113.199.249.52

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Nepal

运营商(isp): Nepal Telecom

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Dec 19 15:37:17 grey postfix/smtpd\[15062\]: NOQUEUE: reject: RCPT from unknown\[113.199.249.52\]: 554 5.7.1 Service unavailable\; Client host \[113.199.249.52\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[113.199.249.52\]\; from=\ to=\ proto=ESMTP helo=\<\[113.199.249.52\]\> ...	2019-12-20 00:50:32

类型

评论内容

时间

attack

Dec 19 15:37:17 grey postfix/smtpd\[15062\]: NOQUEUE: reject: RCPT from unknown\[113.199.249.52\]: 554 5.7.1 Service unavailable\; Client host \[113.199.249.52\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[113.199.249.52\]\; from=\ to=\ proto=ESMTP helo=\<\[113.199.249.52\]\>
...

2019-12-20 00:50:32

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.199.249.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35329
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.199.249.52.			IN	A

;; AUTHORITY SECTION:
.			141	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121900 1800 900 604800 86400

;; Query time: 46 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 20 00:50:25 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 52.249.199.113.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 52.249.199.113.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
175.208.129.56	attackspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-22 16:15:50
163.172.184.237	attackspam	HTTPS port 443 hits : GET /?q user	2020-09-22 16:26:48
106.12.33.174	attackbots	SSH Bruteforce attack	2020-09-22 16:04:32
112.78.142.74	attackbots	Unauthorized connection attempt from IP address 112.78.142.74 on Port 445(SMB)	2020-09-22 16:04:09
222.186.175.216	attackspam	Sep 22 09:58:08 nextcloud sshd\[20831\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.216 user=root Sep 22 09:58:10 nextcloud sshd\[20831\]: Failed password for root from 222.186.175.216 port 7180 ssh2 Sep 22 09:58:20 nextcloud sshd\[20831\]: Failed password for root from 222.186.175.216 port 7180 ssh2	2020-09-22 16:00:26
163.172.24.40	attackspambots	Sep 22 03:32:18 firewall sshd[14015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.24.40 Sep 22 03:32:18 firewall sshd[14015]: Invalid user marketing from 163.172.24.40 Sep 22 03:32:20 firewall sshd[14015]: Failed password for invalid user marketing from 163.172.24.40 port 38569 ssh2 ...	2020-09-22 16:16:20
159.65.181.26	attack	$f2bV_matches	2020-09-22 16:31:50
8.210.73.35	attackspam	xmlrpc attack	2020-09-22 16:18:36
117.197.188.10	attack	Time: Mon Sep 21 12:04:37 2020 -0400 IP: 117.197.188.10 (IN/India/-) Hits: 10	2020-09-22 16:30:56
128.199.193.246	attackspambots	Fail2Ban Ban Triggered	2020-09-22 16:21:17
103.147.184.131	attackspambots	Blocked by Sophos UTM Network Protection . / / proto=6 . srcport=48575 . dstport=3389 . (3214)	2020-09-22 16:25:40
59.102.249.253	attack	Lines containing failures of 59.102.249.253 Sep 21 21:39:28 nemesis sshd[30208]: Invalid user pi from 59.102.249.253 port 49574 Sep 21 21:39:28 nemesis sshd[30207]: Invalid user pi from 59.102.249.253 port 49572 Sep 21 21:39:28 nemesis sshd[30207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.102.249.253 Sep 21 21:39:29 nemesis sshd[30208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.102.249.253 Sep 21 21:39:30 nemesis sshd[30207]: Failed password for invalid user pi from 59.102.249.253 port 49572 ssh2 Sep 21 21:39:31 nemesis sshd[30208]: Failed password for invalid user pi from 59.102.249.253 port 49574 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=59.102.249.253	2020-09-22 16:07:35
103.127.108.96	attackbots	Sep 22 12:42:52 gw1 sshd[15023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.127.108.96 Sep 22 12:42:54 gw1 sshd[15023]: Failed password for invalid user operador from 103.127.108.96 port 50920 ssh2 ...	2020-09-22 15:58:00
195.70.59.121	attack	SSH Brute Force	2020-09-22 16:33:23
118.222.10.218	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-22 16:13:00

最近上报的IP列表

111.35.167.127	127.98.172.134	61.228.184.240	167.250.146.166
144.105.130.10	18.178.52.223	9.25.15.250	206.228.154.197
138.37.46.117	248.12.41.226	174.137.235.80	101.225.25.12
85.40.28.142	189.136.120.116	134.175.9.235	103.84.192.242
125.128.140.114	37.107.184.146	125.165.110.110	222.248.165.202