149.242.220.113

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.242.220.113
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20746
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;149.242.220.113.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025013000 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 30 18:01:11 CST 2025
;; MSG SIZE  rcvd: 108

HOST信息:

113.220.242.149.in-addr.arpa domain name pointer hdc71.koerber.de.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
113.220.242.149.in-addr.arpa	name = hdc71.koerber.de.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
146.56.192.233	attack	DATE:2020-09-04 18:52:08, IP:146.56.192.233, PORT:6379 REDIS brute force auth on honeypot server (epe-honey1-hq)	2020-09-05 05:19:50
162.142.125.19	attackspam	firewall-block, port(s): 22222/tcp	2020-09-05 05:10:23
222.186.190.2	attackspam	(sshd) Failed SSH login from 222.186.190.2 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 4 14:49:56 cvps sshd[28159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.2 user=root Sep 4 14:49:57 cvps sshd[28159]: Failed password for root from 222.186.190.2 port 23470 ssh2 Sep 4 14:50:00 cvps sshd[28159]: Failed password for root from 222.186.190.2 port 23470 ssh2 Sep 4 14:50:03 cvps sshd[28159]: Failed password for root from 222.186.190.2 port 23470 ssh2 Sep 4 14:50:06 cvps sshd[28159]: Failed password for root from 222.186.190.2 port 23470 ssh2	2020-09-05 04:53:35
189.189.62.87	attack	Automatic report - Port Scan Attack	2020-09-05 04:54:03
182.23.67.49	attackbots	Sep 4 18:47:09 lnxmysql61 sshd[9690]: Failed password for root from 182.23.67.49 port 32894 ssh2 Sep 4 18:47:09 lnxmysql61 sshd[9690]: Failed password for root from 182.23.67.49 port 32894 ssh2	2020-09-05 05:24:53
36.65.49.183	attackbots	Automatic report - Port Scan Attack	2020-09-05 04:51:42
171.224.181.157	attackbotsspam	Honeypot attack, port: 445, PTR: dynamic-ip-adsl.viettel.vn.	2020-09-05 05:05:52
45.142.120.93	attackspambots	2020-09-04 23:54:59 auth_plain authenticator failed for (User) [45.142.120.93]: 535 Incorrect authentication data (set_id=testsite@lavrinenko.info) 2020-09-04 23:55:36 auth_plain authenticator failed for (User) [45.142.120.93]: 535 Incorrect authentication data (set_id=bq@lavrinenko.info) ...	2020-09-05 05:00:19
222.186.175.154	attackspambots	Sep 4 23:07:28 dev0-dcde-rnet sshd[7772]: Failed password for root from 222.186.175.154 port 56058 ssh2 Sep 4 23:07:41 dev0-dcde-rnet sshd[7772]: error: maximum authentication attempts exceeded for root from 222.186.175.154 port 56058 ssh2 [preauth] Sep 4 23:07:47 dev0-dcde-rnet sshd[7774]: Failed password for root from 222.186.175.154 port 2578 ssh2	2020-09-05 05:16:28
71.6.165.200	attack	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-05 04:55:21
212.70.149.20	attackspam	Rude login attack (2789 tries in 1d)	2020-09-05 05:16:58
103.230.103.114	attackspam	1599238407 - 09/04/2020 18:53:27 Host: 103.230.103.114/103.230.103.114 Port: 445 TCP Blocked	2020-09-05 05:01:45
203.90.233.7	attackbotsspam	Sep 4 18:41:33 markkoudstaal sshd[28208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.90.233.7 Sep 4 18:41:35 markkoudstaal sshd[28208]: Failed password for invalid user testmail from 203.90.233.7 port 56680 ssh2 Sep 4 18:53:21 markkoudstaal sshd[31525]: Failed password for root from 203.90.233.7 port 58130 ssh2 ...	2020-09-05 05:08:56
212.83.163.170	attackbots	[2020-09-04 17:02:41] NOTICE[1194] chan_sip.c: Registration from '"743"' failed for '212.83.163.170:8742' - Wrong password [2020-09-04 17:02:41] SECURITY[1233] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-09-04T17:02:41.791-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="743",SessionID="0x7f2ddc1178e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.163.170/8742",Challenge="2211ba07",ReceivedChallenge="2211ba07",ReceivedHash="0108e6e9a1934929da4f42bea84fb4fb" [2020-09-04 17:03:14] NOTICE[1194] chan_sip.c: Registration from '"742"' failed for '212.83.163.170:8709' - Wrong password [2020-09-04 17:03:14] SECURITY[1233] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-09-04T17:03:14.254-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="742",SessionID="0x7f2ddc04e988",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83. ...	2020-09-05 05:04:47
117.7.226.226	attackspambots	[FriSep0418:53:38.1302952020][:error][pid9148:tid46926317901568][client117.7.226.226:54180][client117.7.226.226]ModSecurity:Accessdeniedwithcode403\(phase2\).File"/tmp/20200904-185337-X1JxEW3XpgJgBgJ@UMJztQAAAEM-file-Aw7S1z"rejectedbytheapproverscript"/etc/cxs/cxscgi.sh":0[file"/etc/apache2/conf.d/modsec_vendor_configs/configserver/00_configserver.conf"][line"7"][id"1010101"][msg"ConfigServerExploitScanner\(cxs\)triggered"][severity"CRITICAL"][hostname"gruppobalu.com"][uri"/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php"][unique_id"X1JxEW3XpgJgBgJ@UMJztQAAAEM"]\,referer:https://gruppobalu.com/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php	2020-09-05 04:54:36

最近上报的IP列表

118.30.89.198	60.109.80.245	88.61.84.55	125.246.59.122
88.32.107.126	55.107.125.165	104.235.46.20	253.210.9.219
234.142.155.33	248.227.100.44	3.65.75.60	121.230.41.232
51.245.92.206	136.119.229.63	254.209.93.214	39.84.211.99
90.93.171.246	245.139.129.217	197.228.142.18	96.31.197.181