120.57.219.49 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): India

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.57.219.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54184
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;120.57.219.49.			IN	A

;; AUTHORITY SECTION:
.			339	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030900 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 17:55:17 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 49.219.57.120.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 49.219.57.120.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
206.189.178.171	attack	s2.hscode.pl - SSH Attack	2020-09-19 06:42:35
114.228.96.199	attack	srvr2: (mod_security) mod_security (id:920350) triggered by 114.228.96.199 (CN/-/-): 1 in the last 600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/18 19:01:03 [error] 22734#0: 99767 [client 114.228.96.199] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/phpmyadmin/"] [unique_id "160044846384.253432"] [ref "o0,15v155,15"], client: 114.228.96.199, [redacted] request: "GET /phpmyadmin/ HTTP/1.1" [redacted]	2020-09-19 06:43:41
84.238.55.11	attackspambots	Brute-force attempt banned	2020-09-19 06:25:37
36.6.56.188	attackspambots	Sep 18 20:29:48 srv01 postfix/smtpd\[3394\]: warning: unknown\[36.6.56.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 18 20:30:00 srv01 postfix/smtpd\[3394\]: warning: unknown\[36.6.56.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 18 20:30:16 srv01 postfix/smtpd\[3394\]: warning: unknown\[36.6.56.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 18 20:30:35 srv01 postfix/smtpd\[3394\]: warning: unknown\[36.6.56.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 18 20:30:47 srv01 postfix/smtpd\[3394\]: warning: unknown\[36.6.56.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-19 06:31:33
80.246.2.153	attack	29044/tcp 16989/tcp 553/tcp... [2020-08-30/09-18]28pkt,19pt.(tcp)	2020-09-19 06:27:18
109.225.118.128	attackbotsspam	Brute-force attempt banned	2020-09-19 06:41:49
27.6.185.193	attackbots	Port probing on unauthorized port 23	2020-09-19 06:12:39
130.185.155.34	attackspambots	SSH Brute-Force reported by Fail2Ban	2020-09-19 06:33:16
74.72.192.179	attack	Sep 18 19:12:20 ssh2 sshd[30406]: User root from cpe-74-72-192-179.nyc.res.rr.com not allowed because not listed in AllowUsers Sep 18 19:12:20 ssh2 sshd[30406]: Failed password for invalid user root from 74.72.192.179 port 47815 ssh2 Sep 18 19:12:20 ssh2 sshd[30406]: Connection closed by invalid user root 74.72.192.179 port 47815 [preauth] ...	2020-09-19 06:38:15
178.32.163.249	attackbotsspam	Sep 18 23:02:44 markkoudstaal sshd[19801]: Failed password for root from 178.32.163.249 port 45906 ssh2 Sep 18 23:06:28 markkoudstaal sshd[20832]: Failed password for root from 178.32.163.249 port 57878 ssh2 ...	2020-09-19 06:47:13
203.218.229.26	attackbots	Sep 18 15:00:28 sip sshd[22051]: Failed password for root from 203.218.229.26 port 54491 ssh2 Sep 18 15:00:30 sip sshd[22056]: Failed password for root from 203.218.229.26 port 54637 ssh2	2020-09-19 06:14:07
192.241.237.220	attack	port scan and connect, tcp 3050 (firebird)	2020-09-19 06:46:10
167.71.70.81	attackspambots	167.71.70.81 - - [18/Sep/2020:22:48:47 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.71.70.81 - - [18/Sep/2020:22:48:49 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.71.70.81 - - [18/Sep/2020:22:48:52 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-19 06:24:53
178.93.133.7	attackbotsspam	Brute-force attempt banned	2020-09-19 06:12:06
183.80.17.230	attackspambots	Unauthorized connection attempt from IP address 183.80.17.230 on Port 445(SMB)	2020-09-19 06:42:55

最近上报的IP列表

120.57.219.45	120.57.219.59	120.57.220.108	120.57.220.130
120.57.220.134	120.57.220.135	120.57.220.161	120.57.220.188
120.57.220.207	120.57.220.214	120.57.220.38	120.57.220.44
120.57.220.49	120.57.220.50	120.57.220.66	244.115.145.47
120.57.221.129	120.57.221.138	120.57.221.149	120.57.221.231