109.198.253.142

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.198.253.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28855
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;109.198.253.142.		IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021901 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 02:30:51 CST 2025
;; MSG SIZE  rcvd: 108

HOST信息:

Host 142.253.198.109.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.253.198.109.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
186.121.243.218	attack	v+ssh-bruteforce	2019-08-08 02:16:01
182.71.152.7	attackspam	#4284 - [182.71.152.70] Closing connection (IP still banned) #4284 - [182.71.152.70] Closing connection (IP still banned) #4284 - [182.71.152.70] Closing connection (IP still banned) #4284 - [182.71.152.70] Closing connection (IP still banned) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=182.71.152.7	2019-08-08 01:53:05
192.3.194.61	attack	Aug 6 18:12:53 localhost kernel: [16373766.394174] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=192.3.194.61 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=24265 PROTO=TCP SPT=47743 DPT=445 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 6 18:12:53 localhost kernel: [16373766.395072] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=192.3.194.61 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=24265 PROTO=TCP SPT=47743 DPT=445 SEQ=922042122 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 7 13:47:32 localhost kernel: [16444246.088146] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=192.3.194.61 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=19018 PROTO=TCP SPT=48446 DPT=445 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 7 13:47:32 localhost kernel: [16444246.088153] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=192.3.194.61 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x0	2019-08-08 01:51:21
103.96.75.176	attack	Aug 7 12:41:30 aat-srv002 sshd[14205]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.96.75.176 Aug 7 12:41:32 aat-srv002 sshd[14205]: Failed password for invalid user emely from 103.96.75.176 port 49562 ssh2 Aug 7 12:46:56 aat-srv002 sshd[14327]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.96.75.176 Aug 7 12:46:58 aat-srv002 sshd[14327]: Failed password for invalid user tom from 103.96.75.176 port 47143 ssh2 ...	2019-08-08 02:07:58
121.62.222.6	attackbots	Aug 7 17:58:15 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 121.62.222.6 port 37339 ssh2 (target: 158.69.100.156:22, password: r.r) Aug 7 17:58:16 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 121.62.222.6 port 37339 ssh2 (target: 158.69.100.156:22, password: nosoup4u) Aug 7 17:58:16 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 121.62.222.6 port 37339 ssh2 (target: 158.69.100.156:22, password: 12345) Aug 7 17:58:16 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 121.62.222.6 port 37339 ssh2 (target: 158.69.100.156:22, password: uClinux) Aug 7 17:58:17 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 121.62.222.6 port 37339 ssh2 (target: 158.69.100.156:22, password: 000000) Aug 7 17:58:17 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 121.62.222.6 port 37339 ssh2 (target: 158.69.100.156:22, password: welc0me) Aug 7 17:58:17 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 121........ ------------------------------	2019-08-08 02:17:54
92.119.160.125	attackspam	10609/tcp 10722/tcp 10626/tcp... [2019-06-12/08-07]9223pkt,2528pt.(tcp)	2019-08-08 02:06:40
123.10.66.30	attackspambots	Aug 7 19:30:29 db01 sshd[18809]: reveeclipse mapping checking getaddrinfo for hn.kd.ny.adsl [123.10.66.30] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 7 19:30:29 db01 sshd[18809]: Invalid user support from 123.10.66.30 Aug 7 19:30:29 db01 sshd[18809]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.10.66.30 Aug 7 19:30:31 db01 sshd[18809]: Failed password for invalid user support from 123.10.66.30 port 59065 ssh2 Aug 7 19:30:33 db01 sshd[18809]: Failed password for invalid user support from 123.10.66.30 port 59065 ssh2 Aug 7 19:30:35 db01 sshd[18809]: Failed password for invalid user support from 123.10.66.30 port 59065 ssh2 Aug 7 19:30:38 db01 sshd[18809]: Failed password for invalid user support from 123.10.66.30 port 59065 ssh2 Aug 7 19:30:40 db01 sshd[18809]: Failed password for invalid user support from 123.10.66.30 port 59065 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=123.10.66.30	2019-08-08 01:50:48
113.23.231.90	attackbotsspam	Aug 7 06:48:29 MK-Soft-VM5 sshd\[15170\]: Invalid user logstash from 113.23.231.90 port 59196 Aug 7 06:48:29 MK-Soft-VM5 sshd\[15170\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.23.231.90 Aug 7 06:48:31 MK-Soft-VM5 sshd\[15170\]: Failed password for invalid user logstash from 113.23.231.90 port 59196 ssh2 ...	2019-08-08 01:33:17
18.216.60.38	attackspam	Aug 7 20:46:50 tuotantolaitos sshd[2057]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=18.216.60.38 Aug 7 20:46:52 tuotantolaitos sshd[2057]: Failed password for invalid user kapaul from 18.216.60.38 port 43492 ssh2 ...	2019-08-08 02:11:16
1.192.126.86	attack	SSH/22 MH Probe, BF, Hack -	2019-08-08 02:05:37
130.43.4.135	attackspambots	Telnet/23 MH Probe, BF, Hack -	2019-08-08 01:48:09
91.214.211.187	attack	Automatic report - Port Scan Attack	2019-08-08 01:54:54
182.61.177.109	attack	Automated report - ssh fail2ban: Aug 7 19:13:40 authentication failure Aug 7 19:13:42 wrong password, user=mirror02, port=42158, ssh2 Aug 7 19:47:13 authentication failure	2019-08-08 01:58:10
122.246.35.197	attackbotsspam	Aug 7 08:31:58 garuda postfix/smtpd[61998]: connect from unknown[122.246.35.197] Aug 7 08:31:58 garuda postfix/smtpd[61999]: connect from unknown[122.246.35.197] Aug 7 08:32:02 garuda postfix/smtpd[61999]: warning: unknown[122.246.35.197]: SASL LOGIN authentication failed: authentication failure Aug 7 08:32:02 garuda postfix/smtpd[61999]: lost connection after AUTH from unknown[122.246.35.197] Aug 7 08:32:02 garuda postfix/smtpd[61999]: disconnect from unknown[122.246.35.197] ehlo=1 auth=0/1 commands=1/2 Aug 7 08:32:02 garuda postfix/smtpd[61999]: connect from unknown[122.246.35.197] Aug 7 08:32:05 garuda postfix/smtpd[61999]: warning: unknown[122.246.35.197]: SASL LOGIN authentication failed: authentication failure Aug 7 08:32:06 garuda postfix/smtpd[61999]: lost connection after AUTH from unknown[122.246.35.197] Aug 7 08:32:06 garuda postfix/smtpd[61999]: disconnect from unknown[122.246.35.197] ehlo=1 auth=0/1 commands=1/2 Aug 7 08:32:06 garuda postfix/smtpd........ -------------------------------	2019-08-08 01:28:52
103.48.193.61	attackbots	fail2ban honeypot	2019-08-08 01:49:03

最近上报的IP列表

242.21.225.77	67.219.117.60	137.215.173.76	80.89.89.106
123.84.192.253	152.19.152.108	20.105.140.244	72.101.207.203
142.39.228.206	240.145.203.34	42.227.124.177	196.109.109.196
159.162.44.78	156.85.137.30	155.63.224.243	3.171.255.243
18.93.226.7	205.121.2.6	24.207.94.85	234.175.233.87