected $no auth attempts in 0 secs$: user=\<\>, rip=93.61.141.84, lip=192.168.100.101, session=\\ Oct 14 21:52:35 imap-login: Info: Disconnected \(no auth attempts in	2019-10-15 07:30:52
31.27.187.140	attackspambots	Oct1423:44:05server2dovecot:imap-login:Abortedlogin$authfailed\,1attemptsin2secs$:user=\\,method=PLAIN\,rip=31.27.187.140\,lip=81.17.25.230\,session=\Oct1423:44:11server2dovecot:imap-login:Abortedlogin$authfailed\,1attemptsin6secs$:user=\\,method=PLAIN\,rip=31.27.187.140\,lip=81.17.25.230\,session=\Oct1423:44:11server2dovecot:imap-login:Abortedlogin$authfailed\,1attemptsin6secs$:user=\\,method=PLAIN\,rip=31.27.187.140\,lip=81.17.25.230\,session=\Oct1423:44:23server2dovecot:imap-login:Abortedlogin$authfailed\,1attemptsin6secs$:user=\\,method=PLAIN\,rip=31.27.187.140\,lip=81.17.25.230\,session=\Oct1423:44:25server2dovecot:imap-login:Abortedlogin$authfailed\,1attemptsin2secs$:user=\\,method=PLAIN\,rip=31.27.187.140\,lip=81.17.25.230\,session=\Oct1423:44:25server2dovecot:imap-login:Abortedlogin$authfailed\,1attemptsin2secs$:user=\	2019-10-15 07:32:12
115.148.82.118	attackspambots	Unauthorised access (Oct 14) SRC=115.148.82.118 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=11235 TCP DPT=8080 WINDOW=64866 SYN Unauthorised access (Oct 14) SRC=115.148.82.118 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=58531 TCP DPT=8080 WINDOW=34244 SYN Unauthorised access (Oct 14) SRC=115.148.82.118 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=29808 TCP DPT=8080 WINDOW=34244 SYN Unauthorised access (Oct 14) SRC=115.148.82.118 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=39373 TCP DPT=8080 WINDOW=34244 SYN	2019-10-15 07:28:32
200.95.175.162	attackbots	SSH invalid-user multiple login try	2019-10-15 12:03:37

最近上报的IP列表

6.253.125.221	38.220.126.75	131.198.71.202	46.43.77.89
214.165.112.110	69.101.144.235	181.65.36.7	57.182.253.233
1.33.6.237	37.34.56.0	113.233.250.100	149.27.25.199
240.132.29.247	138.3.123.126	238.228.203.168	249.74.237.52
201.21.82.231	116.155.164.1	113.252.20.254	81.122.105.126