38.104.172.253

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 38.104.172.253
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63593
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;38.104.172.253.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020302 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 10:45:11 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

253.172.104.38.in-addr.arpa domain name pointer gi0-0-0-18.215.nr11.b001133-0.jfk02.atlas.cogentco.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
253.172.104.38.in-addr.arpa	name = gi0-0-0-18.215.nr11.b001133-0.jfk02.atlas.cogentco.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
212.83.132.45	attackbots	[2020-07-24 12:48:29] NOTICE[1277] chan_sip.c: Registration from '"523"' failed for '212.83.132.45:7448' - Wrong password [2020-07-24 12:48:29] SECURITY[1295] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-07-24T12:48:29.389-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="523",SessionID="0x7f17545b1d48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.132.45/7448",Challenge="566938af",ReceivedChallenge="566938af",ReceivedHash="77387e5cd20df164f70bc9cf6b831e5a" [2020-07-24 12:50:42] NOTICE[1277] chan_sip.c: Registration from '"529"' failed for '212.83.132.45:7765' - Wrong password [2020-07-24 12:50:42] SECURITY[1295] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-07-24T12:50:42.925-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="529",SessionID="0x7f17542ea028",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.132 ...	2020-07-25 01:12:15
165.22.49.42	attackspambots	Jul 24 15:58:01 h2779839 sshd[14309]: Invalid user webuser from 165.22.49.42 port 49426 Jul 24 15:58:01 h2779839 sshd[14309]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.49.42 Jul 24 15:58:01 h2779839 sshd[14309]: Invalid user webuser from 165.22.49.42 port 49426 Jul 24 15:58:03 h2779839 sshd[14309]: Failed password for invalid user webuser from 165.22.49.42 port 49426 ssh2 Jul 24 16:01:04 h2779839 sshd[14366]: Invalid user sysadmin from 165.22.49.42 port 36948 Jul 24 16:01:04 h2779839 sshd[14366]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.49.42 Jul 24 16:01:04 h2779839 sshd[14366]: Invalid user sysadmin from 165.22.49.42 port 36948 Jul 24 16:01:05 h2779839 sshd[14366]: Failed password for invalid user sysadmin from 165.22.49.42 port 36948 ssh2 Jul 24 16:04:10 h2779839 sshd[14492]: Invalid user jv from 165.22.49.42 port 52704 ...	2020-07-25 01:10:23
189.113.21.144	attackbotsspam	Jul 24 12:56:10 mail.srvfarm.net postfix/smtpd[2236042]: warning: 189-113-21-144.static.abasetelecom.com.br[189.113.21.144]: SASL PLAIN authentication failed: Jul 24 12:56:11 mail.srvfarm.net postfix/smtpd[2236042]: lost connection after AUTH from 189-113-21-144.static.abasetelecom.com.br[189.113.21.144] Jul 24 12:59:46 mail.srvfarm.net postfix/smtpd[2237960]: warning: unknown[189.113.21.144]: SASL PLAIN authentication failed: Jul 24 12:59:47 mail.srvfarm.net postfix/smtpd[2237960]: lost connection after AUTH from unknown[189.113.21.144] Jul 24 13:00:12 mail.srvfarm.net postfix/smtps/smtpd[2240150]: warning: 189-113-21-144.static.abasetelecom.com.br[189.113.21.144]: SASL PLAIN authentication failed:	2020-07-25 01:19:51
191.240.193.43	attackbots	Jul 24 12:15:24 mail.srvfarm.net postfix/smtps/smtpd[2216516]: warning: unknown[191.240.193.43]: SASL PLAIN authentication failed: Jul 24 12:15:24 mail.srvfarm.net postfix/smtps/smtpd[2216516]: lost connection after AUTH from unknown[191.240.193.43] Jul 24 12:17:53 mail.srvfarm.net postfix/smtpd[2229645]: warning: unknown[191.240.193.43]: SASL PLAIN authentication failed: Jul 24 12:17:53 mail.srvfarm.net postfix/smtpd[2229645]: lost connection after AUTH from unknown[191.240.193.43] Jul 24 12:22:50 mail.srvfarm.net postfix/smtpd[2217477]: warning: unknown[191.240.193.43]: SASL PLAIN authentication failed:	2020-07-25 01:36:37
89.144.47.244	attack	TCP (SYN) 89.144.47.244:50333 -> port 3393, len 44	2020-07-25 01:06:38
106.12.26.181	attackbots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-07-25 01:17:20
94.74.130.104	attackspam	Jul 24 13:02:18 mail.srvfarm.net postfix/smtpd[2237961]: warning: unknown[94.74.130.104]: SASL PLAIN authentication failed: Jul 24 13:02:18 mail.srvfarm.net postfix/smtpd[2237961]: lost connection after AUTH from unknown[94.74.130.104] Jul 24 13:08:37 mail.srvfarm.net postfix/smtpd[2236042]: warning: unknown[94.74.130.104]: SASL PLAIN authentication failed: Jul 24 13:08:37 mail.srvfarm.net postfix/smtpd[2236042]: lost connection after AUTH from unknown[94.74.130.104] Jul 24 13:11:38 mail.srvfarm.net postfix/smtps/smtpd[2240708]: warning: unknown[94.74.130.104]: SASL PLAIN authentication failed:	2020-07-25 01:29:11
101.89.110.204	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-07-25 01:41:21
198.27.66.144	attack	198.27.66.144 - - [24/Jul/2020:18:47:06 +0200] "POST /xmlrpc.php HTTP/2.0" 403 32080 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36" 198.27.66.144 - - [24/Jul/2020:18:47:06 +0200] "POST /xmlrpc.php HTTP/2.0" 403 32080 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36" ...	2020-07-25 01:35:55
51.89.37.51	attackbots	Unauthorized connection attempt from IP address 51.89.37.51 on Port 3389(RDP)	2020-07-25 01:11:49
172.82.230.3	attackbotsspam	Jul 24 18:29:19 mail.srvfarm.net postfix/smtpd[2393457]: lost connection after STARTTLS from r3.news.eu.rvca.com[172.82.230.3] Jul 24 18:30:28 mail.srvfarm.net postfix/smtpd[2394778]: lost connection after STARTTLS from r3.news.eu.rvca.com[172.82.230.3] Jul 24 18:31:41 mail.srvfarm.net postfix/smtpd[2393924]: lost connection after STARTTLS from r3.news.eu.rvca.com[172.82.230.3] Jul 24 18:32:44 mail.srvfarm.net postfix/smtpd[2393350]: lost connection after STARTTLS from r3.news.eu.rvca.com[172.82.230.3] Jul 24 18:33:51 mail.srvfarm.net postfix/smtpd[2393350]: lost connection after STARTTLS from r3.news.eu.rvca.com[172.82.230.3]	2020-07-25 01:24:17
172.82.239.22	attack	Jul 24 18:29:21 mail.srvfarm.net postfix/smtpd[2393355]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Jul 24 18:30:28 mail.srvfarm.net postfix/smtpd[2394778]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Jul 24 18:31:40 mail.srvfarm.net postfix/smtpd[2394778]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Jul 24 18:32:47 mail.srvfarm.net postfix/smtpd[2393356]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22] Jul 24 18:33:50 mail.srvfarm.net postfix/smtpd[2395965]: lost connection after STARTTLS from r22.news.eu.rvca.com[172.82.239.22]	2020-07-25 01:22:55
51.77.202.154	attack	Jul 24 17:51:27 mail.srvfarm.net postfix/smtpd[2359141]: warning: vps-eb8cf374.vps.ovh.net[51.77.202.154]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 24 17:51:27 mail.srvfarm.net postfix/smtpd[2359141]: lost connection after AUTH from vps-eb8cf374.vps.ovh.net[51.77.202.154] Jul 24 17:52:16 mail.srvfarm.net postfix/smtpd[2359141]: warning: vps-eb8cf374.vps.ovh.net[51.77.202.154]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 24 17:52:16 mail.srvfarm.net postfix/smtpd[2359141]: lost connection after AUTH from vps-eb8cf374.vps.ovh.net[51.77.202.154] Jul 24 18:00:00 mail.srvfarm.net postfix/smtpd[2359816]: warning: vps-eb8cf374.vps.ovh.net[51.77.202.154]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-07-25 01:44:15
189.85.30.243	attackspambots	Jul 24 11:50:26 mail.srvfarm.net postfix/smtps/smtpd[2209303]: warning: unknown[189.85.30.243]: SASL PLAIN authentication failed: Jul 24 11:50:27 mail.srvfarm.net postfix/smtps/smtpd[2209303]: lost connection after AUTH from unknown[189.85.30.243] Jul 24 11:52:39 mail.srvfarm.net postfix/smtps/smtpd[2209355]: warning: unknown[189.85.30.243]: SASL PLAIN authentication failed: Jul 24 11:52:40 mail.srvfarm.net postfix/smtps/smtpd[2209355]: lost connection after AUTH from unknown[189.85.30.243] Jul 24 11:56:15 mail.srvfarm.net postfix/smtps/smtpd[2215458]: warning: unknown[189.85.30.243]: SASL PLAIN authentication failed:	2020-07-25 01:37:56
1.164.13.180	attackbots	Unauthorized connection attempt from IP address 1.164.13.180 on Port 445(SMB)	2020-07-25 01:15:29

最近上报的IP列表

30.238.47.161	165.72.192.27	230.22.234.94	181.94.72.172
132.194.94.249	214.146.33.24	171.66.99.118	21.202.57.7
107.147.181.125	115.21.116.113	205.1.51.147	60.76.49.172
255.146.68.182	91.138.99.160	159.178.123.96	51.232.36.139
41.204.6.92	64.90.143.230	73.111.22.215	107.219.156.236