156.238.252.198

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Seychelles

运营商(isp): AT&T

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#


NetRange:       156.238.0.0 - 156.238.255.255
CIDR:           156.238.0.0/16
NetName:        AFRINIC-ERX-156-238-0-0
NetHandle:      NET-156-238-0-0-1
Parent:         NET156 (NET-156-0-0-0-0)
NetType:        Transferred to AfriNIC
OriginAS:       
Organization:   African Network Information Center (AFRINIC)
RegDate:        2010-11-03
Updated:        2010-11-17
Comment:        This IP address range is under AFRINIC responsibility.
Comment:        Please see http://www.afrinic.net/ for further details,
Comment:        or check the WHOIS server located at whois.afrinic.net.
Ref:            https://rdap.arin.net/registry/ip/156.238.0.0

ResourceLink:  http://afrinic.net/en/services/whois-query
ResourceLink:  whois.afrinic.net


OrgName:        African Network Information Center
OrgId:          AFRINIC
Address:        Level 11ABC
Address:        Raffles Tower
Address:        Lot 19, Cybercity
City:           Ebene
StateProv:      
PostalCode:     
Country:        MU
RegDate:        2004-05-17
Updated:        2015-05-04
Comment:        AfriNIC - http://www.afrinic.net
Comment:        The African & Indian Ocean Internet Registry
Ref:            https://rdap.arin.net/registry/entity/AFRINIC

ReferralServer:  whois://whois.afrinic.net
ResourceLink:  http://afrinic.net/en/services/whois-query

OrgTechHandle: GENER11-ARIN
OrgTechName:   Generic POC
OrgTechPhone:  +230 4666616 
OrgTechEmail:  abusepoc@afrinic.net
OrgTechRef:    https://rdap.arin.net/registry/entity/GENER11-ARIN

OrgAbuseHandle: GENER11-ARIN
OrgAbuseName:   Generic POC
OrgAbusePhone:  +230 4666616 
OrgAbuseEmail:  abusepoc@afrinic.net
OrgAbuseRef:    https://rdap.arin.net/registry/entity/GENER11-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#



Found a referral to whois.afrinic.net.

% This is the AfriNIC Whois server.
% The AFRINIC whois database is subject to  the following terms of Use. See https://afrinic.net/whois/terms

% Note: this output has been filtered.
%       To receive output for a database update, use the "-B" flag.

% Information related to '156.238.252.0 - 156.238.252.255'

% No abuse contact registered for 156.238.252.0 - 156.238.252.255

inetnum:        156.238.252.0 - 156.238.252.255
netname:        High_Family_Technology_Co_Limited
descr:          High Family Technology Co., Limited
country:        HK
admin-c:        CIS1-AFRINIC
tech-c:         CIS1-AFRINIC
status:         ASSIGNED PA
mnt-by:         CIL1-MNT
mnt-by:         LARUS-SERVICE-MNT
source:         AFRINIC # Filtered
parent:         156.224.0.0 - 156.255.255.255

person:         Cloud Innovation Support
address:        Ebene
address:        MU
address:        Mahe
address:        Seychelles
phone:          tel:+248-4-610-795
nic-hdl:        CIS1-AFRINIC
abuse-mailbox:  abuse@cloudinnovation.org
mnt-by:         CIL1-MNT
source:         AFRINIC # Filtered

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 156.238.252.198
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45525
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;156.238.252.198.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025100302 1800 900 604800 86400

;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 04 06:31:58 CST 2025
;; MSG SIZE  rcvd: 108

HOST信息:

Host 198.252.238.156.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 198.252.238.156.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
62.146.99.179	attack	2019-10-31T03:56:56.685250abusebot-8.cloudsearch.cf sshd\[27394\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.146.99.179 user=root	2019-10-31 12:28:36
52.221.183.187	attack	2019-10-31T04:56:37.285221 sshd[12670]: Invalid user ph from 52.221.183.187 port 60124 2019-10-31T04:56:37.300469 sshd[12670]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.221.183.187 2019-10-31T04:56:37.285221 sshd[12670]: Invalid user ph from 52.221.183.187 port 60124 2019-10-31T04:56:39.600633 sshd[12670]: Failed password for invalid user ph from 52.221.183.187 port 60124 ssh2 2019-10-31T05:13:01.682932 sshd[12857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.221.183.187 user=root 2019-10-31T05:13:04.070170 sshd[12857]: Failed password for root from 52.221.183.187 port 40964 ssh2 ...	2019-10-31 12:15:42
54.38.33.186	attackspambots	2019-10-31T04:25:50.860844shield sshd\[12252\]: Invalid user testftp from 54.38.33.186 port 37560 2019-10-31T04:25:50.865290shield sshd\[12252\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.ip-54-38-33.eu 2019-10-31T04:25:52.492866shield sshd\[12252\]: Failed password for invalid user testftp from 54.38.33.186 port 37560 ssh2 2019-10-31T04:29:10.643614shield sshd\[13093\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.ip-54-38-33.eu user=root 2019-10-31T04:29:13.063121shield sshd\[13093\]: Failed password for root from 54.38.33.186 port 46430 ssh2	2019-10-31 12:45:17
5.196.7.123	attackspambots	Oct 30 18:25:42 tdfoods sshd\[28747\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.ip-5-196-7.eu user=backup Oct 30 18:25:44 tdfoods sshd\[28747\]: Failed password for backup from 5.196.7.123 port 51724 ssh2 Oct 30 18:28:55 tdfoods sshd\[29016\]: Invalid user oracle from 5.196.7.123 Oct 30 18:28:55 tdfoods sshd\[29016\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.ip-5-196-7.eu Oct 30 18:28:57 tdfoods sshd\[29016\]: Failed password for invalid user oracle from 5.196.7.123 port 59358 ssh2	2019-10-31 12:44:35
51.38.128.30	attack	Oct 31 05:14:15 SilenceServices sshd[32052]: Failed password for root from 51.38.128.30 port 41184 ssh2 Oct 31 05:17:41 SilenceServices sshd[1848]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.128.30 Oct 31 05:17:44 SilenceServices sshd[1848]: Failed password for invalid user arkserver from 51.38.128.30 port 51406 ssh2	2019-10-31 12:34:18
123.207.108.51	attackbots	2019-10-31T04:30:23.515502abusebot-7.cloudsearch.cf sshd\[18638\]: Invalid user admin from 123.207.108.51 port 32910	2019-10-31 12:43:38
86.188.246.2	attack	Oct 31 04:49:52 meumeu sshd[21845]: Failed password for root from 86.188.246.2 port 37353 ssh2 Oct 31 04:53:38 meumeu sshd[22343]: Failed password for root from 86.188.246.2 port 56075 ssh2 ...	2019-10-31 12:10:20
185.234.218.50	attackspam	Attempting to probe for sensitive information accidently exposed via git config. 185.234.218.50 - - [31/Oct/2019:03:56:24 +0000] "GET /.git/config HTTP/1.1" 403 153 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:67.0) Gecko/20100101 Firefox/67.0"	2019-10-31 12:45:36
142.93.248.5	attackspam	Oct 31 04:56:57 cvbnet sshd[13351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.248.5 Oct 31 04:56:59 cvbnet sshd[13351]: Failed password for invalid user admin1 from 142.93.248.5 port 45198 ssh2 ...	2019-10-31 12:27:59
95.170.203.226	attack	Oct 31 04:52:29 SilenceServices sshd[17178]: Failed password for root from 95.170.203.226 port 37094 ssh2 Oct 31 04:57:11 SilenceServices sshd[20977]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.170.203.226 Oct 31 04:57:13 SilenceServices sshd[20977]: Failed password for invalid user com]shao*peng@163 from 95.170.203.226 port 56397 ssh2	2019-10-31 12:18:38
141.98.81.37	attack	Oct 30 23:56:45 Tower sshd[21134]: Connection from 141.98.81.37 port 21248 on 192.168.10.220 port 22 Oct 30 23:56:45 Tower sshd[21134]: Invalid user admin from 141.98.81.37 port 21248 Oct 30 23:56:45 Tower sshd[21134]: error: Could not get shadow information for NOUSER Oct 30 23:56:45 Tower sshd[21134]: Failed password for invalid user admin from 141.98.81.37 port 21248 ssh2 Oct 30 23:56:46 Tower sshd[21134]: error: Received disconnect from 141.98.81.37 port 21248:14: Unable to connect using the available authentication methods [preauth] Oct 30 23:56:46 Tower sshd[21134]: Disconnected from invalid user admin 141.98.81.37 port 21248 [preauth]	2019-10-31 12:29:35
142.93.47.125	attack	2019-10-31T03:57:01.971209abusebot-7.cloudsearch.cf sshd\[18508\]: Invalid user ok from 142.93.47.125 port 60174	2019-10-31 12:26:06
180.252.193.147	attackspambots	Automatic report - Port Scan Attack	2019-10-31 12:26:43
54.186.180.241	attack	10/31/2019-05:23:02.830430 54.186.180.241 Protocol: 6 SURICATA TLS invalid record/traffic	2019-10-31 12:24:25
49.149.95.113	attackspambots	Unauthorised access (Oct 31) SRC=49.149.95.113 LEN=52 TTL=117 ID=11908 DF TCP DPT=445 WINDOW=8192 SYN	2019-10-31 12:28:57

最近上报的IP列表

5.253.86.21	176.34.173.141	49.232.191.253	104.168.132.143
47.97.113.83	113.121.47.212	47.121.113.148	121.43.117.42
121.40.47.87	112.124.56.200	47.99.109.105	207.154.234.231
121.43.116.22	121.41.169.100	144.172.115.86	20.64.106.71
36.68.53.95	162.216.149.7	99.86.13.218	45.134.13.216