181.21.194.149

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Argentina

运营商(isp): Telefonica de Argentina

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	2019-08-22 19:58:25 unexpected disconnection while reading SMTP command from (181-21-194-149.speedy.com.ar) [181.21.194.149]:41448 I=[10.100.18.20]:25 (error: Connection reset by peer) 2019-08-22 19:59:26 unexpected disconnection while reading SMTP command from (181-21-194-149.speedy.com.ar) [181.21.194.149]:63029 I=[10.100.18.20]:25 (error: Connection reset by peer) 2019-08-22 20:58:27 unexpected disconnection while reading SMTP command from (181-21-194-149.speedy.com.ar) [181.21.194.149]:61773 I=[10.100.18.20]:25 (error: Connection reset by peer) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=181.21.194.149	2019-08-23 11:47:45

类型

评论内容

时间

attack

2019-08-22 19:58:25 unexpected disconnection while reading SMTP command from (181-21-194-149.speedy.com.ar) [181.21.194.149]:41448 I=[10.100.18.20]:25 (error: Connection reset by peer)
2019-08-22 19:59:26 unexpected disconnection while reading SMTP command from (181-21-194-149.speedy.com.ar) [181.21.194.149]:63029 I=[10.100.18.20]:25 (error: Connection reset by peer)
2019-08-22 20:58:27 unexpected disconnection while reading SMTP command from (181-21-194-149.speedy.com.ar) [181.21.194.149]:61773 I=[10.100.18.20]:25 (error: Connection reset by peer)


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=181.21.194.149

2019-08-23 11:47:45

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 181.21.194.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32674
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;181.21.194.149.			IN	A

;; AUTHORITY SECTION:
.			2520	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082201 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 23 11:47:37 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

149.194.21.181.in-addr.arpa domain name pointer 181-21-194-149.speedy.com.ar.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
149.194.21.181.in-addr.arpa	name = 181-21-194-149.speedy.com.ar.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
95.173.196.206	attack	Sep 22 08:15:15 server sshd\[30207\]: Invalid user sui from 95.173.196.206 port 41124 Sep 22 08:15:15 server sshd\[30207\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.173.196.206 Sep 22 08:15:16 server sshd\[30207\]: Failed password for invalid user sui from 95.173.196.206 port 41124 ssh2 Sep 22 08:19:39 server sshd\[7897\]: Invalid user camila from 95.173.196.206 port 54626 Sep 22 08:19:39 server sshd\[7897\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.173.196.206	2019-09-22 13:41:45
138.197.221.114	attackspambots	Invalid user fedor from 138.197.221.114 port 55566	2019-09-22 13:21:15
192.241.249.53	attackspambots	Sep 22 06:50:59 www sshd\[2219\]: Invalid user nagios from 192.241.249.53Sep 22 06:51:01 www sshd\[2219\]: Failed password for invalid user nagios from 192.241.249.53 port 59188 ssh2Sep 22 06:55:50 www sshd\[2296\]: Invalid user francesco from 192.241.249.53Sep 22 06:55:51 www sshd\[2296\]: Failed password for invalid user francesco from 192.241.249.53 port 51528 ssh2 ...	2019-09-22 13:26:04
69.162.110.226	attackbots	Trying ports that it shouldn't be.	2019-09-22 13:47:37
177.157.191.25	attackspambots	Automatic report - Port Scan Attack	2019-09-22 13:45:18
213.128.67.212	attackbots	Sep 22 04:45:08 hcbbdb sshd\[20749\]: Invalid user ftp1 from 213.128.67.212 Sep 22 04:45:08 hcbbdb sshd\[20749\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.128.67.212 Sep 22 04:45:10 hcbbdb sshd\[20749\]: Failed password for invalid user ftp1 from 213.128.67.212 port 40824 ssh2 Sep 22 04:49:41 hcbbdb sshd\[21283\]: Invalid user freund from 213.128.67.212 Sep 22 04:49:41 hcbbdb sshd\[21283\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.128.67.212	2019-09-22 13:05:03
178.128.86.127	attack	Invalid user rr from 178.128.86.127 port 49950	2019-09-22 13:14:05
222.186.42.163	attackbotsspam	Automated report - ssh fail2ban: Sep 22 07:31:41 wrong password, user=root, port=54102, ssh2 Sep 22 07:31:45 wrong password, user=root, port=54102, ssh2 Sep 22 07:31:49 wrong password, user=root, port=54102, ssh2	2019-09-22 13:46:45
52.128.31.154	attackbots	Fail2Ban Ban Triggered	2019-09-22 13:04:11
49.146.8.113	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 22-09-2019 04:55:24.	2019-09-22 13:51:12
222.186.31.145	attackspam	2019-09-22T05:17:41.984550abusebot-2.cloudsearch.cf sshd\[30191\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.145 user=root	2019-09-22 13:18:20
198.57.203.54	attack	Sep 21 19:32:52 hiderm sshd\[21688\]: Invalid user testuser from 198.57.203.54 Sep 21 19:32:52 hiderm sshd\[21688\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=server.scme-nm.net Sep 21 19:32:54 hiderm sshd\[21688\]: Failed password for invalid user testuser from 198.57.203.54 port 38178 ssh2 Sep 21 19:37:11 hiderm sshd\[22076\]: Invalid user kaitlyn from 198.57.203.54 Sep 21 19:37:11 hiderm sshd\[22076\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=server.scme-nm.net	2019-09-22 13:48:07
64.92.35.226	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-09-22 13:30:01
178.159.249.66	attack	Sep 22 04:52:42 yesfletchmain sshd\[20972\]: User root from 178.159.249.66 not allowed because not listed in AllowUsers Sep 22 04:52:42 yesfletchmain sshd\[20972\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.159.249.66 user=root Sep 22 04:52:44 yesfletchmain sshd\[20972\]: Failed password for invalid user root from 178.159.249.66 port 52956 ssh2 Sep 22 04:56:13 yesfletchmain sshd\[21006\]: Invalid user wl from 178.159.249.66 port 36324 Sep 22 04:56:13 yesfletchmain sshd\[21006\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.159.249.66 ...	2019-09-22 13:08:24
93.39.200.50	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/93.39.200.50/ IT - 1H : (64) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : IT NAME ASN : ASN12874 IP : 93.39.200.50 CIDR : 93.36.0.0/14 PREFIX COUNT : 94 UNIQUE IP COUNT : 3612160 WYKRYTE ATAKI Z ASN12874 : 1H - 1 3H - 1 6H - 2 12H - 2 24H - 8 INFO : SERVER - ABB - Looking for resource vulnerabilities Detected and Blocked by ADMIN - data recovery	2019-09-22 13:06:31

最近上报的IP列表

117.5.217.228	2.144.243.184	59.102.163.195	110.53.51.197
82.194.39.239	75.222.116.90	113.140.152.237	98.158.144.250
57.138.49.163	183.153.6.205	119.53.132.75	94.38.81.109
140.143.206.71	113.218.130.252	14.12.246.214	154.196.97.29
182.18.217.113	131.17.16.97	182.156.238.58	152.15.249.179