必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Canada

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
149.56.142.1 attackspambots
Attempt to hack Wordpress Login, XMLRPC or other login
2020-10-11 00:35:24
149.56.142.1 attackspam
149.56.142.1 - - [10/Oct/2020:09:46:40 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
149.56.142.1 - - [10/Oct/2020:09:46:42 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
149.56.142.1 - - [10/Oct/2020:09:46:43 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-10-10 16:24:09
149.56.142.1 attackbots
149.56.142.1 - - \[19/Sep/2020:19:09:40 +0200\] "POST /wp-login.php HTTP/1.0" 200 9485 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
149.56.142.1 - - \[19/Sep/2020:19:09:42 +0200\] "POST /wp-login.php HTTP/1.0" 200 9315 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
149.56.142.1 - - \[19/Sep/2020:19:09:43 +0200\] "POST /wp-login.php HTTP/1.0" 200 9309 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2020-09-20 03:49:31
149.56.142.1 attack
149.56.142.1 - - [19/Sep/2020:09:32:39 +0100] "POST /wp-login.php HTTP/1.1" 200 2391 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
149.56.142.1 - - [19/Sep/2020:09:32:40 +0100] "POST /wp-login.php HTTP/1.1" 200 2325 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
149.56.142.1 - - [19/Sep/2020:09:32:40 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-09-19 19:54:48
149.56.142.47 attack
Jul 27 18:14:15 vpn01 sshd[4207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.142.47
Jul 27 18:14:17 vpn01 sshd[4207]: Failed password for invalid user wtli from 149.56.142.47 port 60222 ssh2
...
2020-07-28 01:14:01
149.56.142.47 attack
Jul 17 11:19:12 pixelmemory sshd[3118379]: Invalid user library from 149.56.142.47 port 48908
Jul 17 11:19:12 pixelmemory sshd[3118379]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.142.47 
Jul 17 11:19:12 pixelmemory sshd[3118379]: Invalid user library from 149.56.142.47 port 48908
Jul 17 11:19:14 pixelmemory sshd[3118379]: Failed password for invalid user library from 149.56.142.47 port 48908 ssh2
Jul 17 11:25:05 pixelmemory sshd[3137853]: Invalid user rocha from 149.56.142.47 port 36840
...
2020-07-18 02:37:34
149.56.142.47 attack
Jul  9 15:09:41 rancher-0 sshd[211744]: Invalid user lisa from 149.56.142.47 port 39858
...
2020-07-09 23:12:56
149.56.142.47 attackbotsspam
Jun  3 14:39:09 electroncash sshd[12501]: Failed password for root from 149.56.142.47 port 41284 ssh2
Jun  3 14:41:30 electroncash sshd[13102]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.142.47  user=root
Jun  3 14:41:31 electroncash sshd[13102]: Failed password for root from 149.56.142.47 port 41748 ssh2
Jun  3 14:43:54 electroncash sshd[13719]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.142.47  user=root
Jun  3 14:43:56 electroncash sshd[13719]: Failed password for root from 149.56.142.47 port 42212 ssh2
...
2020-06-03 20:50:50
149.56.142.47 attackbots
Invalid user webmaster1 from 149.56.142.47 port 42356
2020-05-16 23:30:37
149.56.142.47 attackbotsspam
Total attacks: 4
2020-05-13 03:22:27
149.56.142.47 attack
May  6 22:23:10 ns381471 sshd[693]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.142.47
May  6 22:23:12 ns381471 sshd[693]: Failed password for invalid user xwq from 149.56.142.47 port 45916 ssh2
2020-05-07 04:44:11
149.56.142.47 attackspambots
SSH Invalid Login
2020-05-05 05:56:40
149.56.142.47 attackspambots
hit -> srv3:22
2020-05-01 16:13:57
149.56.142.198 attackbots
Apr 30 16:44:14 server sshd[19472]: Failed password for invalid user sammy from 149.56.142.198 port 54246 ssh2
Apr 30 16:49:37 server sshd[23590]: Failed password for invalid user dcc from 149.56.142.198 port 36804 ssh2
Apr 30 16:54:59 server sshd[27505]: User postgres from 149.56.142.198 not allowed because not listed in AllowUsers
2020-05-01 03:26:10
149.56.142.198 attack
Apr 29 19:57:40 web1 sshd\[17360\]: Invalid user group3 from 149.56.142.198
Apr 29 19:57:40 web1 sshd\[17360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.142.198
Apr 29 19:57:43 web1 sshd\[17360\]: Failed password for invalid user group3 from 149.56.142.198 port 45436 ssh2
Apr 29 20:03:07 web1 sshd\[17738\]: Invalid user fred from 149.56.142.198
Apr 29 20:03:07 web1 sshd\[17738\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.142.198
2020-04-30 15:23:01
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.56.142.215
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61581
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;149.56.142.215.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 14:38:47 CST 2022
;; MSG SIZE  rcvd: 107
HOST信息:
215.142.56.149.in-addr.arpa domain name pointer 215.ip-149-56-142.net.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
215.142.56.149.in-addr.arpa	name = 215.ip-149-56-142.net.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
222.186.30.209 attack
2020-02-03T01:25:48.658032vostok sshd\[8023\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.209  user=root | Triggered by Fail2Ban at Vostok web server
2020-02-03 14:44:20
193.32.95.50 attackbotsspam
POST /index.php HTTP/1.1 404 10057 index.php?contactMozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)
2020-02-03 15:09:11
106.12.9.10 attackbotsspam
Feb  3 06:55:35 [host] sshd[30787]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.9.10  user=root
Feb  3 06:55:38 [host] sshd[30787]: Failed password for root from 106.12.9.10 port 56004 ssh2
Feb  3 07:01:50 [host] sshd[31022]: Invalid user roskuski from 106.12.9.10
2020-02-03 14:43:26
78.225.3.244 attack
unauthorized connection attempt
2020-02-03 15:03:21
122.51.211.145 attackbotsspam
2020-02-03T00:41:12.8663411495-001 sshd[19578]: Invalid user florian from 122.51.211.145 port 33556
2020-02-03T00:41:12.8694221495-001 sshd[19578]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.211.145
2020-02-03T00:41:12.8663411495-001 sshd[19578]: Invalid user florian from 122.51.211.145 port 33556
2020-02-03T00:41:14.3946801495-001 sshd[19578]: Failed password for invalid user florian from 122.51.211.145 port 33556 ssh2
2020-02-03T00:44:37.7095771495-001 sshd[19787]: Invalid user word from 122.51.211.145 port 57854
2020-02-03T00:44:37.7127441495-001 sshd[19787]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.211.145
2020-02-03T00:44:37.7095771495-001 sshd[19787]: Invalid user word from 122.51.211.145 port 57854
2020-02-03T00:44:39.7153641495-001 sshd[19787]: Failed password for invalid user word from 122.51.211.145 port 57854 ssh2
2020-02-03T00:48:23.8680411495-001 sshd[19997]: Invalid u
...
2020-02-03 15:06:12
77.247.110.58 attackspam
Port 5228 scan denied
2020-02-03 14:59:21
188.166.181.139 attackbots
188.166.181.139 - - \[03/Feb/2020:07:23:51 +0100\] "POST /wp-login.php HTTP/1.0" 200 3080 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
188.166.181.139 - - \[03/Feb/2020:07:23:53 +0100\] "POST /wp-login.php HTTP/1.0" 200 3039 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
188.166.181.139 - - \[03/Feb/2020:07:23:56 +0100\] "POST /wp-login.php HTTP/1.0" 200 3048 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2020-02-03 15:00:22
116.58.232.167 attackbots
1580705573 - 02/03/2020 05:52:53 Host: 116.58.232.167/116.58.232.167 Port: 445 TCP Blocked
2020-02-03 15:03:01
222.186.31.166 attackspam
Unauthorized connection attempt detected from IP address 222.186.31.166 to port 22 [J]
2020-02-03 15:16:55
122.152.217.35 attackspambots
Unauthorized connection attempt detected from IP address 122.152.217.35 to port 2220 [J]
2020-02-03 14:55:03
45.64.1.76 attackbots
Feb  3 07:08:59 woltan sshd[26839]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.64.1.76
2020-02-03 15:07:39
187.12.167.85 attack
Feb  3 07:18:47 legacy sshd[16459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.12.167.85
Feb  3 07:18:49 legacy sshd[16459]: Failed password for invalid user 123456 from 187.12.167.85 port 43626 ssh2
Feb  3 07:22:32 legacy sshd[16660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.12.167.85
...
2020-02-03 14:36:21
188.151.240.146 attackspambots
Feb  2 20:24:48 mail sshd[18273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=c188-151-240-146.bredband.comhem.se
Feb  2 20:24:50 mail sshd[18273]: Failed password for invalid user rydman from 188.151.240.146 port 56262 ssh2
Feb  2 20:24:50 mail sshd[18273]: Received disconnect from 188.151.240.146: 11: Bye Bye [preauth]
Feb  2 21:13:25 mail sshd[26344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=c188-151-240-146.bredband.comhem.se


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=188.151.240.146
2020-02-03 15:13:50
193.56.28.61 attackspam
POST //cgi-bin/php?-d allow_url_include=on -d safe_mode=off -d suhosin.simulation=on -d disable_functions="" -d open_basedir=none -d auto_prepend_file=php://input -d cgi.force_redirect=0 -d cgi.redirect_status_env=0 -d auto_prepend_file=php://input -n HTTP/1.1 404 11402 -
2020-02-03 14:51:29
202.29.243.36 attackspambots
Feb  3 07:18:17 v22018053744266470 sshd[12249]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.243.36
Feb  3 07:18:19 v22018053744266470 sshd[12249]: Failed password for invalid user brophydj from 202.29.243.36 port 33979 ssh2
Feb  3 07:25:33 v22018053744266470 sshd[12770]: Failed password for root from 202.29.243.36 port 36410 ssh2
...
2020-02-03 14:47:20

最近上报的IP列表

149.56.143.238 149.56.150.67 149.56.14.162 149.56.134.58
149.56.150.66 149.28.65.207 149.56.151.116 149.28.84.137
149.56.157.48 178.65.187.86 149.56.164.193 149.56.173.44
149.56.164.132 149.56.179.185 149.56.180.105 149.56.18.207
149.56.164.148 149.56.173.231 149.56.17.190 149.56.172.171