219.254.24.149

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea Republic of

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 219.254.24.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65083
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;219.254.24.149.			IN	A

;; AUTHORITY SECTION:
.			268	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022101100 1800 900 604800 86400

;; Query time: 84 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 12 00:07:55 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 149.24.254.219.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 149.24.254.219.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
185.157.222.47	attack	windhundgang.de 185.157.222.47 [16/Jul/2020:06:53:37 +0200] "POST /wp-login.php HTTP/1.1" 200 8456 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" windhundgang.de 185.157.222.47 [16/Jul/2020:06:53:38 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4186 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-07-16 18:52:17
156.220.96.210	attack	" "	2020-07-16 18:54:48
185.219.135.48	attackspam	Automatic Fail2ban report - Trying login SSH	2020-07-16 19:10:23
119.45.10.5	attackbotsspam	2020-07-16T09:06:19+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)	2020-07-16 18:52:29
185.47.65.30	attackspam	Bruteforce detected by fail2ban	2020-07-16 19:28:21
13.77.154.108	attack	Jul 16 13:24:43 mout sshd[3232]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.77.154.108 user=root Jul 16 13:24:44 mout sshd[3232]: Failed password for root from 13.77.154.108 port 15742 ssh2 Jul 16 13:24:45 mout sshd[3232]: Disconnected from authenticating user root 13.77.154.108 port 15742 [preauth]	2020-07-16 19:27:51
49.234.50.235	attack	Jul 16 11:01:17 melroy-server sshd[15111]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.50.235 Jul 16 11:01:19 melroy-server sshd[15111]: Failed password for invalid user any from 49.234.50.235 port 49600 ssh2 ...	2020-07-16 19:09:02
45.137.182.103	attackbots	sshd: Failed password for invalid user .... from 45.137.182.103 port 52242 ssh2	2020-07-16 19:32:27
138.197.136.72	attack	138.197.136.72 - - [16/Jul/2020:07:24:28 +0100] "POST /wp-login.php HTTP/1.1" 200 2046 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.136.72 - - [16/Jul/2020:07:24:30 +0100] "POST /wp-login.php HTTP/1.1" 200 2020 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.136.72 - - [16/Jul/2020:07:24:31 +0100] "POST /wp-login.php HTTP/1.1" 200 2019 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-16 19:11:46
159.89.165.5	attack	Jul 16 13:03:57 ns382633 sshd\[11149\]: Invalid user linux from 159.89.165.5 port 34918 Jul 16 13:03:57 ns382633 sshd\[11149\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.165.5 Jul 16 13:03:59 ns382633 sshd\[11149\]: Failed password for invalid user linux from 159.89.165.5 port 34918 ssh2 Jul 16 13:11:55 ns382633 sshd\[12886\]: Invalid user lzy from 159.89.165.5 port 48996 Jul 16 13:11:55 ns382633 sshd\[12886\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.165.5	2020-07-16 19:23:22
154.8.230.155	attackspam	Unauthorized connection attempt detected from IP address 154.8.230.155 to port 8080	2020-07-16 19:20:42
220.132.9.202	attackbots	Hits on port : 85	2020-07-16 19:09:55
172.105.106.64	attack	Port Scan ...	2020-07-16 19:03:30
112.105.37.24	attack	DATE:2020-07-16 10:28:37, IP:112.105.37.24, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-07-16 19:13:51
114.220.238.72	attackspam	Jul 16 10:02:22 XXX sshd[16443]: Invalid user celery from 114.220.238.72 port 50503	2020-07-16 19:00:57

最近上报的IP列表

43.251.166.33	220.87.106.238	128.90.198.233	172.104.11.201
179.160.139.222	83.142.52.250	172.81.129.170	91.35.157.167
31.6.21.175	120.28.139.209	14.47.129.159	128.90.139.116
185.10.68.44	185.100.87.10	185.100.87.5	152.246.19.55
173.82.67.131	173.82.163.54	149.18.30.237	149.57.249.171