41.59.52.104 - IPInfo

基本信息:

城市(city): Dar es Salaam

省份(region): Dar es Salaam Region

国家(country): Tanzania

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
41.59.52.152	attackspam	Email rejected due to spam filtering	2020-08-01 22:01:31

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.59.52.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2956
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;41.59.52.104.			IN	A

;; AUTHORITY SECTION:
.			551	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021102 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 12 11:54:45 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 104.52.59.41.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 104.52.59.41.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
144.172.79.5	attackspam	Jun 23 12:09:58 internal-server-tf sshd\[25540\]: Invalid user honey from 144.172.79.5Jun 23 12:10:00 internal-server-tf sshd\[25543\]: Invalid user admin from 144.172.79.5 ...	2020-06-23 20:14:13
185.220.101.14	attackspambots	CMS (WordPress or Joomla) login attempt.	2020-06-23 20:08:52
91.134.173.100	attackspambots	Jun 23 17:08:24 gw1 sshd[13182]: Failed password for root from 91.134.173.100 port 36582 ssh2 ...	2020-06-23 20:20:50
192.241.223.149	attack	2020-06-23T07:06:01.514798morrigan.ad5gb.com dovecot[844204]: imap-login: Disconnected (no auth attempts in 10 secs): user=<>, rip=192.241.223.149, lip=51.81.135.67, session= 2020-06-23T07:09:11.590157morrigan.ad5gb.com dovecot[844204]: imap-login: Disconnected (no auth attempts in 10 secs): user=<>, rip=192.241.223.149, lip=51.81.135.66, session=	2020-06-23 20:37:03
116.198.162.65	attackspambots	Jun 23 14:05:50 mail sshd[11782]: Failed password for root from 116.198.162.65 port 56704 ssh2 ...	2020-06-23 20:39:19
185.220.100.252	attackbots	xmlrpc attack	2020-06-23 20:09:10
170.210.52.126	attackbots	Jun 23 08:07:16 NPSTNNYC01T sshd[3086]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.210.52.126 Jun 23 08:07:18 NPSTNNYC01T sshd[3086]: Failed password for invalid user hah from 170.210.52.126 port 38062 ssh2 Jun 23 08:09:34 NPSTNNYC01T sshd[3185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.210.52.126 ...	2020-06-23 20:21:39
177.129.24.57	attackbots	trying to access non-authorized port	2020-06-23 20:27:20
211.179.124.162	attack	Jun 23 14:00:20 vmd17057 sshd[623]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.179.124.162 Jun 23 14:00:22 vmd17057 sshd[623]: Failed password for invalid user ruth from 211.179.124.162 port 42780 ssh2 ...	2020-06-23 20:11:54
114.119.166.115	attackbotsspam	[Tue Jun 23 19:09:19.034084 2020] [:error] [pid 5996:tid 140192818956032] [client 114.119.166.115:38666] [client 114.119.166.115] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/robots.txt"] [unique_id "XvHw76umFxd0Crm1ySno3AAAAe8"] ...	2020-06-23 20:33:34
46.38.150.142	attackspambots	2020-06-21 07:11:24 dovecot_login authenticator failed for $User$ \[46.38.150.142\]: 535 Incorrect authentication data $set_id=biology@no-server.de$ 2020-06-21 07:11:31 dovecot_login authenticator failed for $User$ \[46.38.150.142\]: 535 Incorrect authentication data $set_id=biology@no-server.de$ 2020-06-21 07:11:40 dovecot_login authenticator failed for $User$ \[46.38.150.142\]: 535 Incorrect authentication data $set_id=biology@no-server.de$ 2020-06-21 07:11:55 dovecot_login authenticator failed for $User$ \[46.38.150.142\]: 535 Incorrect authentication data $set_id=blocks@no-server.de$ 2020-06-21 07:12:01 dovecot_login authenticator failed for $User$ \[46.38.150.142\]: 535 Incorrect authentication data $set_id=blocks@no-server.de$ ...	2020-06-23 20:18:47
186.83.66.217	attack	(sshd) Failed SSH login from 186.83.66.217 (CO/Colombia/dynamic-ip-1868366217.cable.net.co): 5 in the last 3600 secs	2020-06-23 20:24:21
27.128.187.131	attackspam	Jun 23 03:48:28 *** sshd[22949]: Invalid user marek from 27.128.187.131	2020-06-23 20:05:03
71.236.184.111	attack	A2205197	2020-06-23 20:14:29
122.116.17.86	attack	Port probing on unauthorized port 81	2020-06-23 20:42:18

最近上报的IP列表

41.47.92.89	41.47.229.161	41.65.224.78	41.73.12.250
41.60.237.33	41.65.251.84	41.78.76.190	41.74.141.173
41.79.233.62	41.83.99.72	41.75.140.17	42.114.117.23
42.115.151.28	42.112.93.13	42.118.7.64	42.116.170.206
42.178.138.220	42.119.155.0	42.188.15.237	42.191.216.138