121.248.56.238

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '121.248.0.0 - 121.251.255.255'

% Abuse contact for '121.248.0.0 - 121.251.255.255' is 'abuse@cernet.edu.cn'

inetnum:        121.248.0.0 - 121.251.255.255
netname:        NJR-CERNET
descr:          China Education and Research Network
descr:          Nanjing Regional Network
country:        CN
admin-c:        CER-AP
tech-c:         CER-AP
abuse-c:        AC1685-AP
status:         ALLOCATED PORTABLE
remarks:        origin AS4538
remarks:        confederation
remarks:        --------------------------------------------------------
remarks:        To report network abuse, please contact mnt-irt
remarks:        For troubleshooting, please contact tech-c and admin-c
remarks:        Report invalid contact via www.apnic.net/invalidcontact
remarks:        --------------------------------------------------------
mnt-by:         APNIC-HM
mnt-lower:      MAINT-CERNET-AP
mnt-routes:     MAINT-CERNET-AP
mnt-irt:        IRT-CERNET-AP
last-modified:  2020-09-03T09:15:58Z
source:         APNIC

irt:            IRT-CERNET-AP
address:        Network Center,
address:        FIT-3-220, Tsinghua Univ
address:        Beijing 100084, China
phone:          +86-10-62784301
fax-no:         +86-10-62785933
e-mail:         abuse@cernet.edu.cn
abuse-mailbox:  abuse@cernet.edu.cn
admin-c:        CER-AP
tech-c:         CER-AP
auth:           # Filtered
remarks:        timezone GMT+8
remarks:        abuse@cernet.edu.cn was validated on 2026-03-05
mnt-by:         MAINT-CERNET-AP
last-modified:  2026-03-05T06:39:56Z
source:         APNIC

role:           ABUSE CERNETAP
country:        ZZ
address:        Network Center,
address:        FIT-3-220, Tsinghua Univ
address:        Beijing 100084, China
phone:          +86-10-62784301
e-mail:         abuse@cernet.edu.cn
admin-c:        CER-AP
tech-c:         CER-AP
nic-hdl:        AC1685-AP
remarks:        Generated from irt object IRT-CERNET-AP
remarks:        abuse@cernet.edu.cn was validated on 2026-03-05
abuse-mailbox:  abuse@cernet.edu.cn
mnt-by:         APNIC-ABUSE
last-modified:  2026-03-05T06:40:20Z
source:         APNIC

role:           CERNET Helpdesk
address:        CERNET Center
address:        Beijing 100084, China
country:        CN
phone:          +86-10-6278-4049
fax-no:         +86-10-6278-5933
e-mail:         helpdesk@cernet.edu.cn
remarks:        abuse@cernet.edu.cn
admin-c:        XL1-CN
tech-c:         SZ2-AP
nic-hdl:        CER-AP
mnt-by:         MAINT-CERNET-AP
last-modified:  2020-09-03T09:14:12Z
source:         APNIC

% Information related to '121.248.0.0/15AS4538'

route:          121.248.0.0/15
descr:          CERNET
origin:         AS4538
mnt-by:         MAINT-CERNET-AP
last-modified:  2009-01-05T03:10:57Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5)

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.248.56.238
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20294
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;121.248.56.238.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026032900 1800 900 604800 86400

;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 29 15:24:03 CST 2026
;; MSG SIZE  rcvd: 107

HOST信息:

b'Host 238.56.248.121.in-addr.arpa not found: 2(SERVFAIL)
'

NSLOOKUP信息:

server can't find 121.248.56.238.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
152.136.90.196	attackbots	Invalid user es from 152.136.90.196 port 43250	2019-07-26 10:05:18
218.92.0.194	attackspam	2019-07-26T02:09:47.215169abusebot-7.cloudsearch.cf sshd\[31337\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.194 user=root	2019-07-26 10:28:51
183.87.157.202	attack	2019-07-26T02:22:17.943193abusebot-3.cloudsearch.cf sshd\[10594\]: Invalid user thomas from 183.87.157.202 port 35614	2019-07-26 10:23:57
46.166.139.1	attackspam	\[2019-07-25 21:50:19\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-25T21:50:19.310-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011441244739005",SessionID="0x7ff4d0043b88",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.139.1/57157",ACLName="no_extension_match" \[2019-07-25 21:50:19\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-25T21:50:19.878-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011441254929805",SessionID="0x7ff4d004fe18",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.139.1/55942",ACLName="no_extension_match" \[2019-07-25 21:50:27\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-25T21:50:27.642-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011441254929805",SessionID="0x7ff4d01617e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.139.1/65182",ACLName="no_exte	2019-07-26 10:09:42
92.119.160.125	attack	Port scan on 5 port(s): 1111 10002 10012 10034 10067	2019-07-26 09:47:02
91.134.143.2	attackbotsspam	Jul 26 03:07:09 mail sshd\[6893\]: Failed password for invalid user ernesto from 91.134.143.2 port 35974 ssh2 Jul 26 03:23:45 mail sshd\[7411\]: Invalid user jeevan from 91.134.143.2 port 42558 Jul 26 03:23:45 mail sshd\[7411\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.143.2 ...	2019-07-26 10:30:11
176.153.75.234	attackbotsspam	Automatic report - Port Scan Attack	2019-07-26 10:06:25
198.55.103.75	attack	Unauthorised access (Jul 26) SRC=198.55.103.75 LEN=40 TTL=107 ID=256 TCP DPT=3306 WINDOW=16384 SYN Unauthorised access (Jul 23) SRC=198.55.103.75 LEN=40 TTL=107 ID=256 TCP DPT=3306 WINDOW=16384 SYN	2019-07-26 09:51:00
149.202.204.141	attackbotsspam	Jul 26 03:56:25 SilenceServices sshd[22055]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.204.141 Jul 26 03:56:26 SilenceServices sshd[22055]: Failed password for invalid user test1 from 149.202.204.141 port 56788 ssh2 Jul 26 04:00:42 SilenceServices sshd[27012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.204.141	2019-07-26 10:03:10
137.74.44.216	attack	Jul 26 03:53:35 SilenceServices sshd[18195]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.44.216 Jul 26 03:53:37 SilenceServices sshd[18195]: Failed password for invalid user mcserv from 137.74.44.216 port 53892 ssh2 Jul 26 03:59:48 SilenceServices sshd[26059]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.44.216	2019-07-26 10:18:31
206.189.150.203	attackspam	206.189.150.203 - - [26/Jul/2019:01:48:33 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 206.189.150.203 - - [26/Jul/2019:01:48:46 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 206.189.150.203 - - [26/Jul/2019:01:48:50 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 206.189.150.203 - - [26/Jul/2019:01:48:54 +0200] "POST /wp-login.php HTTP/1.1" 200 1486 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 206.189.150.203 - - [26/Jul/2019:01:49:04 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 206.189.150.203 - - [26/Jul/2019:01:49:09 +0200] "POST /wp-login.php HTTP/1.1" 200 1486 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" .	2019-07-26 10:38:29
90.93.138.88	attackspam	Automated report - ssh fail2ban: Jul 26 03:32:47 authentication failure Jul 26 03:32:49 wrong password, user=webadmin, port=37466, ssh2 Jul 26 04:04:05 wrong password, user=root, port=60690, ssh2	2019-07-26 10:24:17
212.237.26.114	attackbots	Jul 26 05:15:16 yabzik sshd[8685]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.237.26.114 Jul 26 05:15:18 yabzik sshd[8685]: Failed password for invalid user juliano from 212.237.26.114 port 44336 ssh2 Jul 26 05:19:49 yabzik sshd[9819]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.237.26.114	2019-07-26 10:32:07
116.196.94.108	attackspam	Jul 25 21:58:54 xtremcommunity sshd\[27338\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.94.108 user=root Jul 25 21:58:56 xtremcommunity sshd\[27338\]: Failed password for root from 116.196.94.108 port 46956 ssh2 Jul 25 22:01:15 xtremcommunity sshd\[31840\]: Invalid user usuario2 from 116.196.94.108 port 41106 Jul 25 22:01:15 xtremcommunity sshd\[31840\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.94.108 Jul 25 22:01:16 xtremcommunity sshd\[31840\]: Failed password for invalid user usuario2 from 116.196.94.108 port 41106 ssh2 ...	2019-07-26 10:07:41
37.59.6.106	attack	Jul 25 21:58:51 plusreed sshd[6280]: Invalid user asgbrasil from 37.59.6.106 ...	2019-07-26 10:12:25

最近上报的IP列表

81.129.7.117	147.185.132.151	45.148.170.192	31.31.198.23
226.173.196.224	204.117.35.98	59.59.74.108	190.194.63.6
2606:4700:10::ac43:1920	2606:4700:10::6816:729	2606:4700:10::6816:1604	2606:4700:10::6814:4774
2606:4700:10::6814:8524	2606:4700:10::6814:9500	110.78.150.130	158.226.130.100
158.140.34.72	148.0.90.67	133.146.109.100	66.132.172.104