120.48.6.154 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.48.6.154
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20654
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;120.48.6.154.			IN	A

;; AUTHORITY SECTION:
.			292	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022061200 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 12 21:24:04 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 154.6.48.120.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 154.6.48.120.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
167.172.49.65	attackspam	Feb 1 20:48:32 odroid64 sshd\[10787\]: Invalid user ec2-user from 167.172.49.65 Feb 1 20:48:32 odroid64 sshd\[10787\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.49.65 Feb 6 06:54:19 odroid64 sshd\[31063\]: Invalid user kwd from 167.172.49.65 Feb 6 06:54:19 odroid64 sshd\[31063\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.49.65 Feb 28 01:10:19 odroid64 sshd\[25926\]: Invalid user tester from 167.172.49.65 Feb 28 01:10:19 odroid64 sshd\[25926\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.49.65 ...	2020-03-05 23:20:25
5.45.207.56	attackbots	[Thu Mar 05 21:00:08.835786 2020] [:error] [pid 5450:tid 139673678640896] [client 5.45.207.56:35837] [client 5.45.207.56] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XmEF6EZj0RccgXB5HAs1jQAAAUo"] ...	2020-03-05 23:24:00
103.123.22.55	attackbots	SMTP login failure	2020-03-05 23:02:14
190.82.77.45	attackbots	1583415294 - 03/05/2020 14:34:54 Host: 190.82.77.45/190.82.77.45 Port: 445 TCP Blocked	2020-03-05 23:09:45
121.172.33.83	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-03-05 23:10:09
106.13.125.84	attack	Mar 5 15:30:57 lukav-desktop sshd\[11350\]: Invalid user tss from 106.13.125.84 Mar 5 15:30:57 lukav-desktop sshd\[11350\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84 Mar 5 15:30:59 lukav-desktop sshd\[11350\]: Failed password for invalid user tss from 106.13.125.84 port 55292 ssh2 Mar 5 15:34:50 lukav-desktop sshd\[11425\]: Invalid user deployer from 106.13.125.84 Mar 5 15:34:50 lukav-desktop sshd\[11425\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.125.84	2020-03-05 23:15:05
82.29.197.234	attack	23/tcp [2020-03-05]1pkt	2020-03-05 23:28:43
78.100.252.164	attack	Honeypot attack, port: 5555, PTR: PTR record not found	2020-03-05 22:51:40
124.251.110.148	attack	Mar 5 15:58:56 santamaria sshd\[7049\]: Invalid user xupeng from 124.251.110.148 Mar 5 15:58:56 santamaria sshd\[7049\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.251.110.148 Mar 5 15:58:58 santamaria sshd\[7049\]: Failed password for invalid user xupeng from 124.251.110.148 port 55894 ssh2 ...	2020-03-05 23:00:04
59.126.14.7	attackbotsspam	Honeypot attack, port: 81, PTR: 59-126-14-7.HINET-IP.hinet.net.	2020-03-05 23:16:59
190.75.43.250	attackspambots	firewall-block, port(s): 1433/tcp	2020-03-05 22:52:45
185.53.88.142	attack	[2020-03-05 08:56:13] NOTICE[1148][C-0000e53b] chan_sip.c: Call from '' (185.53.88.142:62272) to extension '01146278646024' rejected because extension not found in context 'public'. [2020-03-05 08:56:13] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-05T08:56:13.680-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146278646024",SessionID="0x7fd82cdb8718",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.142/62272",ACLName="no_extension_match" [2020-03-05 08:56:40] NOTICE[1148][C-0000e53c] chan_sip.c: Call from '' (185.53.88.142:62847) to extension '01146322648703' rejected because extension not found in context 'public'. [2020-03-05 08:56:40] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-05T08:56:40.699-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146322648703",SessionID="0x7fd82c530768",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185. ...	2020-03-05 23:07:25
5.62.60.17	attackbots	GET /owa/auth/logon.aspx?replaceCurrent=1&url= HTTP/1.1	2020-03-05 23:18:43
86.44.236.182	attackbotsspam	1433/tcp [2020-03-05]1pkt	2020-03-05 23:16:30
202.71.13.50	attack	Automatic report - Port Scan Attack	2020-03-05 23:06:01

最近上报的IP列表

137.226.69.213	121.4.170.253	137.226.112.209	124.222.89.212
180.76.166.96	137.226.59.17	137.226.58.205	209.33.234.22
212.33.205.42	201.71.217.34	213.249.8.174	122.187.230.108
144.48.134.144	216.151.130.15	137.226.68.19	216.151.130.5
216.151.130.51	137.226.113.38	144.48.134.118	216.151.130.84