164.128.128.52

基本信息:

城市(city): unknown

省份(region): Zurich

国家(country): Switzerland

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): Bluewin

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 164.128.128.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37417
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;164.128.128.52.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081701 1800 900 604800 86400

;; Query time: 6 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Aug 18 07:37:56 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

52.128.128.164.in-addr.arpa domain name pointer 52.128.128.164.static.wline.lns.ent.cust.swisscom.ch.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
52.128.128.164.in-addr.arpa	name = 52.128.128.164.static.wline.lns.ent.cust.swisscom.ch.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
95.155.29.54	attack	20/5/13@08:37:16: FAIL: IoT-SSH address from=95.155.29.54 ...	2020-05-13 23:06:46
200.88.52.122	attackbots	May 13 14:34:19 ns382633 sshd\[13027\]: Invalid user test from 200.88.52.122 port 33732 May 13 14:34:19 ns382633 sshd\[13027\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.88.52.122 May 13 14:34:21 ns382633 sshd\[13027\]: Failed password for invalid user test from 200.88.52.122 port 33732 ssh2 May 13 14:37:02 ns382633 sshd\[13781\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.88.52.122 user=root May 13 14:37:04 ns382633 sshd\[13781\]: Failed password for root from 200.88.52.122 port 34392 ssh2	2020-05-13 23:20:19
191.6.173.215	attack	Brute force attempt	2020-05-13 23:03:50
142.93.121.47	attackbotsspam	SSH brute-force attempt	2020-05-13 23:43:34
151.80.140.166	attackbotsspam	2020-05-13T14:46:19.233872shield sshd\[15420\]: Invalid user web from 151.80.140.166 port 56910 2020-05-13T14:46:19.243183shield sshd\[15420\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=dev.geronimo-dev.ovh 2020-05-13T14:46:21.731907shield sshd\[15420\]: Failed password for invalid user web from 151.80.140.166 port 56910 ssh2 2020-05-13T14:49:48.471750shield sshd\[16015\]: Invalid user rjr from 151.80.140.166 port 35048 2020-05-13T14:49:48.475643shield sshd\[16015\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=dev.geronimo-dev.ovh	2020-05-13 23:45:49
141.98.9.160	attackbots	May 13 14:25:36 *** sshd[10747]: Invalid user user from 141.98.9.160	2020-05-13 22:50:25
213.90.36.44	attackbots	Same person From U.S.A. asking for illegal transfert of money from a Burkina Faso bank no interest in such scam mail blocked deleted and retrun to the sender	2020-05-13 23:14:42
197.51.236.161	attackspambots	Automatic report - Port Scan Attack	2020-05-13 23:03:14
213.194.132.252	attackspam	Automatic report - Port Scan Attack	2020-05-13 23:37:43
194.58.98.58	attackbotsspam	May 13 14:31:16 ns382633 sshd\[9542\]: Invalid user bot from 194.58.98.58 port 46684 May 13 14:31:16 ns382633 sshd\[9542\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.58.98.58 May 13 14:31:18 ns382633 sshd\[9542\]: Failed password for invalid user bot from 194.58.98.58 port 46684 ssh2 May 13 14:37:10 ns382633 sshd\[13876\]: Invalid user jr from 194.58.98.58 port 53290 May 13 14:37:10 ns382633 sshd\[13876\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.58.98.58	2020-05-13 23:08:32
62.234.103.191	attackspambots	May 13 17:40:15 hosting sshd[18182]: Invalid user berry from 62.234.103.191 port 60142 ...	2020-05-13 23:11:02
27.34.251.60	attackbots	May 13 16:20:41 mail sshd\[16611\]: Invalid user secret from 27.34.251.60 May 13 16:20:41 mail sshd\[16611\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.34.251.60 May 13 16:20:43 mail sshd\[16611\]: Failed password for invalid user secret from 27.34.251.60 port 47720 ssh2 ...	2020-05-13 23:27:23
185.176.27.26	attackbots	May 13 16:46:23 debian-2gb-nbg1-2 kernel: \[11640041.608850\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.26 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=61738 PROTO=TCP SPT=59722 DPT=3598 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-13 23:35:01
162.243.136.110	attack	Mail Rejected for Invalid HELO on port 25, EHLO: zg-0428c-83	2020-05-13 23:27:37
213.180.203.38	attackspam	[Wed May 13 19:37:08.871260 2020] [:error] [pid 23852:tid 140604109100800] [client 213.180.203.38:64230] [client 213.180.203.38] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "Xrvp9O6oP8lSLrpN4R1CtwAAAe8"] ...	2020-05-13 23:02:26

最近上报的IP列表

113.112.113.59	106.148.214.125	117.240.228.61	148.122.26.25
221.224.194.83	46.229.65.39	92.46.226.131	152.29.165.23
196.233.120.100	125.111.216.13	210.62.94.60	195.211.27.239
156.241.34.191	40.40.120.47	23.245.100.193	199.195.102.118
108.198.15.40	93.68.53.251	50.190.147.181	56.93.78.33