155.242.53.9 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 155.242.53.9
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65126
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;155.242.53.9.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012101 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 22 04:41:10 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

9.53.242.155.in-addr.arpa domain name pointer nothing.attdns.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
9.53.242.155.in-addr.arpa	name = nothing.attdns.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
106.12.16.149	attack	Cluster member 67.227.229.95 (US/United States/host.cjthedj97.me) said, DENY 106.12.16.149, Reason:[(sshd) Failed SSH login from 106.12.16.149 (CN/China/-): 1 in the last 3600 secs]; Ports: *; Direction: inout; Trigger: LF_CLUSTER	2020-08-30 02:43:23
149.202.208.104	attackbots	Unauthorised connection attempt detected at AUO MAIL PRO (DE PoP). System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-08-30 02:51:17
93.183.131.53	attackspam	2020-08-29T15:15:36.104772vps773228.ovh.net sshd[8791]: Failed password for root from 93.183.131.53 port 42048 ssh2 2020-08-29T15:19:33.737898vps773228.ovh.net sshd[8857]: Invalid user odoo2 from 93.183.131.53 port 42576 2020-08-29T15:19:33.756116vps773228.ovh.net sshd[8857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=brandy.rosal.bg 2020-08-29T15:19:33.737898vps773228.ovh.net sshd[8857]: Invalid user odoo2 from 93.183.131.53 port 42576 2020-08-29T15:19:36.131555vps773228.ovh.net sshd[8857]: Failed password for invalid user odoo2 from 93.183.131.53 port 42576 ssh2 ...	2020-08-30 02:52:21
218.92.0.223	attack	2020-08-29T18:42:16.013260vps1033 sshd[20347]: Failed password for root from 218.92.0.223 port 49579 ssh2 2020-08-29T18:42:20.392409vps1033 sshd[20347]: Failed password for root from 218.92.0.223 port 49579 ssh2 2020-08-29T18:42:23.883147vps1033 sshd[20347]: Failed password for root from 218.92.0.223 port 49579 ssh2 2020-08-29T18:42:27.601318vps1033 sshd[20347]: Failed password for root from 218.92.0.223 port 49579 ssh2 2020-08-29T18:42:31.057286vps1033 sshd[20347]: Failed password for root from 218.92.0.223 port 49579 ssh2 ...	2020-08-30 02:48:30
54.157.163.210	attack	Website hacking attempt: Improper php file access [php file]	2020-08-30 03:03:24
112.85.42.94	attack	Aug 29 21:16:43 pkdns2 sshd\[50114\]: Failed password for root from 112.85.42.94 port 43617 ssh2Aug 29 21:16:45 pkdns2 sshd\[50114\]: Failed password for root from 112.85.42.94 port 43617 ssh2Aug 29 21:16:48 pkdns2 sshd\[50114\]: Failed password for root from 112.85.42.94 port 43617 ssh2Aug 29 21:17:40 pkdns2 sshd\[50150\]: Failed password for root from 112.85.42.94 port 32148 ssh2Aug 29 21:20:19 pkdns2 sshd\[50292\]: Failed password for root from 112.85.42.94 port 26600 ssh2Aug 29 21:23:01 pkdns2 sshd\[50358\]: Failed password for root from 112.85.42.94 port 28116 ssh2 ...	2020-08-30 02:37:29
151.80.41.7	attack	151.80.41.7 - - \[29/Aug/2020:17:27:15 +0200\] "POST /wp-login.php HTTP/1.0" 200 5615 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 151.80.41.7 - - \[29/Aug/2020:17:27:16 +0200\] "POST /wp-login.php HTTP/1.0" 200 5435 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 151.80.41.7 - - \[29/Aug/2020:17:27:18 +0200\] "POST /wp-login.php HTTP/1.0" 200 5428 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-08-30 02:56:46
103.221.252.46	attackbotsspam	Aug 29 21:08:36 ns381471 sshd[18772]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.221.252.46 Aug 29 21:08:39 ns381471 sshd[18772]: Failed password for invalid user wnc from 103.221.252.46 port 56934 ssh2	2020-08-30 03:10:22
139.162.116.133	attack	srvr1: (mod_security) mod_security (id:920350) triggered by 139.162.116.133 (JP/-/scan-66.security.ipip.net): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/29 15:49:44 [error] 27704#0: 112472 [client 139.162.116.133] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "15987161847.535630"] [ref "o0,13v21,13"], client: 139.162.116.133, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-08-30 03:07:41
58.244.188.162	attackspam	Aug 29 08:50:17 NPSTNNYC01T sshd[6027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.244.188.162 Aug 29 08:50:19 NPSTNNYC01T sshd[6027]: Failed password for invalid user uftp from 58.244.188.162 port 55846 ssh2 Aug 29 08:53:42 NPSTNNYC01T sshd[6304]: Failed password for root from 58.244.188.162 port 43048 ssh2 ...	2020-08-30 02:40:19
185.148.38.26	attackbotsspam	Aug 29 14:00:44 Ubuntu-1404-trusty-64-minimal sshd\[15436\]: Invalid user mysql from 185.148.38.26 Aug 29 14:00:44 Ubuntu-1404-trusty-64-minimal sshd\[15436\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.148.38.26 Aug 29 14:00:47 Ubuntu-1404-trusty-64-minimal sshd\[15436\]: Failed password for invalid user mysql from 185.148.38.26 port 41442 ssh2 Aug 29 14:04:17 Ubuntu-1404-trusty-64-minimal sshd\[17010\]: Invalid user user from 185.148.38.26 Aug 29 14:04:17 Ubuntu-1404-trusty-64-minimal sshd\[17010\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.148.38.26	2020-08-30 03:11:35
157.230.38.102	attackbotsspam	Aug 29 15:50:31 journals sshd\[6725\]: Invalid user lemon from 157.230.38.102 Aug 29 15:50:31 journals sshd\[6725\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.38.102 Aug 29 15:50:33 journals sshd\[6725\]: Failed password for invalid user lemon from 157.230.38.102 port 51142 ssh2 Aug 29 15:54:48 journals sshd\[7200\]: Invalid user tu from 157.230.38.102 Aug 29 15:54:48 journals sshd\[7200\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.38.102 ...	2020-08-30 02:55:20
62.234.217.203	attackbots	Aug 29 13:54:50 srv-ubuntu-dev3 sshd[94914]: Invalid user mahesh from 62.234.217.203 Aug 29 13:54:50 srv-ubuntu-dev3 sshd[94914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.217.203 Aug 29 13:54:50 srv-ubuntu-dev3 sshd[94914]: Invalid user mahesh from 62.234.217.203 Aug 29 13:54:53 srv-ubuntu-dev3 sshd[94914]: Failed password for invalid user mahesh from 62.234.217.203 port 52340 ssh2 Aug 29 13:59:42 srv-ubuntu-dev3 sshd[95453]: Invalid user rohit from 62.234.217.203 Aug 29 13:59:43 srv-ubuntu-dev3 sshd[95453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.217.203 Aug 29 13:59:42 srv-ubuntu-dev3 sshd[95453]: Invalid user rohit from 62.234.217.203 Aug 29 13:59:44 srv-ubuntu-dev3 sshd[95453]: Failed password for invalid user rohit from 62.234.217.203 port 56908 ssh2 Aug 29 14:04:24 srv-ubuntu-dev3 sshd[96030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser ...	2020-08-30 03:06:40
86.61.66.59	attackspam	Aug 29 14:04:42 rancher-0 sshd[1339625]: Invalid user keith from 86.61.66.59 port 38491 Aug 29 14:04:44 rancher-0 sshd[1339625]: Failed password for invalid user keith from 86.61.66.59 port 38491 ssh2 ...	2020-08-30 02:58:21
176.59.4.144	attack	1598702693 - 08/29/2020 14:04:53 Host: 176.59.4.144/176.59.4.144 Port: 445 TCP Blocked	2020-08-30 02:51:00

最近上报的IP列表

134.69.1.86	227.216.193.193	18.212.20.61	182.14.69.213
7.70.185.139	42.227.60.98	67.201.104.55	70.69.147.89
203.15.101.210	34.89.231.109	66.150.88.59	5.254.172.178
56.217.241.45	64.130.10.208	146.224.78.246	255.245.51.144
215.197.6.140	248.103.32.211	75.13.209.56	179.218.71.229