49.1.135.129 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea (the Republic of)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.1.135.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6511
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.1.135.129.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020600 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 07 00:57:58 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

Host 129.135.1.49.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 129.135.1.49.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
91.34.234.177	attackspam	20 attempts against mh-ssh on flow.magehost.pro	2019-08-01 15:42:50
193.112.129.199	attackspam	Aug 1 03:59:56 vps200512 sshd\[11230\]: Invalid user wch from 193.112.129.199 Aug 1 03:59:56 vps200512 sshd\[11230\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.129.199 Aug 1 03:59:58 vps200512 sshd\[11230\]: Failed password for invalid user wch from 193.112.129.199 port 36692 ssh2 Aug 1 04:05:10 vps200512 sshd\[11366\]: Invalid user webserver from 193.112.129.199 Aug 1 04:05:10 vps200512 sshd\[11366\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.129.199	2019-08-01 16:17:22
35.185.239.108	attack	Aug 1 08:36:03 MK-Soft-Root2 sshd\[30665\]: Invalid user geobox from 35.185.239.108 port 47904 Aug 1 08:36:03 MK-Soft-Root2 sshd\[30665\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.185.239.108 Aug 1 08:36:05 MK-Soft-Root2 sshd\[30665\]: Failed password for invalid user geobox from 35.185.239.108 port 47904 ssh2 ...	2019-08-01 15:46:15
92.63.194.90	attackbotsspam	Aug 1 12:17:15 areeb-Workstation sshd\[25030\]: Invalid user admin from 92.63.194.90 Aug 1 12:17:15 areeb-Workstation sshd\[25030\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.63.194.90 Aug 1 12:17:17 areeb-Workstation sshd\[25030\]: Failed password for invalid user admin from 92.63.194.90 port 42384 ssh2 ...	2019-08-01 15:28:55
5.196.67.41	attack	Jul 31 23:03:44 cac1d2 sshd\[4874\]: Invalid user ileen from 5.196.67.41 port 49286 Jul 31 23:03:44 cac1d2 sshd\[4874\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.67.41 Jul 31 23:03:46 cac1d2 sshd\[4874\]: Failed password for invalid user ileen from 5.196.67.41 port 49286 ssh2 ...	2019-08-01 15:26:48
70.89.116.97	attackbotsspam	Aug 1 04:39:58 shared09 sshd[27719]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.89.116.97 user=r.r Aug 1 04:40:00 shared09 sshd[27719]: Failed password for r.r from 70.89.116.97 port 46887 ssh2 Aug 1 04:40:00 shared09 sshd[27719]: Received disconnect from 70.89.116.97 port 46887:11: Bye Bye [preauth] Aug 1 04:40:00 shared09 sshd[27719]: Disconnected from 70.89.116.97 port 46887 [preauth] Aug 1 05:15:13 shared09 sshd[7847]: Invalid user alvaro from 70.89.116.97 Aug 1 05:15:13 shared09 sshd[7847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.89.116.97 Aug 1 05:15:15 shared09 sshd[7847]: Failed password for invalid user alvaro from 70.89.116.97 port 57105 ssh2 Aug 1 05:15:15 shared09 sshd[7847]: Received disconnect from 70.89.116.97 port 57105:11: Bye Bye [preauth] Aug 1 05:15:15 shared09 sshd[7847]: Disconnected from 70.89.116.97 port 57105 [preauth] ........ -----------------------------------------------	2019-08-01 16:20:19
158.140.189.35	attackspambots	158.140.189.35 - - [01/Aug/2019:07:41:03 +0200] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 158.140.189.35 - - [01/Aug/2019:07:41:06 +0200] "POST /wp-login.php HTTP/1.1" 200 1631 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 158.140.189.35 - - [01/Aug/2019:07:41:15 +0200] "POST /wp-login.php HTTP/1.1" 200 1630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 158.140.189.35 - - [01/Aug/2019:07:41:17 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 158.140.189.35 - - [01/Aug/2019:07:41:23 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 158.140.189.35 - - [01/Aug/2019:07:41:24 +0200] "POST /wp-login.php HTTP/1.1" 200 1629 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-08-01 15:49:49
217.160.107.53	attack	WordPress login Brute force / Web App Attack on client site.	2019-08-01 15:31:36
112.73.93.235	attack	Jul 29 05:58:40 cp1server sshd[13655]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.73.93.235 user=r.r Jul 29 05:58:41 cp1server sshd[13655]: Failed password for r.r from 112.73.93.235 port 51028 ssh2 Jul 29 05:58:41 cp1server sshd[13656]: Received disconnect from 112.73.93.235: 11: Bye Bye Jul 29 05:58:43 cp1server sshd[13658]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.73.93.235 user=r.r Jul 29 05:58:45 cp1server sshd[13658]: Failed password for r.r from 112.73.93.235 port 52264 ssh2 Jul 29 05:58:46 cp1server sshd[13659]: Received disconnect from 112.73.93.235: 11: Bye Bye Jul 29 05:58:47 cp1server sshd[13661]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.73.93.235 user=r.r Jul 29 05:58:49 cp1server sshd[13661]: Failed password for r.r from 112.73.93.235 port 53634 ssh2 Jul 29 05:58:49 cp1server sshd[13662]: Received disconn........ -------------------------------	2019-08-01 15:44:27
118.24.220.177	attackspambots	[munged]::443 118.24.220.177 - - [01/Aug/2019:05:26:23 +0200] "POST /[munged]: HTTP/1.1" 200 9120 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 118.24.220.177 - - [01/Aug/2019:05:26:26 +0200] "POST /[munged]: HTTP/1.1" 200 9120 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 118.24.220.177 - - [01/Aug/2019:05:26:55 +0200] "POST /[munged]: HTTP/1.1" 200 9120 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 118.24.220.177 - - [01/Aug/2019:05:26:57 +0200] "POST /[munged]: HTTP/1.1" 200 9120 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 118.24.220.177 - - [01/Aug/2019:05:27:01 +0200] "POST /[munged]: HTTP/1.1" 200 9120 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 118.24.220.177 - - [01/Aug/2019:05:27:04 +0200] "POST /[munged]: HTTP/1.1" 200 9120 "-" "Mozilla/5.0 (X11	2019-08-01 16:18:53
5.23.79.3	attackbotsspam	Invalid user support from 5.23.79.3 port 41643	2019-08-01 16:16:19
193.112.150.166	attackspambots	Aug 1 08:11:42 localhost sshd\[18281\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.150.166 user=root Aug 1 08:11:44 localhost sshd\[18281\]: Failed password for root from 193.112.150.166 port 50060 ssh2 ...	2019-08-01 15:32:07
66.70.160.42	attackspam	Jul 29 09:14:08 georgia postfix/smtpd[28902]: connect from ip42.ip-66-70-160.net[66.70.160.42] Jul 29 09:14:09 georgia postfix/smtpd[28902]: warning: ip42.ip-66-70-160.net[66.70.160.42]: SASL LOGIN authentication failed: authentication failure Jul 29 09:14:09 georgia postfix/smtpd[28902]: lost connection after AUTH from ip42.ip-66-70-160.net[66.70.160.42] Jul 29 09:14:09 georgia postfix/smtpd[28902]: disconnect from ip42.ip-66-70-160.net[66.70.160.42] ehlo=1 auth=0/1 commands=1/2 Jul 29 09:14:09 georgia postfix/smtpd[28902]: connect from ip42.ip-66-70-160.net[66.70.160.42] Jul 29 09:14:09 georgia postfix/smtpd[28902]: warning: ip42.ip-66-70-160.net[66.70.160.42]: SASL LOGIN authentication failed: authentication failure Jul 29 09:14:09 georgia postfix/smtpd[28902]: lost connection after AUTH from ip42.ip-66-70-160.net[66.70.160.42] Jul 29 09:14:09 georgia postfix/smtpd[28902]: disconnect from ip42.ip-66-70-160.net[66.70.160.42] ehlo=1 auth=0/1 commands=1/2 Jul 29 09:14:0........ -------------------------------	2019-08-01 15:55:24
88.228.157.61	attackspambots	Automatic report - Port Scan Attack	2019-08-01 16:04:51
103.219.112.251	attackspambots	Aug 1 08:58:36 localhost sshd\[554\]: Invalid user kill from 103.219.112.251 port 50740 Aug 1 08:58:36 localhost sshd\[554\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.219.112.251 Aug 1 08:58:38 localhost sshd\[554\]: Failed password for invalid user kill from 103.219.112.251 port 50740 ssh2	2019-08-01 15:39:20

最近上报的IP列表

144.7.212.86	49.169.32.126	176.207.38.44	201.120.251.79
55.167.46.153	157.139.139.3	188.55.217.86	99.80.237.213
156.70.239.181	189.67.86.116	188.91.154.210	103.135.191.190
134.189.66.25	169.183.244.80	234.102.254.102	109.128.127.213
53.253.152.74	99.108.129.17	159.48.120.151	81.11.226.14