253.76.12.7 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): IANA Special-Purpose Address

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 253.76.12.7
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5690
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;253.76.12.7.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022602 1800 900 604800 86400

;; Query time: 188 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 27 14:11:25 CST 2025
;; MSG SIZE  rcvd: 104

HOST信息:

Host 7.12.76.253.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 7.12.76.253.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
68.183.19.84	attackspam	2020-08-21T08:52:04.1470091495-001 sshd[44001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.19.84 user=root 2020-08-21T08:52:06.0760841495-001 sshd[44001]: Failed password for root from 68.183.19.84 port 45028 ssh2 2020-08-21T08:56:06.0681321495-001 sshd[44240]: Invalid user anni from 68.183.19.84 port 54340 2020-08-21T08:56:06.0733361495-001 sshd[44240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.19.84 2020-08-21T08:56:06.0681321495-001 sshd[44240]: Invalid user anni from 68.183.19.84 port 54340 2020-08-21T08:56:07.8919441495-001 sshd[44240]: Failed password for invalid user anni from 68.183.19.84 port 54340 ssh2 ...	2020-08-21 21:26:27
113.160.182.5	attackspam	Port scan on 1 port(s): 445	2020-08-21 21:27:12
87.246.7.145	attack	Aug 21 22:06:51 web1 postfix/smtpd[8500]: warning: unknown[87.246.7.145]: SASL LOGIN authentication failed: authentication failure Aug 21 22:07:02 web1 postfix/smtpd[8500]: warning: unknown[87.246.7.145]: SASL LOGIN authentication failed: authentication failure Aug 21 22:07:11 web1 postfix/smtpd[8500]: warning: unknown[87.246.7.145]: SASL LOGIN authentication failed: authentication failure Aug 21 22:07:28 web1 postfix/smtpd[8500]: warning: unknown[87.246.7.145]: SASL LOGIN authentication failed: authentication failure Aug 21 22:07:38 web1 postfix/smtpd[8500]: warning: unknown[87.246.7.145]: SASL LOGIN authentication failed: authentication failure ...	2020-08-21 20:54:05
54.37.65.3	attackbotsspam	2020-08-21T13:23:03.253399shield sshd\[22289\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.ip-54-37-65.eu user=root 2020-08-21T13:23:05.732020shield sshd\[22289\]: Failed password for root from 54.37.65.3 port 49608 ssh2 2020-08-21T13:27:11.847406shield sshd\[23290\]: Invalid user test from 54.37.65.3 port 59568 2020-08-21T13:27:11.856805shield sshd\[23290\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.ip-54-37-65.eu 2020-08-21T13:27:14.049225shield sshd\[23290\]: Failed password for invalid user test from 54.37.65.3 port 59568 ssh2	2020-08-21 21:31:22
94.102.53.112	attack	[H1.VM8] Blocked by UFW	2020-08-21 21:06:26
117.158.78.5	attack	Aug 21 15:01:40 abendstille sshd\[8842\]: Invalid user motion from 117.158.78.5 Aug 21 15:01:40 abendstille sshd\[8842\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.158.78.5 Aug 21 15:01:43 abendstille sshd\[8842\]: Failed password for invalid user motion from 117.158.78.5 port 3098 ssh2 Aug 21 15:04:11 abendstille sshd\[11413\]: Invalid user test from 117.158.78.5 Aug 21 15:04:11 abendstille sshd\[11413\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.158.78.5 ...	2020-08-21 21:32:44
151.253.125.137	attackbots	Aug 21 14:00:11 xeon sshd[18341]: Failed password for root from 151.253.125.137 port 34604 ssh2	2020-08-21 21:30:18
51.254.248.18	attackspambots	Aug 21 12:02:52 vlre-nyc-1 sshd\[30523\]: Invalid user admin from 51.254.248.18 Aug 21 12:02:52 vlre-nyc-1 sshd\[30523\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.248.18 Aug 21 12:02:54 vlre-nyc-1 sshd\[30523\]: Failed password for invalid user admin from 51.254.248.18 port 34314 ssh2 Aug 21 12:07:01 vlre-nyc-1 sshd\[30610\]: Invalid user nagios from 51.254.248.18 Aug 21 12:07:01 vlre-nyc-1 sshd\[30610\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.248.18 ...	2020-08-21 21:20:41
195.54.160.21	attackspam	Unauthorized connection attempt detected from IP address 195.54.160.21 to port 80 [T]	2020-08-21 20:52:45
202.51.68.14	attackspambots	srvr1: (mod_security) mod_security (id:942100) triggered by 202.51.68.14 (NP/-/-): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/21 12:07:30 [error] 482759#0: 840777 [client 202.51.68.14] ModSecurity: Access denied with code 406 (phase 2). [file "/etc/modsecurity.d/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "45"] [id "942100"] [rev ""] [msg ""] [redacted] [severity "0"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-sqli"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/152/248/66"] [tag "PCI/6.5.2"] [redacted] [uri "/forum/viewthread.php"] [unique_id "159801165083.218567"] [ref ""], client: 202.51.68.14, [redacted] request: "GET /forum/viewthread.php?thread_id=1122%27%29%29%29+OR+++%28%28%28%27Rd9B%27%3D%27XZXZ HTTP/1.1" [redacted]	2020-08-21 21:01:14
174.138.42.143	attackbotsspam	Aug 21 14:38:37 abendstille sshd\[17124\]: Invalid user ubuntu from 174.138.42.143 Aug 21 14:38:37 abendstille sshd\[17124\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.42.143 Aug 21 14:38:40 abendstille sshd\[17124\]: Failed password for invalid user ubuntu from 174.138.42.143 port 41806 ssh2 Aug 21 14:43:18 abendstille sshd\[21525\]: Invalid user lazaro from 174.138.42.143 Aug 21 14:43:18 abendstille sshd\[21525\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.42.143 ...	2020-08-21 20:54:23
45.79.222.138	attackspambots	hosting multiple malicious domains	2020-08-21 21:23:46
45.43.36.191	attackspambots	Aug 21 08:07:11 Tower sshd[3921]: Connection from 45.43.36.191 port 48668 on 192.168.10.220 port 22 rdomain "" Aug 21 08:07:13 Tower sshd[3921]: Invalid user tencent from 45.43.36.191 port 48668 Aug 21 08:07:13 Tower sshd[3921]: error: Could not get shadow information for NOUSER Aug 21 08:07:13 Tower sshd[3921]: Failed password for invalid user tencent from 45.43.36.191 port 48668 ssh2 Aug 21 08:07:13 Tower sshd[3921]: Received disconnect from 45.43.36.191 port 48668:11: Bye Bye [preauth] Aug 21 08:07:13 Tower sshd[3921]: Disconnected from invalid user tencent 45.43.36.191 port 48668 [preauth]	2020-08-21 21:12:28
106.13.184.234	attack	Aug 21 13:07:14 gospond sshd[12031]: Invalid user zhang from 106.13.184.234 port 37550 ...	2020-08-21 21:18:19
103.194.248.166	attackbotsspam	srvr1: (mod_security) mod_security (id:942100) triggered by 103.194.248.166 (IN/-/-): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/21 12:07:19 [error] 482759#0: 840772 [client 103.194.248.166] ModSecurity: Access denied with code 406 (phase 2). [file "/etc/modsecurity.d/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "45"] [id "942100"] [rev ""] [msg ""] [redacted] [severity "0"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-sqli"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/152/248/66"] [tag "PCI/6.5.2"] [redacted] [uri "/forum/viewthread.php"] [unique_id "159801163981.150509"] [ref ""], client: 103.194.248.166, [redacted] request: "GET /forum/viewthread.php?thread_id=1122%27%29%29+OR+++%28%28%2727vH%27%3D%2727vH HTTP/1.1" [redacted]	2020-08-21 21:07:39

最近上报的IP列表

207.166.138.213	229.68.82.242	79.197.68.137	177.188.18.91
246.238.222.65	198.113.12.86	45.98.82.17	50.255.81.181
145.255.94.81	49.216.130.213	71.6.10.196	185.151.247.171
51.215.250.214	254.209.100.64	134.170.90.238	98.137.7.38
154.96.247.201	211.99.18.117	233.206.0.93	161.95.108.246