148.72.153.53 - IPInfo

Basic Info

City: St. Louis

Region: Missouri

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
148.72.153.223	attackbotsspam	Fraud VOIP	2020-10-09 02:40:40
148.72.153.223	attackspambots	Port scan denied	2020-10-08 18:40:33
148.72.153.224	attack	TCP (SYN) 148.72.153.224:50883 -> port 8190, len 44	2020-07-27 21:59:52
148.72.153.223	attackbotsspam	Unauthorized connection attempt detected from IP address 148.72.153.223 to port 8089 [T]	2020-06-24 03:32:44
148.72.153.114	attack	1589112638 - 05/10/2020 14:10:38 Host: 148.72.153.114/148.72.153.114 Port: 445 TCP Blocked	2020-05-11 01:27:18
148.72.153.211	attackspam	Scanning for exploits - /.env	2020-05-01 05:56:47
148.72.153.211	attackbotsspam	CMS (WordPress or Joomla) login attempt.	2020-04-28 02:44:52
148.72.153.211	attack	Automatic report - Banned IP Access	2020-04-27 18:18:42
148.72.153.211	attackspam	Trying to log into unused portions of the site	2020-04-26 12:57:07
148.72.153.208	attackspam	Forbidden directory scan :: 2020/02/23 06:23:31 [error] 36085#36085: *11114 access forbidden by rule, client: 148.72.153.208, server: [censored_1], request: "GET /configuration.php.old HTTP/1.1", host: "www.[censored_1]"	2020-02-23 15:06:40
148.72.153.248	attackspam	SSH login attempts.	2020-02-17 15:34:04

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.72.153.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4192
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;148.72.153.53.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025060500 1800 900 604800 86400

;; Query time: 33 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 05 19:56:18 CST 2025
;; MSG SIZE  rcvd: 106

Host info

53.153.72.148.in-addr.arpa domain name pointer server.scholarlyupdates.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
53.153.72.148.in-addr.arpa	name = server.scholarlyupdates.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
82.145.171.183	attackbotsspam	Microsoft-Windows-Security-Auditing	2019-12-01 02:15:19
115.192.87.125	attack	Nov 30 08:09:33 sanyalnet-awsem3-1 sshd[22728]: Connection from 115.192.87.125 port 51815 on 172.30.0.184 port 22 Nov 30 08:09:38 sanyalnet-awsem3-1 sshd[22728]: Invalid user severe from 115.192.87.125 Nov 30 08:09:38 sanyalnet-awsem3-1 sshd[22728]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.192.87.125 Nov 30 08:09:41 sanyalnet-awsem3-1 sshd[22728]: Failed password for invalid user severe from 115.192.87.125 port 51815 ssh2 Nov 30 08:09:41 sanyalnet-awsem3-1 sshd[22728]: Received disconnect from 115.192.87.125: 11: Bye Bye [preauth] Nov 30 08:19:35 sanyalnet-awsem3-1 sshd[22941]: Connection from 115.192.87.125 port 9385 on 172.30.0.184 port 22 Nov 30 08:19:39 sanyalnet-awsem3-1 sshd[22941]: Invalid user guest from 115.192.87.125 Nov 30 08:19:40 sanyalnet-awsem3-1 sshd[22941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.192.87.125 ........ ----------------------------------------------- https://www.blocklist.de	2019-12-01 02:36:40
2a03:4000:2b:105f:e8e3:f3ff:fe25:b6d3	attack	11/30/2019-19:09:06.297793 2a03:4000:002b:105f:e8e3:f3ff:fe25:b6d3 Protocol: 6 SURICATA TLS invalid record/traffic	2019-12-01 02:22:28
34.66.181.238	attackspam	Invalid user bosque from 34.66.181.238 port 50898	2019-12-01 02:35:44
206.189.239.103	attackspam	Nov 30 18:47:03 lnxded63 sshd[18772]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.239.103 Nov 30 18:47:03 lnxded63 sshd[18772]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.239.103	2019-12-01 02:16:22
45.228.253.210	attack	Automatic report - Port Scan Attack	2019-12-01 02:27:55
183.80.142.244	attackspam	Nov 30 18:24:00 MK-Soft-Root2 sshd[1030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.80.142.244 Nov 30 18:24:02 MK-Soft-Root2 sshd[1030]: Failed password for invalid user guest from 183.80.142.244 port 50475 ssh2 ...	2019-12-01 02:19:57
157.245.182.105	attackspambots	Telnet/23 MH Probe, BF, Hack -	2019-12-01 02:29:13
92.118.38.38	attackspam	Nov 30 19:51:18 vmanager6029 postfix/smtpd\[23799\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 30 19:51:53 vmanager6029 postfix/smtpd\[23799\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-12-01 02:53:49
129.226.114.225	attackspambots	2019-11-30T18:11:06.896858abusebot.cloudsearch.cf sshd\[16152\]: Invalid user deluxe33 from 129.226.114.225 port 53496	2019-12-01 02:31:15
186.227.138.53	attackbots	Telnet/23 MH Probe, BF, Hack -	2019-12-01 02:18:44
185.164.72.76	attackbotsspam	Nov 30 17:19:07 h2177944 kernel: \[8006006.451166\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.164.72.76 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=27398 PROTO=TCP SPT=48283 DPT=63391 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 30 17:21:28 h2177944 kernel: \[8006146.768137\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.164.72.76 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=36412 PROTO=TCP SPT=48283 DPT=33391 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 30 17:52:00 h2177944 kernel: \[8007979.161628\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.164.72.76 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=56230 PROTO=TCP SPT=48283 DPT=23392 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 30 17:53:27 h2177944 kernel: \[8008065.610160\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.164.72.76 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=28933 PROTO=TCP SPT=48283 DPT=43390 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 30 18:11:48 h2177944 kernel: \[8009167.178369\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.164.72.76 DST=85.214.1	2019-12-01 02:54:55
115.96.131.222	attackspambots	Honeypot attack, port: 23, PTR: PTR record not found	2019-12-01 02:45:19
49.207.100.177	attackspambots	Brute force SMTP login attempted. ...	2019-12-01 02:49:49
14.116.222.170	attackspam	Nov 30 15:27:20 MainVPS sshd[28737]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.222.170 user=root Nov 30 15:27:21 MainVPS sshd[28737]: Failed password for root from 14.116.222.170 port 40796 ssh2 Nov 30 15:33:02 MainVPS sshd[6713]: Invalid user hkouno from 14.116.222.170 port 58429 Nov 30 15:33:02 MainVPS sshd[6713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.222.170 Nov 30 15:33:02 MainVPS sshd[6713]: Invalid user hkouno from 14.116.222.170 port 58429 Nov 30 15:33:04 MainVPS sshd[6713]: Failed password for invalid user hkouno from 14.116.222.170 port 58429 ssh2 ...	2019-12-01 02:47:30

Recently Reported IPs

171.8.15.220	47.237.148.54	47.237.148.200	47.237.149.134
47.237.105.171	47.237.151.30	47.236.242.165	124.23.134.81
113.215.188.18	154.44.115.56	8.219.232.25	47.236.224.53
8.219.82.196	47.237.17.41	113.215.189.15	65.49.1.29
40.124.174.149	8.222.132.180	8.219.210.25	47.236.227.156