202.80.219.149

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): PT Dunia Informasi Teknologi

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 24-02-2020 04:55:21.	2020-02-24 14:58:56

相同子网IP讨论:

IP	类型	评论内容	时间
202.80.219.120	attack	Wordpress attack	2019-08-08 02:54:31

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 202.80.219.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24838
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;202.80.219.149.			IN	A

;; AUTHORITY SECTION:
.			571	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022400 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 24 14:58:49 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 149.219.80.202.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 149.219.80.202.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
183.191.3.222	attack	Unauthorised access (Aug 22) SRC=183.191.3.222 LEN=40 TTL=49 ID=54658 TCP DPT=8080 WINDOW=39298 SYN Unauthorised access (Aug 20) SRC=183.191.3.222 LEN=40 TTL=49 ID=57327 TCP DPT=8080 WINDOW=33373 SYN	2019-08-22 12:07:38
109.74.57.201	attackbotsspam	Aug 22 00:05:00 mail sshd[28183]: Invalid user www from 109.74.57.201 Aug 22 00:05:00 mail sshd[28183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.74.57.201 Aug 22 00:05:00 mail sshd[28183]: Invalid user www from 109.74.57.201 Aug 22 00:05:02 mail sshd[28183]: Failed password for invalid user www from 109.74.57.201 port 43582 ssh2 Aug 22 00:24:30 mail sshd[30728]: Invalid user vvvvv from 109.74.57.201 ...	2019-08-22 11:41:05
222.101.93.2	attackspam	[munged]::443 222.101.93.2 - - [22/Aug/2019:00:24:25 +0200] "POST /[munged]: HTTP/1.1" 200 9359 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 222.101.93.2 - - [22/Aug/2019:00:24:28 +0200] "POST /[munged]: HTTP/1.1" 200 4698 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 222.101.93.2 - - [22/Aug/2019:00:24:29 +0200] "POST /[munged]: HTTP/1.1" 200 4698 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 222.101.93.2 - - [22/Aug/2019:00:24:31 +0200] "POST /[munged]: HTTP/1.1" 200 4698 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 222.101.93.2 - - [22/Aug/2019:00:24:34 +0200] "POST /[munged]: HTTP/1.1" 200 4698 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 222.101.93.2 - - [22/Aug/2019:00:24:35 +0200]	2019-08-22 11:29:23
112.198.194.243	attack	Aug 22 03:44:45 game-panel sshd[23869]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.198.194.243 Aug 22 03:44:47 game-panel sshd[23869]: Failed password for invalid user ventas from 112.198.194.243 port 57696 ssh2 Aug 22 03:49:52 game-panel sshd[24071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.198.194.243	2019-08-22 11:50:51
107.182.190.58	attack	Aug 21 23:54:41 icinga sshd[50841]: Failed password for root from 107.182.190.58 port 45296 ssh2 Aug 22 00:24:35 icinga sshd[5190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.182.190.58 Aug 22 00:24:37 icinga sshd[5190]: Failed password for invalid user testuser from 107.182.190.58 port 52164 ssh2 ...	2019-08-22 11:35:24
177.44.25.208	attack	$f2bV_matches	2019-08-22 11:54:15
148.70.108.156	attackbots	Aug 22 00:24:05 host sshd\[46392\]: Invalid user pcgo-admin from 148.70.108.156 port 55628 Aug 22 00:24:05 host sshd\[46392\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.108.156 ...	2019-08-22 12:09:19
143.208.184.169	attackspam	Automatic report - Port Scan Attack	2019-08-22 12:06:52
157.230.84.180	attack	Aug 21 21:37:58 vps200512 sshd\[3006\]: Invalid user backupftp from 157.230.84.180 Aug 21 21:37:58 vps200512 sshd\[3006\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.84.180 Aug 21 21:37:59 vps200512 sshd\[3006\]: Failed password for invalid user backupftp from 157.230.84.180 port 39420 ssh2 Aug 21 21:43:21 vps200512 sshd\[3264\]: Invalid user lhy from 157.230.84.180 Aug 21 21:43:21 vps200512 sshd\[3264\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.84.180	2019-08-22 12:03:09
165.227.153.159	attack	Aug 22 06:08:09 server sshd\[2077\]: Invalid user shields from 165.227.153.159 port 41456 Aug 22 06:08:09 server sshd\[2077\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.153.159 Aug 22 06:08:11 server sshd\[2077\]: Failed password for invalid user shields from 165.227.153.159 port 41456 ssh2 Aug 22 06:12:06 server sshd\[21545\]: Invalid user mercat from 165.227.153.159 port 58506 Aug 22 06:12:06 server sshd\[21545\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.153.159	2019-08-22 11:24:10
220.163.107.130	attackbots	Aug 22 00:19:37 meumeu sshd[20647]: Failed password for invalid user garrysmod from 220.163.107.130 port 37598 ssh2 Aug 22 00:22:10 meumeu sshd[20980]: Failed password for invalid user udin from 220.163.107.130 port 50141 ssh2 Aug 22 00:24:41 meumeu sshd[21382]: Failed password for invalid user hero from 220.163.107.130 port 62413 ssh2 ...	2019-08-22 11:30:22
190.37.4.137	attackspam	Aug 22 00:27:06 mail sshd[31123]: Invalid user minecraft from 190.37.4.137 Aug 22 00:27:06 mail sshd[31123]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.37.4.137 Aug 22 00:27:06 mail sshd[31123]: Invalid user minecraft from 190.37.4.137 Aug 22 00:27:08 mail sshd[31123]: Failed password for invalid user minecraft from 190.37.4.137 port 44886 ssh2 Aug 22 00:35:23 mail sshd[32174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.37.4.137 user=root Aug 22 00:35:25 mail sshd[32174]: Failed password for root from 190.37.4.137 port 33772 ssh2 ...	2019-08-22 11:34:57
5.188.84.80	attack	Automatic report - Banned IP Access	2019-08-22 12:03:42
152.250.252.179	attackbotsspam	Aug 22 05:19:43 itv-usvr-02 sshd[19897]: Invalid user tony from 152.250.252.179 port 55768 Aug 22 05:19:43 itv-usvr-02 sshd[19897]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.250.252.179 Aug 22 05:19:43 itv-usvr-02 sshd[19897]: Invalid user tony from 152.250.252.179 port 55768 Aug 22 05:19:45 itv-usvr-02 sshd[19897]: Failed password for invalid user tony from 152.250.252.179 port 55768 ssh2 Aug 22 05:24:42 itv-usvr-02 sshd[19904]: Invalid user amandabackup from 152.250.252.179 port 43716	2019-08-22 11:28:57
77.233.4.133	attackbots	Aug 22 03:27:45 web8 sshd\[30388\]: Invalid user telnetd from 77.233.4.133 Aug 22 03:27:45 web8 sshd\[30388\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.233.4.133 Aug 22 03:27:47 web8 sshd\[30388\]: Failed password for invalid user telnetd from 77.233.4.133 port 37236 ssh2 Aug 22 03:32:12 web8 sshd\[32466\]: Invalid user mao from 77.233.4.133 Aug 22 03:32:12 web8 sshd\[32466\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.233.4.133	2019-08-22 11:59:46

最近上报的IP列表

119.148.17.34	118.71.191.156	118.175.228.3	113.22.247.23
110.138.149.222	103.225.20.194	1.10.180.47	1.2.242.0
202.153.47.229	107.22.122.183	104.136.25.125	114.104.188.208
201.151.59.106	124.205.11.157	113.85.42.234	45.32.88.242
35.240.145.52	114.32.185.88	54.183.226.249	220.135.52.90