221.149.43.126

基本信息:

城市(city): Songpa-dong

省份(region): Seoul

国家(country): South Korea

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): Korea Telecom

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
221.149.43.38	attackbotsspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-30 05:05:55
221.149.43.38	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-29 21:14:57
221.149.43.38	attackspambots	SSHD brute force attack detected by fail2ban	2020-09-29 13:28:15
221.149.43.38	attackbots	Fail2Ban Ban Triggered (2)	2020-09-28 06:08:01
221.149.43.38	attackspambots	Sep 27 15:11:43 ns382633 sshd\[4000\]: Invalid user pi from 221.149.43.38 port 34300 Sep 27 15:11:44 ns382633 sshd\[4000\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.149.43.38 Sep 27 15:11:44 ns382633 sshd\[4002\]: Invalid user pi from 221.149.43.38 port 34314 Sep 27 15:11:44 ns382633 sshd\[4002\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.149.43.38 Sep 27 15:11:45 ns382633 sshd\[4000\]: Failed password for invalid user pi from 221.149.43.38 port 34300 ssh2 Sep 27 15:11:46 ns382633 sshd\[4002\]: Failed password for invalid user pi from 221.149.43.38 port 34314 ssh2	2020-09-27 22:29:58
221.149.43.38	attack	"fail2ban match"	2020-09-27 14:22:13
221.149.43.38	attackbotsspam	2020-08-23T23:30:39.529305abusebot-5.cloudsearch.cf sshd[8797]: Invalid user pi from 221.149.43.38 port 60290 2020-08-23T23:30:39.571914abusebot-5.cloudsearch.cf sshd[8798]: Invalid user pi from 221.149.43.38 port 60294 2020-08-23T23:30:39.829032abusebot-5.cloudsearch.cf sshd[8797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.149.43.38 2020-08-23T23:30:39.529305abusebot-5.cloudsearch.cf sshd[8797]: Invalid user pi from 221.149.43.38 port 60290 2020-08-23T23:30:41.837571abusebot-5.cloudsearch.cf sshd[8797]: Failed password for invalid user pi from 221.149.43.38 port 60290 ssh2 2020-08-23T23:30:39.870519abusebot-5.cloudsearch.cf sshd[8798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.149.43.38 2020-08-23T23:30:39.571914abusebot-5.cloudsearch.cf sshd[8798]: Invalid user pi from 221.149.43.38 port 60294 2020-08-23T23:30:41.879033abusebot-5.cloudsearch.cf sshd[8798]: Failed password for invalid u ...	2020-08-24 07:35:02
221.149.43.38	attack	Invalid user pi from 221.149.43.38 port 35848	2020-08-23 03:33:51
221.149.43.38	attack	2020-08-19T12:32:01.121161shield sshd\[30587\]: Invalid user pi from 221.149.43.38 port 42802 2020-08-19T12:32:01.323588shield sshd\[30587\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.149.43.38 2020-08-19T12:32:01.646988shield sshd\[30589\]: Invalid user pi from 221.149.43.38 port 42816 2020-08-19T12:32:01.845750shield sshd\[30589\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.149.43.38 2020-08-19T12:32:03.339191shield sshd\[30587\]: Failed password for invalid user pi from 221.149.43.38 port 42802 ssh2	2020-08-19 20:56:16
221.149.43.38	attack	Jul 17 14:08:01 sticky sshd\[5467\]: Invalid user pi from 221.149.43.38 port 37404 Jul 17 14:08:01 sticky sshd\[5467\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.149.43.38 Jul 17 14:08:01 sticky sshd\[5469\]: Invalid user pi from 221.149.43.38 port 37412 Jul 17 14:08:01 sticky sshd\[5469\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.149.43.38 Jul 17 14:08:03 sticky sshd\[5467\]: Failed password for invalid user pi from 221.149.43.38 port 37404 ssh2	2020-07-18 04:04:17

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 221.149.43.126
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4736
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;221.149.43.126.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081601 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 17 05:30:28 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 126.43.149.221.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 126.43.149.221.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
201.77.130.186	attackspam	Sep 3 19:35:16 m2 sshd[14934]: Invalid user dbuser from 201.77.130.186 Sep 3 19:35:18 m2 sshd[14934]: Failed password for invalid user dbuser from 201.77.130.186 port 60214 ssh2 Sep 3 19:43:59 m2 sshd[18591]: Invalid user dev from 201.77.130.186 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=201.77.130.186	2020-09-05 02:42:58
185.26.156.91	attackbots	Cluster member 67.227.229.95 (US/United States/host.cjthedj97.me) said, DENY 185.26.156.91, Reason:[(mod_security) mod_security (id:340004) triggered by 185.26.156.91 (DE/Germany/kohoutek.uberspace.de): 1 in the last 3600 secs]; Ports: *; Direction: inout; Trigger: LF_CLUSTER	2020-09-05 03:06:55
14.241.245.179	attackspambots	SSH BruteForce Attack	2020-09-05 02:42:14
193.70.0.42	attack	Sep 4 11:05:32 localhost sshd[72830]: Invalid user dev from 193.70.0.42 port 36720 Sep 4 11:05:32 localhost sshd[72830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.ip-193-70-0.eu Sep 4 11:05:32 localhost sshd[72830]: Invalid user dev from 193.70.0.42 port 36720 Sep 4 11:05:34 localhost sshd[72830]: Failed password for invalid user dev from 193.70.0.42 port 36720 ssh2 Sep 4 11:12:19 localhost sshd[73440]: Invalid user lyp from 193.70.0.42 port 38144 ...	2020-09-05 02:58:22
5.253.26.139	attackspam	Automatic report generated by Wazuh	2020-09-05 02:45:11
171.231.172.0	attack	1599151448 - 09/03/2020 18:44:08 Host: 171.231.172.0/171.231.172.0 Port: 445 TCP Blocked	2020-09-05 03:13:29
5.63.162.11	attackbotsspam	Sep 4 04:54:00 haigwepa sshd[31296]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.63.162.11 Sep 4 04:54:01 haigwepa sshd[31296]: Failed password for invalid user wangy from 5.63.162.11 port 38722 ssh2 ...	2020-09-05 03:20:01
219.77.154.144	attack	Honeypot attack, port: 5555, PTR: n219077154144.netvigator.com.	2020-09-05 02:51:50
113.190.34.227	attackbots	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-09-05 02:40:03
45.142.120.83	attackbotsspam	Sep 4 21:07:51 srv01 postfix/smtpd\[23188\]: warning: unknown\[45.142.120.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 4 21:07:53 srv01 postfix/smtpd\[12650\]: warning: unknown\[45.142.120.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 4 21:08:00 srv01 postfix/smtpd\[23188\]: warning: unknown\[45.142.120.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 4 21:08:20 srv01 postfix/smtpd\[23188\]: warning: unknown\[45.142.120.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 4 21:08:29 srv01 postfix/smtpd\[12650\]: warning: unknown\[45.142.120.83\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-05 03:10:46
111.201.131.153	attack	Invalid user tester from 111.201.131.153 port 47806	2020-09-05 03:15:00
91.228.65.14	attackspambots	Unauthorized IMAP connection attempt	2020-09-05 03:07:22
51.254.143.96	attackbotsspam	Sep 4 20:53:34 master sshd[30461]: Invalid user admin from 51.254.143.96 port 38676 Sep 4 20:53:35 master sshd[30463]: Invalid user admin from 51.254.143.96 port 38822 ...	2020-09-05 03:04:34
129.28.169.185	attackspambots	2020-09-04T13:56:15.642650n23.at sshd[1424082]: Invalid user julio from 129.28.169.185 port 45658 2020-09-04T13:56:17.166361n23.at sshd[1424082]: Failed password for invalid user julio from 129.28.169.185 port 45658 ssh2 2020-09-04T14:07:19.525595n23.at sshd[1432736]: Invalid user shahid from 129.28.169.185 port 42830 ...	2020-09-05 02:44:49
71.117.128.50	attack	2020-09-04T12:17:11.659341linuxbox-skyline sshd[81841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=71.117.128.50 user=root 2020-09-04T12:17:13.237596linuxbox-skyline sshd[81841]: Failed password for root from 71.117.128.50 port 40220 ssh2 ...	2020-09-05 02:47:03

最近上报的IP列表

201.208.50.30	81.83.212.147	124.94.174.233	35.210.195.255
39.241.205.13	69.17.90.221	177.228.88.170	96.82.44.98
100.42.72.69	150.190.232.170	151.101.54.114	208.61.154.66
213.213.248.181	151.101.54.117	54.217.124.247	188.112.29.79
163.40.105.234	83.89.12.182	94.228.99.38	151.207.236.22