51.139.125.21 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 51.139.125.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58189
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;51.139.125.21.			IN	A

;; AUTHORITY SECTION:
.			453	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022010600 1800 900 604800 86400

;; Query time: 71 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 06 16:13:28 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 21.125.139.51.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 21.125.139.51.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
115.236.100.114	attack	Feb 23 01:46:07 srv01 sshd[1849]: Invalid user jiaxing from 115.236.100.114 port 62428 Feb 23 01:46:07 srv01 sshd[1849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.236.100.114 Feb 23 01:46:07 srv01 sshd[1849]: Invalid user jiaxing from 115.236.100.114 port 62428 Feb 23 01:46:09 srv01 sshd[1849]: Failed password for invalid user jiaxing from 115.236.100.114 port 62428 ssh2 Feb 23 01:48:57 srv01 sshd[1977]: Invalid user test from 115.236.100.114 port 7904 ...	2020-02-23 09:08:31
64.62.209.24	attackspam	Hits on port : 445	2020-02-23 08:57:31
99.84.32.111	attack	ET INFO TLS Handshake Failure - port: 26355 proto: TCP cat: Potentially Bad Traffic	2020-02-23 08:47:03
46.109.84.254	attack	port scan and connect, tcp 23 (telnet)	2020-02-23 09:04:53
183.63.87.236	attackbots	Feb 23 01:48:40 MK-Soft-VM3 sshd[11821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.63.87.236 Feb 23 01:48:42 MK-Soft-VM3 sshd[11821]: Failed password for invalid user ito_sei from 183.63.87.236 port 41980 ssh2 ...	2020-02-23 09:20:49
49.234.67.243	attack	Feb 22 14:47:33 hanapaa sshd\[17465\]: Invalid user zhangjg from 49.234.67.243 Feb 22 14:47:33 hanapaa sshd\[17465\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.67.243 Feb 22 14:47:35 hanapaa sshd\[17465\]: Failed password for invalid user zhangjg from 49.234.67.243 port 60914 ssh2 Feb 22 14:49:06 hanapaa sshd\[17611\]: Invalid user chris from 49.234.67.243 Feb 22 14:49:06 hanapaa sshd\[17611\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.67.243	2020-02-23 09:01:43
5.45.207.56	attackspam	[Sun Feb 23 07:48:59.754150 2020] [:error] [pid 30986:tid 139819816568576] [client 5.45.207.56:48173] [client 5.45.207.56] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XlHL@3nn4T3qN8rDCpmsPwAAAN8"] ...	2020-02-23 09:07:24
85.93.20.70	attackbots	ET SCAN MS Terminal Server Traffic on Non-standard Port - port: 443 proto: TCP cat: Attempted Information Leak	2020-02-23 08:48:54
51.77.202.172	attackspam	Feb 23 02:12:13 silence02 sshd[16500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.202.172 Feb 23 02:12:15 silence02 sshd[16500]: Failed password for invalid user ubuntu4 from 51.77.202.172 port 41900 ssh2 Feb 23 02:15:04 silence02 sshd[16727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.202.172	2020-02-23 09:24:35
222.186.175.202	attackbots	Feb 23 01:49:08 ns381471 sshd[15968]: Failed password for root from 222.186.175.202 port 26680 ssh2 Feb 23 01:49:23 ns381471 sshd[15968]: error: maximum authentication attempts exceeded for root from 222.186.175.202 port 26680 ssh2 [preauth]	2020-02-23 08:51:04
88.243.239.112	attackbotsspam	1582418918 - 02/23/2020 07:48:38 Host: 88.243.239.112.dynamic.ttnet.com.tr/88.243.239.112 Port: 23 TCP Blocked ...	2020-02-23 09:22:58
99.84.32.124	attackbots	ET INFO TLS Handshake Failure - port: 36421 proto: TCP cat: Potentially Bad Traffic	2020-02-23 08:46:34
222.186.15.158	attack	02/22/2020-20:23:15.209008 222.186.15.158 Protocol: 6 ET SCAN Potential SSH Scan	2020-02-23 09:23:47
137.74.184.197	attackspam	Feb 23 01:11:24 debian-2gb-nbg1-2 kernel: \[4675888.547063\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=137.74.184.197 DST=195.201.40.59 LEN=48 TOS=0x00 PREC=0x00 TTL=114 ID=56869 PROTO=TCP SPT=30222 DPT=22 WINDOW=65535 RES=0x00 SYN URGP=0	2020-02-23 08:44:30
178.128.18.231	attack	Feb 22 15:17:56 auw2 sshd\[12085\]: Invalid user teste from 178.128.18.231 Feb 22 15:17:56 auw2 sshd\[12085\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.18.231 Feb 22 15:17:58 auw2 sshd\[12085\]: Failed password for invalid user teste from 178.128.18.231 port 52248 ssh2 Feb 22 15:21:13 auw2 sshd\[12345\]: Invalid user jeff from 178.128.18.231 Feb 22 15:21:13 auw2 sshd\[12345\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.18.231	2020-02-23 09:22:27

最近上报的IP列表

137.42.103.245	8.47.145.83	161.254.242.189	164.153.53.149
216.34.249.24	53.34.216.3	73.216.242.134	11.24.187.179
222.192.245.100	40.165.52.214	45.132.21.42	158.150.172.95
56.79.201.103	137.184.77.116	205.250.231.183	128.232.32.208
125.124.119.104	255.126.37.200	137.109.51.82	33.89.161.147