68.49.249.4 - IPInfo

基本信息:

城市(city): Detroit

省份(region): Michigan

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 68.49.249.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45721
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;68.49.249.4.			IN	A

;; AUTHORITY SECTION:
.			378	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022012000 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 20 20:36:44 CST 2022
;; MSG SIZE  rcvd: 104

HOST信息:

Host 4.249.49.68.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 4.249.49.68.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
118.24.50.107	attack	Oct 4 18:37:53 jumpserver sshd[479861]: Failed password for root from 118.24.50.107 port 52986 ssh2 Oct 4 18:41:29 jumpserver sshd[479944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.50.107 user=root Oct 4 18:41:30 jumpserver sshd[479944]: Failed password for root from 118.24.50.107 port 36856 ssh2 ...	2020-10-05 02:44:52
45.142.120.39	attack	Oct 4 20:51:45 relay postfix/smtpd\[17276\]: warning: unknown\[45.142.120.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 4 20:52:07 relay postfix/smtpd\[16336\]: warning: unknown\[45.142.120.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 4 20:52:19 relay postfix/smtpd\[16334\]: warning: unknown\[45.142.120.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 4 20:52:20 relay postfix/smtpd\[17276\]: warning: unknown\[45.142.120.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 4 20:52:24 relay postfix/smtpd\[21591\]: warning: unknown\[45.142.120.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-05 03:03:31
52.252.59.235	attackbots	21 attempts against mh-ssh on star	2020-10-05 03:16:46
164.90.185.34	attackspam	[MK-VM3] Blocked by UFW	2020-10-05 03:10:45
119.45.114.133	attackbotsspam	2020-10-04T10:58:18.821807shield sshd\[4329\]: Invalid user dev from 119.45.114.133 port 46492 2020-10-04T10:58:18.831955shield sshd\[4329\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.114.133 2020-10-04T10:58:21.139081shield sshd\[4329\]: Failed password for invalid user dev from 119.45.114.133 port 46492 ssh2 2020-10-04T11:02:08.321747shield sshd\[4706\]: Invalid user admin from 119.45.114.133 port 58732 2020-10-04T11:02:08.332998shield sshd\[4706\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.114.133	2020-10-05 03:08:46
40.89.180.179	attackspambots	(sshd) Failed SSH login from 40.89.180.179 (FR/France/-): 5 in the last 3600 secs	2020-10-05 03:15:13
119.164.11.223	attack	TCP (SYN) 119.164.11.223:12535 -> port 23, len 44	2020-10-05 03:07:17
64.227.72.109	attackbots	2020-10-04 21:16:24,036 fail2ban.actions: WARNING [ssh] Ban 64.227.72.109	2020-10-05 03:18:42
187.180.102.108	attackbotsspam	2020-10-04T05:24:02.387379suse-nuc sshd[20165]: User root from 187.180.102.108 not allowed because not listed in AllowUsers ...	2020-10-05 02:53:25
159.203.85.196	attack	firewall-block, port(s): 27644/tcp	2020-10-05 03:16:02
59.88.224.85	attackspambots	DATE:2020-10-03 22:36:31, IP:59.88.224.85, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-10-05 02:49:05
222.66.154.98	attack	Oct 4 20:50:47 mout sshd[20307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.66.154.98 user=root Oct 4 20:50:49 mout sshd[20307]: Failed password for root from 222.66.154.98 port 35266 ssh2	2020-10-05 02:51:37
222.186.42.57	attack	2020-10-04T18:52:34.579177shield sshd\[32237\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.57 user=root 2020-10-04T18:52:36.072814shield sshd\[32237\]: Failed password for root from 222.186.42.57 port 28679 ssh2 2020-10-04T18:52:38.116241shield sshd\[32237\]: Failed password for root from 222.186.42.57 port 28679 ssh2 2020-10-04T18:52:40.103485shield sshd\[32237\]: Failed password for root from 222.186.42.57 port 28679 ssh2 2020-10-04T18:52:43.266304shield sshd\[32267\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.57 user=root	2020-10-05 03:02:36
165.227.66.224	attackbots	(sshd) Failed SSH login from 165.227.66.224 (US/United States/infinitemediausa.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 4 12:00:46 server sshd[5634]: Failed password for root from 165.227.66.224 port 55084 ssh2 Oct 4 12:12:47 server sshd[8684]: Failed password for root from 165.227.66.224 port 57176 ssh2 Oct 4 12:17:45 server sshd[10093]: Failed password for root from 165.227.66.224 port 34466 ssh2 Oct 4 12:22:23 server sshd[11305]: Failed password for root from 165.227.66.224 port 39978 ssh2 Oct 4 12:29:27 server sshd[12979]: Failed password for root from 165.227.66.224 port 45494 ssh2	2020-10-05 02:57:34
158.69.161.79	attackbots	20+ hits ports 80,443,465 : ET EXPLOIT Possible VXWORKS Urgent11 RCE Attempt - Urgent Flag	2020-10-05 02:50:21

最近上报的IP列表

214.58.17.200	7.7.75.96	52.114.75.38	220.64.106.18
44.98.186.11	71.211.231.19	176.111.150.26	176.30.73.25
5.45.32.29	10.71.243.198	81.103.144.33	52.42.21.35
112.20.160.4	212.205.53.209	95.78.233.47	14.17.201.32
166.78.93.199	187.46.251.185	56.73.125.33	89.211.84.5