49.216.198.104

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan (Province of China)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.216.198.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52622
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.216.198.104.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021100 1800 900 604800 86400

;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 11 15:46:00 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

Host 104.198.216.49.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 104.198.216.49.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
132.232.119.203	attack	fail2ban -- 132.232.119.203 ...	2020-08-10 05:28:20
103.3.46.92	attackspambots	Automatic report - Banned IP Access	2020-08-10 06:07:35
34.73.39.215	attackspambots	Aug 9 23:14:34 abendstille sshd\[5076\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.73.39.215 user=root Aug 9 23:14:36 abendstille sshd\[5076\]: Failed password for root from 34.73.39.215 port 38084 ssh2 Aug 9 23:18:17 abendstille sshd\[8567\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.73.39.215 user=root Aug 9 23:18:19 abendstille sshd\[8567\]: Failed password for root from 34.73.39.215 port 49316 ssh2 Aug 9 23:22:06 abendstille sshd\[12154\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.73.39.215 user=root ...	2020-08-10 05:27:32
222.186.30.57	attack	2020-08-09T23:37:45.321703centos sshd[26296]: Failed password for root from 222.186.30.57 port 19418 ssh2 2020-08-09T23:37:49.530305centos sshd[26296]: Failed password for root from 222.186.30.57 port 19418 ssh2 2020-08-09T23:37:52.097050centos sshd[26296]: Failed password for root from 222.186.30.57 port 19418 ssh2 ...	2020-08-10 05:57:09
5.56.133.14	attackbots	Aug 9 23:04:01 rancher-0 sshd[963580]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.56.133.14 user=root Aug 9 23:04:03 rancher-0 sshd[963580]: Failed password for root from 5.56.133.14 port 56988 ssh2 ...	2020-08-10 05:37:05
116.99.11.85	attackspambots	dovecot email abuse	2020-08-10 05:30:58
45.143.223.138	attackspam	2020-08-09 dovecot_login authenticator failed for $User$ \[45.143.223.138\]: 535 Incorrect authentication data $set_id=test@REMOVED$ 2020-08-09 dovecot_login authenticator failed for $User$ \[45.143.223.138\]: 535 Incorrect authentication data $set_id=info@REMOVED$ 2020-08-09 dovecot_login authenticator failed for $User$ \[45.143.223.138\]: 535 Incorrect authentication data $set_id=admin@REMOVED$	2020-08-10 06:05:31
182.71.221.78	attackbots	Aug 9 23:31:47 PorscheCustomer sshd[7516]: Failed password for root from 182.71.221.78 port 55298 ssh2 Aug 9 23:35:34 PorscheCustomer sshd[7626]: Failed password for root from 182.71.221.78 port 56372 ssh2 ...	2020-08-10 05:40:15
109.193.84.31	attack	Aug 9 21:28:29 vps339862 sshd\[28107\]: User root from 109.193.84.31 not allowed because not listed in AllowUsers Aug 9 21:28:31 vps339862 sshd\[28109\]: User root from 109.193.84.31 not allowed because not listed in AllowUsers Aug 9 21:28:36 vps339862 sshd\[28111\]: User root from 109.193.84.31 not allowed because not listed in AllowUsers Aug 9 23:58:11 vps339862 sshd\[29746\]: User root from 109.193.84.31 not allowed because not listed in AllowUsers ...	2020-08-10 06:01:26
223.75.65.192	attack	Aug 9 18:30:59 firewall sshd[8112]: Failed password for root from 223.75.65.192 port 48198 ssh2 Aug 9 18:35:26 firewall sshd[8200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.75.65.192 user=root Aug 9 18:35:28 firewall sshd[8200]: Failed password for root from 223.75.65.192 port 49518 ssh2 ...	2020-08-10 06:02:25
122.51.246.233	attackspambots	Aug 4 19:16:14 myhostname sshd[27962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.246.233 user=r.r Aug 4 19:16:16 myhostname sshd[27962]: Failed password for r.r from 122.51.246.233 port 55562 ssh2 Aug 4 19:16:17 myhostname sshd[27962]: Received disconnect from 122.51.246.233 port 55562:11: Bye Bye [preauth] Aug 4 19:16:17 myhostname sshd[27962]: Disconnected from 122.51.246.233 port 55562 [preauth] Aug 4 19:26:47 myhostname sshd[2621]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.246.233 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=122.51.246.233	2020-08-10 05:51:15
101.87.95.64	attack	Port probing on unauthorized port 1433	2020-08-10 05:45:05
5.39.87.36	attackspambots	Automatic report - Banned IP Access	2020-08-10 05:42:16
200.6.188.38	attack	Aug 9 23:40:46 OPSO sshd\[15811\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.6.188.38 user=root Aug 9 23:40:48 OPSO sshd\[15811\]: Failed password for root from 200.6.188.38 port 33204 ssh2 Aug 9 23:44:59 OPSO sshd\[16603\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.6.188.38 user=root Aug 9 23:45:01 OPSO sshd\[16603\]: Failed password for root from 200.6.188.38 port 44346 ssh2 Aug 9 23:49:18 OPSO sshd\[17657\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.6.188.38 user=root	2020-08-10 05:51:01
168.232.15.74	attackspam	(mod_security) mod_security (id:920350) triggered by 168.232.15.74 (BR/-/-): 1 in the last 600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/09 22:24:57 [error] 346090#0: 37543 [client 168.232.15.74] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "159700469720.880984"] [ref "o0,18v21,18"], client: 168.232.15.74, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-08-10 05:56:05

最近上报的IP列表

6.250.30.207	85.43.118.209	2.228.70.78	165.90.243.197
134.52.215.193	121.89.102.162	94.56.219.48	133.108.30.69
147.133.151.196	192.119.232.122	86.111.4.12	240.30.120.199
117.78.151.39	233.192.52.161	56.111.108.159	242.228.133.73
130.52.160.144	63.53.121.175	6.43.153.141	135.104.83.233