115.53.254.52 - IPInfo

基本信息:

城市(city): unknown

省份(region): Henan

国家(country): China

运营商(isp): China Unicom

主机名(hostname): unknown

机构(organization): CHINA UNICOM China169 Backbone

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 115.53.254.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11448
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;115.53.254.52.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019060200 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jun 02 22:51:37 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

52.254.53.115.in-addr.arpa domain name pointer hn.kd.ny.adsl.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
52.254.53.115.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
153.36.236.235	attackbots	Apr 9 14:07:23 server sshd\[29740\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.236.235 user=root Apr 9 14:07:25 server sshd\[29740\]: Failed password for root from 153.36.236.235 port 44148 ssh2 Apr 9 14:07:42 server sshd\[29745\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.236.235 user=root Apr 9 16:00:38 server sshd\[34529\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.236.235 user=root Apr 9 16:00:40 server sshd\[34529\]: Failed password for root from 153.36.236.235 port 52192 ssh2 Apr 9 16:00:45 server sshd\[34532\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.236.235 user=root ...	2019-07-12 02:32:07
188.163.109.153	attack	Automatic report - Web App Attack	2019-07-12 02:30:01
120.77.150.214	attackbots	[ThuJul1115:58:05.1088232019][:error][pid9689:tid47152600213248][client120.77.150.214:53800][client120.77.150.214]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$wp-$\?config\\\\\\\\.$php\\\\\\\\.$\?$\?:bac\?k\\|o\(\?:ld\\|rig$\\|copy\\|s$\?:ave\\|wp$\\|vim\?\\\\\\\\.\\|~\)"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"1257"][id"390597"][rev"1"][msg"Atomicorp.comWAFRules:AttackBlocked-DataLeakage-attempttoaccessbackupconfigfile$disablethisruleifyourequireaccesstothesebackupfiles$"][severity"CRITICAL"][hostname"www.massimilianoparquet.ch"][uri"/wordpress/wp-config.php.backup"][unique_id"XSdAbZMsgtC5jLFqwIMwAwAAAAs"][ThuJul1116:13:02.6114422019][:error][pid9690:tid47152591808256][client120.77.150.214:53812][client120.77.150.214]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$wp-$\?config\\\\\\\\.$php\\\\\\\\.$\?$\?:bac\?k\\|o\(\?:ld\\|rig$\\|copy\\|s$\?:ave\\|wp$\\|vim\?\\\\\\\\.\\|~\)"atREQUEST_FILENAME.[file"/usr/lo	2019-07-12 02:26:28
153.199.225.63	attackspambots	Jun 4 23:38:40 server sshd\[155103\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.199.225.63 user=root Jun 4 23:38:42 server sshd\[155103\]: Failed password for root from 153.199.225.63 port 53788 ssh2 Jun 4 23:39:03 server sshd\[155103\]: Failed password for root from 153.199.225.63 port 53788 ssh2 ...	2019-07-12 02:45:32
46.166.151.47	attack	\[2019-07-11 14:17:18\] SECURITY\[13451\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-11T14:17:18.273-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="0046462607533",SessionID="0x7f02f8f2dd48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/63014",ACLName="no_extension_match" \[2019-07-11 14:20:39\] SECURITY\[13451\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-11T14:20:39.948-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00446812400638",SessionID="0x7f02f94cdc98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/62800",ACLName="no_extension_match" \[2019-07-11 14:21:20\] SECURITY\[13451\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-11T14:21:20.486-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00046462607533",SessionID="0x7f02f98e5508",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/46.166.151.47/55114",ACLName="no_exte	2019-07-12 02:32:33
220.72.166.245	attackbotsspam	FTP: login Brute Force attempt, PTR: PTR record not found	2019-07-12 02:50:52
151.51.219.82	attackspambots	May 19 01:44:46 server sshd\[203374\]: Invalid user support from 151.51.219.82 May 19 01:44:46 server sshd\[203374\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.51.219.82 May 19 01:44:48 server sshd\[203374\]: Failed password for invalid user support from 151.51.219.82 port 41488 ssh2 ...	2019-07-12 03:06:46
185.211.245.170	attackbots	Jul 11 20:07:40 relay postfix/smtpd\[10674\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 11 20:18:19 relay postfix/smtpd\[21720\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 11 20:18:29 relay postfix/smtpd\[10674\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 11 20:18:58 relay postfix/smtpd\[23577\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 11 20:19:20 relay postfix/smtpd\[23577\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-07-12 02:43:10
201.148.247.83	attackspam	$f2bV_matches	2019-07-12 02:41:40
152.204.24.19	attack	Apr 15 06:40:53 server sshd\[8795\]: Invalid user usuario from 152.204.24.19 Apr 15 06:40:53 server sshd\[8795\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.204.24.19 Apr 15 06:40:55 server sshd\[8795\]: Failed password for invalid user usuario from 152.204.24.19 port 53929 ssh2 ...	2019-07-12 02:51:52
153.36.236.35	attackspambots	2019-07-11T20:09:30.163378scmdmz1 sshd\[3848\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.236.35 user=root 2019-07-11T20:09:31.858184scmdmz1 sshd\[3848\]: Failed password for root from 153.36.236.35 port 35031 ssh2 2019-07-11T20:09:34.400900scmdmz1 sshd\[3848\]: Failed password for root from 153.36.236.35 port 35031 ssh2 ...	2019-07-12 02:29:01
148.70.58.196	attackspam	ECShop Remote Code Execution Vulnerability, PTR: PTR record not found	2019-07-12 02:53:54
152.249.121.124	attack	Jun 21 04:57:53 server sshd\[135773\]: Invalid user cu from 152.249.121.124 Jun 21 04:57:53 server sshd\[135773\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.249.121.124 Jun 21 04:57:55 server sshd\[135773\]: Failed password for invalid user cu from 152.249.121.124 port 53730 ssh2 ...	2019-07-12 02:51:28
151.80.56.64	attack	Jun 20 19:10:07 server sshd\[109910\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.56.64 user=root Jun 20 19:10:08 server sshd\[109910\]: Failed password for root from 151.80.56.64 port 37966 ssh2 Jun 20 19:13:47 server sshd\[109989\]: Invalid user support from 151.80.56.64 Jun 20 19:13:47 server sshd\[109989\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.56.64 ...	2019-07-12 02:56:33
153.36.232.36	attack	Jul 11 20:39:32 ovpn sshd\[30681\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.232.36 user=root Jul 11 20:39:35 ovpn sshd\[30681\]: Failed password for root from 153.36.232.36 port 32130 ssh2 Jul 11 20:39:42 ovpn sshd\[30719\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.232.36 user=root Jul 11 20:39:44 ovpn sshd\[30719\]: Failed password for root from 153.36.232.36 port 60058 ssh2 Jul 11 20:39:52 ovpn sshd\[30739\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.232.36 user=root	2019-07-12 02:42:05

最近上报的IP列表

151.173.223.112	196.194.119.44	83.139.214.34	27.3.129.154
123.195.87.255	189.151.97.104	178.62.220.251	88.222.31.167
163.44.84.225	128.253.98.142	105.178.25.209	93.41.142.250
116.102.155.21	195.203.129.172	190.210.9.72	187.13.171.8
109.110.249.183	36.80.94.108	186.3.192.45	104.168.28.192