12.48.79.249 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 12.48.79.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12992
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;12.48.79.249.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012400 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 25 00:27:29 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

Host 249.79.48.12.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 249.79.48.12.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
106.112.178.247	attack	IP blocked	2020-08-21 21:42:14
185.86.76.57	attack	Lines containing failures of 185.86.76.57 Aug 20 06:46:54 newdogma sshd[11682]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.86.76.57 user=r.r Aug 20 06:46:56 newdogma sshd[11682]: Failed password for r.r from 185.86.76.57 port 38856 ssh2 Aug 20 06:46:58 newdogma sshd[11682]: Received disconnect from 185.86.76.57 port 38856:11: Bye Bye [preauth] Aug 20 06:46:58 newdogma sshd[11682]: Disconnected from authenticating user r.r 185.86.76.57 port 38856 [preauth] Aug 20 06:59:04 newdogma sshd[12141]: Invalid user RPM from 185.86.76.57 port 44766 Aug 20 06:59:04 newdogma sshd[12141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.86.76.57 Aug 20 06:59:06 newdogma sshd[12141]: Failed password for invalid user RPM from 185.86.76.57 port 44766 ssh2 Aug 20 06:59:07 newdogma sshd[12141]: Received disconnect from 185.86.76.57 port 44766:11: Bye Bye [preauth] Aug 20 06:59:07 newdogma sshd[121........ ------------------------------	2020-08-21 21:19:37
23.129.64.100	attackspambots	Failed password for root from 23.129.64.100 port 39461 ssh2 Failed password for root from 23.129.64.100 port 39461 ssh2 Failed password for root from 23.129.64.100 port 39461 ssh2 Failed password for root from 23.129.64.100 port 39461 ssh2 Failed password for root from 23.129.64.100 port 39461 ssh2	2020-08-21 21:13:23
167.99.69.130	attackspam	srv02 Mass scanning activity detected Target: 25456 ..	2020-08-21 21:21:55
104.131.46.166	attackbots	Aug 21 14:07:06 rancher-0 sshd[1193545]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.46.166 user=root Aug 21 14:07:08 rancher-0 sshd[1193545]: Failed password for root from 104.131.46.166 port 37228 ssh2 ...	2020-08-21 21:22:27
177.184.202.217	attack	Aug 21 14:13:32 mellenthin sshd[21027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.184.202.217 Aug 21 14:13:34 mellenthin sshd[21027]: Failed password for invalid user testadmin from 177.184.202.217 port 59282 ssh2	2020-08-21 21:24:16
222.186.175.169	attack	Aug 21 14:08:39 ajax sshd[25848]: Failed password for root from 222.186.175.169 port 2088 ssh2 Aug 21 14:08:43 ajax sshd[25848]: Failed password for root from 222.186.175.169 port 2088 ssh2	2020-08-21 21:13:01
222.186.175.212	attack	Aug 21 15:50:10 eventyay sshd[7343]: Failed password for root from 222.186.175.212 port 52868 ssh2 Aug 21 15:50:23 eventyay sshd[7343]: error: maximum authentication attempts exceeded for root from 222.186.175.212 port 52868 ssh2 [preauth] Aug 21 15:50:30 eventyay sshd[7351]: Failed password for root from 222.186.175.212 port 28536 ssh2 ...	2020-08-21 21:51:51
200.38.232.248	attackbots	Aug 21 13:06:46 l02a sshd[1983]: Invalid user admin from 200.38.232.248 Aug 21 13:06:47 l02a sshd[1983]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200-38-232-248.infraestructura.static.axtel.net Aug 21 13:06:46 l02a sshd[1983]: Invalid user admin from 200.38.232.248 Aug 21 13:06:48 l02a sshd[1983]: Failed password for invalid user admin from 200.38.232.248 port 60620 ssh2	2020-08-21 21:41:04
45.122.223.198	attack	CMS (WordPress or Joomla) login attempt.	2020-08-21 21:43:12
222.186.180.130	attack	Aug 21 15:30:08 theomazars sshd[5240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.130 user=root Aug 21 15:30:10 theomazars sshd[5240]: Failed password for root from 222.186.180.130 port 45051 ssh2	2020-08-21 21:40:03
119.139.136.219	attackbots	Aug 20 21:01:17 mxgate1 postfix/postscreen[13844]: CONNECT from [119.139.136.219]:21289 to [176.31.12.44]:25 Aug 20 21:01:17 mxgate1 postfix/dnsblog[13848]: addr 119.139.136.219 listed by domain bl.spamcop.net as 127.0.0.2 Aug 20 21:01:17 mxgate1 postfix/dnsblog[13847]: addr 119.139.136.219 listed by domain zen.spamhaus.org as 127.0.0.11 Aug 20 21:01:17 mxgate1 postfix/dnsblog[13847]: addr 119.139.136.219 listed by domain zen.spamhaus.org as 127.0.0.4 Aug 20 21:01:17 mxgate1 postfix/dnsblog[13847]: addr 119.139.136.219 listed by domain zen.spamhaus.org as 127.0.0.3 Aug 20 21:01:17 mxgate1 postfix/dnsblog[13846]: addr 119.139.136.219 listed by domain cbl.abuseat.org as 127.0.0.2 Aug 20 21:01:17 mxgate1 postfix/dnsblog[13845]: addr 119.139.136.219 listed by domain b.barracudacentral.org as 127.0.0.2 Aug 20 21:01:23 mxgate1 postfix/postscreen[13844]: DNSBL rank 5 for [119.139.136.219]:21289 Aug x@x Aug 20 21:01:24 mxgate1 postfix/postscreen[13844]: DISCONNECT [119.139.136......... -------------------------------	2020-08-21 21:48:19
51.83.97.44	attackbotsspam	Aug 21 09:31:50 ny01 sshd[15058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.97.44 Aug 21 09:31:52 ny01 sshd[15058]: Failed password for invalid user paloma from 51.83.97.44 port 53534 ssh2 Aug 21 09:35:29 ny01 sshd[15558]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.97.44	2020-08-21 21:38:24
45.43.36.191	attackspambots	Aug 21 08:07:11 Tower sshd[3921]: Connection from 45.43.36.191 port 48668 on 192.168.10.220 port 22 rdomain "" Aug 21 08:07:13 Tower sshd[3921]: Invalid user tencent from 45.43.36.191 port 48668 Aug 21 08:07:13 Tower sshd[3921]: error: Could not get shadow information for NOUSER Aug 21 08:07:13 Tower sshd[3921]: Failed password for invalid user tencent from 45.43.36.191 port 48668 ssh2 Aug 21 08:07:13 Tower sshd[3921]: Received disconnect from 45.43.36.191 port 48668:11: Bye Bye [preauth] Aug 21 08:07:13 Tower sshd[3921]: Disconnected from invalid user tencent 45.43.36.191 port 48668 [preauth]	2020-08-21 21:12:28
118.172.201.105	attack	srvr1: (mod_security) mod_security (id:942100) triggered by 118.172.201.105 (TH/-/node-13s9.pool-118-172.dynamic.totinternet.net): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/21 12:06:46 [error] 482759#0: 840649 [client 118.172.201.105] ModSecurity: Access denied with code 406 (phase 2). [file "/etc/modsecurity.d/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "45"] [id "942100"] [rev ""] [msg ""] [redacted] [severity "0"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-sqli"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/152/248/66"] [tag "PCI/6.5.2"] [redacted] [uri "/forum/viewthread.php"] [unique_id "159801160623.603573"] [ref ""], client: 118.172.201.105, [redacted] request: "GET /forum/viewthread.php?thread_id=1122%27%29+OR+++%28%27k6Zu%27%3D%27k6Zu HTTP/1.1" [redacted]	2020-08-21 21:35:08

最近上报的IP列表

95.176.75.69	218.98.203.39	78.52.178.214	30.232.27.192
90.157.68.140	189.49.243.61	117.135.152.82	223.104.154.157
255.143.153.111	89.138.189.1	222.226.92.121	207.144.87.162
217.112.93.44	90.17.205.38	2.158.102.15	62.129.202.209
255.207.95.197	170.127.20.212	149.242.53.191	211.73.208.240