52.100.19.20 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.100.19.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27682
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;52.100.19.20.			IN	A

;; AUTHORITY SECTION:
.			405	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 08:57:37 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

20.19.100.52.in-addr.arpa domain name pointer mail-cy1gcc01bn2020.outbound.protection.outlook.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.19.100.52.in-addr.arpa	name = mail-cy1gcc01bn2020.outbound.protection.outlook.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
138.68.236.50	attackspam	2020-09-29T22:37:42.505113vps773228.ovh.net sshd[5871]: Invalid user it from 138.68.236.50 port 44976 2020-09-29T22:37:42.524820vps773228.ovh.net sshd[5871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.236.50 2020-09-29T22:37:42.505113vps773228.ovh.net sshd[5871]: Invalid user it from 138.68.236.50 port 44976 2020-09-29T22:37:44.247685vps773228.ovh.net sshd[5871]: Failed password for invalid user it from 138.68.236.50 port 44976 ssh2 2020-09-29T22:41:23.669086vps773228.ovh.net sshd[5891]: Invalid user matt from 138.68.236.50 port 51910 ...	2020-09-30 12:33:49
66.249.79.90	attackbotsspam	Automatic report - Banned IP Access	2020-09-30 12:37:39
138.68.5.192	attackspam	ssh brute force	2020-09-30 12:51:39
165.227.2.193	attackbotsspam	1601412067 - 09/29/2020 22:41:07 Host: 165.227.2.193/165.227.2.193 Port: 113 TCP Blocked	2020-09-30 12:46:48
106.12.174.227	attackbotsspam	Sep 29 18:45:36 hpm sshd\[16160\]: Invalid user desktop from 106.12.174.227 Sep 29 18:45:36 hpm sshd\[16160\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.174.227 Sep 29 18:45:38 hpm sshd\[16160\]: Failed password for invalid user desktop from 106.12.174.227 port 33582 ssh2 Sep 29 18:50:18 hpm sshd\[16462\]: Invalid user web from 106.12.174.227 Sep 29 18:50:18 hpm sshd\[16462\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.174.227	2020-09-30 12:57:00
78.42.135.172	attackspam	$f2bV_matches	2020-09-30 12:39:26
122.51.139.218	attackbotsspam	122.51.139.218 - - [29/Sep/2020:22:40:53 +0200] "GET /robots.txt HTTP/1.1" 404 564 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.84 Safari/537.36" 122.51.139.218 - - [29/Sep/2020:22:40:54 +0200] "POST /Admin2b3faca7/Login.php HTTP/1.1" 404 564 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.84 Safari/537.36" 122.51.139.218 - - [29/Sep/2020:22:40:54 +0200] "GET /l.php HTTP/1.1" 404 194 "-" "Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Win64; x64; Trident/4.0)" 122.51.139.218 - - [29/Sep/2020:22:40:54 +0200] "GET /phpinfo.php HTTP/1.1" 404 194 "-" "Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Win64; x64; Trident/4.0)" 122.51.139.218 - - [29/Sep/2020:22:40:56 +0200] "GET /test.php HTTP/1.1" 404 194 "-" "Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Win64; x64; Trident/4.0)" 122.51.139.218 - - [29/Sep/2020:22:40:57 +0200] "POST /index.php HTTP/1.1" 404 162 "-" "Mozilla/5.0 (X11; Lin ...	2020-09-30 12:52:15
104.236.207.70	attackbotsspam	2020-09-30T02:13:04.859436Z e298aeb8a697 New connection: 104.236.207.70:60760 (172.17.0.5:2222) [session: e298aeb8a697] 2020-09-30T02:19:27.090070Z 791bec47229f New connection: 104.236.207.70:45474 (172.17.0.5:2222) [session: 791bec47229f]	2020-09-30 12:41:59
159.65.154.48	attack	2020-09-29 23:58:30.708454-0500 localhost sshd[60380]: Failed password for invalid user cody from 159.65.154.48 port 53356 ssh2	2020-09-30 13:00:47
93.114.184.8	attack	93.114.184.8 - - [30/Sep/2020:03:58:23 +0000] "POST /wp-login.php HTTP/1.1" 200 2077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 93.114.184.8 - - [30/Sep/2020:03:58:25 +0000] "POST /wp-login.php HTTP/1.1" 200 2055 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 93.114.184.8 - - [30/Sep/2020:03:58:26 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 93.114.184.8 - - [30/Sep/2020:03:58:28 +0000] "POST /wp-login.php HTTP/1.1" 200 2052 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 93.114.184.8 - - [30/Sep/2020:03:58:29 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"	2020-09-30 12:32:34
119.29.182.185	attack	SSH Bruteforce Attempt on Honeypot	2020-09-30 12:44:53
52.172.199.83	attackbots	Scanned 3 times in the last 24 hours on port 22	2020-09-30 12:37:13
199.195.253.117	attack	Sep 30 04:12:29 server2 sshd\[6193\]: User root from 199.195.253.117 not allowed because not listed in AllowUsers Sep 30 04:12:30 server2 sshd\[6195\]: User root from 199.195.253.117 not allowed because not listed in AllowUsers Sep 30 04:12:30 server2 sshd\[6199\]: Invalid user admin from 199.195.253.117 Sep 30 04:12:31 server2 sshd\[6203\]: Invalid user postgres from 199.195.253.117 Sep 30 04:12:32 server2 sshd\[6205\]: Invalid user postgres from 199.195.253.117 Sep 30 04:12:33 server2 sshd\[6207\]: User root from 199.195.253.117 not allowed because not listed in AllowUsers	2020-09-30 12:23:11
207.180.203.205	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-30 12:36:06
40.124.41.241	attack	[SID2] Fail2ban detected 5 failed SSH login attempts within 30 minutes. This report was submitted automatically.	2020-09-30 12:57:34

最近上报的IP列表

52.100.20.245	52.100.5.234	52.100.5.246	52.11.127.237
52.12.127.52	52.100.9.234	52.12.204.124	52.12.220.126
52.12.209.181	52.126.189.202	52.119.101.4	52.14.211.77
52.131.208.254	52.163.184.34	52.15.226.125	52.14.53.100
52.158.175.163	52.163.52.36	52.14.214.6	52.168.19.92