12.53.238.137 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 12.53.238.137
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3470
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;12.53.238.137.			IN	A

;; AUTHORITY SECTION:
.			592	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022601 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 11:26:15 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 137.238.53.12.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 137.238.53.12.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
157.230.160.113	attack	Apr 9 03:01:59 web1 sshd\[855\]: Invalid user dst from 157.230.160.113 Apr 9 03:01:59 web1 sshd\[855\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.160.113 Apr 9 03:02:01 web1 sshd\[855\]: Failed password for invalid user dst from 157.230.160.113 port 47674 ssh2 Apr 9 03:03:39 web1 sshd\[1005\]: Invalid user admin from 157.230.160.113 Apr 9 03:03:39 web1 sshd\[1005\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.160.113	2020-04-09 21:41:43
51.158.23.10	attackspambots	Unauthorized access to SSH at 9/Apr/2020:13:02:56 +0000.	2020-04-09 22:37:19
84.1.30.70	attackbotsspam	web-1 [ssh] SSH Attack	2020-04-09 21:28:55
51.83.45.93	attackbotsspam	2020-04-09T12:57:46.141723abusebot-8.cloudsearch.cf sshd[11726]: Invalid user xerox from 51.83.45.93 port 43464 2020-04-09T12:57:46.149885abusebot-8.cloudsearch.cf sshd[11726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.ip-51-83-45.eu 2020-04-09T12:57:46.141723abusebot-8.cloudsearch.cf sshd[11726]: Invalid user xerox from 51.83.45.93 port 43464 2020-04-09T12:57:48.196554abusebot-8.cloudsearch.cf sshd[11726]: Failed password for invalid user xerox from 51.83.45.93 port 43464 ssh2 2020-04-09T13:03:50.684622abusebot-8.cloudsearch.cf sshd[12109]: Invalid user user1 from 51.83.45.93 port 49780 2020-04-09T13:03:50.695437abusebot-8.cloudsearch.cf sshd[12109]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.ip-51-83-45.eu 2020-04-09T13:03:50.684622abusebot-8.cloudsearch.cf sshd[12109]: Invalid user user1 from 51.83.45.93 port 49780 2020-04-09T13:03:52.713106abusebot-8.cloudsearch.cf sshd[12109]: Failed p ...	2020-04-09 21:28:08
120.29.58.176	attackbotsspam	Apr 9 13:03:26 system,error,critical: login failure for user admin from 120.29.58.176 via telnet Apr 9 13:03:28 system,error,critical: login failure for user root from 120.29.58.176 via telnet Apr 9 13:03:29 system,error,critical: login failure for user root from 120.29.58.176 via telnet Apr 9 13:03:33 system,error,critical: login failure for user root from 120.29.58.176 via telnet Apr 9 13:03:35 system,error,critical: login failure for user root from 120.29.58.176 via telnet Apr 9 13:03:36 system,error,critical: login failure for user root from 120.29.58.176 via telnet Apr 9 13:03:42 system,error,critical: login failure for user admin from 120.29.58.176 via telnet Apr 9 13:03:43 system,error,critical: login failure for user root from 120.29.58.176 via telnet Apr 9 13:03:45 system,error,critical: login failure for user admin from 120.29.58.176 via telnet Apr 9 13:03:49 system,error,critical: login failure for user ubnt from 120.29.58.176 via telnet	2020-04-09 21:32:05
77.111.247.32	attackbots	Chat Spam	2020-04-09 21:37:56
61.177.140.106	attackbots	Unauthorized connection attempt detected from IP address 61.177.140.106 to port 3389	2020-04-09 21:57:05
51.161.93.130	attackspambots	Apr 9 07:19:01 emma postfix/smtpd[14609]: connect from interest.yellowblueroute.top[51.161.93.130] Apr 9 07:19:01 emma postfix/smtpd[14609]: setting up TLS connection from interest.yellowblueroute.top[51.161.93.130] Apr 9 07:19:01 emma postfix/smtpd[14609]: TLS connection established from interest.yellowblueroute.top[51.161.93.130]: TLSv1 whostnameh cipher DHE-RSA-AES256-SHA (256/256 bhostnames) Apr 9 07:19:06 emma postfix/smtpd[14609]: disconnect from interest.yellowblueroute.top[51.161.93.130] Apr 9 07:19:21 emma postfix/smtpd[14609]: connect from interest.yellowblueroute.top[51.161.93.130] Apr 9 07:19:21 emma postfix/smtpd[14609]: setting up TLS connection from interest.yellowblueroute.top[51.161.93.130] Apr 9 07:19:21 emma postfix/smtpd[14609]: TLS connection established from interest.yellowblueroute.top[51.161.93.130]: TLSv1 whostnameh cipher .... truncated .... interest.yellowblueroute.top[51.161.93.130]: TLSv1 whostnameh cipher DHE-RSA-AES256-SHA (256/25........ -------------------------------	2020-04-09 22:05:31
106.12.174.227	attackbots	Apr 9 14:46:17 icinga sshd[27629]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.174.227 Apr 9 14:46:19 icinga sshd[27629]: Failed password for invalid user jetty from 106.12.174.227 port 39160 ssh2 Apr 9 15:03:20 icinga sshd[55146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.174.227 ...	2020-04-09 22:16:19
178.154.200.34	attackbots	[Thu Apr 09 20:03:06.739210 2020] [:error] [pid 21760:tid 140306501166848] [client 178.154.200.34:44962] [client 178.154.200.34] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "Xo8dCkCN8tZJGf@uvAOw-AAAA1g"] ...	2020-04-09 22:26:18
102.45.129.99	attackbots	Apr 9 15:03:23 vps670341 sshd[26430]: Invalid user admin from 102.45.129.99 port 34270	2020-04-09 22:06:38
113.185.77.59	attackbots	1586437382 - 04/09/2020 15:03:02 Host: 113.185.77.59/113.185.77.59 Port: 445 TCP Blocked	2020-04-09 22:30:25
54.162.243.44	attackspam	Unauthorized connection attempt detected, IP banned.	2020-04-09 22:29:02
159.203.115.191	attack	Apr 9 15:03:13 mout sshd[15970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.115.191 Apr 9 15:03:13 mout sshd[15970]: Invalid user postgres from 159.203.115.191 port 43066 Apr 9 15:03:15 mout sshd[15970]: Failed password for invalid user postgres from 159.203.115.191 port 43066 ssh2	2020-04-09 21:45:28
185.40.4.112	attackbots	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-04-09 22:31:36

最近上报的IP列表

12.252.97.86	12.53.137.58	12.51.56.82	12.53.238.179
12.51.63.194	12.52.30.83	12.51.4.202	12.51.235.26
12.52.34.17	12.52.34.245	12.52.76.8	12.53.238.60
12.53.239.105	12.53.238.235	12.53.239.210	12.53.238.18
12.53.239.100	12.53.251.10	12.53.238.65	12.53.29.24