121.11.218.6 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.11.218.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47532
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.11.218.6.			IN	A

;; AUTHORITY SECTION:
.			524	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102901 1800 900 604800 86400

;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 30 13:15:18 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 6.218.11.121.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 6.218.11.121.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
40.68.80.18	attackspam	3389BruteforceIDS	2019-07-09 11:31:22
105.235.116.254	attack	Jul 9 06:01:39 amit sshd\[20659\]: Invalid user aksel from 105.235.116.254 Jul 9 06:01:39 amit sshd\[20659\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=105.235.116.254 Jul 9 06:01:41 amit sshd\[20659\]: Failed password for invalid user aksel from 105.235.116.254 port 39836 ssh2 ...	2019-07-09 12:01:57
180.250.194.171	attackbots	TCP port 445 (SMB) attempt blocked by firewall. [2019-07-09 05:33:38]	2019-07-09 11:44:08
210.4.106.234	attackspam	Unauthorized connection attempt from IP address 210.4.106.234 on Port 445(SMB)	2019-07-09 12:21:45
184.105.247.247	attackbotsspam	Port scan: Attack repeated for 24 hours	2019-07-09 11:31:47
116.109.237.171	attack	Unauthorized connection attempt from IP address 116.109.237.171 on Port 445(SMB)	2019-07-09 12:28:37
177.52.26.194	attackbots	Jul 8 13:11:33 our-server-hostname postfix/smtpd[17911]: connect from unknown[177.52.26.194] Jul x@x Jul 8 13:11:36 our-server-hostname postfix/smtpd[17911]: lost connection after RCPT from unknown[177.52.26.194] Jul 8 13:11:36 our-server-hostname postfix/smtpd[17911]: disconnect from unknown[177.52.26.194] Jul 8 22:20:36 our-server-hostname postfix/smtpd[25147]: connect from unknown[177.52.26.194] Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul 8 22:20:52 our-server-hostname postfix/smtpd[25147]: lost connection after RCPT from unknown[177.52.26.194] Jul 8 22:20:52 our-server-hostname postfix/smtpd[25147]: disconnect from unknown[177.52.26.194] Jul 8 23:13:51 our-server-hostname postfix/smtpd[14943]: connect from unknown[177.52.26.194] Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Ju........ -------------------------------	2019-07-09 11:33:48
200.117.41.21	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-08 12:51:08,878 INFO [shellcode_manager] (200.117.41.21) no match, writing hexdump (923e2dbac8b4614f51087f185f8ced35 :2257083) - MS17010 (EternalBlue)	2019-07-09 12:14:03
45.82.153.5	attack	Jul 9 01:52:29 box kernel: [744573.506894] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=45.82.153.5 DST=[munged] LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=60881 PROTO=TCP SPT=47835 DPT=4752 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 9 02:10:19 box kernel: [745643.543673] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=45.82.153.5 DST=[munged] LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=3511 PROTO=TCP SPT=47835 DPT=4755 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 9 04:10:51 box kernel: [752875.178727] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=45.82.153.5 DST=[munged] LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=37075 PROTO=TCP SPT=47835 DPT=4754 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 9 05:17:37 box kernel: [756881.128585] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=45.82.153.5 DST=[munged] LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=57746 PROTO=TCP SPT=47835 DPT=4757 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 9 05:33:21 box kernel: [757825.398355] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=45.82.153.5 DST=[munged] LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=29065 PROTO=	2019-07-09 12:17:25
38.132.108.175	attack	Postfix DNSBL listed. Trying to send SPAM.	2019-07-09 12:02:36
110.45.145.178	attackbotsspam	Jul 9 05:34:09 rpi sshd[26139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.45.145.178 Jul 9 05:34:11 rpi sshd[26139]: Failed password for invalid user nologin from 110.45.145.178 port 58048 ssh2	2019-07-09 11:52:48
173.246.50.123	attackspambots	19/7/8@23:33:19: FAIL: Alarm-Intrusion address from=173.246.50.123 ...	2019-07-09 12:17:58
190.233.70.229	attackspam	Autoban 190.233.70.229 AUTH/CONNECT	2019-07-09 11:58:00
164.132.230.244	attackspam	Jul 9 00:52:53 host sshd\[46124\]: Invalid user ts from 164.132.230.244 port 49813 Jul 9 00:52:55 host sshd\[46124\]: Failed password for invalid user ts from 164.132.230.244 port 49813 ssh2 ...	2019-07-09 11:38:13
93.152.159.11	attackspam	Jul 8 18:08:47 Aberdeen-m4-Access auth.info sshd[18294]: Invalid user password from 93.152.159.11 port 38398 Jul 8 18:08:47 Aberdeen-m4-Access auth.info sshd[18294]: Failed password for invalid user password from 93.152.159.11 port 38398 ssh2 Jul 8 18:08:47 Aberdeen-m4-Access auth.info sshd[18294]: Received disconnect from 93.152.159.11 port 38398:11: Bye Bye [preauth] Jul 8 18:08:47 Aberdeen-m4-Access auth.info sshd[18294]: Disconnected from 93.152.159.11 port 38398 [preauth] Jul 8 18:08:47 Aberdeen-m4-Access auth.notice sshguard[2839]: Attack from "93.152.159.11" on service 100 whostnameh danger 10. Jul 8 18:08:47 Aberdeen-m4-Access auth.notice sshguard[2839]: Attack from "93.152.159.11" on service 100 whostnameh danger 10. Jul 8 18:08:47 Aberdeen-m4-Access auth.notice sshguard[2839]: Attack from "93.152.159.11" on service 100 whostnameh danger 10. Jul 8 18:08:47 Aberdeen-m4-Access auth.warn sshguard[2839]: Blocking "93.152.159.11/32" for 240 secs (3 attacks in........ ------------------------------	2019-07-09 12:14:58

最近上报的IP列表

29.208.176.116	240.10.130.178	85.176.102.211	198.98.60.246
220.198.168.55	67.225.127.142	192.241.147.250	215.89.69.192
63.14.70.66	56.232.131.18	15.153.235.246	118.39.239.91
48.122.121.236	247.215.34.188	180.156.38.197	239.138.16.217
15.200.243.153	101.231.190.213	216.254.154.121	92.162.96.242