20.52.57.245 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): Microsoft Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Sep 4 02:18:49 web01.agentur-b-2.de postfix/smtps/smtpd[3853822]: warning: unknown[20.52.57.245]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 4 02:20:08 web01.agentur-b-2.de postfix/smtps/smtpd[3853822]: warning: unknown[20.52.57.245]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 4 02:21:27 web01.agentur-b-2.de postfix/smtps/smtpd[3853822]: warning: unknown[20.52.57.245]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 4 02:22:47 web01.agentur-b-2.de postfix/smtps/smtpd[3853822]: warning: unknown[20.52.57.245]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 4 02:24:06 web01.agentur-b-2.de postfix/smtps/smtpd[3853822]: warning: unknown[20.52.57.245]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-09-09 23:11:21
attackspam	Brute forcing email accounts	2020-09-09 16:51:10

类型

评论内容

时间

attack

Sep  4 02:18:49 web01.agentur-b-2.de postfix/smtps/smtpd[3853822]: warning: unknown[20.52.57.245]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Sep  4 02:20:08 web01.agentur-b-2.de postfix/smtps/smtpd[3853822]: warning: unknown[20.52.57.245]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Sep  4 02:21:27 web01.agentur-b-2.de postfix/smtps/smtpd[3853822]: warning: unknown[20.52.57.245]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Sep  4 02:22:47 web01.agentur-b-2.de postfix/smtps/smtpd[3853822]: warning: unknown[20.52.57.245]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Sep  4 02:24:06 web01.agentur-b-2.de postfix/smtps/smtpd[3853822]: warning: unknown[20.52.57.245]: SASL LOGIN authentication failed: UGFzc3dvcmQ6

2020-09-09 23:11:21

attackspam

Brute forcing email accounts

2020-09-09 16:51:10

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 20.52.57.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28287
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;20.52.57.245.			IN	A

;; AUTHORITY SECTION:
.			213	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020090900 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Sep 09 16:51:06 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 245.57.52.20.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 245.57.52.20.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
106.12.198.175	attackbots	Jan 10 13:03:28 ws26vmsma01 sshd[44055]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.198.175 Jan 10 13:03:30 ws26vmsma01 sshd[44055]: Failed password for invalid user tva from 106.12.198.175 port 35092 ssh2 ...	2020-01-10 21:53:36
159.203.201.115	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-10 21:48:33
145.239.198.218	attackspam	$f2bV_matches	2020-01-10 22:13:07
36.255.87.182	attackspambots	Jan 7 14:54:18 pl3server sshd[17597]: Invalid user msfadmin from 36.255.87.182 Jan 7 14:54:18 pl3server sshd[17597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.255.87.182 Jan 7 14:54:21 pl3server sshd[17597]: Failed password for invalid user msfadmin from 36.255.87.182 port 57276 ssh2 Jan 7 14:54:21 pl3server sshd[17597]: Connection closed by 36.255.87.182 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=36.255.87.182	2020-01-10 21:45:45
49.88.112.55	attackspambots	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.55 user=root Failed password for root from 49.88.112.55 port 19660 ssh2 Failed password for root from 49.88.112.55 port 19660 ssh2 Failed password for root from 49.88.112.55 port 19660 ssh2 Failed password for root from 49.88.112.55 port 19660 ssh2	2020-01-10 21:40:51
222.186.30.31	attackbotsspam	Jan 10 10:56:59 firewall sshd[11926]: Failed password for root from 222.186.30.31 port 59466 ssh2 Jan 10 10:57:02 firewall sshd[11926]: Failed password for root from 222.186.30.31 port 59466 ssh2 Jan 10 10:57:04 firewall sshd[11926]: Failed password for root from 222.186.30.31 port 59466 ssh2 ...	2020-01-10 22:00:20
14.215.176.153	attackbotsspam	ICMP MH Probe, Scan /Distributed -	2020-01-10 21:54:33
218.92.0.171	attack	Jan 10 08:33:02 linuxvps sshd\[41274\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.171 user=root Jan 10 08:33:04 linuxvps sshd\[41274\]: Failed password for root from 218.92.0.171 port 19966 ssh2 Jan 10 08:33:06 linuxvps sshd\[41274\]: Failed password for root from 218.92.0.171 port 19966 ssh2 Jan 10 08:33:09 linuxvps sshd\[41274\]: Failed password for root from 218.92.0.171 port 19966 ssh2 Jan 10 08:33:13 linuxvps sshd\[41274\]: Failed password for root from 218.92.0.171 port 19966 ssh2	2020-01-10 21:38:22
188.17.156.43	attackbotsspam	Forged login request.	2020-01-10 21:51:06
144.217.54.51	attack	Invalid user shuai from 144.217.54.51 port 38714	2020-01-10 22:13:24
37.52.10.156	attack	Invalid user terrariaserver from 37.52.10.156 port 43357	2020-01-10 22:08:20
31.146.111.211	attackbotsspam	SSH Brute Force, server-1 sshd[7621]: Failed password for invalid user admin from 31.146.111.211 port 54319 ssh2	2020-01-10 22:19:39
5.248.52.71	attackbotsspam	unauthorized connection attempt	2020-01-10 21:59:26
1.249.135.14	attackbotsspam	Jan 10 13:59:05 grey postfix/smtpd\[26110\]: NOQUEUE: reject: RCPT from unknown\[1.249.135.14\]: 554 5.7.1 Service unavailable\; Client host \[1.249.135.14\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[1.249.135.14\]\; from=\ to=\ proto=ESMTP helo=\<\[1.249.135.14\]\> ...	2020-01-10 22:20:06
180.76.246.104	attack	Invalid user evv from 180.76.246.104 port 48226	2020-01-10 22:10:25

最近上报的IP列表

117.89.130.184	61.164.47.131	163.107.202.49	118.246.38.2
120.76.251.205	37.37.226.138	14.217.77.25	5.128.29.155
95.46.140.49	171.236.71.110	91.229.112.18	174.231.2.59
74.208.235.136	220.132.209.144	55.127.198.114	156.199.2.86
23.41.169.222	188.80.33.49	58.23.137.154	179.178.232.50