116.24.104.2 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.24.104.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34444
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.24.104.2.			IN	A

;; AUTHORITY SECTION:
.			313	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022001 1800 900 604800 86400

;; Query time: 76 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 21 13:04:15 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 2.104.24.116.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 2.104.24.116.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
144.178.133.119	attack	Telnet/23 MH Probe, BF, Hack -	2019-11-30 21:42:37
201.47.123.100	attack	[SatNov3007:18:54.8578072019][:error][pid16693:tid47933148841728][client201.47.123.100:52756][client201.47.123.100]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"/wp-config.php"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/99_asl_jitp.conf"][line"3503"][id"381206"][rev"1"][msg"Atomicorp.comWAFRules-VirtualJustInTimePatch:AccesstoWordPressconfigurationfileblocked"][data"/wp-config.php"][severity"CRITICAL"][hostname"www.ilgiornaledelticino.ch"][uri"/wordpress/wp-config.php.1"][unique_id"XeIJzgqv1FuauzfqLXz6OgAAAM8"][SatNov3007:18:56.4048192019][:error][pid16559:tid47933136234240][client201.47.123.100:53556][client201.47.123.100]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"/wp-config.php"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/99_asl_jitp.conf"][line"3503"][id"381206"][rev"1"][msg"Atomicorp.comWAFRules-VirtualJustInTimePatch:AccesstoWordPressconfigurationfileblocked"][data"/wp-config.php"][severity"CRITICAL"][hostname"	2019-11-30 21:15:50
36.36.200.181	attackspam	Invalid user lapstuen from 36.36.200.181 port 36058	2019-11-30 21:18:54
192.227.248.221	attack	(From EdFrez689@gmail.com) Greetings! Are you thinking of giving your site a more modern look and some elements that can help you run your business? How about making some upgrades on your website? Are there any particular features that you've thought about adding to help your clients find it easier to navigate through your online content? I am a professional web designer that is dedicated to helping businesses grow. I do this by making sure that your website is the best that it can be in terms of aesthetics, functionality, and reliability in handling your business online. All of my work is done freelance and locally (never outsourced). I would love to talk to you about my ideas at a time that's best for you. I can give you plenty of information and examples of what we've done for other clients and what the results have been. Please let me know if you're interested, and I'll get in touch with you as quick as I can. Edward Frez \| Web Developer	2019-11-30 21:25:57
91.207.40.45	attack	Nov 30 08:20:08 h2177944 sshd\[29790\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.207.40.45 user=root Nov 30 08:20:09 h2177944 sshd\[29790\]: Failed password for root from 91.207.40.45 port 59994 ssh2 Nov 30 08:23:20 h2177944 sshd\[29881\]: Invalid user guest from 91.207.40.45 port 38842 Nov 30 08:23:20 h2177944 sshd\[29881\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.207.40.45 ...	2019-11-30 21:12:10
85.53.239.202	attackspam	MLV GET /wp-login.php	2019-11-30 21:26:46
103.219.112.1	attack	Nov 30 14:33:33 itv-usvr-02 sshd[10412]: Invalid user squid from 103.219.112.1 port 37910 Nov 30 14:33:33 itv-usvr-02 sshd[10412]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.219.112.1 Nov 30 14:33:33 itv-usvr-02 sshd[10412]: Invalid user squid from 103.219.112.1 port 37910 Nov 30 14:33:35 itv-usvr-02 sshd[10412]: Failed password for invalid user squid from 103.219.112.1 port 37910 ssh2 Nov 30 14:37:42 itv-usvr-02 sshd[10429]: Invalid user 3333333 from 103.219.112.1 port 45060	2019-11-30 21:43:02
82.162.0.35	attack	Unauthorised access (Nov 30) SRC=82.162.0.35 LEN=52 TTL=114 ID=20686 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-30 21:33:04
139.199.228.133	attackspambots	Invalid user choukroun from 139.199.228.133 port 39596	2019-11-30 21:32:30
164.132.225.151	attack	Invalid user deanda from 164.132.225.151 port 59739	2019-11-30 21:24:57
196.52.43.93	attackbotsspam	11/30/2019-01:18:31.610138 196.52.43.93 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-11-30 21:38:48
139.59.244.225	attackspam	Lines containing failures of 139.59.244.225 Nov 28 18:30:46 shared12 sshd[19107]: Invalid user doti from 139.59.244.225 port 55798 Nov 28 18:30:46 shared12 sshd[19107]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.244.225 Nov 28 18:30:48 shared12 sshd[19107]: Failed password for invalid user doti from 139.59.244.225 port 55798 ssh2 Nov 28 18:30:48 shared12 sshd[19107]: Received disconnect from 139.59.244.225 port 55798:11: Bye Bye [preauth] Nov 28 18:30:48 shared12 sshd[19107]: Disconnected from invalid user doti 139.59.244.225 port 55798 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=139.59.244.225	2019-11-30 21:05:21
106.225.129.108	attack	Nov 30 07:13:18 vmd17057 sshd\[5240\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.225.129.108 user=root Nov 30 07:13:20 vmd17057 sshd\[5240\]: Failed password for root from 106.225.129.108 port 38704 ssh2 Nov 30 07:19:11 vmd17057 sshd\[5628\]: Invalid user awsbilling from 106.225.129.108 port 59065 ...	2019-11-30 21:13:27
188.164.199.196	attack	188.164.199.196 - - [30/Nov/2019:07:18:15 +0100] "GET /_adminer HTTP/1.1" 404 17160 "http://nfsec.pl/_adminer" "Go-http-client/1.1" 188.164.199.196 - - [30/Nov/2019:07:18:19 +0100] "GET /_adminer.php HTTP/1.1" 404 17042 "http://nfsec.pl/_adminer.php" "Go-http-client/1.1" 188.164.199.196 - - [30/Nov/2019:07:18:21 +0100] "GET /ad.php HTTP/1.1" 404 17023 "http://nfsec.pl/ad.php" "Go-http-client/1.1" 188.164.199.196 - - [30/Nov/2019:07:18:25 +0100] "GET /adm.php HTTP/1.1" 404 17095 "http://nfsec.pl/adm.php" "Go-http-client/1.1" 188.164.199.196 - - [30/Nov/2019:07:18:30 +0100] "GET /adminer HTTP/1.1" 404 17128 "http://nfsec.pl/adminer" "Go-http-client/1.1" ...	2019-11-30 21:39:19
144.202.34.43	attackbotsspam	Invalid user kenjiro from 144.202.34.43 port 51180	2019-11-30 21:31:17

最近上报的IP列表

116.236.151.142	116.24.57.252	116.24.64.189	116.241.125.194
116.24.90.224	116.248.98.23	116.249.238.152	116.248.172.247
116.249.34.63	116.249.34.177	116.249.238.202	116.248.100.205
116.249.62.205	116.249.62.3	116.249.62.245	116.25.134.155
116.249.62.127	116.249.62.79	116.25.106.164	116.25.37.164