157.52.219.52 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Global Frag Networks

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Jan 9 14:08:41 grey postfix/smtpd\[17400\]: NOQUEUE: reject: RCPT from unknown\[157.52.219.52\]: 554 5.7.1 Service unavailable\; Client host \[157.52.219.52\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[157.52.219.52\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-01-09 23:33:03

类型

评论内容

时间

attackbots

Jan  9 14:08:41 grey postfix/smtpd\[17400\]: NOQUEUE: reject: RCPT from unknown\[157.52.219.52\]: 554 5.7.1 Service unavailable\; Client host \[157.52.219.52\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[157.52.219.52\]\; from=\ to=\ proto=ESMTP helo=\
...

2020-01-09 23:33:03

相同子网IP讨论:

IP	类型	评论内容	时间
157.52.219.2	attackspam	Sent mail to former whois address of a deleted domain.	2019-11-21 19:28:08

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.52.219.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29918
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;157.52.219.52.			IN	A

;; AUTHORITY SECTION:
.			515	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010900 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 09 23:32:57 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 52.219.52.157.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 52.219.52.157.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
183.11.235.20	attackspambots	Sep 26 19:36:45 meumeu sshd[8777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.11.235.20 Sep 26 19:36:48 meumeu sshd[8777]: Failed password for invalid user morag from 183.11.235.20 port 40250 ssh2 Sep 26 19:42:27 meumeu sshd[9581]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.11.235.20 ...	2019-09-27 03:43:04
83.97.20.190	attack	09/26/2019-16:54:31.090285 83.97.20.190 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-09-27 03:54:08
45.82.153.35	attackspambots	09/26/2019-15:34:24.834809 45.82.153.35 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 42	2019-09-27 04:04:20
223.80.100.87	attackspam	Invalid user ida from 223.80.100.87 port 2064	2019-09-27 03:38:04
221.216.255.43	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-09-27 03:41:07
185.165.168.77	attack	Sep 26 12:33:09 thevastnessof sshd[6226]: Failed password for root from 185.165.168.77 port 56802 ssh2 ...	2019-09-27 03:44:10
172.104.8.179	attackspambots	Unauthorized SSH login attempts	2019-09-27 03:52:59
202.93.226.122	attack	Unauthorized connection attempt from IP address 202.93.226.122 on Port 445(SMB)	2019-09-27 03:32:50
59.125.68.147	attackbots	Unauthorized connection attempt from IP address 59.125.68.147 on Port 445(SMB)	2019-09-27 04:12:06
60.220.230.21	attack	Sep 26 20:14:08 mail1 sshd\[17411\]: Invalid user adminttd from 60.220.230.21 port 34255 Sep 26 20:14:08 mail1 sshd\[17411\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.220.230.21 Sep 26 20:14:11 mail1 sshd\[17411\]: Failed password for invalid user adminttd from 60.220.230.21 port 34255 ssh2 Sep 26 20:21:56 mail1 sshd\[21031\]: Invalid user boon from 60.220.230.21 port 34200 Sep 26 20:21:56 mail1 sshd\[21031\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.220.230.21 ...	2019-09-27 03:57:23
150.249.114.20	attackspambots	Sep 26 16:19:02 hcbbdb sshd\[31243\]: Invalid user filter from 150.249.114.20 Sep 26 16:19:02 hcbbdb sshd\[31243\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=fp96f97214.tkyc210.ap.nuro.jp Sep 26 16:19:04 hcbbdb sshd\[31243\]: Failed password for invalid user filter from 150.249.114.20 port 58334 ssh2 Sep 26 16:23:12 hcbbdb sshd\[31690\]: Invalid user nova from 150.249.114.20 Sep 26 16:23:12 hcbbdb sshd\[31690\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=fp96f97214.tkyc210.ap.nuro.jp	2019-09-27 04:10:55
93.158.161.119	attack	Yandexbots blocked permanently, IP: 141.8.144.28 Hostname: 141-8-144-28.spider.yandex.com Human/Bot: Bot Browser: undefined Mozilla/5.0 (compatible; YandexBot/3.0; +http://yandex.com/bots) role: Yandex LLC Network Operations address: Yandex LLC address: 16, Leo Tolstoy St. address: 119021 address: Moscow address: Russian Federation	2019-09-27 03:58:08
103.55.91.51	attackbots	Invalid user a from 103.55.91.51 port 55812	2019-09-27 04:01:16
183.82.2.115	attack	Unauthorized connection attempt from IP address 183.82.2.115 on Port 445(SMB)	2019-09-27 03:36:52
93.46.117.2	attackbotsspam	2019-09-26T07:51:31.2108161495-001 sshd\[62624\]: Invalid user sya from 93.46.117.2 port 52968 2019-09-26T07:51:31.2189481495-001 sshd\[62624\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-46-117-2.ip107.fastwebnet.it 2019-09-26T07:51:32.3835581495-001 sshd\[62624\]: Failed password for invalid user sya from 93.46.117.2 port 52968 ssh2 2019-09-26T08:23:52.1352851495-001 sshd\[65132\]: Invalid user lorenzo from 93.46.117.2 port 41696 2019-09-26T08:23:52.1426451495-001 sshd\[65132\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-46-117-2.ip107.fastwebnet.it 2019-09-26T08:23:54.1095691495-001 sshd\[65132\]: Failed password for invalid user lorenzo from 93.46.117.2 port 41696 ssh2 ...	2019-09-27 04:03:30

最近上报的IP列表

111.72.195.78	105.112.177.48	77.40.19.193	193.248.60.205
70.102.102.5	255.156.247.107	46.165.150.7	41.231.8.214
117.218.201.165	20.173.235.57	95.178.158.75	181.57.76.81
122.116.132.18	46.24.128.185	173.244.44.34	165.255.68.66
78.189.74.98	47.61.63.99	121.235.21.226	39.68.174.72