城市(city): Frankfurt am Main
省份(region): Hessen
国家(country): Germany
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '103.252.88.0 - 103.252.91.255'
% Abuse contact for '103.252.88.0 - 103.252.91.255' is 'no-email@apnic.net'
inetnum: 103.252.88.0 - 103.252.91.255
netname: STUB-103-252-88SLASH22
descr: Transferred to the RIPE region on 2016-11-15T01:28:16Z.
country: ZZ
admin-c: STUB-AP
tech-c: STUB-AP
abuse-c: AS2444-AP
status: ALLOCATED PORTABLE
mnt-by: APNIC-STUB
mnt-irt: IRT-STUB-AP
last-modified: 2023-05-17T13:13:15Z
source: APNIC
irt: IRT-STUB-AP
address: N/A
e-mail: no-email@apnic.net
abuse-mailbox: no-email@apnic.net
admin-c: STUB-AP
tech-c: STUB-AP
remarks: IRT for stub records.
remarks: We do not operate the referring network and
remarks: are unable to investigate complaints of network abuse.
remarks: For information about IRT, see www.apnic.net/irt
auth: # Filtered
mnt-by: APNIC-HM
last-modified: 2025-11-18T00:33:17Z
source: APNIC
role: ABUSE STUBAP
country: ZZ
address: N/A
phone: +000000000
e-mail: no-email@apnic.net
admin-c: STUB-AP
tech-c: STUB-AP
nic-hdl: AS2444-AP
remarks: Generated from irt object IRT-STUB-AP
abuse-mailbox: no-email@apnic.net
mnt-by: APNIC-ABUSE
last-modified: 2025-11-25T00:01:50Z
source: APNIC
person: STUB PERSON
address: N/A
country: ZZ
phone: +00 0000 0000
e-mail: no-email@apnic.net
nic-hdl: STUB-AP
remarks: No contact information for stub records.
mnt-by: APNIC-HM
last-modified: 2019-09-23T04:53:33Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU5); <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.252.90.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64687
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;103.252.90.129. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026061400 1800 900 604800 86400
;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 15 01:00:08 CST 2026
;; MSG SIZE rcvd: 107129.90.252.103.in-addr.arpa domain name pointer provided-by-visuhost.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
129.90.252.103.in-addr.arpa name = provided-by-visuhost.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 218.92.0.198 | attackspam | Jul 3 07:10:55 animalibera sshd[15492]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.198 user=root Jul 3 07:10:56 animalibera sshd[15492]: Failed password for root from 218.92.0.198 port 46280 ssh2 ... |
2019-07-03 15:21:51 |
| 146.185.25.189 | attackspam | 55443/tcp 4567/tcp 16993/tcp... [2019-05-02/07-03]16pkt,8pt.(tcp) |
2019-07-03 15:32:12 |
| 218.92.0.148 | attackspambots | pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.148 user=root Failed password for root from 218.92.0.148 port 50974 ssh2 Failed password for root from 218.92.0.148 port 50974 ssh2 Failed password for root from 218.92.0.148 port 50974 ssh2 Failed password for root from 218.92.0.148 port 50974 ssh2 |
2019-07-03 15:52:52 |
| 185.101.33.133 | attack | 9010/tcp 4443/tcp 8443/tcp... [2019-05-02/07-03]25pkt,10pt.(tcp) |
2019-07-03 16:08:52 |
| 35.247.211.130 | attackspambots | blacklist username maria Invalid user maria from 35.247.211.130 port 32804 |
2019-07-03 15:50:41 |
| 36.229.42.246 | attackbots | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 01:51:48,593 INFO [shellcode_manager] (36.229.42.246) no match, writing hexdump (4531f73e9e061316e8d8d4c8dbcca38a :2346287) - MS17010 (EternalBlue) |
2019-07-03 16:07:28 |
| 106.12.78.161 | attackbots | Jul 2 11:53:04 scivo sshd[32581]: Invalid user yuan from 106.12.78.161 Jul 2 11:53:04 scivo sshd[32581]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.78.161 Jul 2 11:53:06 scivo sshd[32581]: Failed password for invalid user yuan from 106.12.78.161 port 52922 ssh2 Jul 2 11:53:06 scivo sshd[32581]: Received disconnect from 106.12.78.161: 11: Bye Bye [preauth] Jul 2 12:06:03 scivo sshd[878]: Invalid user smile from 106.12.78.161 Jul 2 12:06:03 scivo sshd[878]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.78.161 Jul 2 12:06:05 scivo sshd[878]: Failed password for invalid user smile from 106.12.78.161 port 59504 ssh2 Jul 2 12:06:05 scivo sshd[878]: Received disconnect from 106.12.78.161: 11: Bye Bye [preauth] Jul 2 12:07:10 scivo sshd[924]: Invalid user apt-mirror from 106.12.78.161 Jul 2 12:07:10 scivo sshd[924]: pam_unix(sshd:auth): authentication failure; lognam........ ------------------------------- |
2019-07-03 16:00:37 |
| 213.55.92.49 | attackspambots | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 01:51:58,887 INFO [shellcode_manager] (213.55.92.49) no match, writing hexdump (45d94ab1654ad143dc4727b787940ad6 :2062678) - MS17010 (EternalBlue) |
2019-07-03 15:49:34 |
| 113.160.163.10 | attackspambots | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-02 03:51:48,573 INFO [shellcode_manager] (113.160.163.10) no match, writing hexdump (579aecb7fc81ad742459e0b0462541bd :2099832) - MS17010 (EternalBlue) |
2019-07-03 15:31:27 |
| 124.158.7.146 | attackbots | Jun 30 07:37:00 own sshd[23252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.158.7.146 user=r.r Jun 30 07:37:01 own sshd[23252]: Failed password for r.r from 124.158.7.146 port 57938 ssh2 Jun 30 07:37:04 own sshd[23252]: Failed password for r.r from 124.158.7.146 port 57938 ssh2 Jun 30 07:37:06 own sshd[23252]: Failed password for r.r from 124.158.7.146 port 57938 ssh2 Jun 30 07:37:11 own sshd[23252]: message repeated 2 times: [ Failed password for r.r from 124.158.7.146 port 57938 ssh2] Jun 30 07:37:11 own sshd[23252]: Connection reset by 124.158.7.146 port 57938 [preauth] Jun 30 07:37:11 own sshd[23252]: PAM 4 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.158.7.146 user=r.r Jul 2 12:35:58 own sshd[18912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.158.7.146 user=r.r Jul 2 12:36:00 own sshd[18912]: Failed password for r.r from 124.158.7.1........ ------------------------------- |
2019-07-03 16:05:28 |
| 134.175.84.31 | attack | Jul 2 02:22:59 josie sshd[6774]: Invalid user admin from 134.175.84.31 Jul 2 02:22:59 josie sshd[6774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.84.31 Jul 2 02:23:01 josie sshd[6774]: Failed password for invalid user admin from 134.175.84.31 port 34128 ssh2 Jul 2 02:23:01 josie sshd[6780]: Received disconnect from 134.175.84.31: 11: Bye Bye Jul 2 02:26:20 josie sshd[9248]: Invalid user vncuser from 134.175.84.31 Jul 2 02:26:20 josie sshd[9248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.84.31 Jul 2 02:26:22 josie sshd[9248]: Failed password for invalid user vncuser from 134.175.84.31 port 34286 ssh2 Jul 2 02:26:23 josie sshd[9252]: Received disconnect from 134.175.84.31: 11: Bye Bye Jul 2 02:29:05 josie sshd[11133]: Invalid user docker from 134.175.84.31 Jul 2 02:29:05 josie sshd[11133]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=........ ------------------------------- |
2019-07-03 15:41:30 |
| 146.185.25.171 | attackbotsspam | 4434/tcp 993/tcp 55443/tcp... [2019-05-02/07-03]22pkt,8pt.(tcp),2pt.(udp) |
2019-07-03 16:06:01 |
| 130.211.246.128 | attackspambots | 'Fail2Ban' |
2019-07-03 15:24:56 |
| 78.111.97.6 | attackbotsspam | SMB Server BruteForce Attack |
2019-07-03 15:48:30 |
| 113.59.214.239 | attack | Attempt to run wp-login.php |
2019-07-03 15:53:46 |