126.4.93.253 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 126.4.93.253
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59403
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;126.4.93.253.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012101 1800 900 604800 86400

;; Query time: 34 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 22 02:58:07 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

253.93.4.126.in-addr.arpa domain name pointer softbank126004093253.bbtec.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
253.93.4.126.in-addr.arpa	name = softbank126004093253.bbtec.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
99.184.69.177	attack	Port Scan detected from 99.184.69.177 (US/United States/Kansas/Mission/99-184-69-177.lightspeed.mssnks.sbcglobal.net). 4 hits in the last 15 seconds	2020-08-12 12:14:48
222.122.31.133	attackspam	$f2bV_matches	2020-08-12 12:21:14
45.55.156.19	attackspam	$f2bV_matches	2020-08-12 12:19:17
84.92.92.196	attackbots	ssh brute force	2020-08-12 12:17:48
88.244.83.25	attack	Aug 12 05:25:39 dev0-dcde-rnet sshd[7899]: Failed password for root from 88.244.83.25 port 36608 ssh2 Aug 12 05:43:34 dev0-dcde-rnet sshd[8162]: Failed password for root from 88.244.83.25 port 39318 ssh2	2020-08-12 12:11:13
193.27.229.181	attackbots	Aug 12 01:10:52 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3f:fd:58:00:08:e3:ff:fd:90:08:00 SRC=193.27.229.181 DST=79.143.186.54 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=29164 PROTO=TCP SPT=62000 DPT=27630 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 12 01:10:52 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3f:fd:58:00:08:e3:ff:fd:90:08:00 SRC=193.27.229.181 DST=79.143.186.54 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=29164 PROTO=TCP SPT=62000 DPT=27630 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 12 01:10:52 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3f:fd:58:00:08:e3:ff:fd:90:08:00 SRC=193.27.229.181 DST=79.143.186.54 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=29164 PROTO=TCP SPT=62000 DPT=27630 WINDOW=1024 RES=0x00 SYN URGP=0	2020-08-12 08:37:13
106.12.132.224	attackbotsspam	Ssh brute force	2020-08-12 08:31:21
82.137.10.42	attackspam	445/tcp [2020-08-11]1pkt	2020-08-12 08:51:05
172.105.89.161	attackspam	srvr1: (mod_security) mod_security (id:920350) triggered by 172.105.89.161 (DE/-/implant-scanner-victims-will-be-notified.threatsinkhole.com): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/11 23:49:43 [error] 563155#0: 290591 [client 172.105.89.161] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/ajax"] [unique_id "159718978322.090030"] [ref "o0,13v26,13"], client: 172.105.89.161, [redacted] request: "POST /ajax HTTP/1.1" [redacted]	2020-08-12 08:30:06
185.74.4.17	attackbotsspam	Aug 11 23:45:10 IngegnereFirenze sshd[18355]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.74.4.17 user=root ...	2020-08-12 08:52:05
106.13.222.115	attack	Aug 12 05:46:09 marvibiene sshd[10417]: Failed password for root from 106.13.222.115 port 38090 ssh2 Aug 12 05:53:35 marvibiene sshd[10762]: Failed password for root from 106.13.222.115 port 49102 ssh2	2020-08-12 12:11:39
49.233.24.148	attackbots	Aug 12 01:05:42 hidden sshd[4847]: Failed password for hidden from 49.233.24.148 port 47634 ssh2 Aug 12 01:11:30 hidden sshd[18685]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.24.148 user=root Aug 12 01:11:32 hidden sshd[18685]: Failed password for hidden from 49.233.24.148 port 53430 ssh2 Aug 12 01:17:11 hidden sshd[32423]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.24.148 user=root Aug 12 01:17:14 hidden sshd[32423]: Failed password for hidden from 49.233.24.148 port 59226 ssh2	2020-08-12 08:45:19
123.133.78.120	attackbotsspam	Icarus honeypot on github	2020-08-12 08:30:55
122.117.15.71	attackbotsspam	23/tcp [2020-08-11]1pkt	2020-08-12 08:31:43
1.227.100.17	attack	Aug 12 04:55:14 ajax sshd[998]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.227.100.17 Aug 12 04:55:16 ajax sshd[998]: Failed password for invalid user 1qwe2zxc!@# from 1.227.100.17 port 40924 ssh2	2020-08-12 12:12:42

最近上报的IP列表

61.35.239.40	213.188.94.156	153.65.246.40	99.47.103.64
203.109.102.125	100.231.231.232	25.122.170.198	186.229.105.148
252.204.95.81	214.72.29.214	39.147.25.87	12.216.85.186
39.140.1.115	146.10.38.117	93.91.105.237	85.143.3.96
169.155.234.21	207.168.246.119	32.238.222.186	42.79.213.36