117.52.152.104

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): South Korea

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): LG DACOM Corporation

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.52.152.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10527
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.52.152.104.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019042400 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Wed Apr 24 22:12:42 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 104.152.52.117.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 104.152.52.117.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
97.74.24.190	attackbots	Trolling for resource vulnerabilities	2020-06-14 17:14:52
109.168.66.27	attack	Jun 14 18:25:37 web1 sshd[387]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.168.66.27 user=root Jun 14 18:25:39 web1 sshd[387]: Failed password for root from 109.168.66.27 port 40746 ssh2 Jun 14 18:29:42 web1 sshd[1328]: Invalid user ADSL from 109.168.66.27 port 34918 Jun 14 18:29:42 web1 sshd[1328]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.168.66.27 Jun 14 18:29:42 web1 sshd[1328]: Invalid user ADSL from 109.168.66.27 port 34918 Jun 14 18:29:45 web1 sshd[1328]: Failed password for invalid user ADSL from 109.168.66.27 port 34918 ssh2 Jun 14 18:33:32 web1 sshd[2318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.168.66.27 user=root Jun 14 18:33:33 web1 sshd[2318]: Failed password for root from 109.168.66.27 port 55500 ssh2 Jun 14 18:37:05 web1 sshd[3225]: Invalid user oracle from 109.168.66.27 port 47860 ...	2020-06-14 17:14:13
101.227.82.219	attackbots	Jun 14 08:02:06 cosmoit sshd[31670]: Failed password for root from 101.227.82.219 port 65474 ssh2	2020-06-14 17:04:04
213.150.206.88	attack	web-1 [ssh_2] SSH Attack	2020-06-14 17:17:06
45.139.48.28	attackspam	tried to spam in our blog comments: адреналин бот официальный сайт - adrenaline bot lineage 2, адриналин бот	2020-06-14 17:21:06
167.114.155.2	attack	SSH Brute-Force attacks	2020-06-14 17:24:41
129.204.67.235	attack	Jun 14 06:00:17 h2779839 sshd[12926]: Invalid user adi from 129.204.67.235 port 56132 Jun 14 06:00:17 h2779839 sshd[12926]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.67.235 Jun 14 06:00:17 h2779839 sshd[12926]: Invalid user adi from 129.204.67.235 port 56132 Jun 14 06:00:19 h2779839 sshd[12926]: Failed password for invalid user adi from 129.204.67.235 port 56132 ssh2 Jun 14 06:02:29 h2779839 sshd[12995]: Invalid user ts from 129.204.67.235 port 49526 Jun 14 06:02:29 h2779839 sshd[12995]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.67.235 Jun 14 06:02:29 h2779839 sshd[12995]: Invalid user ts from 129.204.67.235 port 49526 Jun 14 06:02:31 h2779839 sshd[12995]: Failed password for invalid user ts from 129.204.67.235 port 49526 ssh2 Jun 14 06:04:44 h2779839 sshd[13021]: Invalid user jh from 129.204.67.235 port 42920 ...	2020-06-14 17:15:22
129.204.152.222	attack	Jun 14 00:46:03 mockhub sshd[24824]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.152.222 Jun 14 00:46:05 mockhub sshd[24824]: Failed password for invalid user miner from 129.204.152.222 port 56086 ssh2 ...	2020-06-14 17:13:49
122.115.57.174	attack	Invalid user Paul from 122.115.57.174 port 15280	2020-06-14 17:10:26
176.218.207.140	attackbots	" "	2020-06-14 17:20:05
46.38.150.190	attackspam	Jun 14 11:11:43 relay postfix/smtpd\[11754\]: warning: unknown\[46.38.150.190\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 14 11:12:01 relay postfix/smtpd\[2527\]: warning: unknown\[46.38.150.190\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 14 11:13:18 relay postfix/smtpd\[11680\]: warning: unknown\[46.38.150.190\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 14 11:13:35 relay postfix/smtpd\[27014\]: warning: unknown\[46.38.150.190\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 14 11:14:53 relay postfix/smtpd\[11774\]: warning: unknown\[46.38.150.190\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-14 17:19:20
103.107.183.123	attackspambots	2020-06-14T04:04:00.946868mail.csmailer.org sshd[29154]: Failed password for root from 103.107.183.123 port 42170 ssh2 2020-06-14T04:06:59.259949mail.csmailer.org sshd[29462]: Invalid user miencraft from 103.107.183.123 port 47800 2020-06-14T04:06:59.263307mail.csmailer.org sshd[29462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.107.183.123 2020-06-14T04:06:59.259949mail.csmailer.org sshd[29462]: Invalid user miencraft from 103.107.183.123 port 47800 2020-06-14T04:07:01.138203mail.csmailer.org sshd[29462]: Failed password for invalid user miencraft from 103.107.183.123 port 47800 ssh2 ...	2020-06-14 17:30:18
112.85.42.178	attack	Jun 14 05:20:25 NPSTNNYC01T sshd[11407]: Failed password for root from 112.85.42.178 port 7931 ssh2 Jun 14 05:20:39 NPSTNNYC01T sshd[11407]: error: maximum authentication attempts exceeded for root from 112.85.42.178 port 7931 ssh2 [preauth] Jun 14 05:20:46 NPSTNNYC01T sshd[11416]: Failed password for root from 112.85.42.178 port 42098 ssh2 ...	2020-06-14 17:28:05
104.248.147.78	attack	104.248.147.78 - - [14/Jun/2020:10:48:14 +0200] "GET /wp-login.php HTTP/1.1" 200 6521 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.147.78 - - [14/Jun/2020:10:48:17 +0200] "POST /wp-login.php HTTP/1.1" 200 6772 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.147.78 - - [14/Jun/2020:10:48:19 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-14 17:11:31
79.124.62.55	attackbots	TCP (SYN) 79.124.62.55:52053 -> port 70, len 44	2020-06-14 17:22:34

最近上报的IP列表

74.208.59.42	42.49.109.168	95.245.64.16	212.56.52.237
14.241.39.104	5.190.229.109	47.135.225.56	213.154.3.2
195.50.226.113	78.68.4.149	110.128.90.169	178.128.172.157
179.155.66.163	105.165.231.224	253.204.140.50	24.35.254.244
137.176.50.98	210.57.60.130	161.170.48.148	93.112.140.26