222.196.90.149

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 222.196.90.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24789
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;222.196.90.149.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012200 1800 900 604800 86400

;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 22 18:27:53 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

Host 149.90.196.222.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 149.90.196.222.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
200.73.238.250	attack	Mar 21 01:49:41 icinga sshd[15059]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.238.250 Mar 21 01:49:43 icinga sshd[15059]: Failed password for invalid user nina from 200.73.238.250 port 39698 ssh2 Mar 21 01:50:33 icinga sshd[16712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.238.250 ...	2020-03-21 09:39:36
117.254.177.162	attackbots	Wordpress attack	2020-03-21 08:56:34
199.188.200.121	attack	xmlrpc attack	2020-03-21 09:34:34
113.173.240.25	attack	2020-03-2023:06:271jFPmb-00004r-MN\<=info@whatsup2013.chH=\(localhost\)[37.114.149.120]:52937P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3620id=0104B2E1EA3E10A37F7A338B4F1C286D@whatsup2013.chT="iamChristina"forcoryjroyer77@gmail.comjuliocesarmercado76@gmail.com2020-03-2023:04:311jFPkk-0008Oo-5o\<=info@whatsup2013.chH=\(localhost\)[45.224.105.133]:54924P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3754id=6366D083885C72C11D1851E92DC85559@whatsup2013.chT="iamChristina"fordanielembrey21@yahoo.comskrams32@icloud.com2020-03-2023:06:001jFPmC-0008V3-BH\<=info@whatsup2013.chH=\(localhost\)[123.21.159.175]:43590P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3614id=F9FC4A1912C6E85B8782CB73B761B08A@whatsup2013.chT="iamChristina"fordaptec.dp@gmail.comrobertegomez11@gmail.com2020-03-2023:05:111jFPlP-0008SH-82\<=info@whatsup2013.chH=\(localhost\)[113.173.240.25]:45545P=esmtpsaX=TLS1.2	2020-03-21 09:27:14
218.92.0.172	attack	web-1 [ssh_2] SSH Attack	2020-03-21 09:03:14
95.181.218.200	attackbotsspam	B: zzZZzz blocked content access	2020-03-21 09:38:32
139.199.105.136	attack	Mar 20 16:56:26 server1 sshd\[27672\]: Invalid user ethel from 139.199.105.136 Mar 20 16:56:26 server1 sshd\[27672\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.105.136 Mar 20 16:56:29 server1 sshd\[27672\]: Failed password for invalid user ethel from 139.199.105.136 port 39180 ssh2 Mar 20 17:01:27 server1 sshd\[29418\]: Invalid user elbe from 139.199.105.136 Mar 20 17:01:27 server1 sshd\[29418\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.105.136 ...	2020-03-21 09:07:51
37.114.149.120	attackbotsspam	2020-03-2023:06:271jFPmb-00004r-MN\<=info@whatsup2013.chH=\(localhost\)[37.114.149.120]:52937P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3620id=0104B2E1EA3E10A37F7A338B4F1C286D@whatsup2013.chT="iamChristina"forcoryjroyer77@gmail.comjuliocesarmercado76@gmail.com2020-03-2023:04:311jFPkk-0008Oo-5o\<=info@whatsup2013.chH=\(localhost\)[45.224.105.133]:54924P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3754id=6366D083885C72C11D1851E92DC85559@whatsup2013.chT="iamChristina"fordanielembrey21@yahoo.comskrams32@icloud.com2020-03-2023:06:001jFPmC-0008V3-BH\<=info@whatsup2013.chH=\(localhost\)[123.21.159.175]:43590P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3614id=F9FC4A1912C6E85B8782CB73B761B08A@whatsup2013.chT="iamChristina"fordaptec.dp@gmail.comrobertegomez11@gmail.com2020-03-2023:05:111jFPlP-0008SH-82\<=info@whatsup2013.chH=\(localhost\)[113.173.240.25]:45545P=esmtpsaX=TLS1.2	2020-03-21 09:27:55
120.71.146.217	attackbotsspam	Mar 21 01:02:52 * sshd[32307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.71.146.217 Mar 21 01:02:55 * sshd[32307]: Failed password for invalid user n from 120.71.146.217 port 42038 ssh2	2020-03-21 09:04:47
66.220.149.27	attack	[Sat Mar 21 05:06:56.192841 2020] [:error] [pid 15461:tid 140719612159744] [client 66.220.149.27:39448] [client 66.220.149.27] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/image-loader-worker-v1.js"] [unique_id "XnU@gBotaJdlQvWXwpYWqwAAAAE"] ...	2020-03-21 08:58:35
69.92.184.148	attackspam	Mar 20 23:17:17 vps691689 sshd[22307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.92.184.148 Mar 20 23:17:19 vps691689 sshd[22307]: Failed password for invalid user info from 69.92.184.148 port 50962 ssh2 Mar 20 23:22:41 vps691689 sshd[22392]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.92.184.148 ...	2020-03-21 09:33:43
81.250.231.251	attack	Tried sshing with brute force.	2020-03-21 09:30:45
174.138.18.157	attackbotsspam	SSH-BruteForce	2020-03-21 09:18:48
37.115.188.95	attackspambots	DATE:2020-03-21 00:16:38, IP:37.115.188.95, PORT:ssh SSH brute force auth (docker-dc)	2020-03-21 09:01:19
58.229.114.170	attack	B: ssh repeated attack for invalid user	2020-03-21 09:38:48

最近上报的IP列表

197.125.169.92	247.113.25.7	47.137.196.150	239.253.156.202
31.107.105.93	24.100.64.154	48.36.89.223	163.127.210.249
190.28.247.162	8.159.232.175	88.101.192.227	127.222.184.149
82.226.36.80	149.140.164.221	254.152.26.111	90.83.176.221
40.2.48.48	28.255.2.232	5.164.250.191	7.22.197.231