215.138.104.49

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 215.138.104.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38656
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;215.138.104.49.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021500 1800 900 604800 86400

;; Query time: 33 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 15 15:51:13 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

b'Host 49.104.138.215.in-addr.arpa not found: 2(SERVFAIL)
'

NSLOOKUP信息:

server can't find 215.138.104.49.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
157.245.139.37	attackspam	(from noreply@business-loan-funding.pro) Hi, letting you know that http://Business-Loan-Funding.pro?url=ocfrw.org can find your business a SBA or private loan for $2,000 - $350K Without high credit or collateral. Find Out how much you qualify for by clicking here: http://Business-Loan-Funding.pro?url=ocfrw.org Minimum requirements include your company being established for at least a year and with current gross revenue of at least 120K. Eligibility and funding can be completed in as fast as 48hrs. Terms are personalized for each business so I suggest applying to find out exactly how much you can get on various terms. This is a free service from a qualified lender and the approval will be based on the annual revenue of your business. These funds are Non-Restrictive, allowing you to spend the full amount in any way you require including business debt consolidation, hiring, marketing, or Absolutely Any Other expense. If you need fast and easy business funding take a look at these program	2019-10-08 23:12:17
139.59.14.115	attack	xmlrpc attack	2019-10-08 22:37:17
77.40.2.33	attackspambots	10/08/2019-15:40:30.154199 77.40.2.33 Protocol: 6 SURICATA SMTP tls rejected	2019-10-08 22:32:47
217.112.128.116	attack	Spam mails sent to address hacked/leaked from Nexus Mods in July 2013	2019-10-08 23:04:41
46.0.206.163	attackspam	port scan and connect, tcp 80 (http)	2019-10-08 22:49:29
51.83.98.52	attackspambots	Oct 8 13:44:53 venus sshd\[12277\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.98.52 user=root Oct 8 13:44:55 venus sshd\[12277\]: Failed password for root from 51.83.98.52 port 43758 ssh2 Oct 8 13:48:57 venus sshd\[12320\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.98.52 user=root ...	2019-10-08 22:50:48
76.103.161.19	attack	Oct 8 04:16:44 hanapaa sshd\[5307\]: Invalid user Admin@2014 from 76.103.161.19 Oct 8 04:16:44 hanapaa sshd\[5307\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-76-103-161-19.hsd1.ca.comcast.net Oct 8 04:16:46 hanapaa sshd\[5307\]: Failed password for invalid user Admin@2014 from 76.103.161.19 port 43616 ssh2 Oct 8 04:20:41 hanapaa sshd\[5621\]: Invalid user 123Dot from 76.103.161.19 Oct 8 04:20:41 hanapaa sshd\[5621\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-76-103-161-19.hsd1.ca.comcast.net	2019-10-08 22:41:31
5.149.148.150	attack	Unauthorised access (Oct 8) SRC=5.149.148.150 LEN=40 TTL=52 ID=29242 TCP DPT=8080 WINDOW=14635 SYN	2019-10-08 22:55:49
193.34.53.208	attack	Attempts to probe for or exploit a Drupal site on url: /wp-login.php. Reported by the module https://www.drupal.org/project/abuseipdb.	2019-10-08 23:00:54
60.250.23.105	attackbotsspam	Oct 8 15:57:41 MK-Soft-VM3 sshd[2593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.250.23.105 Oct 8 15:57:43 MK-Soft-VM3 sshd[2593]: Failed password for invalid user centos@12345 from 60.250.23.105 port 33922 ssh2 ...	2019-10-08 22:40:25
222.186.175.183	attackspam	Oct 8 16:30:08 arianus sshd\[14281\]: Unable to negotiate with 222.186.175.183 port 14586: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 \[preauth\] ...	2019-10-08 22:49:50
189.84.72.91	attackspam	Telnet Server BruteForce Attack	2019-10-08 22:34:01
122.155.174.36	attackspambots	Oct 8 16:00:04 web1 postfix/smtpd\[24453\]: warning: unknown\[122.155.174.36\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 8 16:00:31 web1 postfix/smtpd\[24453\]: warning: unknown\[122.155.174.36\]: SASL LOGIN authentication failed: Connection lost to authentication server Oct 8 16:03:41 web1 postfix/smtpd\[24810\]: warning: unknown\[122.155.174.36\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-10-08 23:02:19
111.230.116.149	attack	Oct 8 17:49:05 sauna sshd[23395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.116.149 Oct 8 17:49:07 sauna sshd[23395]: Failed password for invalid user News123 from 111.230.116.149 port 49526 ssh2 ...	2019-10-08 22:54:46
140.143.17.196	attack	Lines containing failures of 140.143.17.196 Oct 7 03:32:33 dns01 sshd[19216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.17.196 user=r.r Oct 7 03:32:35 dns01 sshd[19216]: Failed password for r.r from 140.143.17.196 port 58212 ssh2 Oct 7 03:32:36 dns01 sshd[19216]: Received disconnect from 140.143.17.196 port 58212:11: Bye Bye [preauth] Oct 7 03:32:36 dns01 sshd[19216]: Disconnected from authenticating user r.r 140.143.17.196 port 58212 [preauth] Oct 7 03:46:51 dns01 sshd[21565]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.17.196 user=r.r Oct 7 03:46:53 dns01 sshd[21565]: Failed password for r.r from 140.143.17.196 port 50536 ssh2 Oct 7 03:46:53 dns01 sshd[21565]: Received disconnect from 140.143.17.196 port 50536:11: Bye Bye [preauth] Oct 7 03:46:53 dns01 sshd[21565]: Disconnected from authenticating user r.r 140.143.17.196 port 50536 [preauth] Oct 7 03:50:........ ------------------------------	2019-10-08 22:43:03

最近上报的IP列表

39.8.223.176	176.48.241.160	231.189.120.166	152.109.227.157
213.72.224.217	140.211.50.69	142.10.145.36	44.239.229.205
238.219.239.227	155.85.101.238	149.200.136.104	220.249.162.67
23.180.86.233	236.255.126.144	7.201.26.239	127.102.223.163
173.65.82.12	200.9.120.221	197.6.162.41	240.190.74.85