2.121.109.53 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United Kingdom of Great Britain and Northern Ireland (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.121.109.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3859
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.121.109.53.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022200 1800 900 604800 86400

;; Query time: 40 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 22 19:57:08 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

Host 53.109.121.2.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 53.109.121.2.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
193.150.116.253	attackbotsspam	Unauthorised access (Aug 27) SRC=193.150.116.253 LEN=52 TTL=115 ID=24540 DF TCP DPT=445 WINDOW=8192 SYN	2020-08-27 19:44:20
103.44.50.114	attack	xmlrpc attack	2020-08-27 19:43:36
92.63.194.104	attackspambots	Icarus honeypot on github	2020-08-27 19:35:39
123.195.84.22	attackspambots	DATE:2020-08-27 05:40:54, IP:123.195.84.22, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-08-27 19:52:27
148.66.143.89	attackbots	148.66.143.89 - - [27/Aug/2020:06:56:28 +0200] "GET /wp-login.php HTTP/1.1" 200 8537 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 148.66.143.89 - - [27/Aug/2020:06:56:29 +0200] "POST /wp-login.php HTTP/1.1" 200 8788 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 148.66.143.89 - - [27/Aug/2020:06:56:31 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-27 19:44:36
168.195.133.249	attackspambots	Brute Force	2020-08-27 19:36:35
134.122.23.226	attack	Aug 27 11:58:23 server2 sshd\[14708\]: User root from 134.122.23.226 not allowed because not listed in AllowUsers Aug 27 11:58:34 server2 sshd\[14713\]: Invalid user oracle from 134.122.23.226 Aug 27 11:58:45 server2 sshd\[14715\]: User root from 134.122.23.226 not allowed because not listed in AllowUsers Aug 27 11:58:55 server2 sshd\[14721\]: Invalid user postgres from 134.122.23.226 Aug 27 11:59:05 server2 sshd\[14754\]: User root from 134.122.23.226 not allowed because not listed in AllowUsers Aug 27 11:59:15 server2 sshd\[14758\]: Invalid user hadoop from 134.122.23.226	2020-08-27 20:00:59
46.118.123.27	attackspam	Unauthorized access detected from black listed ip!	2020-08-27 19:58:06
185.230.127.239	spambots	Spam	2020-08-27 19:37:14
178.46.212.28	attack	Unauthorised access (Aug 27) SRC=178.46.212.28 LEN=40 TTL=52 ID=30472 TCP DPT=23 WINDOW=56959 SYN	2020-08-27 19:50:56
185.82.126.51	attack	Blocked for port scanning (Port 23 / Telnet brute-force). Time: Thu Aug 27. 02:18:47 2020 +0200 IP: 185.82.126.51 (LV/Latvia/-) Sample of block hits: Aug 27 02:15:57 vserv kernel: [6547299.356507] Firewall: TCP_IN Blocked IN=eth0 OUT= MAC= SRC=185.82.126.51 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=58 ID=23882 PROTO=TCP SPT=29640 DPT=23 WINDOW=22504 RES=0x00 SYN URGP=0 Aug 27 02:16:15 vserv kernel: [6547316.908136] Firewall: TCP_IN Blocked IN=eth0 OUT= MAC= SRC=185.82.126.51 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=58 ID=23882 PROTO=TCP SPT=29640 DPT=23 WINDOW=22504 RES=0x00 SYN URGP=0 Aug 27 02:16:19 vserv kernel: [6547321.244705] Firewall: TCP_IN Blocked IN=eth0 OUT= MAC= SRC=185.82.126.51 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=58 ID=23882 PROTO=TCP SPT=29640 DPT=23 WINDOW=22504 RES=0x00 SYN URGP=0 Aug 27 02:16:44 vserv kernel: [6547346.257575] Firewall: TCP_IN Blocked IN=eth0 OUT= MAC= SRC=185.82.126.51 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=58 ID=23882 PROTO=TCP SPT=29640	2020-08-27 19:55:43
31.200.82.109	attackbots	31.200.82.109 - - [27/Aug/2020:04:41:04 +0100] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" 31.200.82.109 - - [27/Aug/2020:04:41:05 +0100] "POST /xmlrpc.php HTTP/1.1" 200 229 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" 31.200.82.109 - - [27/Aug/2020:04:41:07 +0100] "POST /xmlrpc.php HTTP/1.1" 200 229 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" ...	2020-08-27 19:59:08
201.236.109.126	attackbots	DATE:2020-08-27 05:41:19, IP:201.236.109.126, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-08-27 19:46:10
46.190.84.155	attackbotsspam	" "	2020-08-27 19:14:16
109.79.28.228	attackbotsspam	Aug 27 05:30:45 xxxxxxx sshd[3382]: Failed password for invalid user pi from 109.79.28.228 port 40370 ssh2 Aug 27 05:30:45 xxxxxxx sshd[3383]: Failed password for invalid user pi from 109.79.28.228 port 40372 ssh2 Aug 27 05:30:46 xxxxxxx sshd[3382]: Connection closed by 109.79.28.228 [preauth] Aug 27 05:30:46 xxxxxxx sshd[3383]: Connection closed by 109.79.28.228 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=109.79.28.228	2020-08-27 19:38:57

最近上报的IP列表

214.20.132.15	231.208.46.230	149.11.118.199	45.74.21.164
242.207.230.129	131.100.10.120	222.253.153.88	152.175.83.21
177.2.220.194	19.53.160.21	170.145.63.10	149.236.66.203
64.30.27.130	76.146.68.173	130.11.152.146	49.162.39.72
151.236.80.167	67.226.13.21	244.157.91.112	87.79.85.79