121.52.142.67 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): PT. Cemerlang Multimedia

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Jan 3 05:46:36 grey postfix/smtpd\[14160\]: NOQUEUE: reject: RCPT from unknown\[121.52.142.67\]: 554 5.7.1 Service unavailable\; Client host \[121.52.142.67\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?121.52.142.67\; from=\ to=\ proto=ESMTP helo=\<\[121.52.142.67\]\> ...	2020-01-03 18:25:09

类型

评论内容

时间

attack

Jan  3 05:46:36 grey postfix/smtpd\[14160\]: NOQUEUE: reject: RCPT from unknown\[121.52.142.67\]: 554 5.7.1 Service unavailable\; Client host \[121.52.142.67\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?121.52.142.67\; from=\ to=\ proto=ESMTP helo=\<\[121.52.142.67\]\>
...

2020-01-03 18:25:09

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 121.52.142.67
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12736
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;121.52.142.67.			IN	A

;; AUTHORITY SECTION:
.			566	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010300 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 03 18:25:05 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 67.142.52.121.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 67.142.52.121.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
123.241.180.36	attack	MIRAI HOST Sat Feb 15 06:52:01 2020 - Child process 58800 handling connection Sat Feb 15 06:52:01 2020 - New connection from: 123.241.180.36:58901 Sat Feb 15 06:52:01 2020 - Sending data to client: [Login: ] Sat Feb 15 06:52:01 2020 - Got data: root Sat Feb 15 06:52:02 2020 - Sending data to client: [Password: ] Sat Feb 15 06:52:03 2020 - Got data: klv1234 Sat Feb 15 06:52:05 2020 - Child 58800 exiting Sat Feb 15 06:52:05 2020 - Child 58804 granting shell Sat Feb 15 06:52:05 2020 - Sending data to client: [Logged in] Sat Feb 15 06:52:05 2020 - Sending data to client: [Welcome to MX990 Embedded Linux] Sat Feb 15 06:52:05 2020 - Sending data to client: [[root@dvrdvs /]# ] Sat Feb 15 06:52:05 2020 - Got data: enable system shell sh Sat Feb 15 06:52:05 2020 - Sending data to client: [Command not found] Sat Feb 15 06:52:05 2020 - Sending data to client: [[root@dvrdvs /]# ] Sat Feb 15 06:52:05 2020 - Got data: cat /proc/mounts; /bin/busybox YKLWC Sat Feb 15 06:52:05 2020 - Sending data to client	2020-02-16 00:51:33
128.199.148.231	attackspambots	Automatic report - XMLRPC Attack	2020-02-16 00:47:12
211.82.236.108	attackspambots	Sep 12 05:13:45 ms-srv sshd[42893]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.82.236.108 Sep 12 05:13:47 ms-srv sshd[42893]: Failed password for invalid user admin from 211.82.236.108 port 57206 ssh2	2020-02-16 00:28:00
118.42.22.144	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-16 00:41:14
203.143.12.26	attack	Feb 15 17:14:20 server sshd\[10323\]: Invalid user shuang from 203.143.12.26 Feb 15 17:14:20 server sshd\[10323\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.143.12.26 Feb 15 17:14:22 server sshd\[10323\]: Failed password for invalid user shuang from 203.143.12.26 port 64501 ssh2 Feb 15 17:29:11 server sshd\[12476\]: Invalid user test from 203.143.12.26 Feb 15 17:29:11 server sshd\[12476\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.143.12.26 ...	2020-02-16 00:46:44
211.35.76.241	attack	Feb 1 23:36:15 ms-srv sshd[48288]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.35.76.241 Feb 1 23:36:18 ms-srv sshd[48288]: Failed password for invalid user raianef from 211.35.76.241 port 43422 ssh2	2020-02-16 01:03:02
87.241.160.219	attackbotsspam	1581780982 - 02/15/2020 16:36:22 Host: 87.241.160.219/87.241.160.219 Port: 23 TCP Blocked	2020-02-16 00:47:36
106.75.7.70	attackspam	Feb 15 16:52:31 dedicated sshd[20179]: Invalid user saevild from 106.75.7.70 port 44440	2020-02-16 01:08:20
211.254.213.18	attack	Dec 4 12:16:01 ms-srv sshd[7225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.254.213.18 Dec 4 12:16:03 ms-srv sshd[7225]: Failed password for invalid user wwwadmin from 211.254.213.18 port 34880 ssh2	2020-02-16 01:08:06
83.12.69.25	attack	Lines containing failures of 83.12.69.25 Feb 14 04:25:54 nexus sshd[6850]: Invalid user rowen from 83.12.69.25 port 58766 Feb 14 04:25:54 nexus sshd[6850]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.12.69.25 Feb 14 04:25:56 nexus sshd[6850]: Failed password for invalid user rowen from 83.12.69.25 port 58766 ssh2 Feb 14 04:25:56 nexus sshd[6850]: Received disconnect from 83.12.69.25 port 58766:11: Bye Bye [preauth] Feb 14 04:25:56 nexus sshd[6850]: Disconnected from 83.12.69.25 port 58766 [preauth] Feb 14 04:42:15 nexus sshd[10219]: Invalid user teamspeak3bot from 83.12.69.25 port 39442 Feb 14 04:42:15 nexus sshd[10219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.12.69.25 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=83.12.69.25	2020-02-16 00:30:53
211.75.194.80	attackspam	Nov 22 07:40:56 ms-srv sshd[8626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.75.194.80 Nov 22 07:40:58 ms-srv sshd[8626]: Failed password for invalid user wonder from 211.75.194.80 port 36586 ssh2	2020-02-16 00:36:57
183.234.58.41	attackspambots	2020-02-15T16:33:14.222045jannga.de sshd[4142]: Invalid user admin from 183.234.58.41 port 59671 2020-02-15T16:33:16.077566jannga.de sshd[4142]: Failed password for invalid user admin from 183.234.58.41 port 59671 ssh2 ...	2020-02-16 00:45:24
37.189.49.240	attackspambots	Automatic report - Port Scan Attack	2020-02-16 00:54:40
134.209.171.203	attack	Feb 15 17:29:42 legacy sshd[32753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.171.203 Feb 15 17:29:44 legacy sshd[32753]: Failed password for invalid user deployer from 134.209.171.203 port 57485 ssh2 Feb 15 17:32:56 legacy sshd[450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.171.203 ...	2020-02-16 00:44:17
211.41.161.149	attackspambots	Aug 11 20:45:55 ms-srv sshd[11231]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.41.161.149 Aug 11 20:45:57 ms-srv sshd[11231]: Failed password for invalid user manager from 211.41.161.149 port 39838 ssh2	2020-02-16 00:53:05

最近上报的IP列表

1.36.18.60	201.139.231.226	82.140.155.101	65.55.10.251
139.185.201.75	42.78.227.232	171.237.198.52	195.171.126.246
76.6.213.147	13.113.41.86	183.34.233.21	27.75.29.22
98.127.193.44	83.137.196.31	87.93.222.76	167.95.29.244
73.180.104.50	209.188.121.91	46.148.215.57	35.4.244.132