154.201.67.72 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Seychelles

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

% This is the AfriNIC Whois server.
% The AFRINIC whois database is subject to  the following terms of Use. See https://afrinic.net/whois/terms

% Note: this output has been filtered.
%       To receive output for a database update, use the "-B" flag.

% Information related to '154.201.67.0 - 154.201.67.255'

% No abuse contact registered for 154.201.67.0 - 154.201.67.255

inetnum:        154.201.67.0 - 154.201.67.255
netname:        High_Family_Technology_Co_Limited
descr:          High Family Technology Co., Limited
country:        HK
admin-c:        CIS1-AFRINIC
tech-c:         CIS1-AFRINIC
status:         ASSIGNED PA
mnt-by:         CIL1-MNT
mnt-by:         LARUS-SERVICE-MNT
source:         AFRINIC # Filtered
parent:         154.192.0.0 - 154.223.255.255

person:         Cloud Innovation Support
address:        Ebene
address:        MU
address:        Mahe
address:        Seychelles
phone:          tel:+248-4-610-795
nic-hdl:        CIS1-AFRINIC
abuse-mailbox:  abuse@cloudinnovation.org
mnt-by:         CIL1-MNT
source:         AFRINIC # Filtered

% Information related to '154.201.64.0/21AS137899'

route:          154.201.64.0/21
descr:          High Family Technology Co., Limited
origin:         AS137899
mnt-by:         LARUS-SERVICE-MNT
source:         AFRINIC # Filtered

% Information related to '154.201.64.0/21AS142032'

route:          154.201.64.0/21
descr:          High Family Technology Co., Limited
origin:         AS142032
mnt-by:         LARUS-SERVICE-MNT
source:         AFRINIC # Filtered

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 154.201.67.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53017
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;154.201.67.72.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025101700 1800 900 604800 86400

;; Query time: 354 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 18 00:42:05 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

b'Host 72.67.201.154.in-addr.arpa. not found: 3(NXDOMAIN)
'

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 72.67.201.154.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
62.173.149.58	attack	SSH Brute-Force reported by Fail2Ban	2019-09-22 03:44:54
106.13.58.170	attackbotsspam	Sep 21 14:46:28 meumeu sshd[14116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.58.170 Sep 21 14:46:30 meumeu sshd[14116]: Failed password for invalid user zander from 106.13.58.170 port 35138 ssh2 Sep 21 14:51:03 meumeu sshd[14684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.58.170 ...	2019-09-22 03:47:37
14.232.163.2	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-21 11:21:29,181 INFO [amun_request_handler] PortScan Detected on Port: 445 (14.232.163.2)	2019-09-22 04:14:59
1.165.23.145	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-21 11:24:43,752 INFO [amun_request_handler] PortScan Detected on Port: 445 (1.165.23.145)	2019-09-22 03:56:57
185.234.218.69	attackspam	Invalid user admin from 185.234.218.69 port 11784	2019-09-22 04:05:40
51.77.140.111	attack	Sep 21 16:53:15 web8 sshd\[24892\]: Invalid user test from 51.77.140.111 Sep 21 16:53:15 web8 sshd\[24892\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.140.111 Sep 21 16:53:18 web8 sshd\[24892\]: Failed password for invalid user test from 51.77.140.111 port 37238 ssh2 Sep 21 16:57:21 web8 sshd\[26800\]: Invalid user csgosrv from 51.77.140.111 Sep 21 16:57:21 web8 sshd\[26800\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.140.111	2019-09-22 03:46:22
157.44.151.237	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-21 12:11:38,552 INFO [shellcode_manager] (157.44.151.237) no match, writing hexdump (c694f5521a615b4205d080f8fb75b848 :2342364) - MS17010 (EternalBlue)	2019-09-22 03:42:16
149.56.46.220	attack	Sep 21 04:24:27 lcdev sshd\[15503\]: Invalid user hadoop from 149.56.46.220 Sep 21 04:24:27 lcdev sshd\[15503\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.ip-149-56-46.net Sep 21 04:24:28 lcdev sshd\[15503\]: Failed password for invalid user hadoop from 149.56.46.220 port 46432 ssh2 Sep 21 04:28:33 lcdev sshd\[15864\]: Invalid user raspberry from 149.56.46.220 Sep 21 04:28:33 lcdev sshd\[15864\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.ip-149-56-46.net	2019-09-22 04:11:30
190.146.40.67	attackbotsspam	Sep 21 08:40:33 dallas01 sshd[26702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.146.40.67 Sep 21 08:40:35 dallas01 sshd[26702]: Failed password for invalid user mustang from 190.146.40.67 port 58650 ssh2 Sep 21 08:44:49 dallas01 sshd[27584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.146.40.67	2019-09-22 03:59:20
151.235.240.250	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-21 12:06:58,630 INFO [shellcode_manager] (151.235.240.250) no match, writing hexdump (56f73c777b0fea9ac5b551f58fcd10b5 :2045601) - MS17010 (EternalBlue)	2019-09-22 04:03:40
185.53.88.92	attackbots	\[2019-09-21 15:32:43\] SECURITY\[2283\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-21T15:32:43.827-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011441603976936",SessionID="0x7fcd8c1c4788",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.92/53756",ACLName="no_extension_match" \[2019-09-21 15:35:30\] SECURITY\[2283\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-21T15:35:30.602-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011441603976936",SessionID="0x7fcd8c1c4788",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.92/52462",ACLName="no_extension_match" \[2019-09-21 15:38:12\] SECURITY\[2283\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-21T15:38:12.403-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011441603976936",SessionID="0x7fcd8c233b68",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.92/50723",ACLName="no_exte	2019-09-22 03:49:54
102.113.225.17	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/102.113.225.17/ MU - 1H : (5) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : MU NAME ASN : ASN23889 IP : 102.113.225.17 CIDR : 102.113.224.0/20 PREFIX COUNT : 521 UNIQUE IP COUNT : 946944 WYKRYTE ATAKI Z ASN23889 : 1H - 1 3H - 2 6H - 2 12H - 3 24H - 5 INFO : SERVER - ABB - Looking for resource vulnerabilities Detected and Blocked by ADMIN - data recovery	2019-09-22 04:06:35
51.254.214.215	attack	51.254.214.215 - - [21/Sep/2019:18:33:21 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.254.214.215 - - [21/Sep/2019:18:33:21 +0200] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.254.214.215 - - [21/Sep/2019:18:33:22 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.254.214.215 - - [21/Sep/2019:18:33:22 +0200] "POST /wp-login.php HTTP/1.1" 200 1607 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.254.214.215 - - [21/Sep/2019:18:33:22 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.254.214.215 - - [21/Sep/2019:18:33:22 +0200] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-09-22 03:54:58
51.75.255.166	attack	Invalid user daw from 51.75.255.166 port 56268	2019-09-22 04:05:15
36.72.216.166	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 21-09-2019 13:50:22.	2019-09-22 04:16:30

最近上报的IP列表

83.166.105.154	42.236.17.66	201.26.150.209	216.231.33.123
5.225.207.25	206.189.153.123	77.94.115.102	176.65.141.226
149.52.99.168	149.52.91.195	203.198.11.49	196.251.81.69
129.222.59.142	51.89.242.37	36.95.121.235	40.74.208.9
162.142.125.125	233.40.82.231	54.91.92.202	54.82.51.94