72.52.138.149 - IPInfo

基本信息:

城市(city): Lansing

省份(region): Michigan

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
72.52.138.153	attack	Automatic report - XMLRPC Attack	2019-11-17 19:06:35

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 72.52.138.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25382
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;72.52.138.149.			IN	A

;; AUTHORITY SECTION:
.			478	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092801 1800 900 604800 86400

;; Query time: 434 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 29 02:43:20 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 149.138.52.72.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 149.138.52.72.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
37.120.33.30	attackspambots	Aug 28 16:56:35 web1 sshd\[12516\]: Invalid user fw from 37.120.33.30 Aug 28 16:56:35 web1 sshd\[12516\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.120.33.30 Aug 28 16:56:36 web1 sshd\[12516\]: Failed password for invalid user fw from 37.120.33.30 port 38166 ssh2 Aug 28 17:00:36 web1 sshd\[12858\]: Invalid user rory from 37.120.33.30 Aug 28 17:00:36 web1 sshd\[12858\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.120.33.30	2019-08-29 12:50:00
51.75.255.166	attackspam	Failed password for invalid user manager from 51.75.255.166 port 38388 ssh2 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.255.166 user=gnats Failed password for gnats from 51.75.255.166 port 55274 ssh2 Invalid user flower from 51.75.255.166 port 43960 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.255.166	2019-08-29 12:23:29
49.232.46.135	attack	Aug 29 03:46:31 mail sshd\[29921\]: Invalid user adolph from 49.232.46.135 port 52672 Aug 29 03:46:31 mail sshd\[29921\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.46.135 Aug 29 03:46:33 mail sshd\[29921\]: Failed password for invalid user adolph from 49.232.46.135 port 52672 ssh2 Aug 29 03:49:17 mail sshd\[30119\]: Invalid user minecraft from 49.232.46.135 port 48222 Aug 29 03:49:17 mail sshd\[30119\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.46.135	2019-08-29 12:37:27
68.183.124.72	attackspambots	Aug 29 05:36:14 icinga sshd[21615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.124.72 Aug 29 05:36:16 icinga sshd[21615]: Failed password for invalid user dq from 68.183.124.72 port 57984 ssh2 Aug 29 05:40:14 icinga sshd[24450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.124.72 ...	2019-08-29 12:46:41
218.201.214.177	attackspam	"Fail2Ban detected SSH brute force attempt"	2019-08-29 12:28:10
212.0.149.87	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-29 00:47:43,465 INFO [amun_request_handler] PortScan Detected on Port: 445 (212.0.149.87)	2019-08-29 12:35:10
51.255.83.44	attackspambots	Aug 29 02:24:40 SilenceServices sshd[22778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.83.44 Aug 29 02:24:42 SilenceServices sshd[22778]: Failed password for invalid user kadri from 51.255.83.44 port 38766 ssh2 Aug 29 02:28:42 SilenceServices sshd[24305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.83.44	2019-08-29 12:33:10
220.191.228.2	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-28 23:31:45,154 INFO [shellcode_manager] (220.191.228.2) no match, writing hexdump (677d19f8d41932a7f7e6a39c4596dcd5 :4064) - SMB (Unknown)	2019-08-29 12:07:14
118.83.160.28	attackbotsspam	" "	2019-08-29 12:27:30
148.70.20.102	attackspambots	Aug 28 17:57:21 php1 sshd\[14625\]: Invalid user adm from 148.70.20.102 Aug 28 17:57:21 php1 sshd\[14625\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.20.102 Aug 28 17:57:23 php1 sshd\[14625\]: Failed password for invalid user adm from 148.70.20.102 port 56154 ssh2 Aug 28 18:02:40 php1 sshd\[15096\]: Invalid user gert from 148.70.20.102 Aug 28 18:02:40 php1 sshd\[15096\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.20.102	2019-08-29 12:22:15
61.163.190.49	attackbotsspam	Aug 28 21:41:20 dallas01 sshd[314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.163.190.49 Aug 28 21:41:22 dallas01 sshd[314]: Failed password for invalid user support from 61.163.190.49 port 51458 ssh2 Aug 28 21:46:10 dallas01 sshd[1098]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.163.190.49	2019-08-29 12:38:52
218.92.0.132	attack	2019-08-29T02:48:25.490582abusebot-2.cloudsearch.cf sshd\[30428\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.132 user=root	2019-08-29 12:34:39
103.28.57.86	attackspambots	2019-08-29T04:10:19.581539abusebot-2.cloudsearch.cf sshd\[30832\]: Invalid user areyes from 103.28.57.86 port 48510	2019-08-29 12:22:58
107.170.200.60	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-28 22:05:07,260 INFO [amun_request_handler] unknown vuln (Attacker: 107.170.200.60 Port: 587, Mess: ['\x16\x03\x01\x00\x9a\x01\x00\x00\x96\x03\x03\xa0xPz!]\x9e\x9cN\x00RG\xad[\xe8\xb6\xdavi\xa1M\xe2\x11"\xa5\xe7\x8d\xc4>n\xf6\xa2\x00\x00\x1a\xc0/\xc0 \xc0\x11\xc0\x07\xc0\x13\xc0\t\xc0\x14\xc0\n\x00\x05\x00/\x005\xc0\x12\x00\n\x01\x00\x00S\x00\x05\x00\x05\x01\x00\x00\x00\x00\x00\n\x00\x08\x00\x06\x00\x17\x00\x18\x00\x19\x00\x0b\x00\x02\x01\x00\x00\r\x00	2019-08-29 12:06:18
119.29.170.202	attack	Aug 29 02:49:33 mail sshd\[22887\]: Invalid user gpu from 119.29.170.202 port 38358 Aug 29 02:49:33 mail sshd\[22887\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.170.202 Aug 29 02:49:34 mail sshd\[22887\]: Failed password for invalid user gpu from 119.29.170.202 port 38358 ssh2 Aug 29 02:52:29 mail sshd\[23214\]: Invalid user rodrigo from 119.29.170.202 port 37040 Aug 29 02:52:29 mail sshd\[23214\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.170.202	2019-08-29 12:36:32

最近上报的IP列表

134.105.151.58	86.50.107.58	121.218.251.98	82.202.247.90
144.167.59.41	183.129.249.77	194.44.80.212	97.188.111.9
74.100.233.73	114.235.163.178	114.188.230.92	32.24.9.205
39.153.112.13	14.170.219.254	220.58.38.118	141.156.43.55
100.37.5.124	35.124.26.250	13.70.251.90	104.161.66.10