120.85.104.127

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 120.85.104.127
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54799
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;120.85.104.127.			IN	A

;; AUTHORITY SECTION:
.			497	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030800 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 08 19:47:37 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 127.104.85.120.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 127.104.85.120.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
186.233.94.106	attackspam	2019-07-19T02:53:57.798448wiz-ks3 sshd[12510]: Invalid user odoo from 186.233.94.106 port 50441 2019-07-19T02:53:57.800452wiz-ks3 sshd[12510]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.233.94.106 2019-07-19T02:53:57.798448wiz-ks3 sshd[12510]: Invalid user odoo from 186.233.94.106 port 50441 2019-07-19T02:53:59.769537wiz-ks3 sshd[12510]: Failed password for invalid user odoo from 186.233.94.106 port 50441 ssh2 2019-07-19T03:05:26.336776wiz-ks3 sshd[12547]: Invalid user unix from 186.233.94.106 port 50330 2019-07-19T03:05:26.338859wiz-ks3 sshd[12547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.233.94.106 2019-07-19T03:05:26.336776wiz-ks3 sshd[12547]: Invalid user unix from 186.233.94.106 port 50330 2019-07-19T03:05:28.563598wiz-ks3 sshd[12547]: Failed password for invalid user unix from 186.233.94.106 port 50330 ssh2 2019-07-19T03:16:56.887287wiz-ks3 sshd[12579]: Invalid user wilma from 186.233.94.106 port 50228 2	2019-07-20 09:49:15
165.22.26.231	attackspambots	165.22.26.231 - - [20/Jul/2019:03:39:05 +0200] "POST [munged]wp-login.php HTTP/1.1" 444 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 0.000	2019-07-20 09:50:58
191.53.194.35	attack	failed_logins	2019-07-20 09:13:46
144.76.99.215	attack	20 attempts against mh-misbehave-ban on milky.magehost.pro	2019-07-20 09:20:27
157.230.209.220	attackspambots	Jul 20 01:34:54 MK-Soft-VM5 sshd\[13992\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.209.220 user=root Jul 20 01:34:56 MK-Soft-VM5 sshd\[13992\]: Failed password for root from 157.230.209.220 port 38504 ssh2 Jul 20 01:39:16 MK-Soft-VM5 sshd\[14006\]: Invalid user steam from 157.230.209.220 port 36606 ...	2019-07-20 09:45:18
185.220.101.49	attack	2019-07-17T20:03:18.563693wiz-ks3 sshd[17200]: Invalid user admin from 185.220.101.49 port 33667 2019-07-17T20:03:18.565848wiz-ks3 sshd[17200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.49 2019-07-17T20:03:18.563693wiz-ks3 sshd[17200]: Invalid user admin from 185.220.101.49 port 33667 2019-07-17T20:03:21.150321wiz-ks3 sshd[17200]: Failed password for invalid user admin from 185.220.101.49 port 33667 ssh2 2019-07-17T20:03:18.565848wiz-ks3 sshd[17200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.101.49 2019-07-17T20:03:18.563693wiz-ks3 sshd[17200]: Invalid user admin from 185.220.101.49 port 33667 2019-07-17T20:03:21.150321wiz-ks3 sshd[17200]: Failed password for invalid user admin from 185.220.101.49 port 33667 ssh2 2019-07-17T20:03:23.168759wiz-ks3 sshd[17200]: Failed password for invalid user admin from 185.220.101.49 port 33667 ssh2 2019-07-17T20:03:18.565848wiz-ks3 sshd[17200]: pam_unix(sshd:auth):	2019-07-20 09:53:03
37.49.230.216	attack	Jul 19 14:41:32 box kernel: [1654718.030115] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=37.49.230.216 DST=[munged] LEN=40 TOS=0x08 PREC=0x20 TTL=247 ID=54321 PROTO=TCP SPT=41155 DPT=81 WINDOW=65535 RES=0x00 SYN URGP=0 Jul 19 15:06:50 box kernel: [1656235.459750] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=37.49.230.216 DST=[munged] LEN=40 TOS=0x08 PREC=0x20 TTL=247 ID=54321 PROTO=TCP SPT=53987 DPT=81 WINDOW=65535 RES=0x00 SYN URGP=0 Jul 19 18:48:48 box kernel: [1669553.300839] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=37.49.230.216 DST=[munged] LEN=40 TOS=0x08 PREC=0x20 TTL=247 ID=54321 PROTO=TCP SPT=35036 DPT=81 WINDOW=65535 RES=0x00 SYN URGP=0 Jul 19 23:40:58 box kernel: [1687083.624111] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=37.49.230.216 DST=[munged] LEN=40 TOS=0x08 PREC=0x20 TTL=247 ID=54321 PROTO=TCP SPT=39019 DPT=81 WINDOW=65535 RES=0x00 SYN URGP=0 Jul 20 01:26:15 box kernel: [1693400.326638] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=37.49.230.216 DST=[munged] LEN=40 TOS=0x08 PREC=0x20 TTL=247 ID=	2019-07-20 09:08:22
192.254.157.153	attackbotsspam	192.254.157.153 - - [20/Jul/2019:03:38:51 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.254.157.153 - - [20/Jul/2019:03:38:52 +0200] "POST /wp-login.php HTTP/1.1" 200 1704 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.254.157.153 - - [20/Jul/2019:03:38:52 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.254.157.153 - - [20/Jul/2019:03:38:53 +0200] "POST /wp-login.php HTTP/1.1" 200 1710 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.254.157.153 - - [20/Jul/2019:03:38:54 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.254.157.153 - - [20/Jul/2019:03:38:55 +0200] "POST /wp-login.php HTTP/1.1" 200 1710 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" .	2019-07-20 09:55:29
189.50.1.226	attackspambots	Jul 20 03:16:45 legacy sshd[30597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.50.1.226 Jul 20 03:16:46 legacy sshd[30597]: Failed password for invalid user rv from 189.50.1.226 port 40351 ssh2 Jul 20 03:22:33 legacy sshd[30797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.50.1.226 ...	2019-07-20 09:38:39
94.102.1.190	attackbotsspam	WP_xmlrpc_attack	2019-07-20 09:22:08
157.230.163.6	attackspambots	Jul 19 21:20:59 mail sshd\[31918\]: Invalid user ka from 157.230.163.6 port 33860 Jul 19 21:20:59 mail sshd\[31918\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.163.6 Jul 19 21:21:00 mail sshd\[31918\]: Failed password for invalid user ka from 157.230.163.6 port 33860 ssh2 Jul 19 21:25:50 mail sshd\[336\]: Invalid user sales from 157.230.163.6 port 60376 Jul 19 21:25:50 mail sshd\[336\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.163.6	2019-07-20 09:24:41
196.15.211.91	attackbotsspam	Jul 20 01:20:35 MK-Soft-VM3 sshd\[32418\]: Invalid user noemi from 196.15.211.91 port 58312 Jul 20 01:20:35 MK-Soft-VM3 sshd\[32418\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.15.211.91 Jul 20 01:20:37 MK-Soft-VM3 sshd\[32418\]: Failed password for invalid user noemi from 196.15.211.91 port 58312 ssh2 ...	2019-07-20 09:23:47
46.34.168.131	attack	Mail sent to address hacked/leaked from Gamigo	2019-07-20 09:26:58
31.17.30.128	attack	Jul 15 14:59:29 mailserver sshd[17874]: Invalid user myer from 31.17.30.128 Jul 15 14:59:29 mailserver sshd[17874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.17.30.128 Jul 15 14:59:30 mailserver sshd[17874]: Failed password for invalid user myer from 31.17.30.128 port 59691 ssh2 Jul 15 14:59:30 mailserver sshd[17874]: Received disconnect from 31.17.30.128 port 59691:11: Normal Shutdown, Thank you for playing [preauth] Jul 15 14:59:30 mailserver sshd[17874]: Disconnected from 31.17.30.128 port 59691 [preauth] Jul 16 23:23:21 mailserver sshd[3370]: Invalid user adam from 31.17.30.128 Jul 16 23:23:21 mailserver sshd[3370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.17.30.128 Jul 16 23:23:24 mailserver sshd[3370]: Failed password for invalid user adam from 31.17.30.128 port 33569 ssh2 Jul 16 23:23:24 mailserver sshd[3370]: Received disconnect from 31.17.30.128 port 33569:11: Nor........ -------------------------------	2019-07-20 09:12:52
120.52.152.17	attackspam	Automatic report - Port Scan Attack	2019-07-20 09:12:16

最近上报的IP列表

120.85.102.182	120.85.104.228	120.85.104.16	120.85.104.52
117.195.92.186	120.85.105.126	120.85.104.82	120.85.105.14
120.85.105.223	120.85.105.139	120.85.106.112	120.85.106.220
120.85.105.179	120.85.106.56	120.85.106.43	120.85.107.111
120.85.107.103	117.196.29.85	120.85.107.113	120.85.107.115