52.249.21.111 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
52.249.218.234	attackspam	Jul 16 01:08:14 host sshd[9908]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.249.218.234 user=root Jul 16 01:08:16 host sshd[9908]: Failed password for root from 52.249.218.234 port 56108 ssh2 ...	2020-07-16 07:26:08
52.249.218.234	attack	Jul 15 15:26:50 ift sshd\[47461\]: Invalid user org from 52.249.218.234Jul 15 15:26:50 ift sshd\[47460\]: Invalid user ift.org.ua from 52.249.218.234Jul 15 15:26:51 ift sshd\[47460\]: Failed password for invalid user ift.org.ua from 52.249.218.234 port 10372 ssh2Jul 15 15:26:51 ift sshd\[47461\]: Failed password for invalid user org from 52.249.218.234 port 10371 ssh2Jul 15 15:26:51 ift sshd\[47459\]: Failed password for ift from 52.249.218.234 port 10370 ssh2 ...	2020-07-15 20:45:31
52.249.218.234	attack	Jul 14 15:48:43 eventyay sshd[7440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.249.218.234 Jul 14 15:48:43 eventyay sshd[7439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.249.218.234 Jul 14 15:48:45 eventyay sshd[7440]: Failed password for invalid user eventyay.com from 52.249.218.234 port 10339 ssh2 Jul 14 15:48:45 eventyay sshd[7439]: Failed password for invalid user eventyay from 52.249.218.234 port 10338 ssh2 ...	2020-07-15 00:22:45
52.249.217.244	attackbots	Jun 28 16:38:43 mail sshd\[38707\]: Invalid user zte from 52.249.217.244 Jun 28 16:38:43 mail sshd\[38707\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.249.217.244 ...	2020-06-29 05:01:42
52.249.217.244	attackbotsspam	Jun 28 01:28:34 eventyay sshd[7135]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.249.217.244 Jun 28 01:28:36 eventyay sshd[7135]: Failed password for invalid user oracle from 52.249.217.244 port 60792 ssh2 Jun 28 01:31:31 eventyay sshd[7213]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.249.217.244 ...	2020-06-28 07:50:33
52.249.217.244	attackbotsspam	21 attempts against mh-ssh on milky	2020-06-23 14:44:00

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.249.21.111
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11232
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;52.249.21.111.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012802 1800 900 604800 86400

;; Query time: 35 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 29 09:03:08 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

Host 111.21.249.52.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 111.21.249.52.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
106.13.125.84	attack	2019-12-07T23:53:45.842223abusebot-6.cloudsearch.cf sshd\[19691\]: Invalid user guest from 106.13.125.84 port 56744	2019-12-08 08:17:26
49.234.20.181	attackspambots	Dec 8 00:25:41 vtv3 sshd[18224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.20.181 Dec 8 00:25:44 vtv3 sshd[18224]: Failed password for invalid user guest from 49.234.20.181 port 41808 ssh2 Dec 8 00:32:21 vtv3 sshd[21277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.20.181 Dec 8 00:44:53 vtv3 sshd[27416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.20.181 Dec 8 00:44:55 vtv3 sshd[27416]: Failed password for invalid user yonemoto from 49.234.20.181 port 37210 ssh2 Dec 8 00:51:44 vtv3 sshd[31153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.20.181 Dec 8 01:05:05 vtv3 sshd[5112]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.20.181 Dec 8 01:05:07 vtv3 sshd[5112]: Failed password for invalid user ji from 49.234.20.181 port 60842 ssh2 Dec 8 01:11:26 v	2019-12-08 08:41:31
84.53.244.182	attack	Unauthorized connection attempt from IP address 84.53.244.182 on Port 445(SMB)	2019-12-08 08:21:01
182.156.209.222	attack	Dec 8 01:13:19 loxhost sshd\[18657\]: Invalid user guest from 182.156.209.222 port 32552 Dec 8 01:13:19 loxhost sshd\[18657\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.156.209.222 Dec 8 01:13:21 loxhost sshd\[18657\]: Failed password for invalid user guest from 182.156.209.222 port 32552 ssh2 Dec 8 01:19:33 loxhost sshd\[18882\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.156.209.222 user=root Dec 8 01:19:35 loxhost sshd\[18882\]: Failed password for root from 182.156.209.222 port 10473 ssh2 ...	2019-12-08 08:42:35
104.192.0.62	attack	CloudCIX Reconnaissance Scan Detected, PTR: host-104-192-0-62.datawagon.net.	2019-12-08 08:24:55
182.171.245.130	attack	Dec 8 03:21:48 microserver sshd[44820]: Invalid user mountsys from 182.171.245.130 port 59152 Dec 8 03:21:48 microserver sshd[44820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.171.245.130 Dec 8 03:21:49 microserver sshd[44820]: Failed password for invalid user mountsys from 182.171.245.130 port 59152 ssh2 Dec 8 03:30:19 microserver sshd[46275]: Invalid user dylan from 182.171.245.130 port 61017 Dec 8 03:30:19 microserver sshd[46275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.171.245.130 Dec 8 04:02:40 microserver sshd[51279]: Invalid user ind from 182.171.245.130 port 63284 Dec 8 04:02:40 microserver sshd[51279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.171.245.130 Dec 8 04:02:42 microserver sshd[51279]: Failed password for invalid user ind from 182.171.245.130 port 63284 ssh2 Dec 8 04:10:46 microserver sshd[52682]: pam_unix(sshd:auth): authentication	2019-12-08 08:26:37
206.81.8.14	attackbotsspam	fail2ban	2019-12-08 08:12:19
78.231.60.44	attackbots	Too many connections or unauthorized access detected from Arctic banned ip	2019-12-08 08:25:24
94.102.49.65	attackspam	firewall-block, port(s): 51000/tcp, 59000/tcp, 65000/tcp	2019-12-08 08:45:20
138.197.103.160	attackspam	Dec 7 14:20:50 web9 sshd\[22340\]: Invalid user admin from 138.197.103.160 Dec 7 14:20:50 web9 sshd\[22340\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.103.160 Dec 7 14:20:52 web9 sshd\[22340\]: Failed password for invalid user admin from 138.197.103.160 port 53994 ssh2 Dec 7 14:26:29 web9 sshd\[23228\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.103.160 user=uucp Dec 7 14:26:30 web9 sshd\[23228\]: Failed password for uucp from 138.197.103.160 port 36530 ssh2	2019-12-08 08:30:23
49.231.222.5	attackbots	Unauthorized connection attempt from IP address 49.231.222.5 on Port 445(SMB)	2019-12-08 08:41:52
37.187.75.56	attackspam	B: /wp-login.php attack	2019-12-08 08:39:09
89.45.17.11	attack	Dec 8 01:34:26 vpn01 sshd[12428]: Failed password for root from 89.45.17.11 port 52846 ssh2 ...	2019-12-08 08:43:12
222.186.175.215	attack	Dec 8 01:27:48 vmd17057 sshd\[20563\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.215 user=root Dec 8 01:27:50 vmd17057 sshd\[20563\]: Failed password for root from 222.186.175.215 port 41688 ssh2 Dec 8 01:27:54 vmd17057 sshd\[20563\]: Failed password for root from 222.186.175.215 port 41688 ssh2 ...	2019-12-08 08:29:13
120.26.95.190	attackspam	120.26.95.190 - - \[07/Dec/2019:23:30:11 +0000\] "POST /wp-login.php HTTP/1.1" 200 6393 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 120.26.95.190 - - \[07/Dec/2019:23:30:12 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2019-12-08 08:45:45

最近上报的IP列表

107.34.110.156	210.244.30.64	30.34.71.23	147.248.212.187
157.50.114.90	223.66.109.238	25.185.141.63	91.79.184.103
211.139.249.248	137.54.52.25	173.124.52.183	5.82.44.108
115.121.32.179	154.57.133.138	96.126.157.165	255.70.184.92
206.179.95.74	185.133.13.142	234.37.24.169	115.9.239.246