168.121.52.130

基本信息:

城市(city): Mococa

省份(region): Sao Paulo

国家(country): Brazil

运营商(isp): E. de Omena

主机名(hostname): unknown

机构(organization): TELECOM. E INTERNET LTDA

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Unauthorized connection attempt from IP address 168.121.52.130 on Port 445(SMB)	2019-11-02 03:10:48

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 168.121.52.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45467
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;168.121.52.130.			IN	A

;; AUTHORITY SECTION:
.			1168	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041601 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Wed Apr 17 02:44:01 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

130.52.121.168.in-addr.arpa domain name pointer 130.52.121.168.conexaotelecom.net.br.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
130.52.121.168.in-addr.arpa	name = 130.52.121.168.conexaotelecom.net.br.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
195.64.213.137	attack	[portscan] Port scan	2019-09-06 07:57:34
49.231.222.5	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-05 20:43:23,806 INFO [amun_request_handler] PortScan Detected on Port: 445 (49.231.222.5)	2019-09-06 08:10:34
93.180.14.13	attackspam	fail2ban	2019-09-06 08:23:17
129.204.40.44	attackbots	Sep 5 13:34:01 web9 sshd\[9152\]: Invalid user ubuntu from 129.204.40.44 Sep 5 13:34:01 web9 sshd\[9152\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.40.44 Sep 5 13:34:04 web9 sshd\[9152\]: Failed password for invalid user ubuntu from 129.204.40.44 port 49182 ssh2 Sep 5 13:38:57 web9 sshd\[10074\]: Invalid user test from 129.204.40.44 Sep 5 13:38:57 web9 sshd\[10074\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.40.44	2019-09-06 07:54:35
203.151.83.160	attack	fail2ban honeypot	2019-09-06 08:29:57
222.242.104.188	attackspambots	Sep 6 02:03:15 eventyay sshd[19877]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.242.104.188 Sep 6 02:03:17 eventyay sshd[19877]: Failed password for invalid user 123 from 222.242.104.188 port 59523 ssh2 Sep 6 02:07:56 eventyay sshd[20000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.242.104.188 ...	2019-09-06 08:17:53
203.143.12.26	attackbotsspam	Sep 5 20:59:06 v22019058497090703 sshd[22501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.143.12.26 Sep 5 20:59:08 v22019058497090703 sshd[22501]: Failed password for invalid user 123456 from 203.143.12.26 port 26323 ssh2 Sep 5 21:03:55 v22019058497090703 sshd[22836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.143.12.26 ...	2019-09-06 08:06:57
185.117.73.214	attackbots	[portscan] Port scan	2019-09-06 07:54:58
211.193.13.111	attack	Sep 5 15:45:13 vtv3 sshd\[5414\]: Invalid user administrador from 211.193.13.111 port 47516 Sep 5 15:45:13 vtv3 sshd\[5414\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.193.13.111 Sep 5 15:45:15 vtv3 sshd\[5414\]: Failed password for invalid user administrador from 211.193.13.111 port 47516 ssh2 Sep 5 15:49:48 vtv3 sshd\[7279\]: Invalid user user from 211.193.13.111 port 12627 Sep 5 15:49:48 vtv3 sshd\[7279\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.193.13.111 Sep 5 16:03:16 vtv3 sshd\[14265\]: Invalid user server from 211.193.13.111 port 20946 Sep 5 16:03:16 vtv3 sshd\[14265\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.193.13.111 Sep 5 16:03:18 vtv3 sshd\[14265\]: Failed password for invalid user server from 211.193.13.111 port 20946 ssh2 Sep 5 16:08:02 vtv3 sshd\[16552\]: Invalid user nagios from 211.193.13.111 port 42560 Sep 5 16:08:02 vtv	2019-09-06 08:06:18
218.98.40.134	attack	Sep 6 02:01:30 core sshd[2269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.98.40.134 user=root Sep 6 02:01:33 core sshd[2269]: Failed password for root from 218.98.40.134 port 22809 ssh2 ...	2019-09-06 08:27:12
153.36.242.114	attackspam	fire	2019-09-06 08:32:02
13.84.183.64	attack	Port Scan: TCP/25	2019-09-06 08:10:50
185.168.173.121	attack	Automatic report - Port Scan Attack	2019-09-06 07:58:55
200.7.118.10	attackbots	$f2bV_matches	2019-09-06 07:59:36
104.211.246.185	attackbots	Sep 5 22:02:17 our-server-hostname postfix/smtpd[11579]: connect from unknown[104.211.246.185] Sep 5 22:02:18 our-server-hostname postfix/smtpd[11579]: NOQUEUE: reject: RCPT from unknown[104.211.246.185]: 504 5.5.2 : Helo command rejected: need fully-qualified hostname; from=x@x helo= Sep 5 22:02:18 our-server-hostname postfix/smtpd[11579]: lost connection after RCPT from unknown[104.211.246.185] Sep 5 22:02:18 our-server-hostname postfix/smtpd[11579]: disconnect from unknown[104.211.246.185] Sep 5 22:03:08 our-server-hostname postfix/smtpd[9522]: connect from unknown[104.211.246.185] Sep 5 22:03:09 our-server-hostname postfix/smtpd[9522]: NOQUEUE: reject: RCPT from unknown[104.211.246.185]: 504 5.5.2 : Helo command rejected: need fully-qualified hostname; from=x@x helo= Sep 5 22:03:09 our-server-hostname postfix/smtpd[9522]: lost connection after RCPT from unknown[104.211.246.185] Sep 5 22:03:09 our-server-hostname postfix/smtpd[9522........ -------------------------------	2019-09-06 07:57:04

最近上报的IP列表

211.38.126.216	111.230.220.148	103.96.75.176	92.223.195.8
174.16.135.161	51.15.64.30	45.127.186.45	52.247.165.205
185.51.156.253	84.92.138.149	69.165.239.85	185.238.136.183
93.227.127.145	31.220.5.117	31.131.249.219	175.204.2.246
68.183.12.252	212.113.113.222	170.254.229.27	95.13.55.77