149.56.157.48 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Canada

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.56.157.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2912
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;149.56.157.48.			IN	A

;; AUTHORITY SECTION:
.			106	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 69 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 14:38:50 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

48.157.56.149.in-addr.arpa domain name pointer gateway4.brasildominio.com.br.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
48.157.56.149.in-addr.arpa	name = gateway4.brasildominio.com.br.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
2001:318:0:210:218:231:54:122	attackspam	US Federal Reserve Bank Corporate Office 20th St. and Constitution Ave. N.W Mail Stop K300 Washington, D.C. 20551 Our Ref:USFRB/IRU/SFE/15.5/NY/011 United States of America Monday-Friday 8 a.m.-9 p.m. Eastern Daylight Time(EDT) Saturday and Sunday 8 a.m.-4 p.m. Eastern Daylight Time(EDT) Federal Reserve Bank Notification Of Your Compensation Funds 2020 Please read carefully before replying because i cant explain any thing else apart from these mail sent to you. Your payment files from three (3) different banks, Natwest Bank of London, Central Bank of Nigeria and Bank of America was compiled and submitted.................	2020-04-24 22:50:57
54.38.241.162	attackspambots	2020-04-24T14:16:04.832526shield sshd\[22832\]: Invalid user clamav from 54.38.241.162 port 34480 2020-04-24T14:16:04.836221shield sshd\[22832\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.ip-54-38-241.eu 2020-04-24T14:16:07.068905shield sshd\[22832\]: Failed password for invalid user clamav from 54.38.241.162 port 34480 ssh2 2020-04-24T14:23:29.046574shield sshd\[24275\]: Invalid user matthew from 54.38.241.162 port 54134 2020-04-24T14:23:29.050445shield sshd\[24275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.ip-54-38-241.eu	2020-04-24 22:26:45
113.125.117.48	attack	Lines containing failures of 113.125.117.48 (max 1000) Apr 22 16:44:09 mxbb sshd[19114]: Invalid user cu from 113.125.117.48 port 49638 Apr 22 16:44:09 mxbb sshd[19114]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.117.48 Apr 22 16:44:11 mxbb sshd[19114]: Failed password for invalid user cu from 113.125.117.48 port 49638 ssh2 Apr 22 16:44:11 mxbb sshd[19114]: Received disconnect from 113.125.117.48 port 49638:11: Bye Bye [preauth] Apr 22 16:44:11 mxbb sshd[19114]: Disconnected from 113.125.117.48 port 49638 [preauth] Apr 22 16:53:29 mxbb sshd[19379]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.117.48 user=r.r Apr 22 16:53:31 mxbb sshd[19379]: Failed password for r.r from 113.125.117.48 port 42414 ssh2 Apr 22 16:53:31 mxbb sshd[19379]: Received disconnect from 113.125.117.48 port 42414:11: Bye Bye [preauth] Apr 22 16:53:31 mxbb sshd[19379]: Disconnected from 113.125.117........ ------------------------------	2020-04-24 22:47:40
139.59.13.53	attackspambots	Apr 24 14:13:58 vps sshd[325511]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.53 user=root Apr 24 14:14:01 vps sshd[325511]: Failed password for root from 139.59.13.53 port 51180 ssh2 Apr 24 14:18:40 vps sshd[351132]: Invalid user password from 139.59.13.53 port 34898 Apr 24 14:18:40 vps sshd[351132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.13.53 Apr 24 14:18:42 vps sshd[351132]: Failed password for invalid user password from 139.59.13.53 port 34898 ssh2 ...	2020-04-24 22:46:48
216.24.225.14	attackspambots	Brute Force - Postfix	2020-04-24 22:53:58
185.153.198.240	attackspambots	Fail2Ban Ban Triggered	2020-04-24 22:20:21
186.33.211.69	attackbots	2020-04-24T12:40:01.618399shield sshd\[4648\]: Invalid user ajeet from 186.33.211.69 port 49371 2020-04-24T12:40:01.623213shield sshd\[4648\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.33.211.69 2020-04-24T12:40:03.688215shield sshd\[4648\]: Failed password for invalid user ajeet from 186.33.211.69 port 49371 ssh2 2020-04-24T12:44:39.423193shield sshd\[5307\]: Invalid user admin from 186.33.211.69 port 52792 2020-04-24T12:44:39.428118shield sshd\[5307\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.33.211.69	2020-04-24 22:28:57
129.28.58.6	attackbots	(sshd) Failed SSH login from 129.28.58.6 (CN/China/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 24 11:51:09 andromeda sshd[6720]: Invalid user spy from 129.28.58.6 port 34394 Apr 24 11:51:12 andromeda sshd[6720]: Failed password for invalid user spy from 129.28.58.6 port 34394 ssh2 Apr 24 12:07:46 andromeda sshd[7243]: Invalid user Hely from 129.28.58.6 port 49672	2020-04-24 22:20:51
121.204.146.30	attack	3389BruteforceStormFW23	2020-04-24 22:19:49
139.59.172.149	attackspambots	Automatic report - XMLRPC Attack	2020-04-24 22:32:09
222.186.52.86	attack	Apr 24 10:38:17 ny01 sshd[22371]: Failed password for root from 222.186.52.86 port 52642 ssh2 Apr 24 10:39:33 ny01 sshd[22536]: Failed password for root from 222.186.52.86 port 50516 ssh2	2020-04-24 22:49:01
167.89.7.116	attackspambots	COVID-19 Related Spam; sendgrid ignores abuse reports. Received: from o1.e2.carfinancetoday.net ([167.89.7.116]) by mx0.ncuk.net with esmtps (TLS1.2:RSA_AES_256_CBC_SHA256:256) (Exim 4.80)	2020-04-24 22:55:05
49.88.112.65	attackspam	Apr 24 16:19:39 vps sshd[966601]: Failed password for root from 49.88.112.65 port 63602 ssh2 Apr 24 16:21:03 vps sshd[976740]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.65 user=root Apr 24 16:21:04 vps sshd[976740]: Failed password for root from 49.88.112.65 port 17116 ssh2 Apr 24 16:21:07 vps sshd[976740]: Failed password for root from 49.88.112.65 port 17116 ssh2 Apr 24 16:21:09 vps sshd[976740]: Failed password for root from 49.88.112.65 port 17116 ssh2 ...	2020-04-24 22:36:44
94.177.217.21	attackbots	Apr 22 08:48:59 CT721 sshd[10287]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.217.21 user=r.r Apr 22 08:49:01 CT721 sshd[10287]: Failed password for r.r from 94.177.217.21 port 37648 ssh2 Apr 22 08:49:01 CT721 sshd[10287]: Received disconnect from 94.177.217.21 port 37648:11: Bye Bye [preauth] Apr 22 08:49:01 CT721 sshd[10287]: Disconnected from 94.177.217.21 port 37648 [preauth] Apr 22 08:57:49 CT721 sshd[10500]: Invalid user nd from 94.177.217.21 port 53888 Apr 22 08:57:49 CT721 sshd[10500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.217.21 Apr 22 08:57:51 CT721 sshd[10500]: Failed password for invalid user nd from 94.177.217.21 port 53888 ssh2 Apr 22 08:57:51 CT721 sshd[10500]: Received disconnect from 94.177.217.21 port 53888:11: Bye Bye [preauth] Apr 22 08:57:51 CT721 sshd[10500]: Disconnected from 94.177.217.21 port 53888 [preauth] ........ ----------------------------------------------- https://ww	2020-04-24 22:32:31
89.248.174.216	attackbotsspam	ET CINS Active Threat Intelligence Poor Reputation IP group 81 - port: 53413 proto: UDP cat: Misc Attack	2020-04-24 22:40:07

最近上报的IP列表

149.28.84.137	178.65.187.86	149.56.164.193	149.56.173.44
149.56.164.132	149.56.179.185	149.56.180.105	149.56.18.207
149.56.164.148	149.56.173.231	149.56.17.190	149.56.172.171
149.56.18.17	149.56.182.17	149.56.164.249	149.56.185.9
149.56.182.228	149.56.19.11	149.56.198.37	149.56.185.120