20.52.34.10 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): Microsoft Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Jul 15 21:36:03 rancher-0 sshd[347418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.52.34.10 user=root Jul 15 21:36:06 rancher-0 sshd[347418]: Failed password for root from 20.52.34.10 port 40377 ssh2 ...	2020-07-16 03:53:13
attackspam	Jul 15 07:42:19 vps46666688 sshd[28133]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.52.34.10 Jul 15 07:42:21 vps46666688 sshd[28133]: Failed password for invalid user admin from 20.52.34.10 port 10976 ssh2 ...	2020-07-15 19:58:46
attackbotsspam	Unauthorized SSH login attempts	2020-07-15 17:25:01
attack	Jul 14 09:38:31 r.ca sshd[22297]: Failed password for invalid user pickleball from 20.52.34.10 port 19219 ssh2	2020-07-15 01:10:45

相同子网IP讨论:

IP	类型	评论内容	时间
20.52.34.80	attackspam	2369 ssh attempts over 24 hour period.	2020-09-06 03:23:01
20.52.34.80	attackbots	2369 ssh attempts over 24 hour period.	2020-09-05 18:58:29

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 20.52.34.10
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48788
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;20.52.34.10.			IN	A

;; AUTHORITY SECTION:
.			220	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020071400 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jul 15 01:10:41 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 10.34.52.20.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 10.34.52.20.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
159.65.12.204	attackbots	2019-11-27T16:58:48.669516abusebot-3.cloudsearch.cf sshd\[31564\]: Invalid user alstergren from 159.65.12.204 port 59826	2019-11-28 01:47:48
46.218.7.227	attackspambots	Nov 27 16:38:54 web8 sshd\[10527\]: Invalid user helness from 46.218.7.227 Nov 27 16:38:54 web8 sshd\[10527\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.218.7.227 Nov 27 16:38:57 web8 sshd\[10527\]: Failed password for invalid user helness from 46.218.7.227 port 56602 ssh2 Nov 27 16:45:10 web8 sshd\[13485\]: Invalid user sti from 46.218.7.227 Nov 27 16:45:10 web8 sshd\[13485\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.218.7.227	2019-11-28 01:44:02
189.125.2.234	attackspam	Nov 27 18:05:54 icinga sshd[20784]: Failed password for root from 189.125.2.234 port 9175 ssh2 ...	2019-11-28 01:48:26
202.51.74.189	attackbotsspam	Nov 27 12:35:20 TORMINT sshd\[8863\]: Invalid user jmeter from 202.51.74.189 Nov 27 12:35:20 TORMINT sshd\[8863\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.51.74.189 Nov 27 12:35:21 TORMINT sshd\[8863\]: Failed password for invalid user jmeter from 202.51.74.189 port 54606 ssh2 ...	2019-11-28 01:38:31
92.53.69.6	attackbotsspam	Nov 27 17:14:39 lnxweb62 sshd[9550]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.53.69.6	2019-11-28 01:32:55
157.45.123.37	attack	Tries to login WordPress (wp-login.php)	2019-11-28 01:55:10
42.225.219.224	attackbots	UTC: 2019-11-26 port: 23/tcp	2019-11-28 01:52:29
124.74.248.218	attack	Nov 27 16:55:39 lnxded64 sshd[5844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.74.248.218	2019-11-28 01:43:31
176.31.200.121	attackbots	Nov 27 16:50:53 OPSO sshd\[4360\]: Invalid user chao9914924 from 176.31.200.121 port 37542 Nov 27 16:50:53 OPSO sshd\[4360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.200.121 Nov 27 16:50:55 OPSO sshd\[4360\]: Failed password for invalid user chao9914924 from 176.31.200.121 port 37542 ssh2 Nov 27 16:54:08 OPSO sshd\[4688\]: Invalid user xchat from 176.31.200.121 port 44016 Nov 27 16:54:08 OPSO sshd\[4688\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.200.121	2019-11-28 01:46:44
14.29.162.139	attackspambots	Nov 27 11:46:26 vps46666688 sshd[28894]: Failed password for root from 14.29.162.139 port 56266 ssh2 Nov 27 11:51:50 vps46666688 sshd[29088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.162.139 ...	2019-11-28 02:05:38
51.75.16.138	attack	Nov 27 15:04:09 web8 sshd\[28968\]: Invalid user test from 51.75.16.138 Nov 27 15:04:09 web8 sshd\[28968\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.16.138 Nov 27 15:04:11 web8 sshd\[28968\]: Failed password for invalid user test from 51.75.16.138 port 35775 ssh2 Nov 27 15:10:17 web8 sshd\[31884\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.16.138 user=root Nov 27 15:10:19 web8 sshd\[31884\]: Failed password for root from 51.75.16.138 port 53725 ssh2	2019-11-28 01:59:05
218.92.0.135	attack	Nov 27 18:50:17 nextcloud sshd\[31305\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.135 user=root Nov 27 18:50:19 nextcloud sshd\[31305\]: Failed password for root from 218.92.0.135 port 11039 ssh2 Nov 27 18:50:28 nextcloud sshd\[31305\]: Failed password for root from 218.92.0.135 port 11039 ssh2 ...	2019-11-28 01:52:52
208.109.54.127	attackspam	xmlrpc attack	2019-11-28 01:55:23
120.132.114.103	attack	Nov 25 12:46:46 indra sshd[253936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.114.103 user=mysql Nov 25 12:46:48 indra sshd[253936]: Failed password for mysql from 120.132.114.103 port 53716 ssh2 Nov 25 12:46:49 indra sshd[253936]: Received disconnect from 120.132.114.103: 11: Bye Bye [preauth] Nov 25 12:52:04 indra sshd[255166]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.114.103 user=r.r Nov 25 12:52:06 indra sshd[255166]: Failed password for r.r from 120.132.114.103 port 33534 ssh2 Nov 25 12:52:06 indra sshd[255166]: Received disconnect from 120.132.114.103: 11: Bye Bye [preauth] Nov 25 12:56:56 indra sshd[256105]: Invalid user roark from 120.132.114.103 Nov 25 12:56:56 indra sshd[256105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.114.103 Nov 25 12:56:59 indra sshd[256105]: Failed password for invalid user ........ -------------------------------	2019-11-28 02:05:11
106.12.27.130	attackspam	Nov 27 17:07:01 venus sshd\[16926\]: Invalid user nividie from 106.12.27.130 port 56650 Nov 27 17:07:01 venus sshd\[16926\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.27.130 Nov 27 17:07:02 venus sshd\[16926\]: Failed password for invalid user nividie from 106.12.27.130 port 56650 ssh2 ...	2019-11-28 01:58:52

最近上报的IP列表

13.84.217.13	91.121.251.65	52.142.12.39	103.140.250.133
85.49.98.156	52.188.21.192	104.45.48.83	208.98.171.221
178.57.214.54	168.62.37.175	52.152.130.194	104.43.247.48
40.114.127.135	40.91.244.76	176.15.201.251	170.130.143.17
52.233.252.230	52.233.184.83	51.141.120.208	104.211.209.78