38.148.53.49 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 38.148.53.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48571
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;38.148.53.49.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012201 1800 900 604800 86400

;; Query time: 32 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 23 05:57:40 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

Host 49.53.148.38.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

server can't find 38.148.53.49.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
200.127.33.2	attackbots	Jul 1 21:29:32 lnxweb61 sshd[22907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.127.33.2 Jul 1 21:29:32 lnxweb61 sshd[22907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.127.33.2	2019-07-02 06:42:37
118.24.89.243	attack	2019-07-01T22:06:32.216951stark.klein-stark.info sshd\[4659\]: Invalid user hadoop from 118.24.89.243 port 59898 2019-07-01T22:06:32.220794stark.klein-stark.info sshd\[4659\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.89.243 2019-07-01T22:06:33.759964stark.klein-stark.info sshd\[4659\]: Failed password for invalid user hadoop from 118.24.89.243 port 59898 ssh2 ...	2019-07-02 06:22:23
60.51.48.226	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-02 06:28:30
80.229.253.212	attackspam	Jul 1 15:28:40 tuxlinux sshd[46391]: Invalid user applmgr from 80.229.253.212 port 52282 Jul 1 15:28:40 tuxlinux sshd[46391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.229.253.212 Jul 1 15:28:40 tuxlinux sshd[46391]: Invalid user applmgr from 80.229.253.212 port 52282 Jul 1 15:28:40 tuxlinux sshd[46391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.229.253.212 Jul 1 15:28:40 tuxlinux sshd[46391]: Invalid user applmgr from 80.229.253.212 port 52282 Jul 1 15:28:40 tuxlinux sshd[46391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.229.253.212 Jul 1 15:28:42 tuxlinux sshd[46391]: Failed password for invalid user applmgr from 80.229.253.212 port 52282 ssh2 ...	2019-07-02 06:30:34
184.58.236.201	attackspambots	2019-07-01T22:23:29.377729abusebot-8.cloudsearch.cf sshd\[4819\]: Invalid user pgadmin from 184.58.236.201 port 49880	2019-07-02 06:50:18
178.74.104.227	attackbotsspam	slow and persistent scanner	2019-07-02 06:46:43
67.189.50.76	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-02 06:59:29
101.255.64.194	attackbotsspam	Jul 1 09:10:48 mail01 postfix/postscreen[8009]: CONNECT from [101.255.64.194]:42360 to [94.130.181.95]:25 Jul 1 09:10:48 mail01 postfix/dnsblog[8011]: addr 101.255.64.194 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Jul 1 09:10:48 mail01 postfix/dnsblog[8010]: addr 101.255.64.194 listed by domain zen.spamhaus.org as 127.0.0.3 Jul 1 09:10:48 mail01 postfix/dnsblog[8010]: addr 101.255.64.194 listed by domain zen.spamhaus.org as 127.0.0.11 Jul 1 09:10:48 mail01 postfix/dnsblog[8010]: addr 101.255.64.194 listed by domain zen.spamhaus.org as 127.0.0.4 Jul 1 09:10:48 mail01 postfix/postscreen[8009]: PREGREET 16 after 0.47 from [101.255.64.194]:42360: EHLO 021fy.com Jul 1 09:10:48 mail01 postfix/postscreen[8009]: DNSBL rank 4 for [101.255.64.194]:42360 Jul x@x Jul x@x Jul 1 09:10:50 mail01 postfix/postscreen[8009]: HANGUP after 1.6 from [101.255.64.194]:42360 in tests after SMTP handshake Jul 1 09:10:50 mail01 postfix/postscreen[8009]: DISCONNECT [101.255.64.194........ -------------------------------	2019-07-02 06:21:11
71.203.4.18	attack	script kiddie searching for phpmyadmin "GET /mysql/mysqlmanager/index.php?lang=en HTTP/1.1" 404 467 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.119 Safari/537.36" "GET /phpmyadmin/index.php?lang=en HTTP/1.1" 404 459 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.119 Safari/537.36" "GET /phpMyadmin/index.php?lang=en HTTP/1.1" 404 459 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.119 Safari/537.36" "GET /phpMyAdmin/index.php?lang=en HTTP/1.1" 404 459 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.119 Safari/537.36" "GET /phpmyAdmin/index.php?lang=en HTTP/1.1" 404 459 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x	2019-07-02 06:19:44
122.228.19.80	attackbotsspam	01.07.2019 22:12:22 Connection to port 5901 blocked by firewall	2019-07-02 06:36:05
167.99.76.71	attack	Jul 1 17:56:22 debian sshd\[6733\]: Invalid user dimanche from 167.99.76.71 port 43438 Jul 1 17:56:22 debian sshd\[6733\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.76.71 Jul 1 17:56:23 debian sshd\[6733\]: Failed password for invalid user dimanche from 167.99.76.71 port 43438 ssh2 ...	2019-07-02 06:49:55
61.55.37.103	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-02 06:43:18
103.108.87.133	attackbots	Jul 1 15:24:17 mail sshd[11205]: Invalid user smbprint from 103.108.87.133 Jul 1 15:24:17 mail sshd[11205]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.108.87.133 Jul 1 15:24:17 mail sshd[11205]: Invalid user smbprint from 103.108.87.133 Jul 1 15:24:18 mail sshd[11205]: Failed password for invalid user smbprint from 103.108.87.133 port 37192 ssh2 Jul 1 15:28:40 mail sshd[17133]: Invalid user human-connect from 103.108.87.133 ...	2019-07-02 06:31:15
61.90.172.212	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-02 06:45:15
52.50.17.218	attackspambots	hostname admin hacker/tv tampering/location correct/player.stv.tv 52.50.17.218 expected tv hacker/usually work for employer STV Scottish???/direct hack TCP (443) BRACKETS are part of the hack	2019-07-02 06:27:03

最近上报的IP列表

14.125.192.144	30.233.109.246	241.248.34.156	194.10.105.5
238.253.171.23	96.14.225.185	126.136.218.93	33.33.87.249
212.49.93.161	24.168.174.190	47.82.235.47	184.216.135.19
253.202.225.240	86.16.80.105	36.159.182.26	135.143.218.90
12.18.215.166	68.29.169.156	153.190.112.76	194.161.37.52