121.57.225.150

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
121.57.225.64	attack	Unauthorized connection attempt detected from IP address 121.57.225.64 to port 81 [T]	2020-01-10 08:21:22
121.57.225.159	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5432d1a50b89e801 \| WAF_Rule_ID: 1112825 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Mobile Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 06:46:14
121.57.225.244	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 5435d3402b9e994d \| WAF_Rule_ID: 1025440 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (iPad; CPU OS 9_1 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Version/9.0 Mobile/13B143 Safari/601.1 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 06:23:08
121.57.225.78	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 543716687e3299a1 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: ip.skk.moe \| User-Agent: Mozilla/5.064213590 Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 03:31:07
121.57.225.9	attack	The IP has triggered Cloudflare WAF. CF-Ray: 54359c4c0f4ae7e9 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.067805899 Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 01:52:56
121.57.225.137	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5410a72c4d02d386 \| WAF_Rule_ID: 1025440 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (iPad; CPU OS 9_1 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Version/9.0 Mobile/13B143 Safari/601.1 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 05:40:46
121.57.225.21	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5413db00bb939911 \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/4.049897920 Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729) \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 03:52:59
121.57.225.54	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 54105a57ba40eb75 \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/4.049897920 Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729) \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 03:52:41
121.57.225.49	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 540f69074aa277be \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.096783921 Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 01:06:57
121.57.225.225	attack	The%20IP%20has%20triggered%20Cloudflare%20WAF.%20Report%20generated%20by%20Cloudflare-WAF-to-AbuseIPDB%20(https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB)	2019-11-19 04:36:01

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.57.225.150
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30819
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;121.57.225.150.			IN	A

;; AUTHORITY SECTION:
.			411	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 14:14:15 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 150.225.57.121.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 150.225.57.121.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.175.163	attackspambots	2020-03-04T08:40:55.040560xentho-1 sshd[254277]: Failed password for root from 222.186.175.163 port 33970 ssh2 2020-03-04T08:40:48.810768xentho-1 sshd[254277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.163 user=root 2020-03-04T08:40:50.904911xentho-1 sshd[254277]: Failed password for root from 222.186.175.163 port 33970 ssh2 2020-03-04T08:40:55.040560xentho-1 sshd[254277]: Failed password for root from 222.186.175.163 port 33970 ssh2 2020-03-04T08:41:00.032424xentho-1 sshd[254277]: Failed password for root from 222.186.175.163 port 33970 ssh2 2020-03-04T08:40:48.810768xentho-1 sshd[254277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.163 user=root 2020-03-04T08:40:50.904911xentho-1 sshd[254277]: Failed password for root from 222.186.175.163 port 33970 ssh2 2020-03-04T08:40:55.040560xentho-1 sshd[254277]: Failed password for root from 222.186.175.163 port 33970 ssh2 2020-0 ...	2020-03-04 21:45:08
23.81.231.183	attackbots	[Wed Mar 04 11:50:31.267471 2020] [:error] [pid 29022:tid 140579547625216] [client 23.81.231.183:40356] [client 23.81.231.183] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_http_versions}" against "REQUEST_PROTOCOL" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "972"] [id "920430"] [msg "HTTP protocol version is not allowed by policy"] [data "HTTP/1.0"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/POLICY/PROTOCOL_NOT_ALLOWED"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.10"] [hostname "staklim-malang.info"] [uri "/"] [unique_id "Xl8zl6Bo3EW5af1RNirqYAAAAKk"] ...	2020-03-04 21:27:24
185.143.223.161	attackbotsspam	Mar 4 13:46:27 web01.agentur-b-2.de postfix/smtpd[187531]: NOQUEUE: reject: RCPT from unknown[185.143.223.161]: 554 5.7.1 Service unavailable; Client host [185.143.223.161] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBL420772 / https://www.spamhaus.org/sbl/query/SBL442610 / https://www.spamhaus.org/sbl/query/SBLCSS; from=<8tfer3l33geay9w@prihodko.com> to= proto=ESMTP helo=<[185.143.223.170]> Mar 4 13:46:27 web01.agentur-b-2.de postfix/smtpd[187531]: NOQUEUE: reject: RCPT from unknown[185.143.223.161]: 554 5.7.1 Service unavailable; Client host [185.143.223.161] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBL420772 / https://www.spamhaus.org/sbl/query/SBL442610 / https://www.spamhaus.org/sbl/query/SBLCSS; from=<8tfer3l33geay9w@prihodko.com> to= proto=ESMTP helo=<[185.143.223.170]> Mar 4 13:46:27 web01.agentur-b-2.de postfix/smtpd[187531]: NOQUEUE: reject: RCPT from unknown[185.143.223.161]: 554 5.7.1 Service unavailable; Clie	2020-03-04 21:05:00
113.162.7.156	attackbotsspam	Email rejected due to spam filtering	2020-03-04 21:07:01
68.183.90.78	attackbotsspam	Brute-force attempt banned	2020-03-04 21:19:14
185.86.13.213	attack	CMS (WordPress or Joomla) login attempt.	2020-03-04 21:25:04
117.50.63.247	attackbotsspam	2020-03-04T11:12:18.966451vps751288.ovh.net sshd\[20038\]: Invalid user dev from 117.50.63.247 port 34172 2020-03-04T11:12:18.976408vps751288.ovh.net sshd\[20038\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.63.247 2020-03-04T11:12:21.331649vps751288.ovh.net sshd\[20038\]: Failed password for invalid user dev from 117.50.63.247 port 34172 ssh2 2020-03-04T11:21:15.761950vps751288.ovh.net sshd\[20095\]: Invalid user odoo from 117.50.63.247 port 32908 2020-03-04T11:21:15.770012vps751288.ovh.net sshd\[20095\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.63.247	2020-03-04 21:06:42
129.204.219.180	attack	2020-03-04T13:15:27.073392vps773228.ovh.net sshd[28118]: Invalid user mohan from 129.204.219.180 port 37444 2020-03-04T13:15:27.081884vps773228.ovh.net sshd[28118]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.219.180 2020-03-04T13:15:27.073392vps773228.ovh.net sshd[28118]: Invalid user mohan from 129.204.219.180 port 37444 2020-03-04T13:15:29.486238vps773228.ovh.net sshd[28118]: Failed password for invalid user mohan from 129.204.219.180 port 37444 ssh2 2020-03-04T13:29:30.870240vps773228.ovh.net sshd[28415]: Invalid user mongouser from 129.204.219.180 port 46628 2020-03-04T13:29:30.886628vps773228.ovh.net sshd[28415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.219.180 2020-03-04T13:29:30.870240vps773228.ovh.net sshd[28415]: Invalid user mongouser from 129.204.219.180 port 46628 2020-03-04T13:29:32.684295vps773228.ovh.net sshd[28415]: Failed password for invalid user mongouser from ...	2020-03-04 21:22:18
92.63.194.22	attackbotsspam	Mar 4 14:23:36 srv206 sshd[27760]: Invalid user admin from 92.63.194.22 ...	2020-03-04 21:24:17
159.192.184.244	attack	1583297433 - 03/04/2020 05:50:33 Host: 159.192.184.244/159.192.184.244 Port: 445 TCP Blocked	2020-03-04 21:23:57
181.188.191.226	attackbots	Honeypot attack, port: 445, PTR: LPZ-181-188-191-00226.tigo.bo.	2020-03-04 21:45:36
221.228.109.146	attackspam	$f2bV_matches	2020-03-04 21:42:49
45.146.203.182	attackspambots	Mar 4 05:40:53 web01.agentur-b-2.de postfix/smtpd[65984]: NOQUEUE: reject: RCPT from unknown[45.146.203.182]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Mar 4 05:40:53 web01.agentur-b-2.de postfix/smtpd[72795]: NOQUEUE: reject: RCPT from unknown[45.146.203.182]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Mar 4 05:40:53 web01.agentur-b-2.de postfix/smtpd[72796]: NOQUEUE: reject: RCPT from unknown[45.146.203.182]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Mar 4 05:40:53 web01.agentur-b-2.de postfix/smtpd[72797]: NOQUEUE: reject: RCPT from unknown[45.146.203.182]: 450 4.7.1 : Helo command r	2020-03-04 21:07:23
91.194.23.50	attackbotsspam	RDP Brute-Force (Grieskirchen RZ1)	2020-03-04 21:26:33
192.241.235.74	attackbots	firewall-block, port(s): 8080/tcp	2020-03-04 21:35:37

最近上报的IP列表

121.57.227.45	121.56.62.81	121.57.225.94	121.57.225.4
121.57.227.93	121.57.229.186	121.57.230.7	121.57.229.228
121.57.231.17	121.57.231.89	121.60.123.36	121.6.161.66
121.61.66.20	121.61.109.224	121.62.17.82	121.61.78.185
121.60.91.111	121.65.139.54	121.63.74.235	121.67.226.254

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表