245.98.207.21 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): IANA Special-Purpose Address

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 245.98.207.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6757
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;245.98.207.21.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022200 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 22 18:53:50 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

Host 21.207.98.245.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 21.207.98.245.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
201.161.11.45	attack	Jan 11 05:52:34 grey postfix/smtpd\[10131\]: NOQUEUE: reject: RCPT from unknown\[201.161.11.45\]: 554 5.7.1 Service unavailable\; Client host \[201.161.11.45\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[201.161.11.45\]\; from=\ to=\ proto=ESMTP helo=\<201-161-11-45.internetmax.maxcom.net.mx\> ...	2020-01-11 17:01:13
72.52.150.93	attack	Automatic report - XMLRPC Attack	2020-01-11 16:52:32
88.248.248.154	attack	1578718368 - 01/11/2020 05:52:48 Host: 88.248.248.154/88.248.248.154 Port: 445 TCP Blocked	2020-01-11 16:53:21
125.227.62.145	attack	2019-12-19 07:51:34,087 fail2ban.actions [806]: NOTICE [sshd] Ban 125.227.62.145 2019-12-19 11:43:53,644 fail2ban.actions [806]: NOTICE [sshd] Ban 125.227.62.145 2019-12-19 17:04:43,400 fail2ban.actions [806]: NOTICE [sshd] Ban 125.227.62.145 ...	2020-01-11 16:57:50
157.245.115.45	attackbotsspam	Jan 11 06:32:39 lnxded63 sshd[10436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.115.45	2020-01-11 17:07:38
124.156.50.196	attack	Jan 11 05:53:03 debian-2gb-nbg1-2 kernel: \[977692.487985\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=124.156.50.196 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=54321 PROTO=TCP SPT=60280 DPT=10333 WINDOW=65535 RES=0x00 SYN URGP=0	2020-01-11 16:41:19
222.186.30.12	attackspambots	Jan 11 09:44:56 mail sshd[13798]: Failed password for root from 222.186.30.12 port 43199 ssh2 ...	2020-01-11 17:01:32
190.14.235.194	attackspambots	Jan 11 05:52:57 grey postfix/smtpd\[16805\]: NOQUEUE: reject: RCPT from 19014235194.ip12.static.mediacommerce.com.co\[190.14.235.194\]: 554 5.7.1 Service unavailable\; Client host \[190.14.235.194\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[190.14.235.194\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-01-11 16:46:02
131.108.53.221	attack	[Sat Jan 11 11:52:52.178348 2020] [:error] [pid 8512:tid 140478037059328] [client 131.108.53.221:57715] [client 131.108.53.221] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197:80"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XhlUpFdOXXW0RQAWP01AeAAAAHs"] ...	2020-01-11 16:49:46
182.55.233.169	attackspam	Jan 11 05:53:14 grey postfix/smtpd\[9485\]: NOQUEUE: reject: RCPT from unknown\[182.55.233.169\]: 554 5.7.1 Service unavailable\; Client host \[182.55.233.169\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[182.55.233.169\]\; from=\ to=\ proto=ESMTP helo=\<\[182.55.233.169\]\> ...	2020-01-11 16:35:02
67.166.24.141	attack	Jan 11 10:46:58 areeb-Workstation sshd[14839]: Failed password for root from 67.166.24.141 port 38318 ssh2 ...	2020-01-11 16:54:57
37.49.231.108	attackbotsspam	SIP Server BruteForce Attack	2020-01-11 16:54:08
111.231.233.243	attackspam	Jan 11 07:58:59 vmanager6029 sshd\[31082\]: Invalid user liur from 111.231.233.243 port 42490 Jan 11 07:58:59 vmanager6029 sshd\[31082\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.233.243 Jan 11 07:59:01 vmanager6029 sshd\[31082\]: Failed password for invalid user liur from 111.231.233.243 port 42490 ssh2	2020-01-11 16:42:54
187.16.96.37	attackbotsspam	Jan 11 05:52:16 MK-Soft-VM5 sshd[9670]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.16.96.37 Jan 11 05:52:18 MK-Soft-VM5 sshd[9670]: Failed password for invalid user aartjan from 187.16.96.37 port 44338 ssh2 ...	2020-01-11 17:06:04
49.88.112.66	attack	Jan 11 09:53:59 v22018076622670303 sshd\[7673\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.66 user=root Jan 11 09:54:01 v22018076622670303 sshd\[7673\]: Failed password for root from 49.88.112.66 port 31364 ssh2 Jan 11 09:54:04 v22018076622670303 sshd\[7673\]: Failed password for root from 49.88.112.66 port 31364 ssh2 ...	2020-01-11 16:56:57

最近上报的IP列表

219.43.150.75	3.43.119.0	185.43.71.156	90.175.50.246
54.25.219.164	250.188.92.17	71.142.75.49	104.216.44.159
65.247.72.144	48.122.227.126	245.73.159.252	163.110.176.18
141.58.162.75	243.150.174.174	103.169.213.33	132.134.148.233
83.51.249.2	95.83.188.100	242.51.125.51	238.8.197.148