1.1.253.104 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Thailand

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.1.253.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54847
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.1.253.104.			IN	A

;; AUTHORITY SECTION:
.			340	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022302 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 09:55:25 CST 2022
;; MSG SIZE  rcvd: 104

HOST信息:

104.253.1.1.in-addr.arpa domain name pointer node-ors.pool-1-1.dynamic.totinternet.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
104.253.1.1.in-addr.arpa	name = node-ors.pool-1-1.dynamic.totinternet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
185.53.88.29	attack	DoS Attack & UDP Port Scan on my network.	2019-08-12 12:35:59
45.55.131.104	attackspam	Aug 11 21:19:41 askasleikir sshd[30073]: Failed password for invalid user io from 45.55.131.104 port 46431 ssh2	2019-08-12 12:18:47
51.158.113.194	attack	Lines containing failures of 51.158.113.194 Aug 12 04:53:10 mailserver sshd[7047]: Invalid user chang from 51.158.113.194 port 59822 Aug 12 04:53:10 mailserver sshd[7047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.113.194 Aug 12 04:53:12 mailserver sshd[7047]: Failed password for invalid user chang from 51.158.113.194 port 59822 ssh2 Aug 12 04:53:12 mailserver sshd[7047]: Received disconnect from 51.158.113.194 port 59822:11: Bye Bye [preauth] Aug 12 04:53:12 mailserver sshd[7047]: Disconnected from invalid user chang 51.158.113.194 port 59822 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=51.158.113.194	2019-08-12 12:26:57
122.5.45.242	attackbotsspam	Unauthorised access (Aug 12) SRC=122.5.45.242 LEN=40 TTL=47 ID=1749 TCP DPT=8080 WINDOW=48967 SYN	2019-08-12 12:09:11
140.246.175.68	attackspambots	Aug 12 08:11:12 w sshd[29230]: Invalid user basket from 140.246.175.68 Aug 12 08:11:12 w sshd[29230]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.246.175.68 Aug 12 08:11:14 w sshd[29230]: Failed password for invalid user basket from 140.246.175.68 port 43091 ssh2 Aug 12 08:11:14 w sshd[29230]: Received disconnect from 140.246.175.68: 11: Bye Bye [preauth] Aug 12 08:32:24 w sshd[29334]: Invalid user applmgr from 140.246.175.68 Aug 12 08:32:24 w sshd[29334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.246.175.68 Aug 12 08:32:26 w sshd[29334]: Failed password for invalid user applmgr from 140.246.175.68 port 60161 ssh2 Aug 12 08:32:27 w sshd[29334]: Received disconnect from 140.246.175.68: 11: Bye Bye [preauth] Aug 12 08:40:07 w sshd[29393]: Connection closed by 140.246.175.68 [preauth] Aug 12 08:41:01 w sshd[29536]: Invalid user ihostnamekgp from 140.246.175.68 Aug 12 08:41:0........ -------------------------------	2019-08-12 12:18:07
195.43.189.10	attackbots	2019-08-12T04:03:09.633460abusebot-8.cloudsearch.cf sshd\[26885\]: Invalid user haupt from 195.43.189.10 port 47140	2019-08-12 12:13:05
115.254.63.52	attackbots	Aug 12 06:24:28 vps65 sshd\[26157\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.254.63.52 user=ftp Aug 12 06:24:30 vps65 sshd\[26157\]: Failed password for ftp from 115.254.63.52 port 33262 ssh2 ...	2019-08-12 12:33:06
192.99.12.24	attackbotsspam	Aug 12 06:22:32 vps647732 sshd[14042]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.12.24 Aug 12 06:22:33 vps647732 sshd[14042]: Failed password for invalid user os from 192.99.12.24 port 36156 ssh2 ...	2019-08-12 12:39:29
141.98.9.205	attack	Aug 12 06:33:54 Server12 postfix/smtpd[10912]: warning: unknown[141.98.9.205]: SASL LOGIN authentication failed: authentication failure	2019-08-12 12:42:54
185.53.88.29	attack	DoS Attack & UDP Port Scan on my network.	2019-08-12 12:36:06
149.56.13.165	attackbots	Aug 12 09:51:47 vibhu-HP-Z238-Microtower-Workstation sshd\[30782\]: Invalid user cyborg from 149.56.13.165 Aug 12 09:51:47 vibhu-HP-Z238-Microtower-Workstation sshd\[30782\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.13.165 Aug 12 09:51:49 vibhu-HP-Z238-Microtower-Workstation sshd\[30782\]: Failed password for invalid user cyborg from 149.56.13.165 port 52150 ssh2 Aug 12 09:56:07 vibhu-HP-Z238-Microtower-Workstation sshd\[30890\]: Invalid user mom from 149.56.13.165 Aug 12 09:56:08 vibhu-HP-Z238-Microtower-Workstation sshd\[30890\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.13.165 ...	2019-08-12 12:38:53
91.250.242.12	attack	v+ssh-bruteforce	2019-08-12 12:29:02
218.92.0.138	attackbotsspam	$f2bV_matches_ltvn	2019-08-12 12:34:23
179.228.207.33	attackbotsspam	[MonAug1204:44:37.5058452019][:error][pid14494:tid47981871048448][client179.228.207.33:51677][client179.228.207.33]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"[a-z0-9]~\$"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"1257"][id"390581"][rev"1"][msg"Atomicorp.comWAFRules:AttackBlocked-DataLeakage-attempttoaccessbackupfile$disablethisruleifyourequireaccesstofilesthatendwithatilde$"][severity"CRITICAL"][hostname"panfm.ch"][uri"/wp-config.php~"][unique_id"XVDSlW2NUuR0HIhOdNbX9wAAAVI"][MonAug1204:45:01.1614272019][:error][pid14492:tid47981843732224][client179.228.207.33:51908][client179.228.207.33]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$wp-$\?config\\\\\\\\.$php\\\\\\\\.$\?$\?:bac\?k\\|o\(\?:ld\\|rig$\\|copy\\|s$\?:ave\\|wp$\\|vim\?\\\\\\\\.\\|~\)"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"1254"][id"390597"][rev"1"][msg"Atomicorp.comWAFRules:AttackBlocked-Da	2019-08-12 12:26:00
91.106.193.72	attackspambots	Aug 12 02:44:32 unicornsoft sshd\[30832\]: User root from 91.106.193.72 not allowed because not listed in AllowUsers Aug 12 02:44:32 unicornsoft sshd\[30832\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.193.72 user=root Aug 12 02:44:35 unicornsoft sshd\[30832\]: Failed password for invalid user root from 91.106.193.72 port 59500 ssh2	2019-08-12 12:35:21

最近上报的IP列表

106.90.185.157	1.1.253.109	1.1.253.111	1.1.253.135
1.1.253.168	1.1.253.2	1.1.253.205	1.1.253.63
1.1.253.69	1.1.253.88	1.1.253.90	1.1.254.109
1.1.254.124	1.1.254.159	1.1.254.179	1.1.255.186
1.1.255.224	227.0.228.244	1.1.255.232	1.1.255.85