139.123.253.125

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Finland

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.123.253.125
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27591
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;139.123.253.125.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012301 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 24 04:11:05 CST 2025
;; MSG SIZE  rcvd: 108

HOST信息:

Host 125.253.123.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 125.253.123.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
139.59.102.155	attackspam	Sep 26 13:33:34 hcbb sshd\[931\]: Invalid user user from 139.59.102.155 Sep 26 13:33:34 hcbb sshd\[931\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.102.155 Sep 26 13:33:37 hcbb sshd\[931\]: Failed password for invalid user user from 139.59.102.155 port 52704 ssh2 Sep 26 13:38:33 hcbb sshd\[1382\]: Invalid user vi from 139.59.102.155 Sep 26 13:38:33 hcbb sshd\[1382\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.102.155	2019-09-27 07:46:07
37.187.51.172	attackbots	Sep 27 00:21:16 bouncer sshd\[16410\]: Invalid user admin from 37.187.51.172 port 39940 Sep 27 00:21:16 bouncer sshd\[16410\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.51.172 Sep 27 00:21:18 bouncer sshd\[16410\]: Failed password for invalid user admin from 37.187.51.172 port 39940 ssh2 ...	2019-09-27 07:24:14
185.142.236.34	attack	Automatic report - Port Scan Attack	2019-09-27 07:43:30
14.63.165.49	attack	Sep 26 13:30:34 web1 sshd\[16561\]: Invalid user ubnt from 14.63.165.49 Sep 26 13:30:34 web1 sshd\[16561\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.165.49 Sep 26 13:30:36 web1 sshd\[16561\]: Failed password for invalid user ubnt from 14.63.165.49 port 34616 ssh2 Sep 26 13:35:31 web1 sshd\[17034\]: Invalid user arkserver from 14.63.165.49 Sep 26 13:35:31 web1 sshd\[17034\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.165.49	2019-09-27 07:38:01
197.54.253.49	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/197.54.253.49/ FR - 1H : (631) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : FR NAME ASN : ASN8452 IP : 197.54.253.49 CIDR : 197.54.224.0/19 PREFIX COUNT : 833 UNIQUE IP COUNT : 7610368 WYKRYTE ATAKI Z ASN8452 : 1H - 16 3H - 50 6H - 126 12H - 257 24H - 540 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-09-27 07:58:25
49.88.112.114	attackbotsspam	Sep 26 13:29:08 php1 sshd\[5264\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Sep 26 13:29:11 php1 sshd\[5264\]: Failed password for root from 49.88.112.114 port 44813 ssh2 Sep 26 13:29:13 php1 sshd\[5264\]: Failed password for root from 49.88.112.114 port 44813 ssh2 Sep 26 13:29:15 php1 sshd\[5264\]: Failed password for root from 49.88.112.114 port 44813 ssh2 Sep 26 13:30:12 php1 sshd\[5464\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root	2019-09-27 07:33:00
89.35.57.214	attackspam	Sep 26 23:20:46 pornomens sshd\[5398\]: Invalid user redis from 89.35.57.214 port 50838 Sep 26 23:20:46 pornomens sshd\[5398\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.35.57.214 Sep 26 23:20:48 pornomens sshd\[5398\]: Failed password for invalid user redis from 89.35.57.214 port 50838 ssh2 ...	2019-09-27 07:26:39
170.130.126.195	attackspambots	Looking for resource vulnerabilities	2019-09-27 07:30:05
200.29.238.135	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/200.29.238.135/ CO - 1H : (55) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CO NAME ASN : ASN27941 IP : 200.29.238.135 CIDR : 200.29.238.0/24 PREFIX COUNT : 25 UNIQUE IP COUNT : 6400 WYKRYTE ATAKI Z ASN27941 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 INFO : SERVER - Looking for resource vulnerabilities Detected and Blocked by ADMIN - data recovery	2019-09-27 07:43:07
36.22.79.30	attack	Rude login attack (4 tries in 1d)	2019-09-27 07:58:51
185.175.93.3	attackspambots	Port Scan detected from 185.175.93.3 (ES/Spain/-). 4 hits in the last 120 seconds	2019-09-27 07:30:59
58.246.138.30	attack	Sep 26 23:42:23 venus sshd\[3709\]: Invalid user gentry from 58.246.138.30 port 55874 Sep 26 23:42:23 venus sshd\[3709\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.246.138.30 Sep 26 23:42:26 venus sshd\[3709\]: Failed password for invalid user gentry from 58.246.138.30 port 55874 ssh2 ...	2019-09-27 07:48:10
35.192.161.56	attackspam	[ThuSep2623:20:08.4794102019][:error][pid3029:tid47123156567808][client35.192.161.56:53186][client35.192.161.56]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"python-requests/"atREQUEST_HEADERS:User-Agent.[file"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf"][line"211"][id"332039"][rev"4"][msg"Atomicorp.comWAFRules:SuspiciousUnusualUserAgent\(python-requests\).Disablethisruleifyouusepython-requests/."][severity"CRITICAL"][hostname"cormio.ch"][uri"/robots.txt"][unique_id"XY0riKxn-g-fAg881NDy5AAAAMI"][ThuSep2623:20:08.5980122019][:error][pid3029:tid47123156567808][client35.192.161.56:53186][client35.192.161.56]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"python-requests/"atREQUEST_HEADERS:User-Agent.[file"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf"][line"211"][id"332039"][rev"4"][msg"Atomicorp.comWAFRules:SuspiciousUnusualUserAgent\(python-requests\).Disablethisruleifyouusepython-requests/."][severity"CRITICAL"][hostname"cormio.c	2019-09-27 07:54:03
37.44.252.14	attackbotsspam	B: zzZZzz blocked content access	2019-09-27 07:49:42
157.245.12.136	attack	SSH-bruteforce attempts	2019-09-27 07:30:44

最近上报的IP列表

138.195.84.44	130.69.243.107	165.58.191.240	130.252.0.122
52.248.200.178	69.20.115.20	254.93.143.40	242.150.132.36
96.148.125.136	65.247.183.231	203.110.214.133	196.166.74.2
151.0.5.157	141.156.119.50	33.58.127.122	189.109.119.22
54.32.62.33	43.172.66.201	237.60.16.198	189.245.80.129