133.18.53.122 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 133.18.53.122
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34432
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;133.18.53.122.			IN	A

;; AUTHORITY SECTION:
.			560	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 05:45:02 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

122.53.18.133.in-addr.arpa domain name pointer v133-18-53-122.vir.kagoya.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
122.53.18.133.in-addr.arpa	name = v133-18-53-122.vir.kagoya.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
190.210.73.121	attackspam	Aug 28 02:45:43 mail.srvfarm.net postfix/smtpd[2024856]: warning: unknown[190.210.73.121]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 28 02:45:43 mail.srvfarm.net postfix/smtpd[2024856]: lost connection after AUTH from unknown[190.210.73.121] Aug 28 02:50:05 mail.srvfarm.net postfix/smtpd[2024859]: warning: unknown[190.210.73.121]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 28 02:50:05 mail.srvfarm.net postfix/smtpd[2024859]: lost connection after AUTH from unknown[190.210.73.121] Aug 28 02:55:00 mail.srvfarm.net postfix/smtpd[2025399]: warning: unknown[190.210.73.121]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-08-28 09:10:31
177.200.64.234	attackspam	Aug 27 04:54:25 mail.srvfarm.net postfix/smtpd[1334721]: warning: 177-200-64-234.static.skysever.com.br[177.200.64.234]: SASL PLAIN authentication failed: Aug 27 04:54:26 mail.srvfarm.net postfix/smtpd[1334721]: lost connection after AUTH from 177-200-64-234.static.skysever.com.br[177.200.64.234] Aug 27 04:57:30 mail.srvfarm.net postfix/smtps/smtpd[1337554]: warning: 177-200-64-234.static.skysever.com.br[177.200.64.234]: SASL PLAIN authentication failed: Aug 27 04:57:31 mail.srvfarm.net postfix/smtps/smtpd[1337554]: lost connection after AUTH from 177-200-64-234.static.skysever.com.br[177.200.64.234] Aug 27 04:59:26 mail.srvfarm.net postfix/smtpd[1341948]: warning: 177-200-64-234.static.skysever.com.br[177.200.64.234]: SASL PLAIN authentication failed:	2020-08-28 08:32:52
42.194.207.254	attack	Aug 28 01:37:59 cho sshd[1766693]: Failed password for invalid user fabian from 42.194.207.254 port 44088 ssh2 Aug 28 01:41:45 cho sshd[1766946]: Invalid user katja from 42.194.207.254 port 57876 Aug 28 01:41:45 cho sshd[1766946]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.194.207.254 Aug 28 01:41:45 cho sshd[1766946]: Invalid user katja from 42.194.207.254 port 57876 Aug 28 01:41:47 cho sshd[1766946]: Failed password for invalid user katja from 42.194.207.254 port 57876 ssh2 ...	2020-08-28 08:48:50
149.202.164.82	attackspam	Aug 28 11:07:47 localhost sshd[4164724]: Invalid user hacked from 149.202.164.82 port 38314 ...	2020-08-28 09:08:14
129.204.63.100	attack	Aug 28 02:53:36 plg sshd[2080]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.63.100 Aug 28 02:53:38 plg sshd[2080]: Failed password for invalid user wanghaiyan from 129.204.63.100 port 33520 ssh2 Aug 28 02:56:37 plg sshd[2218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.63.100 Aug 28 02:56:39 plg sshd[2218]: Failed password for invalid user lyq from 129.204.63.100 port 45626 ssh2 Aug 28 02:59:29 plg sshd[2305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.63.100 Aug 28 02:59:31 plg sshd[2305]: Failed password for invalid user info from 129.204.63.100 port 57740 ssh2 ...	2020-08-28 09:07:35
81.219.94.200	attackbotsspam	Aug 27 04:54:38 mail.srvfarm.net postfix/smtpd[1334717]: warning: 81-219-94-200.ostmedia.pl[81.219.94.200]: SASL PLAIN authentication failed: Aug 27 04:54:38 mail.srvfarm.net postfix/smtpd[1334717]: lost connection after AUTH from 81-219-94-200.ostmedia.pl[81.219.94.200] Aug 27 04:58:35 mail.srvfarm.net postfix/smtps/smtpd[1340640]: warning: 81-219-94-200.ostmedia.pl[81.219.94.200]: SASL PLAIN authentication failed: Aug 27 04:58:35 mail.srvfarm.net postfix/smtps/smtpd[1340640]: lost connection after AUTH from 81-219-94-200.ostmedia.pl[81.219.94.200] Aug 27 05:01:31 mail.srvfarm.net postfix/smtpd[1334718]: warning: 81-219-94-200.ostmedia.pl[81.219.94.200]: SASL PLAIN authentication failed:	2020-08-28 08:38:39
85.207.96.35	attackbotsspam	Aug 27 04:54:48 mail.srvfarm.net postfix/smtps/smtpd[1337554]: warning: 85-207-96-35.static.bluetone.cz[85.207.96.35]: SASL PLAIN authentication failed: Aug 27 04:54:48 mail.srvfarm.net postfix/smtps/smtpd[1337554]: lost connection after AUTH from 85-207-96-35.static.bluetone.cz[85.207.96.35] Aug 27 05:00:21 mail.srvfarm.net postfix/smtpd[1336013]: warning: 85-207-96-35.static.bluetone.cz[85.207.96.35]: SASL PLAIN authentication failed: Aug 27 05:00:21 mail.srvfarm.net postfix/smtpd[1336013]: lost connection after AUTH from 85-207-96-35.static.bluetone.cz[85.207.96.35] Aug 27 05:00:39 mail.srvfarm.net postfix/smtps/smtpd[1340826]: warning: 85-207-96-35.static.bluetone.cz[85.207.96.35]: SASL PLAIN authentication failed:	2020-08-28 08:37:59
45.174.166.135	attack	Aug 27 05:00:07 mail.srvfarm.net postfix/smtpd[1336013]: warning: unknown[45.174.166.135]: SASL PLAIN authentication failed: Aug 27 05:00:07 mail.srvfarm.net postfix/smtpd[1336013]: lost connection after AUTH from unknown[45.174.166.135] Aug 27 05:04:33 mail.srvfarm.net postfix/smtps/smtpd[1340826]: warning: unknown[45.174.166.135]: SASL PLAIN authentication failed: Aug 27 05:04:33 mail.srvfarm.net postfix/smtps/smtpd[1340826]: lost connection after AUTH from unknown[45.174.166.135] Aug 27 05:06:15 mail.srvfarm.net postfix/smtpd[1355303]: warning: unknown[45.174.166.135]: SASL PLAIN authentication failed:	2020-08-28 08:41:17
177.81.22.247	attackbotsspam	Aug 27 23:06:25 server postfix/smtpd[10974]: NOQUEUE: reject: RCPT from unknown[177.81.22.247]: 554 5.7.1 Service unavailable; Client host [177.81.22.247] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/177.81.22.247; from= to= proto=ESMTP helo=	2020-08-28 08:55:10
122.51.166.228	attack	Aug 27 17:01:17 NPSTNNYC01T sshd[23388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.166.228 Aug 27 17:01:19 NPSTNNYC01T sshd[23388]: Failed password for invalid user webuser from 122.51.166.228 port 33440 ssh2 Aug 27 17:06:28 NPSTNNYC01T sshd[23948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.166.228 ...	2020-08-28 08:52:12
221.178.247.153	attack	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-08-28 08:56:11
95.104.49.52	attack	Port Scan ...	2020-08-28 08:36:27
106.54.64.77	attackspambots	$f2bV_matches	2020-08-28 08:50:11
133.130.97.166	attackbotsspam	Aug 28 02:42:56 h2779839 sshd[23688]: Invalid user rizky from 133.130.97.166 port 42202 Aug 28 02:42:56 h2779839 sshd[23688]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.130.97.166 Aug 28 02:42:56 h2779839 sshd[23688]: Invalid user rizky from 133.130.97.166 port 42202 Aug 28 02:42:58 h2779839 sshd[23688]: Failed password for invalid user rizky from 133.130.97.166 port 42202 ssh2 Aug 28 02:45:54 h2779839 sshd[23949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.130.97.166 user=root Aug 28 02:45:57 h2779839 sshd[23949]: Failed password for root from 133.130.97.166 port 36578 ssh2 Aug 28 02:48:58 h2779839 sshd[24218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.130.97.166 user=root Aug 28 02:49:00 h2779839 sshd[24218]: Failed password for root from 133.130.97.166 port 59188 ssh2 Aug 28 02:52:03 h2779839 sshd[24517]: Invalid user infa from 133.130 ...	2020-08-28 09:06:00
93.87.53.123	attackspam	srvr2: (mod_security) mod_security (id:920350) triggered by 93.87.53.123 (RS/-/-): 1 in the last 600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/27 23:06:05 [error] 244880#0: 105559 [client 93.87.53.123] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "159856236551.106225"] [ref "o0,15v21,15"], client: 93.87.53.123, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-08-28 09:08:52

最近上报的IP列表

133.18.52.149	133.18.49.56	133.18.53.244	118.172.80.128
133.18.53.68	133.18.54.101	133.18.54.102	133.18.54.106
133.18.54.128	133.18.54.202	133.18.54.208	133.18.54.111
133.18.53.183	133.18.54.25	133.18.54.36	118.172.80.131
133.18.54.41	118.172.80.134	133.18.54.59	133.18.54.68