54.0.204.105 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.0.204.105
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52930
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;54.0.204.105.			IN	A

;; AUTHORITY SECTION:
.			331	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022600 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 26 14:59:29 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 105.204.0.54.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 105.204.0.54.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
87.250.224.91	attackbotsspam	[Fri Mar 06 00:05:45.257971 2020] [:error] [pid 27723:tid 140077053236992] [client 87.250.224.91:41079] [client 87.250.224.91] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XmExaXmbPk9OvAC@hgJzlQAAAfE"] ...	2020-03-06 01:47:04
63.81.87.156	attackbots	Mar 5 14:24:56 mail.srvfarm.net postfix/smtpd[1441770]: NOQUEUE: reject: RCPT from unknown[63.81.87.156]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 5 14:25:37 mail.srvfarm.net postfix/smtpd[1443770]: NOQUEUE: reject: RCPT from unknown[63.81.87.156]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 5 14:26:21 mail.srvfarm.net postfix/smtpd[1443770]: NOQUEUE: reject: RCPT from unknown[63.81.87.156]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 5 14:31:56 mail.srvfarm.net postfix/smtpd[1445151]: NOQUEUE: reject: RCPT from unknown[63.81.87.156]: 450 4.1.8	2020-03-06 01:22:27
165.22.222.215	attack	Feb 25 02:59:17 odroid64 sshd\[12485\]: Invalid user apache from 165.22.222.215 Feb 25 02:59:17 odroid64 sshd\[12485\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.222.215 ...	2020-03-06 01:37:40
187.63.73.56	attackspam	SSH Brute Force	2020-03-06 01:14:29
83.221.214.166	attackspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-03-06 01:40:09
221.122.73.130	attackbots	Mar 5 07:15:21 web1 sshd\[20001\]: Invalid user wftuser from 221.122.73.130 Mar 5 07:15:21 web1 sshd\[20001\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.122.73.130 Mar 5 07:15:23 web1 sshd\[20001\]: Failed password for invalid user wftuser from 221.122.73.130 port 39799 ssh2 Mar 5 07:20:29 web1 sshd\[20495\]: Invalid user yangzuokun from 221.122.73.130 Mar 5 07:20:29 web1 sshd\[20495\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.122.73.130	2020-03-06 01:35:42
177.135.248.26	attackspambots	Honeypot attack, port: 445, PTR: institutosocrates.static.gvt.net.br.	2020-03-06 01:29:07
51.75.124.215	attackbots	Nov 15 01:41:00 odroid64 sshd\[16144\]: User root from 51.75.124.215 not allowed because not listed in AllowUsers Nov 15 01:41:00 odroid64 sshd\[16144\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.124.215 user=root ...	2020-03-06 01:15:07
165.22.222.67	attack	Feb 25 02:36:25 odroid64 sshd\[11456\]: Invalid user krishna from 165.22.222.67 Feb 25 02:36:25 odroid64 sshd\[11456\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.222.67 ...	2020-03-06 01:34:33
91.148.188.219	attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-03-06 01:46:48
103.140.127.192	attackbots	Mar 5 17:44:28 ArkNodeAT sshd\[16070\]: Invalid user fangdm from 103.140.127.192 Mar 5 17:44:28 ArkNodeAT sshd\[16070\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.140.127.192 Mar 5 17:44:29 ArkNodeAT sshd\[16070\]: Failed password for invalid user fangdm from 103.140.127.192 port 34480 ssh2	2020-03-06 01:30:07
187.172.17.216	attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-03-06 01:19:27
64.32.11.37	attackspambots	81/tcp 808/tcp 1080/tcp... [2020-03-05]12pkt,12pt.(tcp)	2020-03-06 01:34:53
94.137.42.67	attack	20/3/5@08:33:35: FAIL: Alarm-Network address from=94.137.42.67 ...	2020-03-06 01:42:27
49.233.189.218	attack	Feb 27 20:28:25 odroid64 sshd\[14191\]: User root from 49.233.189.218 not allowed because not listed in AllowUsers Feb 27 20:28:25 odroid64 sshd\[14191\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.189.218 user=root ...	2020-03-06 01:26:10

最近上报的IP列表

5.212.66.192	255.155.166.34	70.49.84.164	13.51.37.173
64.180.254.188	248.113.109.146	252.5.66.24	112.129.26.126
181.181.124.228	245.63.126.225	14.240.11.231	221.7.52.219
34.80.198.22	37.191.92.18	37.53.83.40	203.120.229.132
132.125.212.85	81.111.172.244	222.120.19.75	95.106.90.177