119.2.122.181 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): unknown

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.2.122.181
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21335
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;119.2.122.181.			IN	A

;; AUTHORITY SECTION:
.			161	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 13:05:01 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

181.122.2.119.in-addr.arpa domain name pointer dsl-119-2-112-181.thimphu.druknet.bt.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
181.122.2.119.in-addr.arpa	name = dsl-119-2-112-181.thimphu.druknet.bt.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
5.133.11.118	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/5.133.11.118/ PL - 1H : (23) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : PL NAME ASN : ASN197155 IP : 5.133.11.118 CIDR : 5.133.11.0/24 PREFIX COUNT : 42 UNIQUE IP COUNT : 12032 ATTACKS DETECTED ASN197155 : 1H - 2 3H - 2 6H - 2 12H - 2 24H - 2 DateTime : 2020-03-22 13:58:29 INFO : Looking for resource vulnerabilities 403 Detected and Blocked by ADMIN - data recovery	2020-03-23 04:04:45
194.26.29.121	attackbotsspam	Mar 22 15:03:39 debian-2gb-nbg1-2 kernel: \[7144912.022104\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=194.26.29.121 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=183 ID=48389 PROTO=TCP SPT=43210 DPT=3308 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-23 04:31:29
112.85.42.178	attack	Mar 22 21:27:21 jane sshd[29526]: Failed password for root from 112.85.42.178 port 53524 ssh2 Mar 22 21:27:24 jane sshd[29526]: Failed password for root from 112.85.42.178 port 53524 ssh2 ...	2020-03-23 04:29:57
114.143.153.138	attackspambots	114.143.153.138 - - [22/Mar/2020:13:17:08 +0000] "POST /wp-login.php HTTP/1.1" 200 6627 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 114.143.153.138 - - [22/Mar/2020:13:17:09 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-03-23 04:09:44
209.97.129.231	attackspam	209.97.129.231 - - [22/Mar/2020:20:13:50 +0100] "GET /wp-login.php HTTP/1.1" 200 5688 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 209.97.129.231 - - [22/Mar/2020:20:13:52 +0100] "POST /wp-login.php HTTP/1.1" 200 6587 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 209.97.129.231 - - [22/Mar/2020:20:13:53 +0100] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-03-23 04:19:00
141.8.189.8	attackspam	[Sun Mar 22 19:57:59.648966 2020] [:error] [pid 21623:tid 139727223121664] [client 141.8.189.8:48209] [client 141.8.189.8] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "Xndg18kc6FgT9NgCLuzeNQAAAWo"] ...	2020-03-23 04:19:14
115.72.79.14	attack	20/3/22@10:25:26: FAIL: Alarm-Network address from=115.72.79.14 ...	2020-03-23 04:24:44
171.243.200.247	attackbotsspam	1584881857 - 03/22/2020 13:57:37 Host: 171.243.200.247/171.243.200.247 Port: 445 TCP Blocked	2020-03-23 04:30:12
218.92.0.168	attack	$f2bV_matches	2020-03-23 04:03:24
223.171.32.66	attack	Brute force attempt	2020-03-23 04:32:38
185.220.101.22	attack	Mar 22 20:35:39 vpn01 sshd[31659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.22 Mar 22 20:35:41 vpn01 sshd[31659]: Failed password for invalid user ctcloud from 185.220.101.22 port 40935 ssh2 ...	2020-03-23 04:21:55
122.51.192.164	attack	Mar 22 18:18:02 master sshd[23951]: Failed password for invalid user ftp2 from 122.51.192.164 port 32898 ssh2	2020-03-23 04:19:28
189.80.227.130	attack	Honeypot attack, port: 5555, PTR: 18980227130.user.veloxzone.com.br.	2020-03-23 04:17:49
61.153.54.38	attackbotsspam	Port Scan detected from 61.153.54.38 (CN/China/-). 4 hits in the last 195 seconds	2020-03-23 04:30:42
109.242.126.79	attackbots	Automatic report - Port Scan Attack	2020-03-23 03:58:28

最近上报的IP列表

119.2.122.156	119.2.122.185	119.2.122.191	119.2.122.214
119.2.122.218	119.2.122.221	119.2.122.234	119.2.122.242
119.2.122.30	119.2.122.46	119.2.122.65	119.2.122.71
119.2.125.138	119.2.40.14	119.2.40.210	119.2.40.238
119.2.41.1	119.2.41.10	119.2.41.14	119.2.41.177