49.69.244.199 - IPInfo

基本信息:

城市(city): Changzhou

省份(region): Jiangsu

国家(country): China

运营商(isp): ChinaNet Jiangsu Province Network

主机名(hostname): unknown

机构(organization): No.31,Jin-rong Street

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	$f2bV_matches	2019-08-18 03:04:53

相同子网IP讨论:

IP	类型	评论内容	时间
49.69.244.61	attackspam	2222/tcp 22/tcp... [2019-09-12/11-01]23pkt,2pt.(tcp)	2019-11-01 13:12:13
49.69.244.61	attack	firewall-block, port(s): 2222/tcp	2019-10-08 07:07:46
49.69.244.61	attack	Scanning random ports - tries to find possible vulnerable services	2019-10-02 03:19:14
49.69.244.59	attack	Sep 8 07:00:46 unicornsoft sshd\[16888\]: Invalid user admin from 49.69.244.59 Sep 8 07:00:46 unicornsoft sshd\[16888\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.69.244.59 Sep 8 07:00:48 unicornsoft sshd\[16888\]: Failed password for invalid user admin from 49.69.244.59 port 6771 ssh2	2019-09-08 15:42:44
49.69.244.191	attackbotsspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-08-20 12:21:19
49.69.244.242	attack	2019-08-18T14:57:13.097221stark.klein-stark.info sshd\[830\]: Invalid user admin from 49.69.244.242 port 35019 2019-08-18T14:57:13.104450stark.klein-stark.info sshd\[830\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.69.244.242 2019-08-18T14:57:15.045608stark.klein-stark.info sshd\[830\]: Failed password for invalid user admin from 49.69.244.242 port 35019 ssh2 ...	2019-08-19 05:11:55
49.69.244.152	attackbots	Aug 18 04:24:41 ip-172-31-62-245 sshd\[27134\]: Invalid user supervisor from 49.69.244.152\ Aug 18 04:24:43 ip-172-31-62-245 sshd\[27134\]: Failed password for invalid user supervisor from 49.69.244.152 port 44118 ssh2\ Aug 18 04:24:45 ip-172-31-62-245 sshd\[27134\]: Failed password for invalid user supervisor from 49.69.244.152 port 44118 ssh2\ Aug 18 04:24:49 ip-172-31-62-245 sshd\[27134\]: Failed password for invalid user supervisor from 49.69.244.152 port 44118 ssh2\ Aug 18 04:24:52 ip-172-31-62-245 sshd\[27134\]: Failed password for invalid user supervisor from 49.69.244.152 port 44118 ssh2\	2019-08-18 14:10:16
49.69.244.191	attackspam	Aug 16 18:17:20 root sshd[21951]: Failed password for root from 49.69.244.191 port 24255 ssh2 Aug 16 18:17:25 root sshd[21951]: Failed password for root from 49.69.244.191 port 24255 ssh2 Aug 16 18:17:30 root sshd[21951]: Failed password for root from 49.69.244.191 port 24255 ssh2 Aug 16 18:17:32 root sshd[21951]: Failed password for root from 49.69.244.191 port 24255 ssh2 ...	2019-08-17 00:46:13

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.69.244.199
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42451
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.69.244.199.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Aug 18 03:04:48 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 199.244.69.49.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 199.244.69.49.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
191.34.74.55	attackbotsspam	Invalid user test from 191.34.74.55 port 47783	2019-12-25 19:08:59
14.225.17.9	attackbots	2019-12-25T07:03:24.247663shield sshd\[29819\]: Invalid user rich123 from 14.225.17.9 port 60842 2019-12-25T07:03:24.254132shield sshd\[29819\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.225.17.9 2019-12-25T07:03:26.584144shield sshd\[29819\]: Failed password for invalid user rich123 from 14.225.17.9 port 60842 ssh2 2019-12-25T07:06:06.572621shield sshd\[30533\]: Invalid user pieper from 14.225.17.9 port 52022 2019-12-25T07:06:06.578080shield sshd\[30533\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.225.17.9	2019-12-25 19:08:34
85.17.25.48	attackspam	2019-12-25T06:21:48.456576abusebot-7.cloudsearch.cf sshd[27877]: Invalid user gdm from 85.17.25.48 port 60099 2019-12-25T06:21:48.462000abusebot-7.cloudsearch.cf sshd[27877]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.17.25.48 2019-12-25T06:21:48.456576abusebot-7.cloudsearch.cf sshd[27877]: Invalid user gdm from 85.17.25.48 port 60099 2019-12-25T06:21:50.134875abusebot-7.cloudsearch.cf sshd[27877]: Failed password for invalid user gdm from 85.17.25.48 port 60099 ssh2 2019-12-25T06:23:27.147378abusebot-7.cloudsearch.cf sshd[27879]: Invalid user dafoe from 85.17.25.48 port 56491 2019-12-25T06:23:27.153368abusebot-7.cloudsearch.cf sshd[27879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.17.25.48 2019-12-25T06:23:27.147378abusebot-7.cloudsearch.cf sshd[27879]: Invalid user dafoe from 85.17.25.48 port 56491 2019-12-25T06:23:28.750916abusebot-7.cloudsearch.cf sshd[27879]: Failed password for invali ...	2019-12-25 19:04:58
218.109.193.114	attack	FTP Brute Force	2019-12-25 18:54:15
123.231.121.50	attack	www.handydirektreparatur.de 123.231.121.50 [25/Dec/2019:07:24:28 +0100] "POST /wp-login.php HTTP/1.1" 200 6299 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" www.handydirektreparatur.de 123.231.121.50 [25/Dec/2019:07:24:30 +0100] "POST /wp-login.php HTTP/1.1" 200 6259 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-12-25 18:40:34
89.34.250.223	attackbotsspam	Unauthorized connection attempt detected from IP address 89.34.250.223 to port 445	2019-12-25 19:07:17
103.207.11.12	attack	2019-12-25T08:25:16.513330vps751288.ovh.net sshd\[24010\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.207.11.12 user=mail 2019-12-25T08:25:18.958806vps751288.ovh.net sshd\[24010\]: Failed password for mail from 103.207.11.12 port 49196 ssh2 2019-12-25T08:27:05.006062vps751288.ovh.net sshd\[24016\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.207.11.12 user=root 2019-12-25T08:27:06.413119vps751288.ovh.net sshd\[24016\]: Failed password for root from 103.207.11.12 port 37160 ssh2 2019-12-25T08:28:50.713683vps751288.ovh.net sshd\[24022\]: Invalid user szolt from 103.207.11.12 port 53362	2019-12-25 19:02:12
104.244.75.214	attackbots	ZTE Router Exploit Scanner	2019-12-25 18:43:39
118.70.186.157	attackbotsspam	Unauthorized connection attempt detected from IP address 118.70.186.157 to port 445	2019-12-25 19:04:40
201.150.238.125	attackbots	Unauthorized connection attempt detected from IP address 201.150.238.125 to port 5358	2019-12-25 18:50:55
193.19.119.26	normal	Hello	2019-12-25 18:34:11
59.120.140.55	attackbotsspam	Unauthorized connection attempt detected from IP address 59.120.140.55 to port 445	2019-12-25 19:08:15
122.170.99.105	attack	Dec 25 07:23:58 debian-2gb-nbg1-2 kernel: \[907774.064427\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=122.170.99.105 DST=195.201.40.59 LEN=60 TOS=0x00 PREC=0x00 TTL=117 ID=26615 DF PROTO=TCP SPT=62136 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0	2019-12-25 18:51:47
134.175.124.221	attack	Dec 25 05:29:12 vps46666688 sshd[3282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.124.221 Dec 25 05:29:14 vps46666688 sshd[3282]: Failed password for invalid user heile from 134.175.124.221 port 53554 ssh2 ...	2019-12-25 18:45:13
101.108.95.237	attackspam	1577255078 - 12/25/2019 07:24:38 Host: 101.108.95.237/101.108.95.237 Port: 445 TCP Blocked	2019-12-25 18:35:35

最近上报的IP列表

162.144.250.249	12.156.139.19	202.151.133.28	227.31.146.245
222.93.65.75	78.9.39.255	88.242.194.167	165.234.132.227
72.219.203.141	129.55.253.24	117.40.128.235	230.235.194.166
84.51.95.68	59.27.44.188	111.90.29.199	97.164.163.165
67.91.156.185	102.247.84.180	119.81.246.246	61.190.88.44