113.199.249.52

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Nepal

运营商(isp): Nepal Telecom

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Dec 19 15:37:17 grey postfix/smtpd\[15062\]: NOQUEUE: reject: RCPT from unknown\[113.199.249.52\]: 554 5.7.1 Service unavailable\; Client host \[113.199.249.52\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[113.199.249.52\]\; from=\ to=\ proto=ESMTP helo=\<\[113.199.249.52\]\> ...	2019-12-20 00:50:32

类型

评论内容

时间

attack

Dec 19 15:37:17 grey postfix/smtpd\[15062\]: NOQUEUE: reject: RCPT from unknown\[113.199.249.52\]: 554 5.7.1 Service unavailable\; Client host \[113.199.249.52\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[113.199.249.52\]\; from=\ to=\ proto=ESMTP helo=\<\[113.199.249.52\]\>
...

2019-12-20 00:50:32

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.199.249.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35329
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.199.249.52.			IN	A

;; AUTHORITY SECTION:
.			141	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121900 1800 900 604800 86400

;; Query time: 46 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 20 00:50:25 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 52.249.199.113.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 52.249.199.113.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
114.67.78.79	attack	May 16 04:23:09 webhost01 sshd[1366]: Failed password for root from 114.67.78.79 port 33394 ssh2 ...	2020-05-16 05:48:18
120.52.139.130	attackbots	$f2bV_matches	2020-05-16 05:57:02
185.137.234.155	attack	Port scan on 4 port(s): 3356 3374 3386 3391	2020-05-16 05:45:37
222.186.15.62	attack	May 15 23:45:51 v22018053744266470 sshd[30492]: Failed password for root from 222.186.15.62 port 11344 ssh2 May 15 23:46:00 v22018053744266470 sshd[30502]: Failed password for root from 222.186.15.62 port 21555 ssh2 ...	2020-05-16 05:47:49
187.85.132.118	attackbots	May 15 18:50:17 firewall sshd[24988]: Invalid user andreias from 187.85.132.118 May 15 18:50:19 firewall sshd[24988]: Failed password for invalid user andreias from 187.85.132.118 port 40720 ssh2 May 15 18:56:53 firewall sshd[25075]: Invalid user andreina from 187.85.132.118 ...	2020-05-16 06:01:45
200.58.218.82	attackspambots	firewall-block, port(s): 445/tcp	2020-05-16 05:39:13
222.186.173.215	attackspam	2020-05-15T17:10:41.482559xentho-1 sshd[520911]: Failed password for root from 222.186.173.215 port 34530 ssh2 2020-05-15T17:10:35.086460xentho-1 sshd[520911]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.215 user=root 2020-05-15T17:10:37.187273xentho-1 sshd[520911]: Failed password for root from 222.186.173.215 port 34530 ssh2 2020-05-15T17:10:41.482559xentho-1 sshd[520911]: Failed password for root from 222.186.173.215 port 34530 ssh2 2020-05-15T17:10:45.780730xentho-1 sshd[520911]: Failed password for root from 222.186.173.215 port 34530 ssh2 2020-05-15T17:10:35.086460xentho-1 sshd[520911]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.215 user=root 2020-05-15T17:10:37.187273xentho-1 sshd[520911]: Failed password for root from 222.186.173.215 port 34530 ssh2 2020-05-15T17:10:41.482559xentho-1 sshd[520911]: Failed password for root from 222.186.173.215 port 34530 ssh2 2020-0 ...	2020-05-16 05:26:37
118.24.123.34	attackbots	SSH Invalid Login	2020-05-16 06:03:16
122.162.201.160	attackspam	Lines containing failures of 122.162.201.160 May 13 10:04:58 kmh-vmh-002-fsn07 sshd[28159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.162.201.160 user=r.r May 13 10:05:00 kmh-vmh-002-fsn07 sshd[28159]: Failed password for r.r from 122.162.201.160 port 47184 ssh2 May 13 10:05:01 kmh-vmh-002-fsn07 sshd[28159]: Received disconnect from 122.162.201.160 port 47184:11: Bye Bye [preauth] May 13 10:05:01 kmh-vmh-002-fsn07 sshd[28159]: Disconnected from authenticating user r.r 122.162.201.160 port 47184 [preauth] May 13 10:12:37 kmh-vmh-002-fsn07 sshd[7883]: Invalid user bpadmin from 122.162.201.160 port 41504 May 13 10:12:37 kmh-vmh-002-fsn07 sshd[7883]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.162.201.160 May 13 10:12:39 kmh-vmh-002-fsn07 sshd[7883]: Failed password for invalid user bpadmin from 122.162.201.160 port 41504 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/vi	2020-05-16 05:30:51
185.176.27.14	attackspam	May 15 23:36:45 debian-2gb-nbg1-2 kernel: \[11837452.408178\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.14 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=30283 PROTO=TCP SPT=58382 DPT=5099 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-16 05:44:48
222.186.31.204	attack	May 15 22:49:10 rotator sshd\[10398\]: Failed password for root from 222.186.31.204 port 53974 ssh2May 15 22:49:12 rotator sshd\[10398\]: Failed password for root from 222.186.31.204 port 53974 ssh2May 15 22:49:14 rotator sshd\[10398\]: Failed password for root from 222.186.31.204 port 53974 ssh2May 15 22:50:17 rotator sshd\[11028\]: Failed password for root from 222.186.31.204 port 47134 ssh2May 15 22:50:20 rotator sshd\[11028\]: Failed password for root from 222.186.31.204 port 47134 ssh2May 15 22:50:22 rotator sshd\[11028\]: Failed password for root from 222.186.31.204 port 47134 ssh2 ...	2020-05-16 05:35:56
187.115.245.40	attackbotsspam	May 15 16:50:03 mail sshd\[19983\]: Invalid user isadmin from 187.115.245.40 May 15 16:50:03 mail sshd\[19983\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.115.245.40 ...	2020-05-16 05:52:48
212.60.175.69	attack	WordPress brute force	2020-05-16 05:49:43
113.173.244.220	attack	firewall-block, port(s): 83/tcp	2020-05-16 05:53:04
139.199.0.84	attack	May 15 22:54:14 host sshd[12862]: Invalid user simonef from 139.199.0.84 port 46064 ...	2020-05-16 05:38:17

最近上报的IP列表

111.35.167.127	127.98.172.134	61.228.184.240	167.250.146.166
144.105.130.10	18.178.52.223	9.25.15.250	206.228.154.197
138.37.46.117	248.12.41.226	174.137.235.80	101.225.25.12
85.40.28.142	189.136.120.116	134.175.9.235	103.84.192.242
125.128.140.114	37.107.184.146	125.165.110.110	222.248.165.202