52.98.72.2 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Microsoft Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	50386/tcp 50386/tcp 50386/tcp... [2019-09-02]11pkt,1pt.(tcp)	2019-09-02 20:10:59

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.98.72.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33694
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.98.72.2.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090200 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Sep 02 20:10:51 CST 2019
;; MSG SIZE  rcvd: 114

HOST信息:

Host 2.72.98.52.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 2.72.98.52.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
80.78.212.27	attack	Dec 24 17:37:45 [host] sshd[3390]: Invalid user verzat from 80.78.212.27 Dec 24 17:37:45 [host] sshd[3390]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.78.212.27 Dec 24 17:37:47 [host] sshd[3390]: Failed password for invalid user verzat from 80.78.212.27 port 38126 ssh2	2019-12-25 02:50:13
213.112.113.239	attackspambots	Dec 24 10:32:54 Tower sshd[3662]: Connection from 213.112.113.239 port 40809 on 192.168.10.220 port 22 Dec 24 10:33:02 Tower sshd[3662]: Invalid user bison from 213.112.113.239 port 40809 Dec 24 10:33:02 Tower sshd[3662]: error: Could not get shadow information for NOUSER Dec 24 10:33:02 Tower sshd[3662]: Failed password for invalid user bison from 213.112.113.239 port 40809 ssh2 Dec 24 10:33:02 Tower sshd[3662]: Received disconnect from 213.112.113.239 port 40809:11: Bye Bye [preauth] Dec 24 10:33:02 Tower sshd[3662]: Disconnected from invalid user bison 213.112.113.239 port 40809 [preauth]	2019-12-25 02:29:20
94.176.155.228	attackbotsspam	Unauthorised access (Dec 24) SRC=94.176.155.228 LEN=52 TTL=114 ID=3418 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Dec 24) SRC=94.176.155.228 LEN=52 TTL=114 ID=22946 DF TCP DPT=1433 WINDOW=8192 SYN Unauthorised access (Dec 23) SRC=94.176.155.228 LEN=52 TTL=114 ID=25537 DF TCP DPT=1433 WINDOW=8192 SYN Unauthorised access (Dec 23) SRC=94.176.155.228 LEN=52 TTL=114 ID=2954 DF TCP DPT=1433 WINDOW=8192 SYN Unauthorised access (Dec 23) SRC=94.176.155.228 LEN=52 TTL=114 ID=10854 DF TCP DPT=1433 WINDOW=8192 SYN Unauthorised access (Dec 22) SRC=94.176.155.228 LEN=52 TTL=114 ID=8878 DF TCP DPT=1433 WINDOW=8192 SYN Unauthorised access (Dec 22) SRC=94.176.155.228 LEN=52 TTL=114 ID=2191 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Dec 22) SRC=94.176.155.228 LEN=52 TTL=114 ID=4230 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Dec 22) SRC=94.176.155.228 LEN=52 TTL=114 ID=10666 DF TCP DPT=1433 WINDOW=8192 SYN	2019-12-25 02:26:32
40.77.167.50	attackbots	Automatic report - Banned IP Access	2019-12-25 02:55:01
104.248.197.40	attack	2019-12-24T16:01:29.455471shield sshd\[16938\]: Invalid user wailes from 104.248.197.40 port 52494 2019-12-24T16:01:29.461100shield sshd\[16938\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.197.40 2019-12-24T16:01:30.743956shield sshd\[16938\]: Failed password for invalid user wailes from 104.248.197.40 port 52494 ssh2 2019-12-24T16:04:38.349272shield sshd\[17270\]: Invalid user chon0101 from 104.248.197.40 port 40163 2019-12-24T16:04:38.355100shield sshd\[17270\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.197.40	2019-12-25 02:42:22
151.80.60.151	attack	Dec 24 18:19:17 server sshd\[13496\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.ip-151-80-60.eu user=root Dec 24 18:19:19 server sshd\[13496\]: Failed password for root from 151.80.60.151 port 54460 ssh2 Dec 24 18:30:50 server sshd\[16275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.ip-151-80-60.eu user=root Dec 24 18:30:52 server sshd\[16275\]: Failed password for root from 151.80.60.151 port 57152 ssh2 Dec 24 18:33:29 server sshd\[16564\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.ip-151-80-60.eu user=root ...	2019-12-25 02:21:01
185.153.196.225	attackspam	Honeypot attack, port: 5555, PTR: server-185-153-196-225.cloudedic.net.	2019-12-25 02:37:56
192.99.152.160	attackbotsspam	12/24/2019-11:31:10.599861 192.99.152.160 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-12-25 02:42:43
198.100.146.98	attack	SSH bruteforce (Triggered fail2ban)	2019-12-25 02:36:19
188.150.178.153	attackspam	Invalid user incheol from 188.150.178.153 port 41466	2019-12-25 02:44:15
36.230.225.122	attack	23/tcp [2019-12-24]1pkt	2019-12-25 02:17:36
197.82.202.98	attackbots	4x Failed Password	2019-12-25 02:55:30
218.92.0.145	attackspambots	2019-12-24T18:41:26.871623abusebot.cloudsearch.cf sshd[29367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.145 user=root 2019-12-24T18:41:29.322651abusebot.cloudsearch.cf sshd[29367]: Failed password for root from 218.92.0.145 port 42929 ssh2 2019-12-24T18:41:32.182141abusebot.cloudsearch.cf sshd[29367]: Failed password for root from 218.92.0.145 port 42929 ssh2 2019-12-24T18:41:26.871623abusebot.cloudsearch.cf sshd[29367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.145 user=root 2019-12-24T18:41:29.322651abusebot.cloudsearch.cf sshd[29367]: Failed password for root from 218.92.0.145 port 42929 ssh2 2019-12-24T18:41:32.182141abusebot.cloudsearch.cf sshd[29367]: Failed password for root from 218.92.0.145 port 42929 ssh2 2019-12-24T18:41:26.871623abusebot.cloudsearch.cf sshd[29367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.14 ...	2019-12-25 02:47:00
85.105.176.2	attack	Automatic report - Port Scan Attack	2019-12-25 02:33:49
203.95.212.41	attackspambots	Dec 24 16:50:30 mout sshd[18384]: Invalid user steam from 203.95.212.41 port 28188	2019-12-25 02:23:27

最近上报的IP列表

79.22.141.72	88.12.172.160	202.0.84.123	14.186.50.139
113.235.234.225	176.236.25.148	36.91.94.146	27.254.87.139
115.61.3.143	203.142.84.250	146.88.240.36	88.206.84.174
120.72.229.46	130.168.136.49	197.164.238.54	13.101.67.50
14.186.43.44	104.248.203.58	125.212.221.89	182.180.167.249