2.249.142.165 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Sweden

运营商(isp): Telia

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See https://docs.db.ripe.net/terms-conditions.html

% Note: this output has been filtered.
%       To receive output for a database update, use the "-B" flag.

% Information related to '2.249.128.0 - 2.249.191.255'

% Abuse contact for '2.249.128.0 - 2.249.191.255' is 'abuse@telia.com'

inetnum:        2.249.128.0 - 2.249.191.255
netname:        TELIANET
descr:          Telia Network Services
descr:          ISP
country:        SE
admin-c:        TR889-RIPE
tech-c:         TR889-RIPE
status:         ASSIGNED PA
mnt-domains:    TELIANET-LIR
mnt-by:         TELIANET-LIR
mnt-lower:      TELIANET-LIR
mnt-routes:     TELIANET-RR
created:        2011-06-20T14:14:00Z
last-modified:  2011-06-20T14:14:00Z
source:         RIPE # Filtered

role:           TeliaNet Registry
address:        Telia Company AB
address:        Stjarntorget 1
address:        16979 Solna
address:        Sweden
address:        ********************************
address:        Abuse and intrusion reports should
address:        be sent to: abuse@telia.com
address:        ********************************
abuse-mailbox:  abuse@telia.com
admin-c:        EVAO
tech-c:         IC106-RIPE
tech-c:         ACA-RIPE
tech-c:         EVAO
tech-c:         PJ2540-RIPE
tech-c:         LS483-RIPE
tech-c:         PB8229-RIPE
nic-hdl:        TR889-RIPE
mnt-by:         TELIANET-LIR
created:        2002-08-21T12:58:15Z
last-modified:  2018-01-10T13:32:21Z
source:         RIPE # Filtered

% Information related to '2.248.0.0/14AS3301'

route:          2.248.0.0/14
descr:          TELIANET
origin:         AS3301
mnt-by:         TELIANET-LIR
created:        2023-01-18T08:05:07Z
last-modified:  2023-01-18T08:05:07Z
source:         RIPE

% This query was served by the RIPE Database Query Service version 1.121 (SHETLAND)

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.249.142.165
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60276
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.249.142.165.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026031200 1800 900 604800 86400

;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 12 15:30:56 CST 2026
;; MSG SIZE  rcvd: 106

HOST信息:

165.142.249.2.in-addr.arpa domain name pointer 2-249-142-165-no600.tbcn.telia.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
165.142.249.2.in-addr.arpa	name = 2-249-142-165-no600.tbcn.telia.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
77.234.255.9	attack	Failed password for invalid user 1234 from 77.234.255.9 port 43220 ssh2 Invalid user ye123 from 77.234.255.9 port 54736 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.234.255.9 Failed password for invalid user ye123 from 77.234.255.9 port 54736 ssh2 Invalid user espresso from 77.234.255.9 port 38024	2019-10-16 08:44:17
103.98.33.211	attack	port scan and connect, tcp 8080 (http-proxy)	2019-10-16 08:30:32
165.227.211.13	attackbots	2019-10-16T00:22:39.158908abusebot-5.cloudsearch.cf sshd\[12780\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.211.13 user=root	2019-10-16 08:24:45
185.93.69.14	attackbotsspam	miraniessen.de 185.93.69.14 \[15/Oct/2019:21:51:43 +0200\] "POST /wp-login.php HTTP/1.1" 200 5974 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" miraniessen.de 185.93.69.14 \[15/Oct/2019:21:51:43 +0200\] "POST /wp-login.php HTTP/1.1" 200 5974 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-10-16 08:48:25
185.176.27.14	attack	10/15/2019-20:47:13.220804 185.176.27.14 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-16 08:50:42
80.211.172.45	attackspambots	2019-10-15T22:47:16.973466abusebot-6.cloudsearch.cf sshd\[29295\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.172.45 user=root	2019-10-16 08:47:43
118.25.150.90	attackbots	Oct 14 18:21:02 euve59663 sshd[7756]: pam_unix(sshd:auth): authenticati= on failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D118.= 25.150.90 user=3Duucp Oct 14 18:21:04 euve59663 sshd[7756]: Failed password for uucp from 118= .25.150.90 port 43493 ssh2 Oct 14 18:21:04 euve59663 sshd[7756]: Received disconnect from 118.25.1= 50.90: 11: Bye Bye [preauth] Oct 14 18:33:25 euve59663 sshd[2649]: pam_unix(sshd:auth): authenticati= on failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D118.= 25.150.90 user=3Dr.r Oct 14 18:33:27 euve59663 sshd[2649]: Failed password for r.r from 118= .25.150.90 port 55810 ssh2 Oct 14 18:33:28 euve59663 sshd[2649]: Received disconnect from 118.25.1= 50.90: 11: Bye Bye [preauth] Oct 14 18:38:00 euve59663 sshd[2692]: Invalid user ftp_boot from 118.25= .150.90 Oct 14 18:38:00 euve59663 sshd[2692]: pam_unix(sshd:auth): authenticati= on failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D118.= 25.150.90=20 Oct ........ -------------------------------	2019-10-16 09:00:08
37.59.37.201	attackbots	fraudulent SSH attempt	2019-10-16 08:54:15
41.225.16.156	attack	fraudulent SSH attempt	2019-10-16 08:33:38
198.20.99.130	attack	Port scan: Attack repeated for 24 hours	2019-10-16 08:51:13
106.13.59.16	attackbotsspam	Oct 16 03:35:39 sauna sshd[225707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.59.16 Oct 16 03:35:41 sauna sshd[225707]: Failed password for invalid user mdh from 106.13.59.16 port 58090 ssh2 ...	2019-10-16 08:41:09
217.112.128.75	attackbotsspam	Postfix DNSBL listed. Trying to send SPAM.	2019-10-16 08:25:18
51.83.77.224	attack	Oct 15 11:15:22 tdfoods sshd\[11704\]: Invalid user divya from 51.83.77.224 Oct 15 11:15:22 tdfoods sshd\[11704\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=224.ip-51-83-77.eu Oct 15 11:15:24 tdfoods sshd\[11704\]: Failed password for invalid user divya from 51.83.77.224 port 48580 ssh2 Oct 15 11:19:18 tdfoods sshd\[12028\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=224.ip-51-83-77.eu user=root Oct 15 11:19:20 tdfoods sshd\[12028\]: Failed password for root from 51.83.77.224 port 59394 ssh2	2019-10-16 08:50:24
222.186.175.161	attackspambots	Oct 16 02:52:23 nextcloud sshd\[29580\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.161 user=root Oct 16 02:52:25 nextcloud sshd\[29580\]: Failed password for root from 222.186.175.161 port 34430 ssh2 Oct 16 02:52:51 nextcloud sshd\[30250\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.161 user=root ...	2019-10-16 08:57:29
77.42.108.203	attackbotsspam	Automatic report - Port Scan Attack	2019-10-16 08:24:29

最近上报的IP列表

2600:140e:6::6854:969c	2409:8c54:871:2006::df	185.231.33.46	10.36.198.186
254.238.12.218	178.16.53.90	74.7.241.51	74.7.175.142
149.52.71.138	80.174.222.112	122.162.151.75	192.71.224.103
37.24.235.170	45.142.154.32	178.62.29.13	220.103.92.112
20.23.9.218	91.231.89.68	91.231.89.2	58.240.69.164