168.149.14.245

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Saudi Arabia

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 168.149.14.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17277
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;168.149.14.245.			IN	A

;; AUTHORITY SECTION:
.			427	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110200 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 02 23:19:43 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 245.14.149.168.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 245.14.149.168.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
106.13.93.199	attackspam	Oct 29 02:53:33 h2034429 sshd[20154]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.93.199 user=r.r Oct 29 02:53:35 h2034429 sshd[20154]: Failed password for r.r from 106.13.93.199 port 56200 ssh2 Oct 29 02:53:35 h2034429 sshd[20154]: Received disconnect from 106.13.93.199 port 56200:11: Bye Bye [preauth] Oct 29 02:53:35 h2034429 sshd[20154]: Disconnected from 106.13.93.199 port 56200 [preauth] Oct 29 03:07:55 h2034429 sshd[20239]: Invalid user dev from 106.13.93.199 Oct 29 03:07:55 h2034429 sshd[20239]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.93.199 Oct 29 03:07:57 h2034429 sshd[20239]: Failed password for invalid user dev from 106.13.93.199 port 57472 ssh2 Oct 29 03:07:59 h2034429 sshd[20239]: Received disconnect from 106.13.93.199 port 57472:11: Bye Bye [preauth] Oct 29 03:07:59 h2034429 sshd[20239]: Disconnected from 106.13.93.199 port 57472 [preauth] Oct 29 03:1........ -------------------------------	2019-10-30 18:11:04
82.196.15.195	attackspam	Oct 30 06:59:52 icinga sshd[31356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.196.15.195 Oct 30 06:59:55 icinga sshd[31356]: Failed password for invalid user jk from 82.196.15.195 port 46008 ssh2 ...	2019-10-30 17:49:27
110.16.133.179	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/110.16.133.179/ CN - 1H : (786) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4837 IP : 110.16.133.179 CIDR : 110.16.0.0/16 PREFIX COUNT : 1262 UNIQUE IP COUNT : 56665856 ATTACKS DETECTED ASN4837 : 1H - 16 3H - 39 6H - 68 12H - 147 24H - 308 DateTime : 2019-10-30 04:48:59 INFO : Port SSH 22 Scan Detected and Blocked by ADMIN - data recovery	2019-10-30 18:05:13
182.61.149.31	attackbotsspam	Oct 30 06:41:28 localhost sshd\[28831\]: Invalid user amaillard from 182.61.149.31 port 42952 Oct 30 06:41:28 localhost sshd\[28831\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.149.31 Oct 30 06:41:31 localhost sshd\[28831\]: Failed password for invalid user amaillard from 182.61.149.31 port 42952 ssh2	2019-10-30 17:58:35
36.72.156.102	attackbots	445/tcp [2019-10-30]1pkt	2019-10-30 17:47:23
77.48.60.45	attackspam	Oct 30 10:56:01 dcd-gentoo sshd[6098]: User root from 77.48.60.45 not allowed because none of user's groups are listed in AllowGroups Oct 30 10:56:03 dcd-gentoo sshd[6098]: error: PAM: Authentication failure for illegal user root from 77.48.60.45 Oct 30 10:56:01 dcd-gentoo sshd[6098]: User root from 77.48.60.45 not allowed because none of user's groups are listed in AllowGroups Oct 30 10:56:03 dcd-gentoo sshd[6098]: error: PAM: Authentication failure for illegal user root from 77.48.60.45 Oct 30 10:56:01 dcd-gentoo sshd[6098]: User root from 77.48.60.45 not allowed because none of user's groups are listed in AllowGroups Oct 30 10:56:03 dcd-gentoo sshd[6098]: error: PAM: Authentication failure for illegal user root from 77.48.60.45 Oct 30 10:56:03 dcd-gentoo sshd[6098]: Failed keyboard-interactive/pam for invalid user root from 77.48.60.45 port 53296 ssh2 ...	2019-10-30 18:18:47
222.99.10.125	attackspam	22/tcp [2019-10-30]1pkt	2019-10-30 18:16:45
103.45.178.205	attackbotsspam	Oct 30 06:47:52 firewall sshd[15974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.178.205 user=root Oct 30 06:47:54 firewall sshd[15974]: Failed password for root from 103.45.178.205 port 57783 ssh2 Oct 30 06:52:30 firewall sshd[16029]: Invalid user mcm from 103.45.178.205 ...	2019-10-30 18:11:26
142.93.39.177	attack	5007/tcp [2019-10-30]1pkt	2019-10-30 17:55:00
203.177.70.171	attackbotsspam	Oct 30 16:26:21 webhost01 sshd[16812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.177.70.171 Oct 30 16:26:23 webhost01 sshd[16812]: Failed password for invalid user temp from 203.177.70.171 port 51898 ssh2 ...	2019-10-30 18:17:34
222.186.175.202	attackspam	Oct 30 11:10:20 nextcloud sshd\[28285\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202 user=root Oct 30 11:10:22 nextcloud sshd\[28285\]: Failed password for root from 222.186.175.202 port 58700 ssh2 Oct 30 11:10:26 nextcloud sshd\[28285\]: Failed password for root from 222.186.175.202 port 58700 ssh2 ...	2019-10-30 18:13:08
148.70.63.175	attack	/var/log/messages:Oct 29 00:10:52 sanyalnet-cloud-vps audispd: node=sanyalnet-cloud-vps.freeddns.org type=CRYPTO_SESSION msg=audhostname(1572307852.525:104027): pid=4951 uid=0 auid=4294967295 ses=4294967295 msg='op=start direction=from-server cipher=aes256-ctr ksize=256 mac=hmac-sha1 pfs=ecdh-sha2-nistp256 spid=4952 suid=74 rport=41788 laddr=104.167.106.93 lport=22 exe="/usr/sbin/sshd" hostname=? addr=148.70.63.175 terminal=? res=success' /var/log/messages:Oct 29 00:10:52 sanyalnet-cloud-vps audispd: node=sanyalnet-cloud-vps.freeddns.org type=CRYPTO_SESSION msg=audhostname(1572307852.529:104028): pid=4951 uid=0 auid=4294967295 ses=4294967295 msg='op=start direction=from-client cipher=aes256-ctr ksize=256 mac=hmac-sha1 pfs=ecdh-sha2-nistp256 spid=4952 suid=74 rport=41788 laddr=104.167.106.93 lport=22 exe="/usr/sbin/sshd" hostname=? addr=148.70.63.175 terminal=? res=success' /var/log/messages:Oct 29 00:10:54 sanyalnet-cloud-vps fail2ban.filter[1538]: INFO [sshd] Found 1........ -------------------------------	2019-10-30 17:49:07
162.248.4.10	attackbots	Automatic report - XMLRPC Attack	2019-10-30 17:48:00
178.128.81.60	attackspam	Invalid user 1 from 178.128.81.60 port 42032	2019-10-30 18:15:56
31.19.17.165	attack	23/tcp [2019-10-30]1pkt	2019-10-30 18:08:51

最近上报的IP列表

106.185.50.148	171.195.240.241	161.117.198.128	158.105.223.133
79.163.181.172	42.139.129.58	8.156.241.191	108.48.19.182
101.240.89.38	163.189.109.225	183.166.69.168	138.123.38.101
32.120.119.151	10.210.98.46	236.106.105.118	254.189.255.241
32.224.153.183	217.166.28.218	180.149.230.226	117.194.128.0