1.220.208.121 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea Republic of

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.220.208.121
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8670
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.220.208.121.			IN	A

;; AUTHORITY SECTION:
.			434	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022092401 1800 900 604800 86400

;; Query time: 79 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 25 07:30:19 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 121.208.220.1.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 121.208.220.1.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
40.77.167.208	attackspam	[Thu Aug 27 20:02:37.973742 2020] [:error] [pid 23182:tid 139707023353600] [client 40.77.167.208:1505] [client 40.77.167.208] ModSecurity: Access denied with code 403 (phase 4). Pattern match "^5\\\\d{2}$" at RESPONSE_STATUS. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/RESPONSE-950-DATA-LEAKAGES.conf"] [line "118"] [id "950100"] [msg "The Application Returned a 500-Level Status Code"] [data "Matched Data: 500 found within RESPONSE_STATUS: 500"] [severity "ERROR"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-disclosure"] [tag "WASCTC/WASC-13"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.6"] [tag "paranoia-level/2"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/prakiraan-bulanan/244-prakiraan-curah-hujan-bulanan/prakiraan-curah-hujan-bulanan-di-propinsi-jawa-timur/prakiraan-curah-hujan-bulanan-di-propinsi-jawa-timur-tahun-2016/1014-prakiraan-curah-hujan-jawa-timur-bulan-agustus-tahun-2016"] [unique_id "X ...	2020-08-27 21:48:57
140.86.12.31	attackbotsspam	Aug 27 15:42:34 rotator sshd\[2006\]: Invalid user git from 140.86.12.31Aug 27 15:42:35 rotator sshd\[2006\]: Failed password for invalid user git from 140.86.12.31 port 34261 ssh2Aug 27 15:46:52 rotator sshd\[2813\]: Invalid user g from 140.86.12.31Aug 27 15:46:54 rotator sshd\[2813\]: Failed password for invalid user g from 140.86.12.31 port 9249 ssh2Aug 27 15:51:03 rotator sshd\[3607\]: Invalid user upload from 140.86.12.31Aug 27 15:51:05 rotator sshd\[3607\]: Failed password for invalid user upload from 140.86.12.31 port 40711 ssh2 ...	2020-08-27 22:00:37
134.249.132.15	attackbots	Automatic report - Port Scan Attack	2020-08-27 22:05:43
60.95.91.96	attack	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-08-27 22:27:00
177.44.16.136	attackbots	Attempted Brute Force (dovecot)	2020-08-27 21:49:27
45.230.45.69	attackspam	Unauthorized connection attempt from IP address 45.230.45.69 on Port 445(SMB)	2020-08-27 21:47:23
103.57.80.56	attack	Dovecot Invalid User Login Attempt.	2020-08-27 22:26:11
45.164.8.244	attackbots	Aug 27 11:41:06 vm1 sshd[3372]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.164.8.244 Aug 27 11:41:08 vm1 sshd[3372]: Failed password for invalid user jack from 45.164.8.244 port 51346 ssh2 ...	2020-08-27 21:42:35
78.196.38.46	attack	2020-08-27T08:05:54.660868linuxbox-skyline sshd[191062]: Invalid user soporte from 78.196.38.46 port 57636 ...	2020-08-27 22:07:38
2.139.209.78	attack	$f2bV_matches	2020-08-27 22:09:42
106.53.24.141	attack	Aug 27 16:06:16 minden010 sshd[26742]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.24.141 Aug 27 16:06:18 minden010 sshd[26742]: Failed password for invalid user ftpweb from 106.53.24.141 port 39610 ssh2 Aug 27 16:10:21 minden010 sshd[28240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.24.141 ...	2020-08-27 22:19:52
200.54.242.46	attackbots	SSH auth scanning - multiple failed logins	2020-08-27 22:07:12
41.200.135.59	attackbots	Brute Force	2020-08-27 22:01:29
122.155.212.171	attack	Aug 27 10:07:11 ny01 sshd[28535]: Failed password for root from 122.155.212.171 port 60530 ssh2 Aug 27 10:11:37 ny01 sshd[29123]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.155.212.171 Aug 27 10:11:39 ny01 sshd[29123]: Failed password for invalid user humberto from 122.155.212.171 port 40340 ssh2	2020-08-27 22:20:18
40.121.163.198	attack	2020-08-27T13:04:14.607492dmca.cloudsearch.cf sshd[28358]: Invalid user gv from 40.121.163.198 port 43462 2020-08-27T13:04:14.612690dmca.cloudsearch.cf sshd[28358]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.121.163.198 2020-08-27T13:04:14.607492dmca.cloudsearch.cf sshd[28358]: Invalid user gv from 40.121.163.198 port 43462 2020-08-27T13:04:16.382700dmca.cloudsearch.cf sshd[28358]: Failed password for invalid user gv from 40.121.163.198 port 43462 ssh2 2020-08-27T13:06:37.410615dmca.cloudsearch.cf sshd[28448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.121.163.198 user=root 2020-08-27T13:06:39.145488dmca.cloudsearch.cf sshd[28448]: Failed password for root from 40.121.163.198 port 52172 ssh2 2020-08-27T13:09:06.722039dmca.cloudsearch.cf sshd[28486]: Invalid user bill from 40.121.163.198 port 60924 ...	2020-08-27 22:27:20

最近上报的IP列表

1.221.19.193	1.220.251.103	1.220.220.175	1.221.228.159
1.22.70.81	1.220.205.114	1.220.50.45	1.222.205.79
1.220.99.7	1.220.65.52	1.220.78.28	1.220.202.29
1.220.40.107	1.220.71.181	1.226.182.165	1.221.21.209
1.222.164.181	1.220.198.206	1.220.134.149	1.220.133.48