199.244.49.220

基本信息:

城市(city): New York

省份(region): New York

国家(country): United States

运营商(isp): Kamatera Inc.

主机名(hostname): unknown

机构(organization): Kamatera, Inc.

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	2020-06-22T22:49:32+0200 Failed SSH Authentication/Brute Force Attack. (Server 10)	2020-06-23 05:13:45
attackspam	"Unauthorized connection attempt on SSHD detected"	2020-06-22 17:26:02
attackspam	GET / - Blank UA (403)	2020-05-31 13:37:52
attackspambots	SSH Brute Force	2019-06-24 01:06:13

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 199.244.49.220
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6209
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;199.244.49.220.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040903 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Wed Apr 10 11:46:44 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 220.49.244.199.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 220.49.244.199.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
193.112.48.79	attackspam	May 27 21:13:58 journals sshd\[61546\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.48.79 user=root May 27 21:14:00 journals sshd\[61546\]: Failed password for root from 193.112.48.79 port 53098 ssh2 May 27 21:17:37 journals sshd\[61928\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.48.79 user=root May 27 21:17:39 journals sshd\[61928\]: Failed password for root from 193.112.48.79 port 45535 ssh2 May 27 21:21:16 journals sshd\[62352\]: Invalid user guenevere from 193.112.48.79 ...	2020-05-28 03:24:38
195.54.167.120	attackbots	05/27/2020-14:21:42.413696 195.54.167.120 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-05-28 03:12:32
222.186.30.76	attack	$f2bV_matches	2020-05-28 03:00:22
148.227.227.67	attack	May 27 15:03:06 Tower sshd[20461]: Connection from 148.227.227.67 port 52594 on 192.168.10.220 port 22 rdomain "" May 27 15:03:07 Tower sshd[20461]: Failed password for root from 148.227.227.67 port 52594 ssh2 May 27 15:03:07 Tower sshd[20461]: Received disconnect from 148.227.227.67 port 52594:11: Bye Bye [preauth] May 27 15:03:07 Tower sshd[20461]: Disconnected from authenticating user root 148.227.227.67 port 52594 [preauth]	2020-05-28 03:04:45
67.22.99.184	attack	MONEY SCAM FROM mrschristyw00@gmail.com,	2020-05-28 02:56:31
175.207.29.235	attack	May 27 21:17:53 hosting sshd[15574]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.207.29.235 user=root May 27 21:17:55 hosting sshd[15574]: Failed password for root from 175.207.29.235 port 55100 ssh2 May 27 21:19:57 hosting sshd[15707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.207.29.235 user=root May 27 21:19:58 hosting sshd[15707]: Failed password for root from 175.207.29.235 port 58266 ssh2 May 27 21:22:00 hosting sshd[16026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.207.29.235 user=root May 27 21:22:02 hosting sshd[16026]: Failed password for root from 175.207.29.235 port 60134 ssh2 ...	2020-05-28 02:57:18
106.12.59.49	attack	May 27 18:46:54 124388 sshd[32620]: Failed password for root from 106.12.59.49 port 59558 ssh2 May 27 18:51:26 124388 sshd[321]: Invalid user agnes from 106.12.59.49 port 58884 May 27 18:51:26 124388 sshd[321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.59.49 May 27 18:51:26 124388 sshd[321]: Invalid user agnes from 106.12.59.49 port 58884 May 27 18:51:28 124388 sshd[321]: Failed password for invalid user agnes from 106.12.59.49 port 58884 ssh2	2020-05-28 03:09:12
118.96.72.244	attackbots	1590603711 - 05/27/2020 20:21:51 Host: 118.96.72.244/118.96.72.244 Port: 445 TCP Blocked	2020-05-28 03:07:05
222.186.175.217	attackbots	May 27 21:04:35 server sshd[10141]: Failed none for root from 222.186.175.217 port 12312 ssh2 May 27 21:04:37 server sshd[10141]: Failed password for root from 222.186.175.217 port 12312 ssh2 May 27 21:04:40 server sshd[10141]: Failed password for root from 222.186.175.217 port 12312 ssh2	2020-05-28 03:14:02
92.222.79.157	attack	May 27 19:21:47 cdc sshd[2077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.79.157 user=root May 27 19:21:50 cdc sshd[2077]: Failed password for invalid user root from 92.222.79.157 port 51498 ssh2	2020-05-28 02:57:38
104.248.153.158	attackspam	May 27 20:48:31 vps647732 sshd[2726]: Failed password for root from 104.248.153.158 port 49610 ssh2 ...	2020-05-28 03:03:09
167.71.91.205	attackbotsspam	May 28 00:11:17 dhoomketu sshd[249041]: Failed password for root from 167.71.91.205 port 50728 ssh2 May 28 00:13:09 dhoomketu sshd[249050]: Invalid user apache from 167.71.91.205 port 57572 May 28 00:13:09 dhoomketu sshd[249050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.91.205 May 28 00:13:09 dhoomketu sshd[249050]: Invalid user apache from 167.71.91.205 port 57572 May 28 00:13:11 dhoomketu sshd[249050]: Failed password for invalid user apache from 167.71.91.205 port 57572 ssh2 ...	2020-05-28 02:55:46
222.186.190.14	attackbotsspam	May 27 18:51:53 localhost sshd\[3659\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.14 user=root May 27 18:51:55 localhost sshd\[3659\]: Failed password for root from 222.186.190.14 port 10223 ssh2 May 27 18:51:57 localhost sshd\[3659\]: Failed password for root from 222.186.190.14 port 10223 ssh2 ...	2020-05-28 02:52:07
180.76.148.87	attackspambots	May 27 20:17:21 h2646465 sshd[16534]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.148.87 user=root May 27 20:17:23 h2646465 sshd[16534]: Failed password for root from 180.76.148.87 port 50038 ssh2 May 27 20:23:09 h2646465 sshd[16919]: Invalid user berkly from 180.76.148.87 May 27 20:23:09 h2646465 sshd[16919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.148.87 May 27 20:23:09 h2646465 sshd[16919]: Invalid user berkly from 180.76.148.87 May 27 20:23:11 h2646465 sshd[16919]: Failed password for invalid user berkly from 180.76.148.87 port 47382 ssh2 May 27 20:25:17 h2646465 sshd[17113]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.148.87 user=root May 27 20:25:19 h2646465 sshd[17113]: Failed password for root from 180.76.148.87 port 60584 ssh2 May 27 20:27:17 h2646465 sshd[17205]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser=	2020-05-28 02:50:48
114.67.83.42	attackspam	May 27 14:28:50 mail sshd\[39605\]: Invalid user admin from 114.67.83.42 May 27 14:28:50 mail sshd\[39605\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.83.42 ...	2020-05-28 03:15:35

最近上报的IP列表

163.172.170.222	172.69.226.14	136.233.8.100	36.89.251.107
125.76.246.6	82.56.31.201	167.99.145.227	103.200.40.194
121.34.33.241	166.62.35.135	37.49.230.195	216.218.206.112
201.149.20.160	196.175.250.98	119.119.187.92	79.24.25.77
121.141.148.158	209.97.143.4	94.176.141.94	89.232.34.161