39.53.155.94 - IPInfo

基本信息:

城市(city): Saddiqabad

省份(region): Punjab

国家(country): Pakistan

运营商(isp): Pakistan Telecommunication Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt from IP address 39.53.155.94 on Port 445(SMB)	2019-12-23 05:23:05

相同子网IP讨论:

IP	类型	评论内容	时间
39.53.155.176	attackbots	B: Magento admin pass /admin/ test (wrong country)	2019-10-21 03:04:42

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 39.53.155.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47756
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;39.53.155.94.			IN	A

;; AUTHORITY SECTION:
.			257	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122201 1800 900 604800 86400

;; Query time: 118 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 23 05:23:02 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 94.155.53.39.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 94.155.53.39.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
121.166.187.237	attackspam	Dec 20 08:41:31 XXXXXX sshd[28649]: Invalid user pittelli from 121.166.187.237 port 55488	2019-12-20 20:17:11
123.201.65.124	attack	1576823130 - 12/20/2019 07:25:30 Host: 123.201.65.124/123.201.65.124 Port: 445 TCP Blocked	2019-12-20 19:52:06
64.145.93.140	attack	Sits on Main page collecting data	2019-12-20 19:58:17
51.83.254.106	attack	Dec 20 11:49:51 tuxlinux sshd[16370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.254.106 user=root Dec 20 11:49:53 tuxlinux sshd[16370]: Failed password for root from 51.83.254.106 port 56918 ssh2 Dec 20 11:49:51 tuxlinux sshd[16370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.254.106 user=root Dec 20 11:49:53 tuxlinux sshd[16370]: Failed password for root from 51.83.254.106 port 56918 ssh2 Dec 20 12:03:10 tuxlinux sshd[16627]: Invalid user hidekoba from 51.83.254.106 port 55976 ...	2019-12-20 20:09:10
180.245.109.234	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 20-12-2019 06:25:15.	2019-12-20 20:05:14
104.223.154.145	attack	Sending SPAM email	2019-12-20 20:13:05
198.98.59.29	attackbots	Dec 20 11:48:57 marvibiene sshd[19770]: Invalid user admin from 198.98.59.29 port 59249 Dec 20 11:48:57 marvibiene sshd[19770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.98.59.29 Dec 20 11:48:57 marvibiene sshd[19770]: Invalid user admin from 198.98.59.29 port 59249 Dec 20 11:49:00 marvibiene sshd[19770]: Failed password for invalid user admin from 198.98.59.29 port 59249 ssh2 ...	2019-12-20 20:08:15
37.49.227.109	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 21 - port: 10001 proto: UDP cat: Misc Attack	2019-12-20 20:17:49
218.204.132.158	attackspambots	Host Scan	2019-12-20 20:32:26
63.81.87.105	attack	Dec 20 08:26:49 grey postfix/smtpd\[4540\]: NOQUEUE: reject: RCPT from unite.vidyad.com\[63.81.87.105\]: 554 5.7.1 Service unavailable\; Client host \[63.81.87.105\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[63.81.87.105\]\; from=\ to=\ proto=ESMTP helo=\ ...	2019-12-20 20:15:14
180.244.121.120	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 20-12-2019 06:25:13.	2019-12-20 20:06:45
103.3.226.228	attack	Dec 20 09:30:36 v22018076622670303 sshd\[28518\]: Invalid user xiaoying from 103.3.226.228 port 37702 Dec 20 09:30:36 v22018076622670303 sshd\[28518\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.3.226.228 Dec 20 09:30:39 v22018076622670303 sshd\[28518\]: Failed password for invalid user xiaoying from 103.3.226.228 port 37702 ssh2 ...	2019-12-20 20:14:01
139.59.136.84	attackspambots	[munged]::443 139.59.136.84 - - [20/Dec/2019:12:50:37 +0100] "POST /[munged]: HTTP/1.1" 200 6734 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 139.59.136.84 - - [20/Dec/2019:12:50:38 +0100] "POST /[munged]: HTTP/1.1" 200 6597 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-12-20 20:27:45
202.123.181.84	attackspam	Host Scan	2019-12-20 20:18:15
40.92.20.48	attackbots	Dec 20 09:25:12 debian-2gb-vpn-nbg1-1 kernel: [1201471.692250] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=40.92.20.48 DST=78.46.192.101 LEN=40 TOS=0x00 PREC=0x00 TTL=234 ID=31527 DF PROTO=TCP SPT=53528 DPT=25 WINDOW=0 RES=0x00 ACK RST URGP=0	2019-12-20 20:13:35

最近上报的IP列表

151.9.38.83	216.126.25.44	180.244.39.73	177.46.141.188
37.114.159.33	182.177.255.96	132.232.161.51	78.83.138.19
49.233.141.224	90.115.126.89	125.90.49.130	203.147.77.177
124.106.102.162	175.101.240.130	145.239.70.192	124.67.106.218
134.73.55.70	69.163.225.129	180.183.193.55	106.12.191.124