124.92.238.207

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.92.238.207
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52749
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;124.92.238.207.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021800 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 18 20:09:26 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

Host 207.238.92.124.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 207.238.92.124.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
158.69.0.38	attackspam	Sep 12 03:49:39 l03 sshd[20939]: Invalid user wordpress from 158.69.0.38 port 46432 ...	2020-09-12 12:04:39
120.133.136.75	attack	Sep 12 05:35:16 hidden sshd[18703]: Failed password for hidden from 120.133.136.75 port 52369 ssh2 Sep 12 05:39:22 hidden sshd[19309]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.133.136.75 user=root Sep 12 05:39:24 hidden sshd[19309]: Failed password for hidden from 120.133.136.75 port 45675 ssh2	2020-09-12 12:14:51
113.72.122.232	attack	[Fri Sep 11 23:59:39.517777 2020] [:error] [pid 11178:tid 139761675114240] [client 113.72.122.232:53700] [client 113.72.122.232] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_http_versions}" against "REQUEST_PROTOCOL" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "972"] [id "920430"] [msg "HTTP protocol version is not allowed by policy"] [data "HTTP/1.0"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/POLICY/PROTOCOL_NOT_ALLOWED"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/"] [unique_id "X1us@0ECWTRI1HmEdolN4wAAAI8"] ...	2020-09-12 12:19:53
178.128.232.28	attack	$f2bV_matches	2020-09-12 12:13:12
106.13.110.74	attackspam	2020-09-12T03:48:28.295726randservbullet-proofcloud-66.localdomain sshd[14000]: Invalid user ambari from 106.13.110.74 port 33328 2020-09-12T03:48:28.300536randservbullet-proofcloud-66.localdomain sshd[14000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.110.74 2020-09-12T03:48:28.295726randservbullet-proofcloud-66.localdomain sshd[14000]: Invalid user ambari from 106.13.110.74 port 33328 2020-09-12T03:48:30.020778randservbullet-proofcloud-66.localdomain sshd[14000]: Failed password for invalid user ambari from 106.13.110.74 port 33328 ssh2 ...	2020-09-12 12:01:52
151.80.37.200	attack	Sep 11 19:07:12 email sshd\[20175\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.37.200 user=root Sep 11 19:07:14 email sshd\[20175\]: Failed password for root from 151.80.37.200 port 51540 ssh2 Sep 11 19:13:39 email sshd\[21234\]: Invalid user matias from 151.80.37.200 Sep 11 19:13:39 email sshd\[21234\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.37.200 Sep 11 19:13:40 email sshd\[21234\]: Failed password for invalid user matias from 151.80.37.200 port 35452 ssh2 ...	2020-09-12 07:37:12
140.143.57.195	attackbots	SSH Invalid Login	2020-09-12 12:17:42
45.248.71.169	attackbots	Sep 12 00:26:09 vps46666688 sshd[8876]: Failed password for root from 45.248.71.169 port 55168 ssh2 ...	2020-09-12 12:15:13
103.114.107.149	attackbots	SSH brute-force attempt	2020-09-12 12:22:09
45.55.65.92	attackspambots	30778/tcp 20032/tcp 21192/tcp... [2020-08-30/09-11]43pkt,15pt.(tcp)	2020-09-12 12:02:55
157.245.252.34	attack	2020-09-12T04:03:52.899329shield sshd\[2074\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.252.34 user=root 2020-09-12T04:03:54.469188shield sshd\[2074\]: Failed password for root from 157.245.252.34 port 58936 ssh2 2020-09-12T04:07:57.776421shield sshd\[2842\]: Invalid user smbtesting from 157.245.252.34 port 44444 2020-09-12T04:07:57.788218shield sshd\[2842\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.252.34 2020-09-12T04:07:59.326846shield sshd\[2842\]: Failed password for invalid user smbtesting from 157.245.252.34 port 44444 ssh2	2020-09-12 12:09:59
167.114.185.237	attackbotsspam	Time: Sat Sep 12 05:05:15 2020 +0200 IP: 167.114.185.237 (CA/Canada/237.ip-167-114-185.net) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 12 04:51:16 mail-01 sshd[19079]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.185.237 user=root Sep 12 04:51:18 mail-01 sshd[19079]: Failed password for root from 167.114.185.237 port 57844 ssh2 Sep 12 05:01:25 mail-01 sshd[24690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.185.237 user=root Sep 12 05:01:27 mail-01 sshd[24690]: Failed password for root from 167.114.185.237 port 51810 ssh2 Sep 12 05:05:10 mail-01 sshd[24985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.185.237 user=root	2020-09-12 12:04:11
89.248.168.157	attack	firewall-block, port(s): 65443/tcp	2020-09-12 12:05:11
202.83.44.255	attackspambots	Telnet Honeypot -> Telnet Bruteforce / Login	2020-09-12 12:21:19
104.223.197.227	attackbotsspam	Sep 11 23:39:01 sshgateway sshd\[2750\]: Invalid user yuly from 104.223.197.227 Sep 11 23:39:01 sshgateway sshd\[2750\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.223.197.227 Sep 11 23:39:03 sshgateway sshd\[2750\]: Failed password for invalid user yuly from 104.223.197.227 port 51856 ssh2	2020-09-12 07:45:35

最近上报的IP列表

154.39.165.24	201.91.196.75	88.142.224.174	93.200.81.84
186.23.125.8	46.218.122.6	237.237.80.140	156.183.30.171
234.215.35.68	58.50.144.241	155.163.161.221	238.1.37.69
21.50.87.143	238.63.179.234	242.254.222.115	221.250.8.122
235.67.147.65	142.76.224.189	164.110.104.64	121.243.248.135