152.3.71.50 - IPInfo

Basic Info

City: Raleigh

Region: North Carolina

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 152.3.71.50
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21305
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;152.3.71.50.			IN	A

;; AUTHORITY SECTION:
.			319	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023050601 1800 900 604800 86400

;; Query time: 69 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 07 09:24:18 CST 2023
;; MSG SIZE  rcvd: 104

Host info

50.71.3.152.in-addr.arpa domain name pointer vpn-campus-152-3-71-50.ssl.vpn.duke.edu.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
50.71.3.152.in-addr.arpa	name = vpn-campus-152-3-71-50.ssl.vpn.duke.edu.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
89.122.196.79	attack	Automatic report - Port Scan Attack	2019-08-07 23:23:38
181.80.71.173	attackspam	Automatic report - Port Scan Attack	2019-08-07 23:11:37
149.202.59.85	attackspam	Aug 7 10:55:06 work-partkepr sshd\[9097\]: Invalid user lassi from 149.202.59.85 port 54441 Aug 7 10:55:06 work-partkepr sshd\[9097\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.59.85 ...	2019-08-07 22:49:56
222.186.52.124	attackspambots	2019-08-07T14:59:01.552388hub.schaetter.us sshd\[8756\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.52.124 user=root 2019-08-07T14:59:03.388004hub.schaetter.us sshd\[8756\]: Failed password for root from 222.186.52.124 port 30695 ssh2 2019-08-07T14:59:06.087000hub.schaetter.us sshd\[8756\]: Failed password for root from 222.186.52.124 port 30695 ssh2 2019-08-07T14:59:07.858589hub.schaetter.us sshd\[8756\]: Failed password for root from 222.186.52.124 port 30695 ssh2 2019-08-07T14:59:10.511091hub.schaetter.us sshd\[8758\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.52.124 user=root ...	2019-08-07 23:18:52
196.244.191.10	attack	localhost 196.244.191.10 - - [07/Aug/2019:14:50:42 +0800] "GET /index.php HTTP/1.1" 404 16 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.71 Safari/537.36" VLOG=- localhost 196.244.191.10 - - [07/Aug/2019:14:50:43 +0800] "GET /index.php HTTP/1.1" 404 16 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.71 Safari/537.36" VLOG=- localhost 196.244.191.10 - - [07/Aug/2019:14:50:43 +0800] "GET /suspendedpage.cgi HTTP/1.1" 404 280 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.71 Safari/537.36" VLOG=- localhost 196.244.191.10 - - [07/Aug/2019:14:50:45 +0800] "GET /0708us3/D07.F7A4D4D39F9E441E29F450D6B1A123B5/5/spk/164.195.55.206/ HTTP/1.1" 404 329 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.71 Safari/537.36" VLOG=- localhost 196.244.191.10 - - [07/Aug/2019:14:50:45 +0800] "GET /0708us3/VHL.25111 ...	2019-08-07 23:43:19
75.99.151.100	attackspam	Aug 7 08:23:12 xb0 sshd[2555]: Bad protocol version identification '' from 75.99.151.100 port 36602 Aug 7 08:23:18 xb0 sshd[2572]: Failed password for invalid user openhabian from 75.99.151.100 port 36639 ssh2 Aug 7 08:23:18 xb0 sshd[2572]: Connection closed by 75.99.151.100 [preauth] Aug 7 08:23:23 xb0 sshd[2617]: Failed password for invalid user NetLinx from 75.99.151.100 port 36919 ssh2 Aug 7 08:23:23 xb0 sshd[2617]: Connection closed by 75.99.151.100 [preauth] Aug 7 08:23:27 xb0 sshd[2724]: Failed password for invalid user nexthink from 75.99.151.100 port 37184 ssh2 Aug 7 08:23:28 xb0 sshd[2724]: Connection closed by 75.99.151.100 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=75.99.151.100	2019-08-08 00:05:58
159.89.205.130	attackspam	Repeated brute force against a port	2019-08-07 23:10:17
23.96.238.71	attackbots	Aug 7 08:13:22 mxgate1 postfix/postscreen[25793]: CONNECT from [23.96.238.71]:38983 to [176.31.12.44]:25 Aug 7 08:13:22 mxgate1 postfix/dnsblog[25797]: addr 23.96.238.71 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Aug 7 08:13:22 mxgate1 postfix/dnsblog[25795]: addr 23.96.238.71 listed by domain b.barracudacentral.org as 127.0.0.2 Aug 7 08:13:28 mxgate1 postfix/postscreen[25793]: DNSBL rank 2 for [23.96.238.71]:38983 Aug x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=23.96.238.71	2019-08-07 23:24:49
60.166.121.67	attackspambots	Wed Aug 7 15:49:17 2019 \[pid 11635\] \[lexgold\] FTP response: Client "60.166.121.67", "530 Permission denied." Wed Aug 7 15:49:19 2019 \[pid 11637\] \[lexgold\] FTP response: Client "60.166.121.67", "530 Permission denied." Wed Aug 7 15:49:21 2019 \[pid 11640\] \[lexgold\] FTP response: Client "60.166.121.67", "530 Permission denied."	2019-08-07 23:33:33
195.146.63.25	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-07 05:20:37,222 INFO [amun_request_handler] PortScan Detected on Port: 445 (195.146.63.25)	2019-08-07 23:54:38
88.201.36.241	attackspambots	Automatic report - Port Scan Attack	2019-08-07 22:38:28
134.209.105.234	attackspam	2019-08-07T14:07:24.308808abusebot-7.cloudsearch.cf sshd\[5732\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.105.234 user=root	2019-08-07 22:41:53
36.72.184.109	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-07 05:24:19,555 INFO [amun_request_handler] PortScan Detected on Port: 445 (36.72.184.109)	2019-08-07 23:39:40
142.93.69.223	attack	Aug 7 04:40:48 GIZ-Server-02 sshd[9693]: Invalid user leonard from 142.93.69.223 Aug 7 04:40:48 GIZ-Server-02 sshd[9693]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.69.223 Aug 7 04:40:49 GIZ-Server-02 sshd[9693]: Failed password for invalid user leonard from 142.93.69.223 port 38718 ssh2 Aug 7 04:40:49 GIZ-Server-02 sshd[9693]: Received disconnect from 142.93.69.223: 11: Bye Bye [preauth] Aug 7 04:47:07 GIZ-Server-02 sshd[10205]: Invalid user developer from 142.93.69.223 Aug 7 04:47:07 GIZ-Server-02 sshd[10205]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.69.223 Aug 7 04:47:08 GIZ-Server-02 sshd[10205]: Failed password for invalid user developer from 142.93.69.223 port 48228 ssh2 Aug 7 04:47:09 GIZ-Server-02 sshd[10205]: Received disconnect from 142.93.69.223: 11: Bye Bye [preauth] Aug 7 04:51:14 GIZ-Server-02 sshd[10417]: Invalid user test from 142.93.69.22........ -------------------------------	2019-08-07 22:47:44
43.224.212.59	attackspambots	Aug 7 08:54:12 mail sshd[21107]: Invalid user alison from 43.224.212.59 Aug 7 08:54:12 mail sshd[21107]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.224.212.59 Aug 7 08:54:12 mail sshd[21107]: Invalid user alison from 43.224.212.59 Aug 7 08:54:14 mail sshd[21107]: Failed password for invalid user alison from 43.224.212.59 port 50810 ssh2 Aug 7 09:04:37 mail sshd[22485]: Invalid user pf from 43.224.212.59 ...	2019-08-07 23:24:01

Recently Reported IPs

103.47.133.149	132.249.213.72	192.108.114.11	187.19.6.117
159.226.1.185	147.133.3.24	128.112.18.21	140.116.82.252
140.116.135.122	146.50.153.143	132.204.248.216	140.116.200.74
140.116.192.86	140.116.243.122	140.116.165.207	140.116.158.53
140.116.198.83	140.116.75.17	134.148.77.242	140.116.22.241