82.114.139.253

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Russian Federation (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 82.114.139.253
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29976
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;82.114.139.253.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025013101 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 01 03:40:09 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

Host 253.139.114.82.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 253.139.114.82.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
62.210.136.189	attackspam	Oct 5 16:49:14 hostnameproxy sshd[6564]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.210.136.189 user=r.r Oct 5 16:49:14 hostnameproxy sshd[6563]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.210.136.189 user=r.r Oct 5 16:49:14 hostnameproxy sshd[6586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.210.136.189 user=r.r Oct 5 16:49:14 hostnameproxy sshd[6592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.210.136.189 user=r.r Oct 5 16:49:14 hostnameproxy sshd[6562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.210.136.189 user=r.r Oct 5 16:49:14 hostnameproxy sshd[6582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.210.136.189 user=r.r Oct 5 16:49:14 hostnameproxy sshd[6585]: pam_unix(sshd........ ------------------------------	2020-10-07 21:23:41
191.30.24.44	attackbots	Unauthorized connection attempt from IP address 191.30.24.44 on Port 445(SMB)	2020-10-07 20:59:39
112.85.42.180	attackbotsspam	[MK-Root1] SSH login failed	2020-10-07 21:22:33
36.111.150.124	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-10-07 21:29:01
106.12.242.123	attack	2020-10-07T05:00:36.949826shield sshd\[22610\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.242.123 user=root 2020-10-07T05:00:39.212525shield sshd\[22610\]: Failed password for root from 106.12.242.123 port 56596 ssh2 2020-10-07T05:05:22.491220shield sshd\[23421\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.242.123 user=root 2020-10-07T05:05:25.015167shield sshd\[23421\]: Failed password for root from 106.12.242.123 port 54488 ssh2 2020-10-07T05:10:08.051143shield sshd\[24079\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.242.123 user=root	2020-10-07 21:12:44
103.90.226.99	attackspambots	RDP Brute-Force (honeypot 6)	2020-10-07 21:32:17
51.91.250.49	attack	Oct 7 02:48:02 ny01 sshd[1744]: Failed password for root from 51.91.250.49 port 53438 ssh2 Oct 7 02:51:41 ny01 sshd[2276]: Failed password for root from 51.91.250.49 port 59406 ssh2	2020-10-07 21:07:48
112.85.42.183	attackspam	2020-10-07T13:16:29.977502shield sshd\[18698\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.183 user=root 2020-10-07T13:16:31.805554shield sshd\[18698\]: Failed password for root from 112.85.42.183 port 65412 ssh2 2020-10-07T13:16:35.279586shield sshd\[18698\]: Failed password for root from 112.85.42.183 port 65412 ssh2 2020-10-07T13:16:38.800569shield sshd\[18698\]: Failed password for root from 112.85.42.183 port 65412 ssh2 2020-10-07T13:16:41.478725shield sshd\[18698\]: Failed password for root from 112.85.42.183 port 65412 ssh2	2020-10-07 21:19:27
83.97.20.35	attackspam	scans 37 times in preceeding hours on the ports (in chronological order) 2121 8099 9042 9042 7001 8086 8060 20000 37777 5222 1027 4000 2323 50000 18081 5006 8087 32400 6001 8069 8554 8333 3333 5007 7779 9418 5269 9944 4022 27017 5984 2480 1883 9595 10243 5678 4040 resulting in total of 48 scans from 83.97.20.0/24 block.	2020-10-07 20:56:47
167.71.53.185	attack	WordPress wp-login brute force :: 167.71.53.185 0.080 - [06/Oct/2020:20:44:59 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 2383 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"	2020-10-07 21:14:25
106.13.82.49	attack	SSH Brute-force	2020-10-07 21:09:14
111.207.167.147	attackbotsspam	[portscan] tcp/1433 [MsSQL] *(RWIN=1024)(10061547)	2020-10-07 21:33:32
183.82.100.220	attackspam	RDP Bruteforce	2020-10-07 21:18:35
94.176.205.186	attack	(Oct 7) LEN=40 TTL=242 ID=5817 DF TCP DPT=23 WINDOW=14600 SYN (Oct 7) LEN=40 TTL=242 ID=36495 DF TCP DPT=23 WINDOW=14600 SYN (Oct 7) LEN=40 TTL=243 ID=33872 DF TCP DPT=23 WINDOW=14600 SYN (Oct 7) LEN=40 TTL=243 ID=59327 DF TCP DPT=23 WINDOW=14600 SYN (Oct 7) LEN=40 TTL=243 ID=18723 DF TCP DPT=23 WINDOW=14600 SYN (Oct 7) LEN=40 TTL=243 ID=60952 DF TCP DPT=23 WINDOW=14600 SYN (Oct 7) LEN=40 TTL=243 ID=59952 DF TCP DPT=23 WINDOW=14600 SYN (Oct 7) LEN=40 TTL=243 ID=63953 DF TCP DPT=23 WINDOW=14600 SYN (Oct 7) LEN=40 TTL=243 ID=57552 DF TCP DPT=23 WINDOW=14600 SYN (Oct 7) LEN=40 TTL=243 ID=22302 DF TCP DPT=23 WINDOW=14600 SYN (Oct 6) LEN=40 TTL=243 ID=20461 DF TCP DPT=23 WINDOW=14600 SYN (Oct 6) LEN=40 TTL=243 ID=39357 DF TCP DPT=23 WINDOW=14600 SYN (Oct 6) LEN=40 TTL=243 ID=54940 DF TCP DPT=23 WINDOW=14600 SYN (Oct 6) LEN=40 TTL=243 ID=28578 DF TCP DPT=23 WINDOW=14600 SYN (Oct 6) LEN=40 TTL=243 ID=22788 DF TCP DPT=23 WINDOW=14600 S...	2020-10-07 21:27:41
128.14.133.58	attack	srvr3: (mod_security) mod_security (id:920350) triggered by 128.14.133.58 (US/-/zl-lax-us-gp3-wk104.internet-census.org): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/10/07 13:41:36 [error] 366967#0: 1453 [client 128.14.133.58] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "160207089677.226620"] [ref "o0,14v21,14"], client: 128.14.133.58, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-10-07 21:32:38

最近上报的IP列表

125.45.137.151	163.70.64.174	82.167.147.19	189.253.222.203
174.220.165.247	215.33.133.200	17.162.121.180	199.20.180.253
106.55.150.182	56.241.62.71	6.101.186.119	237.110.211.80
177.198.208.40	86.90.23.0	51.68.75.209	181.238.255.162
27.153.102.17	227.244.26.222	230.9.47.119	66.34.57.72