1.52.105.21 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): FPT Broadband Service

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt from IP address 1.52.105.21 on Port 445(SMB)	2020-06-20 19:16:59

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.52.105.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17450
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.52.105.21.			IN	A

;; AUTHORITY SECTION:
.			437	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061901 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jun 20 19:16:53 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 21.105.52.1.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 21.105.52.1.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
218.195.117.131	attack	20/4/23@04:33:24: FAIL: Alarm-Intrusion address from=218.195.117.131 ...	2020-04-23 21:57:53
208.187.166.178	attackbots	Apr 23 10:35:55 mail.srvfarm.net postfix/smtpd[3840616]: NOQUEUE: reject: RCPT from unknown[208.187.166.178]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Apr 23 10:35:55 mail.srvfarm.net postfix/smtpd[3844490]: NOQUEUE: reject: RCPT from unknown[208.187.166.178]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Apr 23 10:38:34 mail.srvfarm.net postfix/smtpd[3837599]: NOQUEUE: reject: RCPT from unknown[208.187.166.178]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Apr 23 10:38:39 mail.srvfarm.net postfix/smtpd[3845049]: NOQUEUE: rejec	2020-04-23 21:52:22
178.62.108.111	attackbotsspam	Fail2Ban Ban Triggered	2020-04-23 22:06:26
118.25.79.56	attackspambots	2020-04-23T09:11:07.9802991495-001 sshd[39847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.79.56 user=root 2020-04-23T09:11:10.0008311495-001 sshd[39847]: Failed password for root from 118.25.79.56 port 56140 ssh2 2020-04-23T09:15:25.2886531495-001 sshd[40124]: Invalid user admin from 118.25.79.56 port 47858 2020-04-23T09:15:25.2954511495-001 sshd[40124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.79.56 2020-04-23T09:15:25.2886531495-001 sshd[40124]: Invalid user admin from 118.25.79.56 port 47858 2020-04-23T09:15:27.7326491495-001 sshd[40124]: Failed password for invalid user admin from 118.25.79.56 port 47858 ssh2 ...	2020-04-23 22:22:46
134.122.20.113	attackbots	Apr 23 12:45:38 scw-6657dc sshd[23327]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.20.113 Apr 23 12:45:38 scw-6657dc sshd[23327]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.20.113 Apr 23 12:45:39 scw-6657dc sshd[23327]: Failed password for invalid user ru from 134.122.20.113 port 37052 ssh2 ...	2020-04-23 22:28:42
83.136.238.46	attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-04-23 22:26:00
185.50.149.6	attackspambots	Apr 23 04:13:10 postfix/smtps/smtpd[658]: warning: unknown[185.50.149.6]: SASL LOGIN authentication failed: authentication failure	2020-04-23 21:55:22
185.234.219.82	attackspambots	Apr 23 12:35:36 h2829583 postfix/smtpd[18359]: lost connection after EHLO from unknown[185.234.219.82] Apr 23 12:48:24 h2829583 postfix/smtpd[18584]: lost connection after CONNECT from unknown[185.234.219.82]	2020-04-23 21:59:02
118.42.232.140	attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-04-23 22:27:25
49.234.30.113	attackspambots	Apr 23 15:12:21 mail sshd\[18345\]: Invalid user xt from 49.234.30.113 Apr 23 15:12:21 mail sshd\[18345\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.30.113 Apr 23 15:12:23 mail sshd\[18345\]: Failed password for invalid user xt from 49.234.30.113 port 41166 ssh2 ...	2020-04-23 22:09:53
148.101.84.42	attackspambots	Apr 23 15:01:57 sticky sshd\[10686\]: Invalid user pi from 148.101.84.42 port 13458 Apr 23 15:01:57 sticky sshd\[10685\]: Invalid user pi from 148.101.84.42 port 42418 Apr 23 15:01:58 sticky sshd\[10686\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.101.84.42 Apr 23 15:01:58 sticky sshd\[10685\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.101.84.42 Apr 23 15:02:00 sticky sshd\[10686\]: Failed password for invalid user pi from 148.101.84.42 port 13458 ssh2 Apr 23 15:02:00 sticky sshd\[10685\]: Failed password for invalid user pi from 148.101.84.42 port 42418 ssh2 ...	2020-04-23 22:03:42
137.116.126.217	attackspambots	Scanning for exploits - //wp-includes/wlwmanifest.xml	2020-04-23 22:20:39
171.235.68.47	attack	Unauthorized connection attempt from IP address 171.235.68.47 on Port 445(SMB)	2020-04-23 22:26:53
104.206.128.46	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-04-23 22:11:11
185.50.149.15	attack	Apr 23 15:41:27 mailserver postfix/smtps/smtpd[73287]: disconnect from unknown[185.50.149.15] Apr 23 15:41:27 mailserver postfix/smtps/smtpd[73287]: connect from unknown[185.50.149.15] Apr 23 15:41:34 mailserver postfix/smtps/smtpd[73287]: lost connection after AUTH from unknown[185.50.149.15] Apr 23 15:41:34 mailserver postfix/smtps/smtpd[73287]: disconnect from unknown[185.50.149.15] Apr 23 15:41:35 mailserver postfix/smtps/smtpd[73287]: connect from unknown[185.50.149.15] Apr 23 15:41:42 mailserver postfix/smtps/smtpd[73287]: lost connection after AUTH from unknown[185.50.149.15] Apr 23 15:41:42 mailserver postfix/smtps/smtpd[73287]: disconnect from unknown[185.50.149.15] Apr 23 15:41:42 mailserver postfix/smtps/smtpd[73287]: connect from unknown[185.50.149.15] Apr 23 15:41:46 mailserver dovecot: auth-worker(73264): sql([hidden],185.50.149.15): unknown user Apr 23 15:41:48 mailserver postfix/smtps/smtpd[73287]: warning: unknown[185.50.149.15]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-04-23 21:54:24

最近上报的IP列表

104.248.138.221	218.65.18.182	184.82.97.200	129.164.231.44
14.244.173.53	14.170.108.218	85.93.43.143	36.214.223.15
41.111.130.125	202.124.178.122	188.191.239.35	65.200.160.130
114.33.51.36	113.188.250.209	176.217.227.42	103.77.124.114
14.231.40.63	85.113.18.130	103.124.92.15	66.96.227.139