123.21.168.244

基本信息:

城市(city): Ho Chi Minh City

省份(region): Ho Chi Minh

国家(country): Vietnam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): VNPT Corp

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Sun, 21 Jul 2019 07:35:00 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-22 02:12:25

相同子网IP讨论:

IP	类型	评论内容	时间
123.21.168.14	attack	Invalid user admin from 123.21.168.14 port 42841	2020-04-22 03:47:01
123.21.168.14	attackspambots	Invalid user admin from 123.21.168.14 port 42841	2020-04-20 22:54:20
123.21.168.103	attack	Honeypot attack, port: 81, PTR: PTR record not found	2020-02-24 00:37:51

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 123.21.168.244
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49085
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;123.21.168.244.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072101 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 22 02:12:20 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 244.168.21.123.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 244.168.21.123.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
185.220.101.219	attack	Apr 10 05:54:21 pve sshd[32133]: Failed password for root from 185.220.101.219 port 22656 ssh2 Apr 10 05:54:25 pve sshd[32133]: Failed password for root from 185.220.101.219 port 22656 ssh2 Apr 10 05:54:29 pve sshd[32133]: Failed password for root from 185.220.101.219 port 22656 ssh2 Apr 10 05:54:31 pve sshd[32133]: Failed password for root from 185.220.101.219 port 22656 ssh2	2020-04-10 16:27:46
222.186.180.6	attack	Apr 10 09:55:18 srv-ubuntu-dev3 sshd[73652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.6 user=root Apr 10 09:55:20 srv-ubuntu-dev3 sshd[73652]: Failed password for root from 222.186.180.6 port 36116 ssh2 Apr 10 09:55:23 srv-ubuntu-dev3 sshd[73652]: Failed password for root from 222.186.180.6 port 36116 ssh2 Apr 10 09:55:18 srv-ubuntu-dev3 sshd[73652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.6 user=root Apr 10 09:55:20 srv-ubuntu-dev3 sshd[73652]: Failed password for root from 222.186.180.6 port 36116 ssh2 Apr 10 09:55:23 srv-ubuntu-dev3 sshd[73652]: Failed password for root from 222.186.180.6 port 36116 ssh2 Apr 10 09:55:18 srv-ubuntu-dev3 sshd[73652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.6 user=root Apr 10 09:55:20 srv-ubuntu-dev3 sshd[73652]: Failed password for root from 222.186.180.6 port 36116 ssh2 A ...	2020-04-10 16:00:27
119.27.165.134	attackspam	Invalid user centos from 119.27.165.134 port 59546	2020-04-10 16:20:36
106.13.72.95	attack	IP blocked	2020-04-10 16:38:56
51.255.109.160	attackbotsspam	" "	2020-04-10 16:34:47
41.0.202.246	attackspam	2020-04-10T08:16:44.185602centos sshd[5653]: Invalid user mongodb from 41.0.202.246 port 44616 2020-04-10T08:16:46.490012centos sshd[5653]: Failed password for invalid user mongodb from 41.0.202.246 port 44616 ssh2 2020-04-10T08:23:36.333238centos sshd[6103]: Invalid user user from 41.0.202.246 port 55252 ...	2020-04-10 16:39:13
104.211.216.173	attackbots	$f2bV_matches	2020-04-10 16:18:56
189.8.79.137	attackbots	Apr 10 09:04:10 web01.agentur-b-2.de postfix/smtpd[519686]: NOQUEUE: reject: RCPT from mail.barreds.com.br[189.8.79.137]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Apr 10 09:05:15 web01.agentur-b-2.de postfix/smtpd[515673]: NOQUEUE: reject: RCPT from mail.barreds.com.br[189.8.79.137]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Apr 10 09:06:30 web01.agentur-b-2.de postfix/smtpd[522323]: NOQUEUE: reject: RCPT from mail.barreds.com.br[189.8.79.137]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Apr 10 09:07:46 web01.agentur-b-2.de postfix/smtpd[522977]: NOQUEUE: reject: RCPT from mail.barreds.com.br[189.8.79.137]	2020-04-10 16:07:12
106.124.136.227	attackbots	Apr 10 00:27:01 NPSTNNYC01T sshd[23744]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.136.227 Apr 10 00:27:03 NPSTNNYC01T sshd[23744]: Failed password for invalid user test from 106.124.136.227 port 36541 ssh2 Apr 10 00:32:56 NPSTNNYC01T sshd[24041]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.136.227 ...	2020-04-10 16:23:01
27.128.187.131	attackspambots	SSH bruteforce	2020-04-10 16:23:40
221.143.48.143	attackspambots	Brute-force attempt banned	2020-04-10 16:30:58
122.51.102.227	attackspam	Apr 10 07:45:33 vps58358 sshd\[27433\]: Invalid user test from 122.51.102.227Apr 10 07:45:35 vps58358 sshd\[27433\]: Failed password for invalid user test from 122.51.102.227 port 54790 ssh2Apr 10 07:48:11 vps58358 sshd\[27454\]: Failed password for root from 122.51.102.227 port 60164 ssh2Apr 10 07:50:53 vps58358 sshd\[27469\]: Invalid user jacke from 122.51.102.227Apr 10 07:50:55 vps58358 sshd\[27469\]: Failed password for invalid user jacke from 122.51.102.227 port 37302 ssh2Apr 10 07:53:21 vps58358 sshd\[27482\]: Invalid user admin from 122.51.102.227 ...	2020-04-10 16:16:42
217.182.129.39	attackbots	(sshd) Failed SSH login from 217.182.129.39 (FR/France/39.ip-217-182-129.eu): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 10 10:33:24 s1 sshd[19855]: Invalid user sqoop from 217.182.129.39 port 36482 Apr 10 10:33:26 s1 sshd[19855]: Failed password for invalid user sqoop from 217.182.129.39 port 36482 ssh2 Apr 10 10:39:27 s1 sshd[20123]: Invalid user ubuntu from 217.182.129.39 port 58902 Apr 10 10:39:29 s1 sshd[20123]: Failed password for invalid user ubuntu from 217.182.129.39 port 58902 ssh2 Apr 10 10:42:38 s1 sshd[20313]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.129.39 user=root	2020-04-10 16:39:44
78.128.113.74	attack	2020-04-10T09:03:15.488229l03.customhost.org.uk postfix/smtps/smtpd[9962]: warning: unknown[78.128.113.74]: SASL PLAIN authentication failed: authentication failure 2020-04-10T09:03:25.233013l03.customhost.org.uk postfix/smtps/smtpd[9962]: warning: unknown[78.128.113.74]: SASL PLAIN authentication failed: authentication failure 2020-04-10T09:10:25.710908l03.customhost.org.uk postfix/smtps/smtpd[11326]: warning: unknown[78.128.113.74]: SASL PLAIN authentication failed: authentication failure 2020-04-10T09:10:36.806920l03.customhost.org.uk postfix/smtps/smtpd[11326]: warning: unknown[78.128.113.74]: SASL PLAIN authentication failed: authentication failure ...	2020-04-10 16:11:10
81.66.89.42	attackspam	Apr 10 06:05:50 XXX sshd[21075]: Invalid user teste from 81.66.89.42 port 42404	2020-04-10 16:34:34

最近上报的IP列表

180.179.243.60	201.75.81.30	156.219.122.222	134.180.207.128
140.213.10.32	106.12.160.39	5.171.226.167	122.173.209.101
17.18.108.159	173.86.128.43	110.228.185.34	80.178.137.3
103.108.48.62	1.2.136.75	78.153.33.224	165.208.175.38
202.74.243.46	206.205.21.23	171.236.163.18	37.234.163.203