165.245.253.81

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#


NetRange:       165.245.128.0 - 165.245.255.255
CIDR:           165.245.128.0/17
NetName:        DO-13
NetHandle:      NET-165-245-128-0-1
Parent:         NET165 (NET-165-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   DigitalOcean, LLC (DO-13)
RegDate:        2025-04-24
Updated:        2025-04-24
Ref:            https://rdap.arin.net/registry/ip/165.245.128.0



OrgName:        DigitalOcean, LLC
OrgId:          DO-13
Address:        105 Edgeview Drive, Suite 425
City:           Broomfield
StateProv:      CO
PostalCode:     80021
Country:        US
RegDate:        2012-05-14
Updated:        2025-04-11
Ref:            https://rdap.arin.net/registry/entity/DO-13


OrgTechHandle: NOC32014-ARIN
OrgTechName:   Network Operations Center
OrgTechPhone:  +1-646-827-4366 
OrgTechEmail:  noc@digitalocean.com
OrgTechRef:    https://rdap.arin.net/registry/entity/NOC32014-ARIN

OrgAbuseHandle: DIGIT19-ARIN
OrgAbuseName:   DigitalOcean Abuse
OrgAbusePhone:  +1-646-827-4366 
OrgAbuseEmail:  abuse@digitalocean.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/DIGIT19-ARIN

OrgNOCHandle: NOC32014-ARIN
OrgNOCName:   Network Operations Center
OrgNOCPhone:  +1-646-827-4366 
OrgNOCEmail:  noc@digitalocean.com
OrgNOCRef:    https://rdap.arin.net/registry/entity/NOC32014-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 165.245.253.81
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11746
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;165.245.253.81.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026051901 1800 900 604800 86400

;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 20 15:00:06 CST 2026
;; MSG SIZE  rcvd: 107

HOST信息:

Host 81.253.245.165.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 81.253.245.165.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
159.89.194.160	attack	Sep 22 13:51:48 *** sshd[11211]: User root from 159.89.194.160 not allowed because not listed in AllowUsers	2020-09-22 22:42:01
104.236.226.72	attack	SSH/22 MH Probe, BF, Hack -	2020-09-22 22:38:50
23.94.139.107	attack	2020-09-22T13:36:13.181682abusebot-6.cloudsearch.cf sshd[32321]: Invalid user rust from 23.94.139.107 port 44216 2020-09-22T13:36:13.188249abusebot-6.cloudsearch.cf sshd[32321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.94.139.107 2020-09-22T13:36:13.181682abusebot-6.cloudsearch.cf sshd[32321]: Invalid user rust from 23.94.139.107 port 44216 2020-09-22T13:36:15.334615abusebot-6.cloudsearch.cf sshd[32321]: Failed password for invalid user rust from 23.94.139.107 port 44216 ssh2 2020-09-22T13:42:24.565928abusebot-6.cloudsearch.cf sshd[32382]: Invalid user gpadmin from 23.94.139.107 port 52788 2020-09-22T13:42:24.573433abusebot-6.cloudsearch.cf sshd[32382]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.94.139.107 2020-09-22T13:42:24.565928abusebot-6.cloudsearch.cf sshd[32382]: Invalid user gpadmin from 23.94.139.107 port 52788 2020-09-22T13:42:26.649856abusebot-6.cloudsearch.cf sshd[32382]: Faile ...	2020-09-22 22:40:33
151.80.149.75	attackspambots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-09-22T12:46:23Z and 2020-09-22T13:00:49Z	2020-09-22 22:28:11
180.76.100.98	attackbotsspam	Invalid user test from 180.76.100.98 port 47040	2020-09-22 22:10:27
41.90.19.142	attackbotsspam	Sep 21 19:07:16 h2829583 sshd[19602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.90.19.142	2020-09-22 22:21:12
189.154.89.87	attack	Failed password for invalid user julius from 189.154.89.87 port 34168 ssh2	2020-09-22 22:29:34
64.71.131.100	attackbotsspam	Sep 22 16:20:52 santamaria sshd\[10805\]: Invalid user deploy from 64.71.131.100 Sep 22 16:20:52 santamaria sshd\[10805\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.71.131.100 Sep 22 16:20:54 santamaria sshd\[10805\]: Failed password for invalid user deploy from 64.71.131.100 port 45413 ssh2 ...	2020-09-22 22:40:55
185.191.171.22	attackbotsspam	[Tue Sep 22 18:27:45.804470 2020] [:error] [pid 21621:tid 140171777382144] [client 185.191.171.22:59144] [client 185.191.171.22] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "SemrushBot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.0/rules/REQUEST-913-SCANNER-DETECTION.conf"] [line "181"] [id "913102"] [msg "Found User-Agent associated with web crawler/bot"] [data "Matched Data: SemrushBot found within REQUEST_HEADERS:User-Agent: mozilla/5.0 (compatible; semrushbot/6~bl; +http://www.semrush.com/bot.html)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-reputation-crawler"] [tag "OWASP_CRS"] [tag "capec/1000/118/224/541/310"] [tag "PCI/6.5.10"] [tag "paranoia-level/2"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/robots.txt"] [unique_id "X2nfscPzH-6Qk2youZQILgAAAAw"] ...	2020-09-22 22:22:25
46.101.114.250	attack	2020-09-22T13:54:15.970613shield sshd\[20857\]: Invalid user ali from 46.101.114.250 port 43010 2020-09-22T13:54:15.979308shield sshd\[20857\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.114.250 2020-09-22T13:54:17.995765shield sshd\[20857\]: Failed password for invalid user ali from 46.101.114.250 port 43010 ssh2 2020-09-22T13:59:42.478763shield sshd\[21204\]: Invalid user stunnel from 46.101.114.250 port 54660 2020-09-22T13:59:42.487892shield sshd\[21204\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.114.250	2020-09-22 22:26:59
119.45.42.58	attack	Sep 22 19:18:29 lunarastro sshd[31362]: Failed password for root from 119.45.42.58 port 45950 ssh2	2020-09-22 22:24:03
50.227.195.3	attack	Sep 22 15:42:08 pornomens sshd\[14151\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.227.195.3 user=root Sep 22 15:42:10 pornomens sshd\[14151\]: Failed password for root from 50.227.195.3 port 60160 ssh2 Sep 22 15:55:34 pornomens sshd\[14360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.227.195.3 user=root ...	2020-09-22 22:26:41
150.109.102.177	attackbotsspam	Sep 22 15:57:36 abendstille sshd\[9945\]: Invalid user jason from 150.109.102.177 Sep 22 15:57:36 abendstille sshd\[9945\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.102.177 Sep 22 15:57:39 abendstille sshd\[9945\]: Failed password for invalid user jason from 150.109.102.177 port 48940 ssh2 Sep 22 16:01:25 abendstille sshd\[14248\]: Invalid user bdadmin from 150.109.102.177 Sep 22 16:01:25 abendstille sshd\[14248\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.102.177 ...	2020-09-22 22:06:47
34.64.218.102	attackspam	34.64.218.102 - - [22/Sep/2020:15:01:46 +0100] "POST /wp-login.php HTTP/1.1" 200 2371 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 34.64.218.102 - - [22/Sep/2020:15:01:49 +0100] "POST /wp-login.php HTTP/1.1" 200 2342 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 34.64.218.102 - - [22/Sep/2020:15:01:51 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-22 22:17:19
132.145.140.38	attack	21 attempts against mh-ssh on cloud	2020-09-22 22:22:56

最近上报的IP列表

220.132.60.163	47.95.197.30	47.95.205.12	43.163.85.226
35.187.170.50	31.117.7.186	112.45.202.99	230.198.48.43
174.255.64.203	151.80.112.160	100.73.243.174	10.36.40.92
10.101.31.132	10.213.183.72	64.226.127.28	14.212.107.163
160.119.76.42	122.193.247.39	2606:4700:10::ac43:2228	2606:4700:10::6814:7905