149.40.125.216

基本信息:

城市(city): Warrington

省份(region): England

国家(country): United Kingdom

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.40.125.216
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49584
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;149.40.125.216.			IN	A

;; AUTHORITY SECTION:
.			251	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024011202 1800 900 604800 86400

;; Query time: 32 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 13 10:59:49 CST 2024
;; MSG SIZE  rcvd: 107

HOST信息:

Host 216.125.40.149.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 216.125.40.149.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
185.153.198.229	attackbotsspam	TCP (SYN) 185.153.198.229:43737 -> port 22, len 40	2020-09-05 14:54:24
141.98.10.213	attack	Sep 4 20:47:53 eddieflores sshd\[31045\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.10.213 user=root Sep 4 20:47:55 eddieflores sshd\[31045\]: Failed password for root from 141.98.10.213 port 39343 ssh2 Sep 4 20:48:26 eddieflores sshd\[31115\]: Invalid user admin from 141.98.10.213 Sep 4 20:48:26 eddieflores sshd\[31115\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.10.213 Sep 4 20:48:28 eddieflores sshd\[31115\]: Failed password for invalid user admin from 141.98.10.213 port 42353 ssh2	2020-09-05 14:55:03
180.149.126.205	attackspambots	TCP (SYN) 180.149.126.205:22832 -> port 8081, len 44	2020-09-05 14:59:04
162.247.74.213	attack	Failed password for root from 162.247.74.213 port 43716 ssh2 Failed password for root from 162.247.74.213 port 43716 ssh2 Failed password for root from 162.247.74.213 port 43716 ssh2 Failed password for root from 162.247.74.213 port 43716 ssh2 Failed password for root from 162.247.74.213 port 43716 ssh2	2020-09-05 15:00:32
92.222.93.104	attackbots	Sep 5 08:37:40 vps639187 sshd\[11328\]: Invalid user admin from 92.222.93.104 port 37948 Sep 5 08:37:40 vps639187 sshd\[11328\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.93.104 Sep 5 08:37:42 vps639187 sshd\[11328\]: Failed password for invalid user admin from 92.222.93.104 port 37948 ssh2 ...	2020-09-05 14:46:05
143.204.194.67	attackbots	TCP Port: 443 invalid blocked Listed on zen-spamhaus Client xx.xx.6.14 (164)	2020-09-05 14:57:27
114.119.147.129	attackbots	[Sat Sep 05 03:55:20.453338 2020] [:error] [pid 23286:tid 140308377491200] [client 114.119.147.129:21512] [client 114.119.147.129] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/prakiraan-iklim/agroklimatologi/kalender-tanam/1741-kalender-tanam-katam-terpadu-pulau-jawa/kalender-tanam-katam-terpadu-provinsi-jawa-timur/kalender-tanam-katam-terpadu-kota-surabaya/kalender-tanam-katam-terpadu-kecamatan-sawahan-kota-surab ...	2020-09-05 14:29:09
112.85.42.172	attackbotsspam	Sep 5 06:24:28 hcbbdb sshd\[12095\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.172 user=root Sep 5 06:24:30 hcbbdb sshd\[12095\]: Failed password for root from 112.85.42.172 port 46140 ssh2 Sep 5 06:24:39 hcbbdb sshd\[12095\]: Failed password for root from 112.85.42.172 port 46140 ssh2 Sep 5 06:24:43 hcbbdb sshd\[12095\]: Failed password for root from 112.85.42.172 port 46140 ssh2 Sep 5 06:24:47 hcbbdb sshd\[12127\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.172 user=root	2020-09-05 14:28:12
185.39.11.32	attack	firewall-block, port(s): 33907/tcp, 34086/tcp, 34222/tcp, 34231/tcp	2020-09-05 14:57:10
185.225.136.37	attackbotsspam	(From eric@talkwithwebvisitor.com) Hey, my name’s Eric and for just a second, imagine this… - Someone does a search and winds up at drlesliechiro.com. - They hang out for a minute to check it out. “I’m interested… but… maybe…” - And then they hit the back button and check out the other search results instead. - Bottom line – you got an eyeball, but nothing else to show for it. - There they go. This isn’t really your fault – it happens a LOT – studies show 7 out of 10 visitors to any site disappear without leaving a trace. But you CAN fix that. Talk With Web Visitor is a software widget that’s works on your site, ready to capture any visitor’s Name, Email address and Phone Number. It lets you know right then and there – enabling you to call that lead while they’re literally looking over your site. CLICK HERE http://www.talkwithwebvisitors.com to try out a Live Demo with Talk With Web Visitor now to see exactly how it works. Time is money when it comes to connecting with leads –	2020-09-05 14:28:33
171.15.17.161	attackspam	Sep 5 04:13:38 rush sshd[2658]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.15.17.161 Sep 5 04:13:41 rush sshd[2658]: Failed password for invalid user zhangyong from 171.15.17.161 port 5502 ssh2 Sep 5 04:17:46 rush sshd[2758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.15.17.161 ...	2020-09-05 15:06:58
193.29.15.169	attackspam	UDP 193.29.15.169:57700 -> port 123, len 37	2020-09-05 14:48:36
185.250.205.84	attackbotsspam	firewall-block, port(s): 1594/tcp, 4415/tcp, 8998/tcp, 12206/tcp, 17263/tcp, 29340/tcp	2020-09-05 14:51:08
195.54.160.180	attackbotsspam	Sep 5 08:32:16 home sshd[789933]: Invalid user payingit from 195.54.160.180 port 41555 Sep 5 08:32:16 home sshd[789933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.54.160.180 Sep 5 08:32:16 home sshd[789933]: Invalid user payingit from 195.54.160.180 port 41555 Sep 5 08:32:18 home sshd[789933]: Failed password for invalid user payingit from 195.54.160.180 port 41555 ssh2 Sep 5 08:32:20 home sshd[789936]: Invalid user pi from 195.54.160.180 port 52420 ...	2020-09-05 14:34:42
20.49.192.102	attack	Cluster member 67.227.229.95 (US/United States/host.cjthedj97.me) said, DENY 20.49.192.102, Reason:[(mod_security) mod_security (id:210492) triggered by 20.49.192.102 (GB/United Kingdom/-): 1 in the last 3600 secs]; Ports: *; Direction: inout; Trigger: LF_CLUSTER	2020-09-05 15:01:11

最近上报的IP列表

72.69.43.119	172.253.124.109	94.237.65.110	93.45.88.239
128.163.239.16	222.102.81.42	164.200.201.175	10.74.5.198
78.179.191.60	194.72.253.149	103.189.207.130	5.180.56.185
86.140.50.89	40.141.154.128	148.226.144.46	10.0.0.42
10.11.212.140	138.201.198.174	138.201.198.225	74.29.215.138