159.206.12.11 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Canada

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.206.12.11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17733
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;159.206.12.11.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021401 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 15 07:27:12 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

Host 11.12.206.159.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 11.12.206.159.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
111.161.66.250	attack	Invalid user wangli from 111.161.66.250 port 37806	2020-07-19 12:16:04
49.233.173.136	attack	Repeated brute force against a port	2020-07-19 07:53:28
106.54.237.74	attack	Jul 19 03:56:10 rush sshd[24827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.237.74 Jul 19 03:56:12 rush sshd[24827]: Failed password for invalid user iraf from 106.54.237.74 port 60868 ssh2 Jul 19 03:59:29 rush sshd[24890]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.237.74 ...	2020-07-19 12:04:56
115.42.151.75	attackbots	(sshd) Failed SSH login from 115.42.151.75 (SG/Singapore/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 18 22:15:53 amsweb01 sshd[27188]: Invalid user anonymous from 115.42.151.75 port 23610 Jul 18 22:15:55 amsweb01 sshd[27188]: Failed password for invalid user anonymous from 115.42.151.75 port 23610 ssh2 Jul 18 22:27:25 amsweb01 sshd[29565]: Invalid user kokila from 115.42.151.75 port 57392 Jul 18 22:27:27 amsweb01 sshd[29565]: Failed password for invalid user kokila from 115.42.151.75 port 57392 ssh2 Jul 18 22:31:07 amsweb01 sshd[30368]: Invalid user gordon from 115.42.151.75 port 47070	2020-07-19 08:02:51
80.188.75.253	attack	Jul 19 06:55:05 lukav-desktop sshd\[14999\]: Invalid user hadoop from 80.188.75.253 Jul 19 06:55:05 lukav-desktop sshd\[14999\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.188.75.253 Jul 19 06:55:08 lukav-desktop sshd\[14999\]: Failed password for invalid user hadoop from 80.188.75.253 port 44054 ssh2 Jul 19 06:59:15 lukav-desktop sshd\[15038\]: Invalid user blue from 80.188.75.253 Jul 19 06:59:15 lukav-desktop sshd\[15038\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.188.75.253	2020-07-19 12:14:02
164.132.107.245	attackspam	Invalid user nmap from 164.132.107.245 port 38008	2020-07-19 07:47:51
116.31.140.37	attackbots	[Sun Jul 19 02:48:04.926186 2020] [:error] [pid 22715:tid 140632588613376] [client 116.31.140.37:58965] [client 116.31.140.37] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_http_versions}" against "REQUEST_PROTOCOL" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "972"] [id "920430"] [msg "HTTP protocol version is not allowed by policy"] [data "HTTP/1.0"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/POLICY/PROTOCOL_NOT_ALLOWED"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/"] [unique_id "XxNR9Fcr71isoJ1NnSUOZgAAAcI"] ...	2020-07-19 07:52:39
107.150.124.171	attackspam	2020-07-19T03:57:33.098742shield sshd\[22765\]: Invalid user jdavila from 107.150.124.171 port 54612 2020-07-19T03:57:33.106918shield sshd\[22765\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.150.124.171 2020-07-19T03:57:35.479774shield sshd\[22765\]: Failed password for invalid user jdavila from 107.150.124.171 port 54612 ssh2 2020-07-19T03:59:28.138103shield sshd\[23218\]: Invalid user zyzhang from 107.150.124.171 port 53764 2020-07-19T03:59:28.146487shield sshd\[23218\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.150.124.171	2020-07-19 12:05:52
218.92.0.192	attack	07/19/2020-00:07:20.301586 218.92.0.192 Protocol: 6 ET SCAN Potential SSH Scan	2020-07-19 12:07:51
42.200.78.78	attack	Jul 19 05:59:16 rancher-0 sshd[451372]: Invalid user fff from 42.200.78.78 port 55742 ...	2020-07-19 12:14:30
45.72.61.212	attack	(From maybell.galarza@gmail.com) Hi there, Read this if you haven’t made your first $100 from gachirocare.com online yet... I've heard it a million times... I'm going to quit my job, I'm going to start my own business, I'm going to live where I want, and I'm going to live the dream... Enough talk. Everyone's got a vision. Fine. What exactly have you done lately to make it come true? Not much, you say? If everyone suddenly got injected with the truth serum, you'd hear people talk a different game: I've got huge dreams. But I'm a failure, because I did nothing to make these dreams come true. I'm too afraid to start. I procrastinate about taking action. I will probably never do anything or amount to anything in my life, because I choose to stay in my comfort zone. Incidentally, the first step to changing your life is to be honest about how you feel. Are you afraid? Fine. Are you anxious? Fine. Do you procrastinate? Great. This means you have to start with a	2020-07-19 08:05:57
103.9.0.209	attackspambots	Invalid user deploy from 103.9.0.209 port 51714	2020-07-19 12:15:37
49.88.112.60	attackspam	Jul 19 00:25:30 server sshd[15004]: Failed password for root from 49.88.112.60 port 63760 ssh2 Jul 19 00:48:15 server sshd[35241]: Failed password for root from 49.88.112.60 port 26157 ssh2 Jul 19 00:48:17 server sshd[35241]: Failed password for root from 49.88.112.60 port 26157 ssh2	2020-07-19 07:49:30
121.226.43.188	attack	Unauthorised access (Jul 18) SRC=121.226.43.188 LEN=40 TTL=50 ID=65231 TCP DPT=23 WINDOW=50294 SYN	2020-07-19 07:57:36
141.98.9.160	attackbots	"fail2ban match"	2020-07-19 12:03:46

最近上报的IP列表

245.124.10.43	167.46.164.39	221.37.29.92	51.4.150.6
199.112.163.123	242.253.157.130	224.43.135.115	69.21.234.79
218.110.221.79	25.199.13.225	117.162.173.215	65.180.92.80
98.211.205.209	138.37.101.144	65.128.8.221	201.24.98.108
78.161.115.228	193.108.55.94	59.22.18.152	29.43.246.74