113.195.21.252

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
113.195.21.66	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 5433521fe8f3ed17 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:70.0) Gecko/20100101 Firefox/70.0 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 06:25:59

Type

Details

Datetime

113.195.21.66

attackbotsspam

The IP has triggered Cloudflare WAF. CF-Ray: 5433521fe8f3ed17 | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: api.skk.moe | User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:70.0) Gecko/20100101 Firefox/70.0 | CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-12 06:25:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.195.21.252
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6454
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;113.195.21.252.			IN	A

;; AUTHORITY SECTION:
.			598	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 13:36:52 CST 2022
;; MSG SIZE  rcvd: 107

Host info

252.21.195.113.in-addr.arpa domain name pointer 252.21.195.113.adsl-pool.jx.chinaunicom.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
252.21.195.113.in-addr.arpa	name = 252.21.195.113.adsl-pool.jx.chinaunicom.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
125.212.207.205	attackspam	Feb 12 06:36:01 web1 sshd\[13032\]: Invalid user roethe from 125.212.207.205 Feb 12 06:36:01 web1 sshd\[13032\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.207.205 Feb 12 06:36:03 web1 sshd\[13032\]: Failed password for invalid user roethe from 125.212.207.205 port 34316 ssh2 Feb 12 06:39:43 web1 sshd\[13420\]: Invalid user deiondre from 125.212.207.205 Feb 12 06:39:43 web1 sshd\[13420\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.207.205	2020-02-13 00:40:00
31.11.190.212	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-13 00:54:28
60.250.48.187	attackspam	20/2/12@08:44:44: FAIL: Alarm-Network address from=60.250.48.187 ...	2020-02-13 00:45:10
105.212.100.78	attack	Automatic report - Port Scan Attack	2020-02-13 00:44:24
152.136.101.65	attack	Feb 12 20:40:07 gw1 sshd[16128]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.101.65 Feb 12 20:40:10 gw1 sshd[16128]: Failed password for invalid user spela from 152.136.101.65 port 33110 ssh2 ...	2020-02-13 00:57:07
185.173.92.217	attack	Unauthorized connection attempt detected from IP address 185.173.92.217 to port 445	2020-02-13 00:50:30
114.35.118.163	attackspam	" "	2020-02-13 00:48:16
222.186.30.145	attackbots	Feb 12 17:53:04 MK-Soft-VM6 sshd[24396]: Failed password for root from 222.186.30.145 port 64324 ssh2 Feb 12 17:53:08 MK-Soft-VM6 sshd[24396]: Failed password for root from 222.186.30.145 port 64324 ssh2 ...	2020-02-13 00:58:43
170.210.214.50	attackbots	ssh failed login	2020-02-13 01:00:43
62.234.156.66	attack	Fail2Ban Ban Triggered	2020-02-13 00:36:37
180.168.95.234	attackbots	Feb 12 06:50:03 hpm sshd\[2936\]: Invalid user alene from 180.168.95.234 Feb 12 06:50:03 hpm sshd\[2936\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.168.95.234 Feb 12 06:50:06 hpm sshd\[2936\]: Failed password for invalid user alene from 180.168.95.234 port 39226 ssh2 Feb 12 06:52:54 hpm sshd\[3275\]: Invalid user pokemon from 180.168.95.234 Feb 12 06:52:54 hpm sshd\[3275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.168.95.234	2020-02-13 01:00:09
128.199.220.232	attack	Feb 12 16:42:48 plex sshd[29779]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.220.232 user=root Feb 12 16:42:50 plex sshd[29779]: Failed password for root from 128.199.220.232 port 37994 ssh2	2020-02-13 00:47:22
106.13.208.49	attackbotsspam	Feb 12 14:41:15 legacy sshd[32734]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.208.49 Feb 12 14:41:17 legacy sshd[32734]: Failed password for invalid user allstate from 106.13.208.49 port 57054 ssh2 Feb 12 14:44:38 legacy sshd[495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.208.49 ...	2020-02-13 00:53:28
91.121.16.153	attack	Feb 12 17:13:49 SilenceServices sshd[1019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.16.153 Feb 12 17:13:52 SilenceServices sshd[1019]: Failed password for invalid user jenny1 from 91.121.16.153 port 48208 ssh2 Feb 12 17:19:09 SilenceServices sshd[8306]: Failed password for root from 91.121.16.153 port 33737 ssh2	2020-02-13 01:03:28
117.5.224.110	attackbots	Telnet Server BruteForce Attack	2020-02-13 00:39:08

Recently Reported IPs

113.195.21.246	113.195.21.233	113.195.21.28	113.195.21.33
113.195.21.35	113.195.224.91	113.195.21.51	113.195.21.43
113.195.21.99	113.195.210.222	113.195.210.34	113.195.21.73
113.195.21.54	113.195.21.89	113.195.21.84	113.195.21.94
113.195.224.92	113.195.22.106	113.195.22.101	113.195.22.128