1.53.207.139 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): FPT Broadband Service

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
1.53.207.225	attackbotsspam	firewall-block, port(s): 445/tcp	2020-06-24 20:18:14
1.53.207.12	attackbots	Jan 31 09:27:58 mxgate1 postfix/postscreen[11466]: CONNECT from [1.53.207.12]:38875 to [176.31.12.44]:25 Jan 31 09:27:58 mxgate1 postfix/dnsblog[11471]: addr 1.53.207.12 listed by domain zen.spamhaus.org as 127.0.0.10 Jan 31 09:27:58 mxgate1 postfix/dnsblog[11471]: addr 1.53.207.12 listed by domain zen.spamhaus.org as 127.0.0.3 Jan 31 09:27:58 mxgate1 postfix/dnsblog[11471]: addr 1.53.207.12 listed by domain zen.spamhaus.org as 127.0.0.4 Jan 31 09:27:58 mxgate1 postfix/dnsblog[11468]: addr 1.53.207.12 listed by domain cbl.abuseat.org as 127.0.0.2 Jan 31 09:27:58 mxgate1 postfix/dnsblog[11467]: addr 1.53.207.12 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Jan 31 09:27:58 mxgate1 postfix/dnsblog[11469]: addr 1.53.207.12 listed by domain bl.spamcop.net as 127.0.0.2 Jan 31 09:27:58 mxgate1 postfix/dnsblog[11470]: addr 1.53.207.12 listed by domain b.barracudacentral.org as 127.0.0.2 Jan 31 09:28:04 mxgate1 postfix/postscreen[11466]: DNSBL rank 6 for [1.53.207.12]:38875 ........ -------------------------------	2020-01-31 23:22:10
1.53.207.67	attackbotsspam	Unauthorised access (Sep 23) SRC=1.53.207.67 LEN=40 TTL=47 ID=2461 TCP DPT=8080 WINDOW=20850 SYN	2019-09-23 06:43:16

类型

评论内容

时间

1.53.207.225

attackbotsspam

firewall-block, port(s): 445/tcp

2020-06-24 20:18:14

1.53.207.12

attackbots

Jan 31 09:27:58 mxgate1 postfix/postscreen[11466]: CONNECT from [1.53.207.12]:38875 to [176.31.12.44]:25
Jan 31 09:27:58 mxgate1 postfix/dnsblog[11471]: addr 1.53.207.12 listed by domain zen.spamhaus.org as 127.0.0.10
Jan 31 09:27:58 mxgate1 postfix/dnsblog[11471]: addr 1.53.207.12 listed by domain zen.spamhaus.org as 127.0.0.3
Jan 31 09:27:58 mxgate1 postfix/dnsblog[11471]: addr 1.53.207.12 listed by domain zen.spamhaus.org as 127.0.0.4
Jan 31 09:27:58 mxgate1 postfix/dnsblog[11468]: addr 1.53.207.12 listed by domain cbl.abuseat.org as 127.0.0.2
Jan 31 09:27:58 mxgate1 postfix/dnsblog[11467]: addr 1.53.207.12 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2
Jan 31 09:27:58 mxgate1 postfix/dnsblog[11469]: addr 1.53.207.12 listed by domain bl.spamcop.net as 127.0.0.2
Jan 31 09:27:58 mxgate1 postfix/dnsblog[11470]: addr 1.53.207.12 listed by domain b.barracudacentral.org as 127.0.0.2
Jan 31 09:28:04 mxgate1 postfix/postscreen[11466]: DNSBL rank 6 for [1.53.207.12]:38875
........
-------------------------------

2020-01-31 23:22:10

1.53.207.67

attackbotsspam

Unauthorised access (Sep 23) SRC=1.53.207.67 LEN=40 TTL=47 ID=2461 TCP DPT=8080 WINDOW=20850 SYN

2019-09-23 06:43:16

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.53.207.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51889
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.53.207.139.			IN	A

;; AUTHORITY SECTION:
.			547	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070101 1800 900 604800 86400

;; Query time: 88 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jul 01 13:44:34 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 139.207.53.1.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 139.207.53.1.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
111.231.100.167	attackspambots	Oct 21 04:12:37 venus sshd\[32703\]: Invalid user asd789 from 111.231.100.167 port 49409 Oct 21 04:12:37 venus sshd\[32703\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.100.167 Oct 21 04:12:38 venus sshd\[32703\]: Failed password for invalid user asd789 from 111.231.100.167 port 49409 ssh2 ...	2019-10-21 17:53:00
103.56.113.201	attackbots	Oct 21 11:37:52 vps691689 sshd[27355]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.56.113.201 Oct 21 11:37:54 vps691689 sshd[27355]: Failed password for invalid user alanna from 103.56.113.201 port 50471 ssh2 ...	2019-10-21 17:56:07
128.199.138.31	attack	Oct 21 10:17:14 icinga sshd[17559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.138.31 Oct 21 10:17:15 icinga sshd[17559]: Failed password for invalid user Woodmere from 128.199.138.31 port 41078 ssh2 ...	2019-10-21 17:55:12
87.241.167.50	attackbots	Automatic report - Port Scan Attack	2019-10-21 17:50:26
124.243.245.3	attack	Oct 21 11:37:54 localhost sshd\[5391\]: Invalid user db2fenc1 from 124.243.245.3 port 46728 Oct 21 11:37:54 localhost sshd\[5391\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.243.245.3 Oct 21 11:37:56 localhost sshd\[5391\]: Failed password for invalid user db2fenc1 from 124.243.245.3 port 46728 ssh2	2019-10-21 17:52:00
140.249.22.238	attackspambots	Oct 20 23:33:34 hpm sshd\[22096\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.22.238 user=root Oct 20 23:33:37 hpm sshd\[22096\]: Failed password for root from 140.249.22.238 port 46210 ssh2 Oct 20 23:38:30 hpm sshd\[22487\]: Invalid user user from 140.249.22.238 Oct 20 23:38:30 hpm sshd\[22487\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.22.238 Oct 20 23:38:33 hpm sshd\[22487\]: Failed password for invalid user user from 140.249.22.238 port 55406 ssh2	2019-10-21 17:49:20
193.32.160.149	attackspam	Oct 21 07:07:05 relay postfix/smtpd\[17357\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.149\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[193.32.160.146\]\> Oct 21 07:07:05 relay postfix/smtpd\[17357\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.149\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[193.32.160.146\]\> Oct 21 07:07:05 relay postfix/smtpd\[17357\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.149\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[193.32.160.146\]\> Oct 21 07:07:05 relay postfix/smtpd\[17357\]: NOQUEUE: reject: RCPT from unknown\[193.32.160.149\]: 554 5.7.1 \: Relay access denied\; from=\ to=\< ...	2019-10-21 17:34:56
140.143.59.171	attack	Oct 21 06:48:13 bouncer sshd\[2977\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.59.171 user=root Oct 21 06:48:15 bouncer sshd\[2977\]: Failed password for root from 140.143.59.171 port 19089 ssh2 Oct 21 06:53:15 bouncer sshd\[3000\]: Invalid user central from 140.143.59.171 port 56407 ...	2019-10-21 17:30:53
95.66.200.92	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/95.66.200.92/ RU - 1H : (152) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : RU NAME ASN : ASN35645 IP : 95.66.200.92 CIDR : 95.66.200.0/23 PREFIX COUNT : 29 UNIQUE IP COUNT : 28416 ATTACKS DETECTED ASN35645 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-21 05:46:15 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-21 17:35:20
139.59.61.134	attack	Oct 21 02:59:03 server sshd[4950]: reveeclipse mapping checking getaddrinfo for 248138.cloudwaysapps.com [139.59.61.134] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 21 02:59:03 server sshd[4950]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.61.134 user=r.r Oct 21 02:59:05 server sshd[4950]: Failed password for r.r from 139.59.61.134 port 41457 ssh2 Oct 21 02:59:06 server sshd[4950]: Received disconnect from 139.59.61.134: 11: Bye Bye [preauth] Oct 21 03:08:51 server sshd[5068]: reveeclipse mapping checking getaddrinfo for 248138.cloudwaysapps.com [139.59.61.134] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 21 03:08:51 server sshd[5068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.61.134 user=r.r Oct 21 03:08:53 server sshd[5068]: Failed password for r.r from 139.59.61.134 port 47418 ssh2 Oct 21 03:08:53 server sshd[5068]: Received disconnect from 139.59.61.134: 11: Bye Bye [pre........ -------------------------------	2019-10-21 17:44:55
5.201.161.162	attackbotsspam	Unauthorised access (Oct 21) SRC=5.201.161.162 LEN=44 PREC=0x20 TTL=235 ID=38310 TCP DPT=445 WINDOW=1024 SYN	2019-10-21 17:37:32
198.211.123.183	attack	Oct 21 05:45:36 MK-Soft-Root1 sshd[1986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.211.123.183 Oct 21 05:45:39 MK-Soft-Root1 sshd[1986]: Failed password for invalid user jboss from 198.211.123.183 port 52464 ssh2 ...	2019-10-21 17:49:48
212.237.62.168	attack	Triggered by Fail2Ban at Vostok web server	2019-10-21 17:44:22
145.239.88.184	attack	Oct 21 06:32:50 meumeu sshd[3852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.88.184 Oct 21 06:32:52 meumeu sshd[3852]: Failed password for invalid user kolen from 145.239.88.184 port 45298 ssh2 Oct 21 06:36:52 meumeu sshd[4582]: Failed password for root from 145.239.88.184 port 56032 ssh2 ...	2019-10-21 17:59:22
192.157.236.124	attack	2019-10-21T05:49:14.793704ns525875 sshd\[13456\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.236-157-192.rdns.scalabledns.com user=root 2019-10-21T05:49:17.098681ns525875 sshd\[13456\]: Failed password for root from 192.157.236.124 port 39126 ssh2 2019-10-21T05:52:42.015610ns525875 sshd\[17608\]: Invalid user dbps from 192.157.236.124 port 51330 2019-10-21T05:52:42.022413ns525875 sshd\[17608\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.236-157-192.rdns.scalabledns.com ...	2019-10-21 17:57:14

最近上报的IP列表

142.63.129.51	59.115.231.183	205.49.68.145	47.110.237.202
113.179.83.114	160.236.252.151	121.104.40.32	77.159.223.249
103.109.2.18	58.252.187.50	14.102.246.124	172.212.197.52
44.166.20.245	1.34.180.216	101.67.245.6	148.146.198.93
144.87.170.250	187.112.13.43	168.141.186.226	220.134.85.192