138.97.245.49 - IPInfo

基本信息:

城市(city): Cafelandia

省份(region): Parana

国家(country): Brazil

运营商(isp): M.J. Cenatti & Cia Ltda

主机名(hostname): unknown

机构(organization): M.J. Cenatti & Cia Ltda

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	$f2bV_matches	2019-06-24 16:53:59

相同子网IP讨论:

IP	类型	评论内容	时间
138.97.245.25	attackspambots	SASL Brute Force	2019-08-09 05:45:44
138.97.245.126	attackbotsspam	SMTP-sasl brute force ...	2019-07-07 21:38:31
138.97.245.63	attackbotsspam	SMTP-sasl brute force ...	2019-06-29 07:51:36
138.97.245.233	attackspambots	SMTP-sasl brute force ...	2019-06-28 14:03:07
138.97.245.101	attackspam	libpam_shield report: forced login attempt	2019-06-27 10:52:09

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.97.245.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48126
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.97.245.49.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062400 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jun 24 16:53:53 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 49.245.97.138.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 49.245.97.138.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
2.139.176.35	attackbots	2019-07-12T22:21:00.763664ssh sshd[25016]: Invalid user sysadm from 2.139.176.35 port 5545 2019-07-12T22:21:00.769062ssh sshd[25016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.139.176.35 2019-07-12T22:21:00.763664ssh sshd[25016]: Invalid user sysadm from 2.139.176.35 port 5545 2019-07-12T22:21:03.506677ssh sshd[25016]: Failed password for invalid user sysadm from 2.139.176.35 port 5545 ssh2 ...	2019-07-13 17:12:56
46.105.94.103	attackbotsspam	Invalid user sinusbot from 46.105.94.103 port 43832	2019-07-13 17:07:59
216.45.23.6	attackspam	Jul 13 10:37:45 pornomens sshd\[10392\]: Invalid user user from 216.45.23.6 port 39470 Jul 13 10:37:45 pornomens sshd\[10392\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.45.23.6 Jul 13 10:37:47 pornomens sshd\[10392\]: Failed password for invalid user user from 216.45.23.6 port 39470 ssh2 ...	2019-07-13 17:13:45
167.99.200.84	attackbotsspam	Jul 13 10:47:19 localhost sshd\[6891\]: Invalid user guest from 167.99.200.84 port 48072 Jul 13 10:47:19 localhost sshd\[6891\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.200.84 Jul 13 10:47:21 localhost sshd\[6891\]: Failed password for invalid user guest from 167.99.200.84 port 48072 ssh2	2019-07-13 17:24:45
36.89.119.92	attackspam	Invalid user vmail from 36.89.119.92 port 60194	2019-07-13 17:56:14
148.66.142.135	attackbotsspam	Jul 13 10:15:15 debian sshd\[12268\]: Invalid user jerry from 148.66.142.135 port 35500 Jul 13 10:15:15 debian sshd\[12268\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.142.135 ...	2019-07-13 17:27:11
204.48.19.178	attack	Jul 13 11:39:55 srv-4 sshd\[16193\]: Invalid user ftpusr from 204.48.19.178 Jul 13 11:39:55 srv-4 sshd\[16193\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.48.19.178 Jul 13 11:39:56 srv-4 sshd\[16193\]: Failed password for invalid user ftpusr from 204.48.19.178 port 45216 ssh2 ...	2019-07-13 17:16:52
96.9.152.93	attackspambots	Invalid user admin from 96.9.152.93 port 35273	2019-07-13 17:44:22
180.158.162.168	attackbots	Invalid user admin from 180.158.162.168 port 32884	2019-07-13 17:22:21
159.192.107.238	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2019-07-13 17:25:12
159.89.8.230	attack	Invalid user 1111 from 159.89.8.230 port 36282	2019-07-13 17:25:33
138.197.105.79	attackbots	Jul 13 08:46:08 work-partkepr sshd\[2982\]: Invalid user ubuntu from 138.197.105.79 port 52404 Jul 13 08:46:09 work-partkepr sshd\[2982\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.105.79 ...	2019-07-13 17:28:59
202.29.221.202	attackbots	Invalid user irc from 202.29.221.202 port 1642	2019-07-13 17:18:35
115.75.223.25	attackspambots	Invalid user hw from 115.75.223.25 port 35992	2019-07-13 17:37:31
106.247.228.75	attackspam	Automatic report - Banned IP Access	2019-07-13 17:39:51

最近上报的IP列表

222.100.55.129	13.217.143.50	134.209.171.41	180.152.101.53
223.200.71.96	167.86.84.52	190.196.115.100	167.165.226.126
150.107.31.76	63.204.113.154	58.207.54.158	128.93.36.226
125.105.33.60	77.206.180.152	136.43.15.236	168.228.192.166
223.42.178.237	103.94.124.82	220.173.101.66	58.189.159.15