2.121.38.252 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.121.38.252
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36404
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.121.38.252.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020600 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 06 15:39:18 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

Host 252.38.121.2.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 252.38.121.2.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
177.8.172.141	attack	SSH Honeypot -> SSH Bruteforce / Login	2020-10-05 01:10:28
3.8.153.227	attack	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: ec2-3-8-153-227.eu-west-2.compute.amazonaws.com.	2020-10-05 00:59:43
189.240.225.193	attackspam	445/tcp [2020-10-03]1pkt	2020-10-05 01:06:51
37.72.190.176	attackspam	Registration form abuse	2020-10-05 01:29:41
165.232.102.206	attack	Oct 3 16:14:32 cumulus sshd[12826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.232.102.206 user=r.r Oct 3 16:14:35 cumulus sshd[12826]: Failed password for r.r from 165.232.102.206 port 37326 ssh2 Oct 3 16:14:35 cumulus sshd[12826]: Received disconnect from 165.232.102.206 port 37326:11: Bye Bye [preauth] Oct 3 16:14:35 cumulus sshd[12826]: Disconnected from 165.232.102.206 port 37326 [preauth] Oct 3 16:19:20 cumulus sshd[13442]: Invalid user tester from 165.232.102.206 port 35338 Oct 3 16:19:20 cumulus sshd[13442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.232.102.206 Oct 3 16:19:21 cumulus sshd[13442]: Failed password for invalid user tester from 165.232.102.206 port 35338 ssh2 Oct 3 16:19:22 cumulus sshd[13442]: Received disconnect from 165.232.102.206 port 35338:11: Bye Bye [preauth] Oct 3 16:19:22 cumulus sshd[13442]: Disconnected from 165.232.102.206 port 3........ -------------------------------	2020-10-05 01:13:01
103.151.182.6	attackbots	(sshd) Failed SSH login from 103.151.182.6 (BD/Bangladesh/Chittagong/Chittagong/mail.bestcommunication.net): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 4 08:07:44 atlas sshd[24479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.151.182.6 user=root Oct 4 08:07:46 atlas sshd[24479]: Failed password for root from 103.151.182.6 port 54494 ssh2 Oct 4 08:19:17 atlas sshd[28488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.151.182.6 user=root Oct 4 08:19:19 atlas sshd[28488]: Failed password for root from 103.151.182.6 port 55090 ssh2 Oct 4 08:24:11 atlas sshd[29628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.151.182.6 user=root	2020-10-05 01:09:30
188.166.82.57	attackbots	Oct 4 13:03:30 marvibiene sshd[10708]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.82.57 Oct 4 13:03:32 marvibiene sshd[10708]: Failed password for invalid user sap from 188.166.82.57 port 54552 ssh2 Oct 4 13:09:01 marvibiene sshd[10939]: Failed password for root from 188.166.82.57 port 34352 ssh2	2020-10-05 01:37:16
167.172.150.241	attackspam	167.172.150.241 (US/United States/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Oct 4 10:00:40 server2 sshd[4716]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.27.156 user=root Oct 4 10:00:42 server2 sshd[4716]: Failed password for root from 106.13.27.156 port 46208 ssh2 Oct 4 10:01:39 server2 sshd[8149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.178.141.20 user=root Oct 4 10:01:17 server2 sshd[5684]: Failed password for root from 190.64.213.155 port 39116 ssh2 Oct 4 10:01:57 server2 sshd[8265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.150.241 user=root Oct 4 10:01:41 server2 sshd[8149]: Failed password for root from 45.178.141.20 port 37536 ssh2 IP Addresses Blocked: 106.13.27.156 (CN/China/-) 45.178.141.20 (BR/Brazil/-) 190.64.213.155 (UY/Uruguay/-)	2020-10-05 01:02:28
185.36.160.18	attackspam	php WP PHPmyadamin ABUSE blocked for 12h	2020-10-05 01:33:40
49.135.35.22	attackspambots	Banned for a week because repeated abuses, for example SSH, but not only	2020-10-05 01:22:46
51.77.66.35	attack	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-10-04T14:10:11Z and 2020-10-04T14:57:04Z	2020-10-05 01:21:23
196.188.1.33	attack	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-10-05 01:12:37
174.243.114.84	attackbotsspam	Brute forcing email accounts	2020-10-05 01:23:06
103.140.83.18	attackbots	Sep 17 01:48:19 roki-contabo sshd\[12013\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.140.83.18 user=root Sep 17 01:48:22 roki-contabo sshd\[12013\]: Failed password for root from 103.140.83.18 port 50614 ssh2 Sep 17 04:34:41 roki-contabo sshd\[13731\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.140.83.18 user=root Sep 17 04:34:43 roki-contabo sshd\[13731\]: Failed password for root from 103.140.83.18 port 58440 ssh2 Sep 17 04:42:48 roki-contabo sshd\[13774\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.140.83.18 user=root ...	2020-10-05 01:30:46
112.85.42.91	attack	Sep 27 12:18:42 roki-contabo sshd\[23541\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.91 user=root Sep 27 12:18:44 roki-contabo sshd\[23541\]: Failed password for root from 112.85.42.91 port 63554 ssh2 Sep 27 12:19:02 roki-contabo sshd\[23549\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.91 user=root Sep 27 12:19:04 roki-contabo sshd\[23549\]: Failed password for root from 112.85.42.91 port 1586 ssh2 Sep 27 12:19:24 roki-contabo sshd\[23551\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.91 user=root ...	2020-10-05 01:14:12

最近上报的IP列表

182.150.130.155	48.81.193.118	218.98.27.14	42.84.236.251
53.194.123.148	7.117.224.4	121.254.241.114	42.119.216.158
186.169.240.188	250.142.251.23	20.169.62.203	133.18.13.65
101.16.49.169	174.5.206.88	86.201.13.221	170.97.50.254
16.224.252.55	44.19.134.41	123.220.90.67	27.130.15.14