148.72.153.53 - IPInfo

Basic Info

City: St. Louis

Region: Missouri

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
148.72.153.223	attackbotsspam	Fraud VOIP	2020-10-09 02:40:40
148.72.153.223	attackspambots	Port scan denied	2020-10-08 18:40:33
148.72.153.224	attack	TCP (SYN) 148.72.153.224:50883 -> port 8190, len 44	2020-07-27 21:59:52
148.72.153.223	attackbotsspam	Unauthorized connection attempt detected from IP address 148.72.153.223 to port 8089 [T]	2020-06-24 03:32:44
148.72.153.114	attack	1589112638 - 05/10/2020 14:10:38 Host: 148.72.153.114/148.72.153.114 Port: 445 TCP Blocked	2020-05-11 01:27:18
148.72.153.211	attackspam	Scanning for exploits - /.env	2020-05-01 05:56:47
148.72.153.211	attackbotsspam	CMS (WordPress or Joomla) login attempt.	2020-04-28 02:44:52
148.72.153.211	attack	Automatic report - Banned IP Access	2020-04-27 18:18:42
148.72.153.211	attackspam	Trying to log into unused portions of the site	2020-04-26 12:57:07
148.72.153.208	attackspam	Forbidden directory scan :: 2020/02/23 06:23:31 [error] 36085#36085: *11114 access forbidden by rule, client: 148.72.153.208, server: [censored_1], request: "GET /configuration.php.old HTTP/1.1", host: "www.[censored_1]"	2020-02-23 15:06:40
148.72.153.248	attackspam	SSH login attempts.	2020-02-17 15:34:04

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.72.153.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4192
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;148.72.153.53.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025060500 1800 900 604800 86400

;; Query time: 33 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 05 19:56:18 CST 2025
;; MSG SIZE  rcvd: 106

Host info

53.153.72.148.in-addr.arpa domain name pointer server.scholarlyupdates.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
53.153.72.148.in-addr.arpa	name = server.scholarlyupdates.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
138.121.161.198	attack	Jul 7 16:58:42 v22018076622670303 sshd\[31347\]: Invalid user www from 138.121.161.198 port 40509 Jul 7 16:58:42 v22018076622670303 sshd\[31347\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.121.161.198 Jul 7 16:58:44 v22018076622670303 sshd\[31347\]: Failed password for invalid user www from 138.121.161.198 port 40509 ssh2 ...	2019-07-07 23:03:53
101.251.237.228	attackspambots	Jul 7 15:43:58 MainVPS sshd[11569]: Invalid user office from 101.251.237.228 port 43354 Jul 7 15:43:58 MainVPS sshd[11569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.251.237.228 Jul 7 15:43:58 MainVPS sshd[11569]: Invalid user office from 101.251.237.228 port 43354 Jul 7 15:44:00 MainVPS sshd[11569]: Failed password for invalid user office from 101.251.237.228 port 43354 ssh2 Jul 7 15:45:13 MainVPS sshd[11663]: Invalid user test from 101.251.237.228 port 51822 ...	2019-07-07 23:11:55
190.143.216.235	attackbots	Caught in portsentry honeypot	2019-07-07 23:23:03
206.189.239.103	attackspambots	Jul 7 10:04:43 plusreed sshd[22512]: Invalid user felix from 206.189.239.103 Jul 7 10:04:43 plusreed sshd[22512]: Invalid user felix from 206.189.239.103 Jul 7 10:04:43 plusreed sshd[22512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.239.103 Jul 7 10:04:43 plusreed sshd[22512]: Invalid user felix from 206.189.239.103 Jul 7 10:04:45 plusreed sshd[22512]: Failed password for invalid user felix from 206.189.239.103 port 60014 ssh2 ...	2019-07-07 22:59:10
222.186.52.123	attack	19/7/7@10:49:13: FAIL: IoT-SSH address from=222.186.52.123 ...	2019-07-07 22:53:54
138.97.246.109	attackspambots	SMTP-sasl brute force ...	2019-07-07 22:50:05
117.156.119.39	attackbotsspam	Jul 7 13:41:33 ip-172-31-1-72 sshd\[19759\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.156.119.39 user=root Jul 7 13:41:36 ip-172-31-1-72 sshd\[19759\]: Failed password for root from 117.156.119.39 port 45484 ssh2 Jul 7 13:46:13 ip-172-31-1-72 sshd\[19862\]: Invalid user cui from 117.156.119.39 Jul 7 13:46:13 ip-172-31-1-72 sshd\[19862\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.156.119.39 Jul 7 13:46:15 ip-172-31-1-72 sshd\[19862\]: Failed password for invalid user cui from 117.156.119.39 port 42772 ssh2	2019-07-07 22:46:42
119.29.242.48	attackspambots	Jul 7 16:22:34 icinga sshd[26314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.242.48 Jul 7 16:22:37 icinga sshd[26314]: Failed password for invalid user sunil from 119.29.242.48 port 51068 ssh2 ...	2019-07-07 22:57:34
175.139.231.129	attackbotsspam	failed_logins	2019-07-07 23:33:35
159.65.140.148	attackbots	Jul 7 15:44:54 v22018076622670303 sshd\[31059\]: Invalid user cftp from 159.65.140.148 port 60636 Jul 7 15:44:54 v22018076622670303 sshd\[31059\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.140.148 Jul 7 15:44:56 v22018076622670303 sshd\[31059\]: Failed password for invalid user cftp from 159.65.140.148 port 60636 ssh2 ...	2019-07-07 23:19:24
151.80.203.32	attack	Jul 5 18:58:15 twattle sshd[6503]: Did not receive identification stri= ng from 151.80.203.32 Jul 5 18:59:45 twattle sshd[6504]: Invalid user t from 151.80.203.32 Jul 5 18:59:45 twattle sshd[6504]: Received disconnect from 151.80.203= .32: 11: Bye Bye [preauth] Jul 5 19:00:25 twattle sshd[6912]: Received disconnect from 151.80.203= .32: 11: Bye Bye [preauth] Jul 5 19:01:22 twattle sshd[6914]: Received disconnect from 151.80.203= .32: 11: Bye Bye [preauth] Jul 5 19:02:03 twattle sshd[6917]: Received disconnect from 151.80.203= .32: 11: Bye Bye [preauth] Jul 5 19:02:46 twattle sshd[6919]: Received disconnect from 151.80.203= .32: 11: Bye Bye [preauth] Jul 5 19:03:42 twattle sshd[6921]: Received disconnect from 151.80.203= .32: 11: Bye Bye [preauth] Jul 5 19:04:24 twattle sshd[6923]: Received disconnect from 151.80.203= .32: 11: Bye Bye [preauth] Jul 5 19:06:03 twattle sshd[7315]: Received disconnect from 151.80.203= .32: 11: Bye Bye [preauth] Jul 5 19:06:46 twa........ -------------------------------	2019-07-07 22:49:32
164.132.24.138	attackbotsspam	Jul 7 15:45:44 bouncer sshd\[344\]: Invalid user jboss from 164.132.24.138 port 48600 Jul 7 15:45:44 bouncer sshd\[344\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.24.138 Jul 7 15:45:46 bouncer sshd\[344\]: Failed password for invalid user jboss from 164.132.24.138 port 48600 ssh2 ...	2019-07-07 22:58:37
191.53.220.188	attackspambots	Jul 7 08:43:40 mailman postfix/smtpd[2780]: warning: unknown[191.53.220.188]: SASL PLAIN authentication failed: authentication failure	2019-07-07 23:43:38
106.75.137.210	attack	Jul 7 10:12:14 server sshd\[43402\]: Invalid user user1 from 106.75.137.210 Jul 7 10:12:14 server sshd\[43402\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.137.210 Jul 7 10:12:16 server sshd\[43402\]: Failed password for invalid user user1 from 106.75.137.210 port 26537 ssh2 ...	2019-07-07 22:50:32
104.248.130.222	attackspam	07.07.2019 13:44:18 Connection to port 6443 blocked by firewall	2019-07-07 23:32:31

Recently Reported IPs

171.8.15.220	47.237.148.54	47.237.148.200	47.237.149.134
47.237.105.171	47.237.151.30	47.236.242.165	124.23.134.81
113.215.188.18	154.44.115.56	8.219.232.25	47.236.224.53
8.219.82.196	47.237.17.41	113.215.189.15	65.49.1.29
40.124.174.149	8.222.132.180	8.219.210.25	47.236.227.156