49.228.238.54 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Thailand

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.228.238.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59367
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.228.238.54.			IN	A

;; AUTHORITY SECTION:
.			289	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400

;; Query time: 70 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 11:28:52 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

54.238.228.49.in-addr.arpa domain name pointer 49-228-238-0.24.nat.tls1a-cgn02.myaisfibre.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
54.238.228.49.in-addr.arpa	name = 49-228-238-0.24.nat.tls1a-cgn02.myaisfibre.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
66.165.213.100	attack	Invalid user pa from 66.165.213.100 port 55476 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.165.213.100 Failed password for invalid user pa from 66.165.213.100 port 55476 ssh2 Invalid user bsmith from 66.165.213.100 port 52540 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.165.213.100	2019-08-12 02:19:47
149.202.204.141	attack	[Aegis] @ 2019-08-11 08:43:10 0100 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-08-12 02:02:58
121.237.193.8	attack	2019-08-11 09:25:40 H=(ylmf-pc) [121.237.193.8]:19966 I=[192.147.25.65]:25 rejected EHLO or HELO ylmf-pc: CHECK_HELO: ylmf-pc 2019-08-11 09:25:51 H=(ylmf-pc) [121.237.193.8]:20388 I=[192.147.25.65]:25 rejected EHLO or HELO ylmf-pc: CHECK_HELO: ylmf-pc 2019-08-11 09:26:02 H=(ylmf-pc) [121.237.193.8]:21246 I=[192.147.25.65]:25 rejected EHLO or HELO ylmf-pc: CHECK_HELO: ylmf-pc ...	2019-08-12 02:10:49
116.7.237.134	attackbots	Unauthorized SSH login attempts	2019-08-12 01:57:59
80.250.7.154	attack	Aug 11 09:30:01 h2753507 postfix/smtpd[29897]: connect from unknown[80.250.7.154] Aug 11 09:30:01 h2753507 postfix/smtpd[29897]: warning: unknown[80.250.7.154]: SASL CRAM-MD5 authentication failed: authentication failure Aug 11 09:30:01 h2753507 postfix/smtpd[29897]: warning: unknown[80.250.7.154]: SASL PLAIN authentication failed: authentication failure Aug 11 09:30:01 h2753507 postfix/smtpd[29897]: warning: unknown[80.250.7.154]: SASL LOGIN authentication failed: authentication failure Aug 11 09:30:01 h2753507 postfix/smtpd[29897]: disconnect from unknown[80.250.7.154] ehlo=1 auth=0/3 quhostname=1 commands=2/5 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=80.250.7.154	2019-08-12 02:05:48
165.22.224.51	attackspam	[portscan] tcp/22 [SSH] *(RWIN=65535)(08111359)	2019-08-12 02:08:24
78.3.139.65	attackbotsspam	78.3.139.65 - - \[11/Aug/2019:11:34:35 +0000\] "POST /xmlrpc.php HTTP/1.1" 301 603 "-" "Mozilla/5.0 \(X11\; Linux i686\; rv:2.0.1\) Gecko/20100101 Firefox/4.0.1" 78.3.139.65 - - \[11/Aug/2019:11:35:52 +0000\] "POST /xmlrpc.php HTTP/1.1" 301 603 "-" "Mozilla/5.0 \(X11\; Linux i686\; rv:2.0.1\) Gecko/20100101 Firefox/4.0.1" 78.3.139.65 - - \[11/Aug/2019:11:36:57 +0000\] "POST /xmlrpc.php HTTP/1.1" 301 603 "-" "Mozilla/5.0 \(X11\; Linux i686\; rv:2.0.1\) Gecko/20100101 Firefox/4.0.1" 78.3.139.65 - - \[11/Aug/2019:11:38:20 +0000\] "POST /xmlrpc.php HTTP/1.1" 301 603 "-" "Mozilla/5.0 \(X11\; Linux i686\; rv:2.0.1\) Gecko/20100101 Firefox/4.0.1" 78.3.139.65 - - \[11/Aug/2019:11:39:25 +0000\] "POST /xmlrpc.php HTTP/1.1" 301 603 "-" "Mozilla/5.0 \(X11\; Linux i686\; rv:2.0.1\) Gecko/20100101 Firefox/4.0.1"	2019-08-12 01:51:32
123.231.239.246	attackspam	Caught in portsentry honeypot	2019-08-12 01:44:42
198.71.234.37	attackbots	fail2ban honeypot	2019-08-12 02:20:59
111.92.56.83	attackbots	namecheap spam	2019-08-12 02:14:31
201.49.236.59	attackbots	Aug 11 09:43:32 smtp postfix/smtpd[48197]: NOQUEUE: reject: RCPT from unknown[201.49.236.59]: 554 5.7.1 Service unavailable; Client host [201.49.236.59] blocked using bl.spamcop.net; Blocked - see https://www.spamcop.net/bl.shtml?201.49.236.59; from= to= proto=ESMTP helo= ...	2019-08-12 01:56:24
106.12.36.98	attack	2019-08-11T14:39:52.171053abusebot.cloudsearch.cf sshd\[3666\]: Invalid user artifactory from 106.12.36.98 port 46478	2019-08-12 02:09:19
86.195.78.202	attackspam	Honeypot attack, port: 5555, PTR: aputeaux-653-1-19-202.w86-195.abo.wanadoo.fr.	2019-08-12 02:20:24
162.243.58.222	attackbotsspam	Aug 12 00:46:17 localhost sshd[29133]: Invalid user resin from 162.243.58.222 port 46010 ...	2019-08-12 01:47:47
84.245.103.83	attackbotsspam	email spam	2019-08-12 02:00:33

最近上报的IP列表

49.228.97.13	49.228.99.128	49.228.9.54	49.229.47.151
49.230.164.154	49.230.149.42	49.230.200.139	49.228.49.234
49.229.33.132	49.232.15.5	49.230.90.219	49.232.27.149
49.233.60.34	49.235.105.162	49.233.252.119	49.233.77.114
49.235.66.10	49.234.105.58	49.237.22.207	49.235.229.138