140.149.106.248

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Thailand

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.149.106.248
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55030
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;140.149.106.248.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012400 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 24 17:10:45 CST 2025
;; MSG SIZE  rcvd: 108

HOST信息:

Host 248.106.149.140.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 248.106.149.140.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
117.2.66.19	attack	[Mon May 11 07:40:33 2020] - Syn Flood From IP: 117.2.66.19 Port: 64682	2020-05-12 01:35:55
114.141.167.190	attackspam	$f2bV_matches	2020-05-12 01:25:53
87.251.74.172	attack	slow and persistent scanner	2020-05-12 01:42:43
92.118.37.70	attackspam	Fail2Ban Ban Triggered	2020-05-12 01:33:01
162.243.137.241	attackspam	[Mon May 11 14:07:39.067285 2020] [:error] [pid 86279] [client 162.243.137.241:40834] [client 162.243.137.241] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "91"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "200.132.59.214"] [uri "/portal/redlion"] [unique_id "XrmGW@4d7Dlz0lbJ@xwWRQAAAAU"] ...	2020-05-12 01:16:33
104.194.10.58	attackbotsspam	May 11 19:07:55 debian-2gb-nbg1-2 kernel: \[11475741.507576\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=104.194.10.58 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=59003 DPT=4343 WINDOW=65535 RES=0x00 SYN URGP=0	2020-05-12 01:20:40
152.136.106.240	attack	SSH Brute-Force Attack	2020-05-12 01:35:09
117.6.149.242	attackbotsspam	1589198677 - 05/11/2020 14:04:37 Host: 117.6.149.242/117.6.149.242 Port: 445 TCP Blocked	2020-05-12 01:17:09
137.74.41.119	attack	May 11 19:00:14 mailserver sshd\[25978\]: Invalid user nagios from 137.74.41.119 ...	2020-05-12 01:35:33
77.247.110.25	attackbotsspam	[2020-05-11 12:56:03] NOTICE[1157] chan_sip.c: Registration from '2113 ' failed for '77.247.110.25:39139' - Wrong password [2020-05-11 12:56:03] SECURITY[1173] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-05-11T12:56:03.094-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="2113",SessionID="0x7f5f107b3898",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.25/39139",Challenge="6e9e74f7",ReceivedChallenge="6e9e74f7",ReceivedHash="7719d35949f68e6bbd867e678d222a11" [2020-05-11 13:02:11] NOTICE[1157] chan_sip.c: Registration from '1333333 ' failed for '77.247.110.25:45567' - Wrong password [2020-05-11 13:02:11] SECURITY[1173] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-05-11T13:02:11.143-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="1333333",SessionID="0x7f5f106f5588",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV ...	2020-05-12 01:48:40
202.69.56.214	attackbotsspam	[Mon May 11 07:24:18 2020] - Syn Flood From IP: 202.69.56.214 Port: 62816	2020-05-12 01:38:34
134.209.242.224	attackspambots	[2020-05-11 13:42:13] NOTICE[1157] chan_sip.c: Registration from 'xxxxxtestxxxx ' failed for '134.209.242.224:5060' - Wrong password [2020-05-11 13:42:13] SECURITY[1173] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-05-11T13:42:13.657-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="xxxxxtestxxxx",SessionID="0x7f5f103d7a88",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/134.209.242.224/5060",Challenge="3f3cc1ba",ReceivedChallenge="3f3cc1ba",ReceivedHash="699b89e508bd21ae2acc48fbbbc556ac" [2020-05-11 13:42:15] NOTICE[1157] chan_sip.c: Registration from '711 ' failed for '134.209.242.224:5060' - Wrong password [2020-05-11 13:42:15] SECURITY[1173] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-05-11T13:42:15.554-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="711",SessionID="0x7f5f106f5588",LocalAddress="IPV4/UDP/192.168.244.6/5060", ...	2020-05-12 01:45:26
146.66.244.199	attackspam	Port scan on 5 port(s): 1433 1434 2433 4433 6433	2020-05-12 01:29:20
159.203.112.185	attackspam	May 11 16:12:40 v22018086721571380 sshd[2241]: Failed password for invalid user vsb_pgsql from 159.203.112.185 port 56088 ssh2	2020-05-12 01:20:15
77.232.100.253	attack	May 11 15:08:45 vlre-nyc-1 sshd\[24391\]: Invalid user administrator from 77.232.100.253 May 11 15:08:45 vlre-nyc-1 sshd\[24391\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.232.100.253 May 11 15:08:47 vlre-nyc-1 sshd\[24391\]: Failed password for invalid user administrator from 77.232.100.253 port 43266 ssh2 May 11 15:13:01 vlre-nyc-1 sshd\[24477\]: Invalid user joan from 77.232.100.253 May 11 15:13:01 vlre-nyc-1 sshd\[24477\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.232.100.253 ...	2020-05-12 01:15:53

最近上报的IP列表

178.24.6.17	176.69.39.3	5.14.185.149	185.50.224.27
146.154.158.186	146.83.246.217	137.178.59.171	189.174.214.141
173.140.18.105	123.171.245.49	234.94.219.89	31.151.16.74
96.144.190.6	30.240.228.28	179.10.228.42	203.29.206.172
84.105.41.77	122.86.51.51	185.174.197.1	49.112.168.85