249.139.26.6 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): IANA Special-Purpose Address

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 249.139.26.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56159
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;249.139.26.6.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020600 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 06 22:57:03 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

Host 6.26.139.249.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 6.26.139.249.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
106.12.197.67	attack	Jul 6 10:05:28 master sshd[23121]: Failed password for invalid user frank from 106.12.197.67 port 51072 ssh2	2020-07-06 19:37:10
180.248.42.118	attack	[Mon Jul 06 10:47:45.531237 2020] [:error] [pid 8347:tid 140335213434624] [client 180.248.42.118:17835] [client 180.248.42.118] ModSecurity: Access denied with code 403 (phase 4). Pattern match "^5\\\\d{2}$" at RESPONSE_STATUS. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/RESPONSE-950-DATA-LEAKAGES.conf"] [line "118"] [id "950100"] [msg "The Application Returned a 500-Level Status Code"] [data "Matched Data: 500 found within RESPONSE_STATUS: 500"] [severity "ERROR"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-disclosure"] [tag "WASCTC/WASC-13"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.6"] [tag "paranoia-level/2"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/profil/sitemap/82-peralatan-observasi-klimatologi/555555575-lokasi-penakar-hujan-manual-ombrometer-di-jawa-timur"] [unique_id "XwKe4SP1VR3su@ShYTtSRQACSgI"], referer: https://www.google.com/ ...	2020-07-06 19:41:20
150.158.184.178	attackspam	SSH bruteforce	2020-07-06 19:24:22
150.129.56.162	attackbotsspam	21 attempts against mh-ssh on field	2020-07-06 19:16:40
222.186.173.226	attack	Jul 6 07:18:28 NPSTNNYC01T sshd[30603]: Failed password for root from 222.186.173.226 port 14195 ssh2 Jul 6 07:18:31 NPSTNNYC01T sshd[30603]: Failed password for root from 222.186.173.226 port 14195 ssh2 Jul 6 07:18:34 NPSTNNYC01T sshd[30603]: Failed password for root from 222.186.173.226 port 14195 ssh2 Jul 6 07:18:41 NPSTNNYC01T sshd[30603]: error: maximum authentication attempts exceeded for root from 222.186.173.226 port 14195 ssh2 [preauth] ...	2020-07-06 19:19:39
124.207.98.213	attackspambots	prod11 ...	2020-07-06 19:15:07
36.81.198.112	attack	[Mon Jul 06 10:47:31.357452 2020] [:error] [pid 8388:tid 140335205041920] [client 36.81.198.112:50748] [client 36.81.198.112] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/image-loader-worker-v3.js"] [unique_id "XwKe0w@SSZL6BNEesuZUwQABwwE"] ...	2020-07-06 19:56:31
95.239.209.98	attackspambots	95.239.209.98 - - [06/Jul/2020:11:00:33 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Linux i686; rv:2.0.1) Gecko/20100101 Firefox/4.0.1" 95.239.209.98 - - [06/Jul/2020:11:00:34 +0100] "POST /wp-login.php HTTP/1.1" 403 512 "-" "Mozilla/5.0 (X11; Linux i686; rv:2.0.1) Gecko/20100101 Firefox/4.0.1" 95.239.209.98 - - [06/Jul/2020:11:04:44 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Linux i686; rv:2.0.1) Gecko/20100101 Firefox/4.0.1" ...	2020-07-06 19:39:55
159.89.115.126	attack	2020-07-06T09:39:06+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)	2020-07-06 19:46:27
61.177.172.102	attack	Jul 6 04:07:19 dignus sshd[12657]: Failed password for root from 61.177.172.102 port 39376 ssh2 Jul 6 04:07:22 dignus sshd[12657]: Failed password for root from 61.177.172.102 port 39376 ssh2 Jul 6 04:07:24 dignus sshd[12657]: Failed password for root from 61.177.172.102 port 39376 ssh2 Jul 6 04:07:26 dignus sshd[12684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.102 user=root Jul 6 04:07:29 dignus sshd[12684]: Failed password for root from 61.177.172.102 port 64447 ssh2 ...	2020-07-06 19:09:34
113.187.111.7	attackspambots	firewall-block, port(s): 445/tcp	2020-07-06 19:14:42
78.128.113.227	attackbots	detected by Fail2Ban	2020-07-06 19:43:58
45.182.253.102	attackbots	Automatic report - Port Scan Attack	2020-07-06 19:18:32
111.229.67.3	attack	2020-07-06T06:40:17.752592abusebot-4.cloudsearch.cf sshd[31621]: Invalid user aleks from 111.229.67.3 port 44946 2020-07-06T06:40:17.764302abusebot-4.cloudsearch.cf sshd[31621]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.67.3 2020-07-06T06:40:17.752592abusebot-4.cloudsearch.cf sshd[31621]: Invalid user aleks from 111.229.67.3 port 44946 2020-07-06T06:40:20.097957abusebot-4.cloudsearch.cf sshd[31621]: Failed password for invalid user aleks from 111.229.67.3 port 44946 ssh2 2020-07-06T06:43:04.803433abusebot-4.cloudsearch.cf sshd[31675]: Invalid user admin from 111.229.67.3 port 36848 2020-07-06T06:43:04.809929abusebot-4.cloudsearch.cf sshd[31675]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.67.3 2020-07-06T06:43:04.803433abusebot-4.cloudsearch.cf sshd[31675]: Invalid user admin from 111.229.67.3 port 36848 2020-07-06T06:43:06.736922abusebot-4.cloudsearch.cf sshd[31675]: Failed passwo ...	2020-07-06 19:53:39
180.180.123.227	attack	$f2bV_matches	2020-07-06 19:52:19

最近上报的IP列表

65.243.189.60	12.177.95.58	74.62.69.22	119.55.166.23
132.131.190.13	179.29.38.85	92.32.120.60	171.75.97.202
166.204.31.20	39.203.107.241	194.73.97.159	219.222.71.140
98.228.38.254	210.68.91.205	38.89.60.54	246.72.125.180
67.121.25.122	187.94.7.24	17.229.117.192	241.122.252.157