221.143.46.49 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): South Korea

运营商(isp): SK Broadband Co Ltd

主机名(hostname): unknown

机构(organization): SK Broadband Co Ltd

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	19/9/21@08:50:17: FAIL: Alarm-Intrusion address from=221.143.46.49 ...	2019-09-22 04:22:53
attackspam	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08050931)	2019-08-05 22:12:42
attackbotsspam	Unauthorised access (Jul 2) SRC=221.143.46.49 LEN=40 TTL=243 ID=34798 TCP DPT=445 WINDOW=1024 SYN	2019-07-02 23:03:47

类型

评论内容

时间

attackspambots

19/9/21@08:50:17: FAIL: Alarm-Intrusion address from=221.143.46.49
...

2019-09-22 04:22:53

attackspam

[SMB remote code execution attempt: port tcp/445]
*(RWIN=1024)(08050931)

2019-08-05 22:12:42

attackbotsspam

Unauthorised access (Jul  2) SRC=221.143.46.49 LEN=40 TTL=243 ID=34798 TCP DPT=445 WINDOW=1024 SYN

2019-07-02 23:03:47

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 221.143.46.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 896
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;221.143.46.49.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050500 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun May 05 21:16:34 +08 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 49.46.143.221.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 49.46.143.221.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
165.227.1.117	attackbotsspam	2019-07-28T16:55:31.739403abusebot-2.cloudsearch.cf sshd\[28824\]: Invalid user alisoft from 165.227.1.117 port 37346	2019-07-29 01:30:00
191.53.196.80	attackbots	Brute force attempt	2019-07-29 01:11:17
212.92.194.192	attackbots	php WP PHPmyadamin ABUSE blocked for 12h	2019-07-29 01:17:34
187.111.23.14	attackbotsspam	Automatic report - Banned IP Access	2019-07-29 01:39:31
59.20.72.164	attack	59.20.72.164 - - [28/Jul/2019:15:33:21 +0200] "GET /wp-login.php HTTP/1.1" 200 4402 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 59.20.72.164 - - [28/Jul/2019:15:33:23 +0200] "POST /wp-login.php HTTP/1.1" 200 4402 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 59.20.72.164 - - [28/Jul/2019:15:33:24 +0200] "GET /wp-login.php HTTP/1.1" 200 4402 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 59.20.72.164 - - [28/Jul/2019:15:33:26 +0200] "POST /wp-login.php HTTP/1.1" 200 4402 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 59.20.72.164 - - [28/Jul/2019:15:33:27 +0200] "GET /wp-login.php HTTP/1.1" 200 4402 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 59.20.72.164 - - [28/Jul/2019:15:33:29 +0200] "POST /wp-login.php HTTP/1.1" 200 4402 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-07-29 01:04:25
147.135.156.89	attack	Jul 28 18:40:14 nextcloud sshd\[5689\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.135.156.89 user=root Jul 28 18:40:16 nextcloud sshd\[5689\]: Failed password for root from 147.135.156.89 port 57962 ssh2 Jul 28 18:44:27 nextcloud sshd\[15980\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.135.156.89 user=root ...	2019-07-29 01:23:42
153.36.232.49	attackbotsspam	Jul 28 18:56:19 Ubuntu-1404-trusty-64-minimal sshd\[7559\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.232.49 user=root Jul 28 18:56:21 Ubuntu-1404-trusty-64-minimal sshd\[7559\]: Failed password for root from 153.36.232.49 port 30437 ssh2 Jul 28 18:56:24 Ubuntu-1404-trusty-64-minimal sshd\[7559\]: Failed password for root from 153.36.232.49 port 30437 ssh2 Jul 28 18:56:26 Ubuntu-1404-trusty-64-minimal sshd\[7559\]: Failed password for root from 153.36.232.49 port 30437 ssh2 Jul 28 18:56:32 Ubuntu-1404-trusty-64-minimal sshd\[7668\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.232.49 user=root	2019-07-29 00:58:05
178.128.149.132	attackspambots	Triggered by Fail2Ban	2019-07-29 01:21:17
78.145.234.110	attackspam	Hits on port 5500 (VNC ?)	2019-07-29 01:12:30
172.217.8.4	attackbots	audio/conversations? at silly o clock/mostly fort will wanderers related to lazy poacher/farmer/CNAME/history/heritage GSTATIC.COM repetitive motorcycle requests/all uk/i.e. stalkers/links to parking crew.net users/opposite/and Laggan Locks camper van travelling club	2019-07-29 01:28:19
185.95.205.52	attackspam	Autoban 185.95.205.52 AUTH/CONNECT	2019-07-29 01:06:16
113.172.134.136	attackbots	Jul 28 13:22:45 [munged] sshd[5120]: Invalid user admin from 113.172.134.136 port 36544 Jul 28 13:22:45 [munged] sshd[5120]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.172.134.136	2019-07-29 01:24:31
118.21.111.124	attackspam	SSH Brute-Force reported by Fail2Ban	2019-07-29 00:43:22
216.218.206.101	attackspam	firewall-block, port(s): 5555/tcp	2019-07-29 01:30:27
73.239.74.11	attackbotsspam	2019-07-28T12:36:25.278812abusebot-2.cloudsearch.cf sshd\[27907\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-73-239-74-11.hsd1.wa.comcast.net user=root	2019-07-29 01:23:23

最近上报的IP列表

222.230.136.161	161.57.192.206	40.52.249.109	183.60.111.154
200.77.186.218	197.45.231.111	175.47.112.182	45.123.43.114
217.153.80.226	115.38.231.29	177.139.248.196	195.169.147.249
82.115.18.136	202.251.88.251	159.89.13.139	21.13.156.169
67.49.252.79	181.3.163.244	71.243.219.32	149.6.83.143