121.11.104.55 - IPInfo

基本信息:

城市(city): unknown

省份(region): Guangdong

国家(country): China

运营商(isp): China Telecom

主机名(hostname): unknown

机构(organization): China Telecom (Group)

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.11.104.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23118
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.11.104.55.			IN	A

;; AUTHORITY SECTION:
.			3380	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019052400 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri May 24 19:24:39 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 55.104.11.121.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 55.104.11.121.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
141.98.81.99	attackbots	2020-04-11 UTC: (3x) - Administrator(2x),root	2020-04-12 17:56:19
51.15.129.164	attackspambots	$f2bV_matches	2020-04-12 17:59:56
207.99.102.202	attackspambots	firewall-block, port(s): 23/tcp	2020-04-12 18:10:14
109.169.210.153	attackspambots	20/4/12@02:08:56: FAIL: Alarm-Network address from=109.169.210.153 20/4/12@02:08:56: FAIL: Alarm-Network address from=109.169.210.153 ...	2020-04-12 17:45:10
173.252.87.3	attack	[Sun Apr 12 10:50:15.307549 2020] [:error] [pid 3625:tid 140295004800768] [client 173.252.87.3:48640] [client 173.252.87.3] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/IcoMoon.woff"] [unique_id "XpKP96LL@8cf6BWsPUlIZwAAAAE"] ...	2020-04-12 18:05:31
24.37.198.220	attackspam	Automatic report - Port Scan Attack	2020-04-12 17:46:25
49.235.94.172	attack	(sshd) Failed SSH login from 49.235.94.172 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 12 10:08:21 rainbow sshd[7329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.94.172 user=root Apr 12 10:08:23 rainbow sshd[7329]: Failed password for root from 49.235.94.172 port 39172 ssh2 Apr 12 10:20:41 rainbow sshd[8172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.94.172 user=root Apr 12 10:20:44 rainbow sshd[8172]: Failed password for root from 49.235.94.172 port 44468 ssh2 Apr 12 10:24:49 rainbow sshd[8401]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.94.172 user=root	2020-04-12 17:56:01
109.172.11.124	attack	2020-04-12T07:10:21.437176vps773228.ovh.net sshd[12333]: Failed password for invalid user zabbix from 109.172.11.124 port 36868 ssh2 2020-04-12T07:20:08.281256vps773228.ovh.net sshd[15914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.172.11.124 user=root 2020-04-12T07:20:10.466537vps773228.ovh.net sshd[15914]: Failed password for root from 109.172.11.124 port 47044 ssh2 2020-04-12T07:29:52.038098vps773228.ovh.net sshd[19459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.172.11.124 user=root 2020-04-12T07:29:54.394271vps773228.ovh.net sshd[19459]: Failed password for root from 109.172.11.124 port 57220 ssh2 ...	2020-04-12 17:45:34
185.153.196.80	attack	04/12/2020-05:15:21.529121 185.153.196.80 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-04-12 17:50:20
162.209.124.74	attack	Unauthorized connection attempt detected from IP address 162.209.124.74 to port 5900	2020-04-12 17:39:16
191.13.81.146	attack	Automatic report - XMLRPC Attack	2020-04-12 17:52:05
159.89.167.59	attack	Apr 12 12:06:25 plex sshd[13179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.167.59 user=root Apr 12 12:06:27 plex sshd[13179]: Failed password for root from 159.89.167.59 port 54198 ssh2	2020-04-12 18:08:35
173.252.87.32	attackbots	[Sun Apr 12 10:50:32.499792 2020] [:error] [pid 3167:tid 140295004800768] [client 173.252.87.32:35446] [client 173.252.87.32] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/favicon-96-96.png"] [unique_id "XpKQCMjT@mkMYHPYnhPyWwAAAAE"] ...	2020-04-12 17:57:44
128.199.168.246	attack	Apr 12 11:16:24 ift sshd\[10030\]: Invalid user anali from 128.199.168.246Apr 12 11:16:26 ift sshd\[10030\]: Failed password for invalid user anali from 128.199.168.246 port 36571 ssh2Apr 12 11:21:24 ift sshd\[10673\]: Failed password for root from 128.199.168.246 port 35570 ssh2Apr 12 11:26:17 ift sshd\[11605\]: Invalid user alexandria from 128.199.168.246Apr 12 11:26:19 ift sshd\[11605\]: Failed password for invalid user alexandria from 128.199.168.246 port 34565 ssh2 ...	2020-04-12 17:33:28
173.252.87.45	attackbots	[Sun Apr 12 10:50:14.537271 2020] [:error] [pid 3610:tid 140294988015360] [client 173.252.87.45:34642] [client 173.252.87.45] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/TableFilter/system-v98.css"] [unique_id "XpKP9seJ7QLCrtS-d9zLuQAAAAE"] ...	2020-04-12 18:08:22

最近上报的IP列表

44.179.181.40	42.48.143.190	213.137.191.162	45.230.1.42
196.103.188.137	211.91.180.242	125.85.143.62	64.27.142.40
192.69.253.84	126.126.239.48	188.209.64.8	223.230.153.193
103.25.134.230	108.3.231.90	47.51.119.44	183.71.238.77
62.48.74.160	91.229.75.9	211.56.97.169	93.231.50.137