222.138.49.183

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Henan Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	GPON Home Routers Remote Code Execution Vulnerability CVE 2018-10562, PTR: hn.kd.ny.adsl.	2019-11-04 18:08:48

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 222.138.49.183
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34508
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;222.138.49.183.			IN	A

;; AUTHORITY SECTION:
.			577	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110400 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 04 18:08:44 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

183.49.138.222.in-addr.arpa domain name pointer hn.kd.ny.adsl.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
183.49.138.222.in-addr.arpa	name = hn.kd.ny.adsl.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
193.112.1.26	attackspam	May 13 09:22:05 gw1 sshd[17664]: Failed password for ubuntu from 193.112.1.26 port 38010 ssh2 ...	2020-05-13 12:48:59
103.145.12.87	attackspam	[2020-05-13 00:59:20] NOTICE[1157][C-00004119] chan_sip.c: Call from '' (103.145.12.87:57944) to extension '9011441482455983' rejected because extension not found in context 'public'. [2020-05-13 00:59:20] SECURITY[1173] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-05-13T00:59:20.057-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011441482455983",SessionID="0x7f5f100266a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103.145.12.87/57944",ACLName="no_extension_match" [2020-05-13 00:59:21] NOTICE[1157][C-0000411a] chan_sip.c: Call from '' (103.145.12.87:51624) to extension '901146812400368' rejected because extension not found in context 'public'. [2020-05-13 00:59:21] SECURITY[1173] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-05-13T00:59:21.867-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="901146812400368",SessionID="0x7f5f107b3898",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UD ...	2020-05-13 13:09:19
167.99.66.158	attackspam	May 13 00:59:19 ws24vmsma01 sshd[38255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.66.158 May 13 00:59:21 ws24vmsma01 sshd[38255]: Failed password for invalid user bent from 167.99.66.158 port 39392 ssh2 ...	2020-05-13 12:35:01
218.94.143.226	attackbots	May 13 06:22:17 srv-ubuntu-dev3 sshd[87300]: Invalid user dev from 218.94.143.226 May 13 06:22:17 srv-ubuntu-dev3 sshd[87300]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.94.143.226 May 13 06:22:17 srv-ubuntu-dev3 sshd[87300]: Invalid user dev from 218.94.143.226 May 13 06:22:19 srv-ubuntu-dev3 sshd[87300]: Failed password for invalid user dev from 218.94.143.226 port 29780 ssh2 May 13 06:23:08 srv-ubuntu-dev3 sshd[87430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.94.143.226 user=root May 13 06:23:11 srv-ubuntu-dev3 sshd[87430]: Failed password for root from 218.94.143.226 port 33636 ssh2 May 13 06:24:01 srv-ubuntu-dev3 sshd[87566]: Invalid user ww from 218.94.143.226 May 13 06:24:01 srv-ubuntu-dev3 sshd[87566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.94.143.226 May 13 06:24:01 srv-ubuntu-dev3 sshd[87566]: Invalid user ww from 218.94.143 ...	2020-05-13 12:36:08
201.226.239.98	attackspam	May 13 06:52:10 ift sshd\[46192\]: Invalid user sida from 201.226.239.98May 13 06:52:12 ift sshd\[46192\]: Failed password for invalid user sida from 201.226.239.98 port 5165 ssh2May 13 06:57:10 ift sshd\[47243\]: Invalid user test from 201.226.239.98May 13 06:57:12 ift sshd\[47243\]: Failed password for invalid user test from 201.226.239.98 port 5486 ssh2May 13 07:01:13 ift sshd\[47939\]: Invalid user roland from 201.226.239.98 ...	2020-05-13 12:49:24
171.244.139.171	attack	Invalid user thegame from 171.244.139.171 port 38090	2020-05-13 13:16:11
51.91.125.179	attackspambots	SSH Brute-Force attacks	2020-05-13 12:51:37
27.254.38.122	attack	(sshd) Failed SSH login from 27.254.38.122 (TH/Thailand/27-254-38-122.lnwhostname.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 13 05:38:43 amsweb01 sshd[29436]: Invalid user msfish from 27.254.38.122 port 26929 May 13 05:38:44 amsweb01 sshd[29436]: Failed password for invalid user msfish from 27.254.38.122 port 26929 ssh2 May 13 05:38:46 amsweb01 sshd[29436]: Failed password for invalid user msfish from 27.254.38.122 port 26929 ssh2 May 13 05:38:48 amsweb01 sshd[29436]: Failed password for invalid user msfish from 27.254.38.122 port 26929 ssh2 May 13 05:59:21 amsweb01 sshd[31288]: Invalid user dekoni from 27.254.38.122 port 2866	2020-05-13 12:33:22
106.243.2.244	attack	2020-05-13T05:13:00.870489shield sshd\[14183\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.243.2.244 user=root 2020-05-13T05:13:02.968467shield sshd\[14183\]: Failed password for root from 106.243.2.244 port 42108 ssh2 2020-05-13T05:16:50.679872shield sshd\[15094\]: Invalid user ml from 106.243.2.244 port 43844 2020-05-13T05:16:50.683442shield sshd\[15094\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.243.2.244 2020-05-13T05:16:52.690835shield sshd\[15094\]: Failed password for invalid user ml from 106.243.2.244 port 43844 ssh2	2020-05-13 13:17:28
89.247.47.50	attackbotsspam	Lines containing failures of 89.247.47.50 May 13 05:58:56 kmh-sql-001-nbg01 sshd[9500]: Invalid user deploy from 89.247.47.50 port 42272 May 13 05:58:56 kmh-sql-001-nbg01 sshd[9500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.247.47.50 May 13 05:58:58 kmh-sql-001-nbg01 sshd[9500]: Failed password for invalid user deploy from 89.247.47.50 port 42272 ssh2 May 13 05:58:59 kmh-sql-001-nbg01 sshd[9500]: Received disconnect from 89.247.47.50 port 42272:11: Bye Bye [preauth] May 13 05:58:59 kmh-sql-001-nbg01 sshd[9500]: Disconnected from invalid user deploy 89.247.47.50 port 42272 [preauth] May 13 06:03:22 kmh-sql-001-nbg01 sshd[10943]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.247.47.50 user=r.r May 13 06:03:25 kmh-sql-001-nbg01 sshd[10943]: Failed password for r.r from 89.247.47.50 port 53248 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=89.247.47.50	2020-05-13 13:00:49
185.86.164.101	attack	CMS (WordPress or Joomla) login attempt.	2020-05-13 12:42:01
54.37.65.76	attack	May 13 09:20:58 gw1 sshd[17605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.65.76 May 13 09:21:00 gw1 sshd[17605]: Failed password for invalid user a from 54.37.65.76 port 49566 ssh2 ...	2020-05-13 12:37:02
59.127.34.57	attack	Port scan	2020-05-13 12:46:40
140.143.160.217	attackbots	May 13 00:58:42 ws24vmsma01 sshd[243448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.160.217 May 13 00:58:43 ws24vmsma01 sshd[243448]: Failed password for invalid user user from 140.143.160.217 port 37768 ssh2 ...	2020-05-13 13:12:13
14.21.42.158	attackspambots	$f2bV_matches	2020-05-13 12:30:55

最近上报的IP列表

121.40.162.239	54.68.200.31	218.26.172.61	14.169.219.156
161.0.158.172	156.194.130.10	184.82.193.253	83.20.207.37
153.37.97.184	35.189.253.58	104.245.145.42	104.211.90.120
45.95.33.112	83.135.138.20	187.120.216.22	178.128.85.156
139.217.131.17	167.250.98.11	122.51.87.23	178.219.84.175