57.48.138.169 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 57.48.138.169
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64981
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;57.48.138.169.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020300 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 03 14:52:31 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

Host 169.138.48.57.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 169.138.48.57.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
51.38.129.74	attack	SSH / Telnet Brute Force Attempts on Honeypot	2020-05-04 08:00:20
128.199.180.63	attackbotsspam	May 4 00:35:36 srv-ubuntu-dev3 sshd[13493]: Invalid user informix!@# from 128.199.180.63 May 4 00:35:36 srv-ubuntu-dev3 sshd[13493]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.180.63 May 4 00:35:36 srv-ubuntu-dev3 sshd[13493]: Invalid user informix!@# from 128.199.180.63 May 4 00:35:39 srv-ubuntu-dev3 sshd[13493]: Failed password for invalid user informix!@# from 128.199.180.63 port 48258 ssh2 May 4 00:39:16 srv-ubuntu-dev3 sshd[14112]: Invalid user tsminst1 from 128.199.180.63 May 4 00:39:16 srv-ubuntu-dev3 sshd[14112]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.180.63 May 4 00:39:16 srv-ubuntu-dev3 sshd[14112]: Invalid user tsminst1 from 128.199.180.63 May 4 00:39:18 srv-ubuntu-dev3 sshd[14112]: Failed password for invalid user tsminst1 from 128.199.180.63 port 56920 ssh2 May 4 00:43:11 srv-ubuntu-dev3 sshd[14743]: Invalid user 123456 from 128.199.180.63 ...	2020-05-04 07:57:13
185.156.73.38	attackbots	May 4 01:24:28 debian-2gb-nbg1-2 kernel: \[10807170.416283\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.156.73.38 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=6908 PROTO=TCP SPT=41586 DPT=26204 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-04 08:07:54
198.46.135.250	attack	[2020-05-03 19:51:15] NOTICE[1170][C-0000a110] chan_sip.c: Call from '' (198.46.135.250:61515) to extension '00146520458223' rejected because extension not found in context 'public'. [2020-05-03 19:51:15] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-05-03T19:51:15.909-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00146520458223",SessionID="0x7f6c081fcbc8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/198.46.135.250/61515",ACLName="no_extension_match" [2020-05-03 19:52:31] NOTICE[1170][C-0000a114] chan_sip.c: Call from '' (198.46.135.250:49949) to extension '00246520458223' rejected because extension not found in context 'public'. [2020-05-03 19:52:31] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-05-03T19:52:31.677-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00246520458223",SessionID="0x7f6c08674948",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/1 ...	2020-05-04 08:04:16
153.36.233.60	attack	Brute-force attempt banned	2020-05-04 08:06:39
211.75.196.110	attack	May 3 23:27:52 lock-38 sshd[1885400]: Failed password for invalid user test from 211.75.196.110 port 58226 ssh2 May 3 23:27:53 lock-38 sshd[1885400]: Disconnected from invalid user test 211.75.196.110 port 58226 [preauth] May 3 23:30:04 lock-38 sshd[1885472]: Invalid user ddd from 211.75.196.110 port 36674 May 3 23:30:04 lock-38 sshd[1885472]: Invalid user ddd from 211.75.196.110 port 36674 May 3 23:30:04 lock-38 sshd[1885472]: Failed password for invalid user ddd from 211.75.196.110 port 36674 ssh2 ...	2020-05-04 07:59:23
193.202.45.202	attackbots	Scanned 17 times in the last 24 hours on port 5060	2020-05-04 08:11:42
180.243.20.155	attack	k+ssh-bruteforce	2020-05-04 07:42:13
122.51.21.208	attack	May 4 00:59:09 hosting sshd[5847]: Invalid user at from 122.51.21.208 port 50036 ...	2020-05-04 08:06:55
193.106.31.130	attack	[Mon May 04 06:59:48.888601 2020] [:error] [pid 5814:tid 140405012096768] [client 193.106.31.130:58933] [client 193.106.31.130] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_http_versions}" against "REQUEST_PROTOCOL" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "972"] [id "920430"] [msg "HTTP protocol version is not allowed by policy"] [data "HTTP/1.0"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/POLICY/PROTOCOL_NOT_ALLOWED"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/administrator/index.php"] [unique_id "Xq9a9G4FUIT0i81cNYS77AAAAWk"] ...	2020-05-04 08:01:54
129.204.109.127	attackspambots	May 4 00:55:21 ns381471 sshd[10225]: Failed password for root from 129.204.109.127 port 53866 ssh2	2020-05-04 08:17:13
84.20.185.219	attackbots	May 1 05:58:28 ovpn sshd[702]: Invalid user faisal from 84.20.185.219 May 1 05:58:28 ovpn sshd[702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.20.185.219 May 1 05:58:30 ovpn sshd[702]: Failed password for invalid user faisal from 84.20.185.219 port 33366 ssh2 May 1 05:58:30 ovpn sshd[702]: Received disconnect from 84.20.185.219 port 33366:11: Bye Bye [preauth] May 1 05:58:30 ovpn sshd[702]: Disconnected from 84.20.185.219 port 33366 [preauth] May 1 06:12:53 ovpn sshd[4211]: Invalid user alex from 84.20.185.219 May 1 06:12:53 ovpn sshd[4211]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.20.185.219 May 1 06:12:55 ovpn sshd[4211]: Failed password for invalid user alex from 84.20.185.219 port 41594 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=84.20.185.219	2020-05-04 07:54:52
71.212.96.214	attack	20 attempts against mh-ssh on boat	2020-05-04 07:47:29
106.12.69.250	attack	May 3 22:33:48 vps647732 sshd[27481]: Failed password for root from 106.12.69.250 port 45764 ssh2 May 3 22:36:40 vps647732 sshd[27554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.69.250 ...	2020-05-04 07:47:13
188.213.175.98	attackspambots	May 4 01:12:24 pve1 sshd[4035]: Failed password for root from 188.213.175.98 port 47379 ssh2 ...	2020-05-04 07:47:49

最近上报的IP列表

194.221.230.91	122.168.147.20	138.149.113.8	167.223.29.135
79.74.9.97	185.90.99.63	210.169.20.130	116.188.200.99
76.134.192.145	97.194.255.208	44.13.87.53	190.87.90.215
169.46.95.192	3.59.140.55	206.249.165.26	229.43.148.3
216.118.138.233	165.32.15.176	16.84.115.135	116.182.102.84