127.21.45.52 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): IANA Special-Purpose Address

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 127.21.45.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34729
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;127.21.45.52.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025013101 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 01 02:38:40 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

Host 52.45.21.127.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 52.45.21.127.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
165.227.7.5	attack	Jul 14 11:15:05 firewall sshd[12472]: Failed password for invalid user ajl from 165.227.7.5 port 46462 ssh2 Jul 14 11:17:24 firewall sshd[12559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.7.5 user=www-data Jul 14 11:17:25 firewall sshd[12559]: Failed password for www-data from 165.227.7.5 port 56650 ssh2 ...	2020-07-14 22:35:50
181.31.129.12	attackbotsspam	$f2bV_matches	2020-07-14 22:39:35
61.74.118.139	attackbots	Jul 14 16:15:06 minden010 sshd[26373]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.74.118.139 Jul 14 16:15:08 minden010 sshd[26373]: Failed password for invalid user aiuap from 61.74.118.139 port 56542 ssh2 Jul 14 16:17:21 minden010 sshd[26990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.74.118.139 ...	2020-07-14 22:40:06
129.226.114.41	attackbotsspam	(sshd) Failed SSH login from 129.226.114.41 (SG/Singapore/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 14 15:06:03 elude sshd[1028]: Invalid user ross from 129.226.114.41 port 50754 Jul 14 15:06:05 elude sshd[1028]: Failed password for invalid user ross from 129.226.114.41 port 50754 ssh2 Jul 14 15:18:23 elude sshd[3175]: Invalid user devil from 129.226.114.41 port 39094 Jul 14 15:18:25 elude sshd[3175]: Failed password for invalid user devil from 129.226.114.41 port 39094 ssh2 Jul 14 15:23:29 elude sshd[4050]: Invalid user gzm from 129.226.114.41 port 36128	2020-07-14 22:26:04
92.13.148.85	attack	Automatic report - XMLRPC Attack	2020-07-14 22:48:01
192.35.168.201	attackspam	Jul 14 15:14:33 mail postfix/submission/smtpd[91110]: lost connection after STARTTLS from unknown[192.35.168.201]	2020-07-14 22:47:43
13.67.45.29	attackbots	IP blocked	2020-07-14 22:13:01
121.186.122.216	attackspam	SSH Brute-Forcing (server2)	2020-07-14 22:20:20
106.13.18.86	attackspambots	Jul 14 08:11:22 askasleikir sshd[1328]: Failed password for invalid user 22 from 106.13.18.86 port 38518 ssh2	2020-07-14 22:23:07
106.13.215.17	attackbots	Jul 14 15:06:47 vserver sshd\[13458\]: Invalid user james from 106.13.215.17Jul 14 15:06:48 vserver sshd\[13458\]: Failed password for invalid user james from 106.13.215.17 port 47760 ssh2Jul 14 15:14:53 vserver sshd\[13566\]: Invalid user stas from 106.13.215.17Jul 14 15:14:55 vserver sshd\[13566\]: Failed password for invalid user stas from 106.13.215.17 port 43464 ssh2 ...	2020-07-14 22:31:54
14.18.58.226	attackbots	Jul 14 14:08:57 django-0 sshd[21483]: Invalid user testing from 14.18.58.226 ...	2020-07-14 22:47:10
93.75.195.246	attackbotsspam	[portscan] Port scan	2020-07-14 22:27:06
178.128.150.158	attack	Brute-force attempt banned	2020-07-14 22:37:11
69.171.251.112	attackspam	[Tue Jul 14 20:14:58.932752 2020] [:error] [pid 32195:tid 140254290355968] [client 69.171.251.112:54262] [client 69.171.251.112] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/images/Klimatologi/Prakiraan/03-Prakiraan-Bulanan/Prakiraan_Daerah_Potensi_Banjir_Bulanan/Prakiraan_Daerah_Potensi_Banjir_Bulan_Provinsi_Jawa_Timur/2020/07_Juli_2020/01_Prakiraan_Bulanan_Daerah_Potensi_Banjir_di_Provinsi_Jawa_Timur_AGUSTUS_Tahun_2020_update_10_Juli_2020.jpg"] [uniqu ...	2020-07-14 22:27:42
185.170.114.25	attackspam	fahrlehrer-fortbildung-hessen.de 185.170.114.25 [14/Jul/2020:15:15:01 +0200] "POST /xmlrpc.php HTTP/1.0" 301 537 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/67.0.3396.99 Safari/537.36" www.fahrlehrerfortbildung-hessen.de 185.170.114.25 [14/Jul/2020:15:15:04 +0200] "POST /xmlrpc.php HTTP/1.0" 200 3595 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/67.0.3396.99 Safari/537.36"	2020-07-14 22:17:10

最近上报的IP列表

46.96.16.169	211.40.206.196	177.249.219.200	152.111.210.179
242.9.219.15	129.164.54.50	83.84.240.168	4.205.5.85
33.99.218.185	173.213.47.20	162.237.182.199	37.53.206.3
27.41.98.109	219.32.58.29	160.97.164.237	92.144.243.53
64.59.76.203	120.15.20.203	136.128.85.220	141.189.184.206