72.139.207.52 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Canada

运营商(isp): Rogers Communications Canada Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Port Scan: TCP/443	2019-09-30 07:54:31

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 72.139.207.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63663
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;72.139.207.52.			IN	A

;; AUTHORITY SECTION:
.			531	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092901 1800 900 604800 86400

;; Query time: 533 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Sep 30 07:54:23 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

52.207.139.72.in-addr.arpa domain name pointer CPE000c41278981-CM014320101339.cpe.net.cable.rogers.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
52.207.139.72.in-addr.arpa	name = CPE000c41278981-CM014320101339.cpe.net.cable.rogers.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
87.251.74.43	attack	Jun 23 16:02:06 debian-2gb-nbg1-2 kernel: \[15179596.582792\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=87.251.74.43 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=48716 PROTO=TCP SPT=52315 DPT=16163 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-23 22:09:45
92.50.249.166	attackbotsspam	Jun 23 15:56:55 PorscheCustomer sshd[11669]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.50.249.166 Jun 23 15:56:57 PorscheCustomer sshd[11669]: Failed password for invalid user alexa from 92.50.249.166 port 60480 ssh2 Jun 23 16:00:37 PorscheCustomer sshd[11797]: Failed password for root from 92.50.249.166 port 60702 ssh2 ...	2020-06-23 22:07:42
109.241.13.244	attackbots	RDP Brute-Force (honeypot 4)	2020-06-23 21:59:41
106.13.163.236	attack	Jun 23 15:21:06 vps sshd[3899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.163.236 Jun 23 15:21:08 vps sshd[3899]: Failed password for invalid user jenkins from 106.13.163.236 port 43864 ssh2 Jun 23 15:41:09 vps sshd[5266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.163.236 ...	2020-06-23 22:19:30
147.50.135.171	attack	2020-06-23T13:02:13.476118mail.csmailer.org sshd[2581]: Invalid user fuckyou from 147.50.135.171 port 41242 2020-06-23T13:02:13.479262mail.csmailer.org sshd[2581]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.50.135.171 2020-06-23T13:02:13.476118mail.csmailer.org sshd[2581]: Invalid user fuckyou from 147.50.135.171 port 41242 2020-06-23T13:02:15.315478mail.csmailer.org sshd[2581]: Failed password for invalid user fuckyou from 147.50.135.171 port 41242 ssh2 2020-06-23T13:03:40.913497mail.csmailer.org sshd[2859]: Invalid user xu from 147.50.135.171 port 32938 ...	2020-06-23 21:42:58
185.143.72.34	attackspambots	2020-06-21 07:57:38 dovecot_login authenticator failed for \(User\) \[185.143.72.34\]: 535 Incorrect authentication data \(set_id=israel@no-server.de\) 2020-06-21 07:58:02 dovecot_login authenticator failed for \(User\) \[185.143.72.34\]: 535 Incorrect authentication data \(set_id=israel@no-server.de\) 2020-06-21 07:58:15 dovecot_login authenticator failed for \(User\) \[185.143.72.34\]: 535 Incorrect authentication data \(set_id=upload@no-server.de\) 2020-06-21 07:58:27 dovecot_login authenticator failed for \(User\) \[185.143.72.34\]: 535 Incorrect authentication data \(set_id=upload@no-server.de\) 2020-06-21 07:58:30 dovecot_login authenticator failed for \(User\) \[185.143.72.34\]: 535 Incorrect authentication data \(set_id=upload@no-server.de\) ...	2020-06-23 21:56:09
212.64.59.227	attack	Jun 23 02:04:41 web1 sshd\[24950\]: Invalid user ample from 212.64.59.227 Jun 23 02:04:41 web1 sshd\[24950\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.59.227 Jun 23 02:04:43 web1 sshd\[24950\]: Failed password for invalid user ample from 212.64.59.227 port 18362 ssh2 Jun 23 02:07:37 web1 sshd\[25262\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.59.227 user=root Jun 23 02:07:39 web1 sshd\[25262\]: Failed password for root from 212.64.59.227 port 48488 ssh2	2020-06-23 21:50:02
189.124.8.234	attackspam	Jun 23 06:17:09 cumulus sshd[10699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.124.8.234 user=r.r Jun 23 06:17:11 cumulus sshd[10699]: Failed password for r.r from 189.124.8.234 port 44102 ssh2 Jun 23 06:17:11 cumulus sshd[10699]: Received disconnect from 189.124.8.234 port 44102:11: Bye Bye [preauth] Jun 23 06:17:11 cumulus sshd[10699]: Disconnected from 189.124.8.234 port 44102 [preauth] Jun 23 06:19:50 cumulus sshd[10780]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.124.8.234 user=r.r Jun 23 06:19:52 cumulus sshd[10780]: Failed password for r.r from 189.124.8.234 port 34279 ssh2 Jun 23 06:19:52 cumulus sshd[10780]: Received disconnect from 189.124.8.234 port 34279:11: Bye Bye [preauth] Jun 23 06:19:52 cumulus sshd[10780]: Disconnected from 189.124.8.234 port 34279 [preauth] Jun 23 06:22:28 cumulus sshd[10858]: pam_unix(sshd:auth): authentication failure; logname= uid=0........ -------------------------------	2020-06-23 22:16:12
176.43.200.161	attackbotsspam	Automatic report - XMLRPC Attack	2020-06-23 21:46:31
138.197.147.128	attackspam	Jun 23 15:48:26 ns382633 sshd\[14410\]: Invalid user hbase from 138.197.147.128 port 45868 Jun 23 15:48:26 ns382633 sshd\[14410\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.147.128 Jun 23 15:48:27 ns382633 sshd\[14410\]: Failed password for invalid user hbase from 138.197.147.128 port 45868 ssh2 Jun 23 15:52:44 ns382633 sshd\[15131\]: Invalid user avorion from 138.197.147.128 port 38896 Jun 23 15:52:44 ns382633 sshd\[15131\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.147.128	2020-06-23 21:59:07
216.155.93.77	attackbots	Jun 23 12:03:22 web8 sshd\[18764\]: Invalid user robin from 216.155.93.77 Jun 23 12:03:22 web8 sshd\[18764\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.155.93.77 Jun 23 12:03:24 web8 sshd\[18764\]: Failed password for invalid user robin from 216.155.93.77 port 33416 ssh2 Jun 23 12:07:44 web8 sshd\[21066\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.155.93.77 user=root Jun 23 12:07:46 web8 sshd\[21066\]: Failed password for root from 216.155.93.77 port 33174 ssh2	2020-06-23 21:45:08
104.236.214.8	attack	(sshd) Failed SSH login from 104.236.214.8 (US/United States/-): 5 in the last 3600 secs	2020-06-23 21:40:48
176.236.121.146	attack	Automatic report - Port Scan Attack	2020-06-23 21:46:06
192.241.208.133	attackbots	firewall-block, port(s): 161/udp	2020-06-23 21:52:21
106.12.90.14	attackspam	Jun 23 14:07:35 debian-2gb-nbg1-2 kernel: \[15172725.765555\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=106.12.90.14 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=238 ID=43707 PROTO=TCP SPT=45208 DPT=18744 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-23 21:57:14

最近上报的IP列表

78.142.209.250	77.73.68.250	151.252.87.202	77.125.95.56
68.183.184.7	77.42.73.129	68.183.173.177	177.102.217.250
62.248.172.37	61.153.110.143	36.69.20.221	61.182.27.150
54.208.100.253	52.59.138.58	151.75.154.66	52.193.157.64
51.91.16.9	5.189.132.184	50.63.167.184	47.75.126.75