1.4.249.149 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Thailand

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.4.249.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38062
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.4.249.149.			IN	A

;; AUTHORITY SECTION:
.			463	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022401 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 11:46:50 CST 2022
;; MSG SIZE  rcvd: 104

HOST信息:

149.249.4.1.in-addr.arpa domain name pointer node-o0l.pool-1-4.dynamic.totinternet.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
149.249.4.1.in-addr.arpa	name = node-o0l.pool-1-4.dynamic.totinternet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
93.64.39.53	attackbots	[Mon Nov 04 19:40:30.505889 2019] [:error] [pid 245014] [client 93.64.39.53:61000] [client 93.64.39.53] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "91"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "ws24vmsma01.ufn.edu.br"] [uri "/"] [unique_id "XcCo3icg9ZSTrQsQGb8mbwAAAAI"] ...	2019-11-05 07:58:26
198.108.67.109	attackspam	firewall-block, port(s): 4567/tcp	2019-11-05 07:50:17
114.207.139.203	attack	Nov 4 18:58:02 plusreed sshd[16082]: Invalid user * from 114.207.139.203 ...	2019-11-05 08:02:56
103.101.52.48	attackspam	$f2bV_matches	2019-11-05 07:52:21
111.205.178.39	attackspam	" "	2019-11-05 07:57:20
49.156.53.19	attackspambots	$f2bV_matches	2019-11-05 08:12:40
118.201.240.6	attack	Automatic report - Port Scan Attack	2019-11-05 07:54:12
142.54.101.146	attack	Nov 4 13:42:27 php1 sshd\[23176\]: Invalid user ubuntu from 142.54.101.146 Nov 4 13:42:27 php1 sshd\[23176\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.54.101.146 Nov 4 13:42:29 php1 sshd\[23176\]: Failed password for invalid user ubuntu from 142.54.101.146 port 28436 ssh2 Nov 4 13:46:19 php1 sshd\[23508\]: Invalid user Ronaldo123 from 142.54.101.146 Nov 4 13:46:19 php1 sshd\[23508\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.54.101.146	2019-11-05 08:21:12
181.174.125.86	attackspambots	2019-11-04T23:39:45.180621shield sshd\[2528\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.174.125.86 user=root 2019-11-04T23:39:47.757604shield sshd\[2528\]: Failed password for root from 181.174.125.86 port 34927 ssh2 2019-11-04T23:43:42.523437shield sshd\[3190\]: Invalid user ssingh from 181.174.125.86 port 54224 2019-11-04T23:43:42.527606shield sshd\[3190\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.174.125.86 2019-11-04T23:43:44.642105shield sshd\[3190\]: Failed password for invalid user ssingh from 181.174.125.86 port 54224 ssh2	2019-11-05 07:53:47
166.62.85.53	attack	php WP PHPmyadamin ABUSE blocked for 12h	2019-11-05 08:18:41
45.82.153.133	attackspam	2019-11-05T01:15:47.109654mail01 postfix/smtpd[14578]: warning: unknown[45.82.153.133]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-05T01:16:07.457527mail01 postfix/smtpd[4012]: warning: unknown[45.82.153.133]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-05T01:16:26.197465mail01 postfix/smtpd[14953]: warning: unknown[45.82.153.133]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-05 08:21:37
114.67.224.164	attack	Nov 4 18:32:53 plusreed sshd[10401]: Invalid user zz from 114.67.224.164 ...	2019-11-05 07:47:33
149.28.116.58	attack	WordPress login Brute force / Web App Attack on client site.	2019-11-05 08:05:52
222.186.175.220	attackbots	Nov 4 13:43:12 eddieflores sshd\[24474\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.220 user=root Nov 4 13:43:14 eddieflores sshd\[24474\]: Failed password for root from 222.186.175.220 port 48682 ssh2 Nov 4 13:43:39 eddieflores sshd\[24509\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.220 user=root Nov 4 13:43:42 eddieflores sshd\[24509\]: Failed password for root from 222.186.175.220 port 49362 ssh2 Nov 4 13:43:46 eddieflores sshd\[24509\]: Failed password for root from 222.186.175.220 port 49362 ssh2	2019-11-05 07:48:28
118.67.217.82	attack	Nov 4 14:04:18 hanapaa sshd\[15737\]: Invalid user tapestry from 118.67.217.82 Nov 4 14:04:18 hanapaa sshd\[15737\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.67.217.82 Nov 4 14:04:20 hanapaa sshd\[15737\]: Failed password for invalid user tapestry from 118.67.217.82 port 23278 ssh2 Nov 4 14:08:52 hanapaa sshd\[16095\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.67.217.82 user=root Nov 4 14:08:54 hanapaa sshd\[16095\]: Failed password for root from 118.67.217.82 port 61480 ssh2	2019-11-05 08:17:14

最近上报的IP列表

1.4.249.113	1.4.249.161	1.4.249.130	1.4.249.119
104.18.21.167	1.4.249.157	1.4.249.101	1.4.249.171
1.4.249.172	1.4.249.168	1.4.249.183	1.4.249.220
1.4.249.194	1.4.249.206	1.4.249.184	1.4.249.37
1.4.249.31	104.18.21.198	1.4.249.229	1.4.249.196