49.49.254.153 - IPInfo

基本信息:

城市(city): Bangkok

省份(region): Bangkok

国家(country): Thailand

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.49.254.153
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51187
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.49.254.153.			IN	A

;; AUTHORITY SECTION:
.			522	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022041200 1800 900 604800 86400

;; Query time: 25 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 12 17:58:15 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

153.254.49.49.in-addr.arpa domain name pointer mx-ll-49.49.254-153.dynamic.3bb.co.th.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
153.254.49.49.in-addr.arpa	name = mx-ll-49.49.254-153.dynamic.3bb.co.th.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
192.241.218.130	attack	Hits on port : 4786	2020-03-03 20:40:28
182.156.218.146	attackspam	Mar 3 05:49:12 grey postfix/smtpd\[10224\]: NOQUEUE: reject: RCPT from unknown\[182.156.218.146\]: 554 5.7.1 Service unavailable\; Client host \[182.156.218.146\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=182.156.218.146\; from=\ to=\ proto=SMTP helo=\ ...	2020-03-03 20:35:53
184.105.139.67	attack	GPL SNMP public access udp - port: 161 proto: UDP cat: Attempted Information Leak	2020-03-03 20:42:44
183.61.243.194	attackbots	" "	2020-03-03 20:56:18
103.224.161.170	attack	$f2bV_matches	2020-03-03 20:36:28
187.163.126.189	attackspambots	Automatic report - Port Scan Attack	2020-03-03 20:31:32
178.154.171.22	attackspambots	[Tue Mar 03 18:20:23.405749 2020] [:error] [pid 24056:tid 140149427283712] [client 178.154.171.22:63083] [client 178.154.171.22] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "Xl49dxRh6ZAFeJ7p@rnMLwAAAbk"] ...	2020-03-03 20:54:54
5.189.149.105	attack	Mar 2 15:55:29 dax sshd[14439]: Failed password for crevis from 5.189.149.105 port 54831 ssh2 Mar 2 15:55:29 dax sshd[14439]: Received disconnect from 5.189.149.105: 11: Normal Shutdown [preauth] Mar 2 15:58:51 dax sshd[14954]: Invalid user oracle from 5.189.149.105 Mar 2 15:58:53 dax sshd[14954]: Failed password for invalid user oracle from 5.189.149.105 port 39598 ssh2 Mar 2 15:58:53 dax sshd[14954]: Received disconnect from 5.189.149.105: 11: Normal Shutdown [preauth] Mar 2 16:02:15 dax sshd[15533]: Invalid user crevixxxxxxx234 from 5.189.149.105 Mar 2 16:02:17 dax sshd[15533]: Failed password for invalid user crevixxxxxxx234 from 5.189.149.105 port 52596 ssh2 Mar 2 16:02:17 dax sshd[15533]: Received disconnect from 5.189.149.105: 11: Normal Shutdown [preauth] Mar 2 16:05:37 dax sshd[16083]: Failed password for crevis from 5.189.149.105 port 37364 ssh2 Mar 2 16:05:37 dax sshd[16083]: Received disconnect from 5.189.149.105: 11: Normal Shutdown [preauth] ........ ---------------------------------	2020-03-03 20:37:04
1.55.164.61	attackspam	1583210972 - 03/03/2020 05:49:32 Host: 1.55.164.61/1.55.164.61 Port: 445 TCP Blocked	2020-03-03 20:27:19
179.184.8.142	attackbots	2020-03-03T05:19:46.924605linuxbox-skyline sshd[106327]: Invalid user laravel from 179.184.8.142 port 53914 ...	2020-03-03 20:41:39
45.56.78.64	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-03 21:07:17
220.132.122.183	attackspambots	Mar 3 05:49:25 debian-2gb-nbg1-2 kernel: \[5470146.050512\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=220.132.122.183 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=51 ID=5645 PROTO=TCP SPT=57744 DPT=23 WINDOW=3936 RES=0x00 SYN URGP=0	2020-03-03 20:28:43
123.1.154.227	attackspambots	Mar 3 12:39:12 vpn01 sshd[29088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.1.154.227 Mar 3 12:39:13 vpn01 sshd[29088]: Failed password for invalid user vagrant from 123.1.154.227 port 52450 ssh2 ...	2020-03-03 21:08:17
79.167.88.233	attackbots	Automatic report - Port Scan Attack	2020-03-03 21:06:08
178.128.90.40	attack	Mar 3 07:38:41 hcbbdb sshd\[16357\]: Invalid user 123456 from 178.128.90.40 Mar 3 07:38:41 hcbbdb sshd\[16357\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.90.40 Mar 3 07:38:43 hcbbdb sshd\[16357\]: Failed password for invalid user 123456 from 178.128.90.40 port 50128 ssh2 Mar 3 07:42:17 hcbbdb sshd\[16765\]: Invalid user password123 from 178.128.90.40 Mar 3 07:42:17 hcbbdb sshd\[16765\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.90.40	2020-03-03 20:41:10

最近上报的IP列表

6.70.117.60	5.220.37.148	107.94.34.61	117.141.249.146
252.159.0.186	78.189.94.112	109.71.34.167	136.122.241.87
252.234.57.114	88.119.176.112	86.44.77.17	245.209.185.61
229.143.114.32	233.100.37.188	26.78.251.172	83.180.169.216
212.255.207.37	231.185.68.103	225.77.202.175	235.178.125.49