1.197.72.149 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.197.72.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39515
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.197.72.149.			IN	A

;; AUTHORITY SECTION:
.			562	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022601 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 02:54:22 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

Host 149.72.197.1.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

server can't find 1.197.72.149.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
124.205.224.179	attackspam	Jul 26 16:09:58 zooi sshd[10941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.205.224.179 Jul 26 16:10:00 zooi sshd[10941]: Failed password for invalid user ver from 124.205.224.179 port 34032 ssh2 ...	2020-07-26 22:58:13
222.186.30.35	attack	2020-07-26T16:22:19.388433sd-86998 sshd[4622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.35 user=root 2020-07-26T16:22:21.441487sd-86998 sshd[4622]: Failed password for root from 222.186.30.35 port 36160 ssh2 2020-07-26T16:22:24.039932sd-86998 sshd[4622]: Failed password for root from 222.186.30.35 port 36160 ssh2 2020-07-26T16:22:19.388433sd-86998 sshd[4622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.35 user=root 2020-07-26T16:22:21.441487sd-86998 sshd[4622]: Failed password for root from 222.186.30.35 port 36160 ssh2 2020-07-26T16:22:24.039932sd-86998 sshd[4622]: Failed password for root from 222.186.30.35 port 36160 ssh2 2020-07-26T16:22:19.388433sd-86998 sshd[4622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.35 user=root 2020-07-26T16:22:21.441487sd-86998 sshd[4622]: Failed password for root from 222.186.30.35 p ...	2020-07-26 22:23:34
202.186.108.62	attack	Port 22 Scan, PTR: PTR record not found	2020-07-26 22:32:35
177.154.237.138	attack	Jul 26 13:54:07 mail.srvfarm.net postfix/smtps/smtpd[1210411]: warning: unknown[177.154.237.138]: SASL PLAIN authentication failed: Jul 26 13:54:08 mail.srvfarm.net postfix/smtps/smtpd[1210411]: lost connection after AUTH from unknown[177.154.237.138] Jul 26 13:57:18 mail.srvfarm.net postfix/smtps/smtpd[1209123]: warning: unknown[177.154.237.138]: SASL PLAIN authentication failed: Jul 26 13:57:18 mail.srvfarm.net postfix/smtps/smtpd[1209123]: lost connection after AUTH from unknown[177.154.237.138] Jul 26 14:00:28 mail.srvfarm.net postfix/smtps/smtpd[1211903]: warning: unknown[177.154.237.138]: SASL PLAIN authentication failed:	2020-07-26 22:45:28
78.128.113.115	attackbots	(smtpauth) Failed SMTP AUTH login from 78.128.113.115 (BG/Bulgaria/ip-113-115.4vendeta.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2020-07-26 16:38:46 login authenticator failed for (ip-113-115.4vendeta.com.) [78.128.113.115]: 535 Incorrect authentication data (set_id=nieuwsbrief@wikimia.nl) 2020-07-26 16:38:48 login authenticator failed for (ip-113-115.4vendeta.com.) [78.128.113.115]: 535 Incorrect authentication data (set_id=nieuwsbrief) 2020-07-26 16:38:50 login authenticator failed for (ip-113-115.4vendeta.com.) [78.128.113.115]: 535 Incorrect authentication data (set_id=aanbiedingen@wikimia.nl) 2020-07-26 16:38:52 login authenticator failed for (ip-113-115.4vendeta.com.) [78.128.113.115]: 535 Incorrect authentication data (set_id=aanbiedingen) 2020-07-26 16:46:23 login authenticator failed for (ip-113-115.4vendeta.com.) [78.128.113.115]: 535 Incorrect authentication data (set_id=support@wikimia.nl)	2020-07-26 22:48:51
54.39.151.64	attackspambots	Jul 26 07:04:33 dignus sshd[20453]: Failed password for invalid user maurice from 54.39.151.64 port 52300 ssh2 Jul 26 07:08:55 dignus sshd[21123]: Invalid user ngdc from 54.39.151.64 port 59691 Jul 26 07:08:55 dignus sshd[21123]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.151.64 Jul 26 07:08:58 dignus sshd[21123]: Failed password for invalid user ngdc from 54.39.151.64 port 59691 ssh2 Jul 26 07:13:15 dignus sshd[21741]: Invalid user postmaster from 54.39.151.64 port 38847 ...	2020-07-26 22:31:22
202.67.42.20	attack	Port 22 Scan, PTR: None	2020-07-26 22:59:52
201.218.138.146	attack	Jul 26 13:54:55 mail.srvfarm.net postfix/smtps/smtpd[1209176]: warning: unknown[201.218.138.146]: SASL PLAIN authentication failed: Jul 26 13:54:55 mail.srvfarm.net postfix/smtps/smtpd[1209176]: lost connection after AUTH from unknown[201.218.138.146] Jul 26 13:58:44 mail.srvfarm.net postfix/smtpd[1208997]: warning: unknown[201.218.138.146]: SASL PLAIN authentication failed: Jul 26 13:58:45 mail.srvfarm.net postfix/smtpd[1208997]: lost connection after AUTH from unknown[201.218.138.146] Jul 26 14:00:25 mail.srvfarm.net postfix/smtpd[1208539]: warning: unknown[201.218.138.146]: SASL PLAIN authentication failed:	2020-07-26 22:42:37
51.83.76.25	attackbots	k+ssh-bruteforce	2020-07-26 23:00:33
98.159.86.196	attackspam	Port 22 Scan, PTR: None	2020-07-26 22:29:08
50.66.157.156	attackbots	Lines containing failures of 50.66.157.156 Jul 23 03:43:03 penfold sshd[9718]: Invalid user uym from 50.66.157.156 port 60362 Jul 23 03:43:03 penfold sshd[9718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.66.157.156 Jul 23 03:43:05 penfold sshd[9718]: Failed password for invalid user uym from 50.66.157.156 port 60362 ssh2 Jul 23 03:43:06 penfold sshd[9718]: Received disconnect from 50.66.157.156 port 60362:11: Bye Bye [preauth] Jul 23 03:43:06 penfold sshd[9718]: Disconnected from invalid user uym 50.66.157.156 port 60362 [preauth] Jul 23 03:50:25 penfold sshd[10104]: Invalid user llb from 50.66.157.156 port 52890 Jul 23 03:50:25 penfold sshd[10104]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.66.157.156 Jul 23 03:50:27 penfold sshd[10104]: Failed password for invalid user llb from 50.66.157.156 port 52890 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=50.6	2020-07-26 22:37:21
212.70.149.3	attackspam	Jul 26 16:40:58 relay postfix/smtpd\[15329\]: warning: unknown\[212.70.149.3\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 26 16:40:58 relay postfix/smtpd\[13203\]: warning: unknown\[212.70.149.3\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 26 16:41:16 relay postfix/smtpd\[15328\]: warning: unknown\[212.70.149.3\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 26 16:41:17 relay postfix/smtpd\[13203\]: warning: unknown\[212.70.149.3\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 26 16:41:35 relay postfix/smtpd\[9181\]: warning: unknown\[212.70.149.3\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 26 16:41:35 relay postfix/smtpd\[16995\]: warning: unknown\[212.70.149.3\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-26 22:42:01
61.221.60.47	attackbots	Port probing on unauthorized port 26	2020-07-26 22:30:25
222.186.180.6	attackspambots	Jul 26 16:01:18 minden010 sshd[2839]: Failed password for root from 222.186.180.6 port 40286 ssh2 Jul 26 16:01:22 minden010 sshd[2839]: Failed password for root from 222.186.180.6 port 40286 ssh2 Jul 26 16:01:25 minden010 sshd[2839]: Failed password for root from 222.186.180.6 port 40286 ssh2 Jul 26 16:01:29 minden010 sshd[2839]: Failed password for root from 222.186.180.6 port 40286 ssh2 ...	2020-07-26 22:29:35
164.90.223.8	attack	2020-07-26T14:05:53.861504galaxy.wi.uni-potsdam.de sshd[29779]: Failed password for invalid user admin from 164.90.223.8 port 53348 ssh2 2020-07-26T14:05:54.141850galaxy.wi.uni-potsdam.de sshd[29784]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.90.223.8 user=root 2020-07-26T14:05:56.536979galaxy.wi.uni-potsdam.de sshd[29784]: Failed password for root from 164.90.223.8 port 56370 ssh2 2020-07-26T14:05:56.763771galaxy.wi.uni-potsdam.de sshd[29788]: Invalid user 1234 from 164.90.223.8 port 59914 2020-07-26T14:05:56.768801galaxy.wi.uni-potsdam.de sshd[29788]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.90.223.8 2020-07-26T14:05:56.763771galaxy.wi.uni-potsdam.de sshd[29788]: Invalid user 1234 from 164.90.223.8 port 59914 2020-07-26T14:05:59.103155galaxy.wi.uni-potsdam.de sshd[29788]: Failed password for invalid user 1234 from 164.90.223.8 port 59914 ssh2 2020-07-26T14:05:59.329708galaxy.wi.uni-p ...	2020-07-26 22:22:33

最近上报的IP列表

1.197.153.217	1.198.157.80	1.198.161.216	1.198.18.9
1.198.213.72	1.198.246.34	1.2.135.40	1.2.140.122
1.198.29.85	1.199.164.196	1.199.166.28	1.2.143.194
1.2.154.11	1.2.154.58	1.2.178.238	250.28.190.10
1.202.112.104	1.202.112.154	1.202.112.114	1.202.113.193