21.194.2.169 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 21.194.2.169
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29424
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;21.194.2.169.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020400 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 01:40:14 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

Host 169.2.194.21.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 169.2.194.21.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
177.54.183.76	attack	Automatic report - Port Scan Attack	2020-06-03 06:53:41
89.40.143.240	attackbotsspam	Jun 3 01:28:30 debian kernel: [39475.581318] [UFW BLOCK] IN=eth0 OUT= MAC=52:54:00:be:e4:65:08:e8:4f:6e:48:0c:08:00 SRC=89.40.143.240 DST=89.252.131.35 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=50435 PROTO=TCP SPT=57572 DPT=3470 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-03 06:46:10
162.243.253.67	attackbotsspam	2020-06-02T15:45:16.5891031495-001 sshd[30311]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.253.67 user=root 2020-06-02T15:45:19.1466141495-001 sshd[30311]: Failed password for root from 162.243.253.67 port 44724 ssh2 2020-06-02T15:55:51.0757501495-001 sshd[30757]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.253.67 user=root 2020-06-02T15:55:53.1410661495-001 sshd[30757]: Failed password for root from 162.243.253.67 port 38113 ssh2 2020-06-02T16:07:15.4877991495-001 sshd[31177]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.253.67 user=root 2020-06-02T16:07:17.4531671495-001 sshd[31177]: Failed password for root from 162.243.253.67 port 54947 ssh2 ...	2020-06-03 06:39:52
64.74.129.236	attack	Port scanning [2 denied]	2020-06-03 07:14:37
2a01:7e01::f03c:91ff:fed3:3e2d	attack	[TueJun0222:25:30.0799612020][:error][pid29773:tid47395576493824][client2a01:7e01::f03c:91ff:fed3:3e2d:43964][client2a01:7e01::f03c:91ff:fed3:3e2d]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:administrator\\|users_can_register\\|https\?$"atARGS:data.[file"/usr/local/apache.ea3/conf/modsec_rules/99_asl_jitp.conf"][line"424"][id"347150"][rev"2"][msg"Atomicorp.comWAFRules:WordPressGDPRCompliancePluginExploitblocked"][data"admin-ajax.php"][severity"CRITICAL"][hostname"www.cdconsult.ch"][uri"/wp-admin/admin-ajax.php"][unique_id"Xta1urO79SVa@1nVQG9BNQAAANE"][TueJun0222:25:48.1515482020][:error][pid29626:tid47395488044800][client2a01:7e01::f03c:91ff:fed3:3e2d:45916][client2a01:7e01::f03c:91ff:fed3:3e2d]ModSecurity:Accessdeniedwithcode403$phase2$.Matchof"rx\^0\$"against"REQUEST_HEADERS:Content-Length"required.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"96"][id"392301"][rev"8"][msg"Atomicorp.comWAFRules:RequestContainingContent\,butMissi	2020-06-03 06:41:54
94.250.255.187	attackbotsspam	2020-06-02T20:26:51.843281mail.arvenenaske.de sshd[4346]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.250.255.187 user=r.r 2020-06-02T20:26:53.483480mail.arvenenaske.de sshd[4346]: Failed password for r.r from 94.250.255.187 port 39460 ssh2 2020-06-02T20:30:36.391478mail.arvenenaske.de sshd[4353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.250.255.187 user=r.r 2020-06-02T20:30:38.588438mail.arvenenaske.de sshd[4353]: Failed password for r.r from 94.250.255.187 port 49158 ssh2 2020-06-02T20:34:22.255874mail.arvenenaske.de sshd[4357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.250.255.187 user=r.r 2020-06-02T20:34:24.478072mail.arvenenaske.de sshd[4357]: Failed password for r.r from 94.250.255.187 port 58856 ssh2 2020-06-02T20:38:06.492120mail.arvenenaske.de sshd[4368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 ........ ------------------------------	2020-06-03 06:50:54
116.75.168.218	attack	30. On Jun 2 2020 experienced a Brute Force SSH login attempt -> 58 unique times by 116.75.168.218.	2020-06-03 06:49:19
191.5.55.7	attackbotsspam	Jun 2 22:37:58 inter-technics sshd[17048]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.5.55.7 user=root Jun 2 22:38:00 inter-technics sshd[17048]: Failed password for root from 191.5.55.7 port 49547 ssh2 Jun 2 22:42:00 inter-technics sshd[17434]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.5.55.7 user=root Jun 2 22:42:02 inter-technics sshd[17434]: Failed password for root from 191.5.55.7 port 36572 ssh2 Jun 2 22:46:13 inter-technics sshd[17779]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.5.55.7 user=root Jun 2 22:46:14 inter-technics sshd[17779]: Failed password for root from 191.5.55.7 port 55643 ssh2 ...	2020-06-03 06:43:29
200.58.83.144	attack	Jun 2 20:25:08 *** sshd[17426]: User root from 200.58.83.144 not allowed because not listed in AllowUsers	2020-06-03 07:09:45
61.164.246.45	attackbotsspam	Jun 3 03:55:12 dhoomketu sshd[443325]: Failed password for root from 61.164.246.45 port 50514 ssh2 Jun 3 03:57:13 dhoomketu sshd[443361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.164.246.45 user=root Jun 3 03:57:15 dhoomketu sshd[443361]: Failed password for root from 61.164.246.45 port 54152 ssh2 Jun 3 03:59:15 dhoomketu sshd[443400]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.164.246.45 user=root Jun 3 03:59:16 dhoomketu sshd[443400]: Failed password for root from 61.164.246.45 port 57798 ssh2 ...	2020-06-03 07:12:27
192.99.31.122	attackbotsspam	192.99.31.122 - - [02/Jun/2020:23:17:26 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.99.31.122 - - [02/Jun/2020:23:17:27 +0200] "POST /wp-login.php HTTP/1.1" 200 1811 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.99.31.122 - - [02/Jun/2020:23:17:27 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.99.31.122 - - [02/Jun/2020:23:17:27 +0200] "POST /wp-login.php HTTP/1.1" 200 1799 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.99.31.122 - - [02/Jun/2020:23:17:28 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 192.99.31.122 - - [02/Jun/2020:23:17:28 +0200] "POST /wp-login.php HTTP/1.1" 200 1798 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Fir ...	2020-06-03 07:07:39
106.13.15.242	attack	serveres are UTC -0400 Lines containing failures of 106.13.15.242 May 31 21:10:28 tux2 sshd[31321]: Failed password for r.r from 106.13.15.242 port 43542 ssh2 May 31 21:10:28 tux2 sshd[31321]: Received disconnect from 106.13.15.242 port 43542:11: Bye Bye [preauth] May 31 21:10:28 tux2 sshd[31321]: Disconnected from authenticating user r.r 106.13.15.242 port 43542 [preauth] May 31 21:30:47 tux2 sshd[32400]: Failed password for r.r from 106.13.15.242 port 33452 ssh2 May 31 21:30:48 tux2 sshd[32400]: Received disconnect from 106.13.15.242 port 33452:11: Bye Bye [preauth] May 31 21:30:48 tux2 sshd[32400]: Disconnected from authenticating user r.r 106.13.15.242 port 33452 [preauth] May 31 21:34:46 tux2 sshd[32627]: Failed password for r.r from 106.13.15.242 port 53554 ssh2 May 31 21:34:46 tux2 sshd[32627]: Received disconnect from 106.13.15.242 port 53554:11: Bye Bye [preauth] May 31 21:34:46 tux2 sshd[32627]: Disconnected from authenticating user r.r 106.13.15.242 port 53554........ ------------------------------	2020-06-03 07:12:15
192.3.28.246	attack	(From loremipsum@gmail.com) Sed ut perspiciatis, unde omnis iste natu error sit voluptatem accusantium doloremque laudantium, totam rem aperiam eaque ipsa, quae ab illo inventore veritatis et quasi architecto beatae vitae dicta sunt, explicabo. Nemo enim ipsam voluptatem, quia voluptas sit, aspernatur aut odit aut fugit, sed quia consequuntur magni dolores eos, qui ratione voluptatem sequi nesciunt, neque porro quisquam est, qui dolorem ipsum, quia dolor sit amet consectetur adipisci[ng] velit, sed quia non-numquam [do] eius modi tempora inci[di]dunt, ut labore et dolore magnam aliquam quaerat voluptatem. Ut enim ad minima veniam, quis nostrum exercitationem ullam corporis suscipit laboriosam, nisi ut aliquid ex ea commodi consequatur? Quis autem vel eum iure reprehenderit, qui in ea voluptate velit esse, quam nihil molestiae consequatur, vel illum, qui dolorem eum fugiat, quo voluptas nulla pariatur? Best wishes, Lorem Ipsum. SEO of Lorem Ipsum inc.	2020-06-03 06:48:31
92.188.92.135	attackspam	2020-06-02 15:23:37.990221-0500 localhost sshd[15226]: Failed password for invalid user pi from 92.188.92.135 port 58352 ssh2	2020-06-03 07:15:31
195.54.160.180	attackspambots	Bruteforce detected by fail2ban	2020-06-03 07:10:54

最近上报的IP列表

201.159.150.146	243.240.205.124	245.32.64.29	151.138.179.173
133.202.66.248	141.153.216.146	94.164.83.225	19.76.113.222
205.249.133.126	247.94.174.56	30.221.215.252	254.127.88.185
147.229.148.184	179.147.62.186	148.75.135.191	78.101.111.18
74.35.238.124	92.219.252.10	33.155.166.223	114.107.88.177