196.216.49.158

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Angola

运营商(isp): Paratus Telecom

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Unauthorized connection attempt from IP address 196.216.49.158 on Port 445(SMB)	2020-07-15 14:22:21

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 196.216.49.158
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32915
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;196.216.49.158.			IN	A

;; AUTHORITY SECTION:
.			464	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020071500 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jul 15 14:22:15 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

158.49.216.196.in-addr.arpa domain name pointer friedlander-new-yard-sonils.cust.ao.afrisp.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
158.49.216.196.in-addr.arpa	name = friedlander-new-yard-sonils.cust.ao.afrisp.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
118.24.208.67	attackbots	$f2bV_matches	2019-12-20 02:39:00
35.188.242.129	attack	2019-12-19T14:57:57.086845homeassistant sshd[24758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.188.242.129 user=root 2019-12-19T14:57:59.307613homeassistant sshd[24758]: Failed password for root from 35.188.242.129 port 45038 ssh2 ...	2019-12-20 03:10:15
182.156.209.222	attackbots	$f2bV_matches	2019-12-20 02:45:51
139.59.211.245	attackbots	$f2bV_matches	2019-12-20 02:39:52
94.158.36.171	attackspam	Automatic report - Port Scan	2019-12-20 02:53:15
68.183.204.162	attackspambots	Dec 19 08:30:31 web9 sshd\[11929\]: Invalid user pass124 from 68.183.204.162 Dec 19 08:30:31 web9 sshd\[11929\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.204.162 Dec 19 08:30:34 web9 sshd\[11929\]: Failed password for invalid user pass124 from 68.183.204.162 port 42466 ssh2 Dec 19 08:35:49 web9 sshd\[12659\]: Invalid user amann from 68.183.204.162 Dec 19 08:35:49 web9 sshd\[12659\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.204.162	2019-12-20 02:50:14
213.32.91.37	attack	Dec 19 09:03:47 kapalua sshd\[4287\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.ip-213-32-91.eu user=mysql Dec 19 09:03:49 kapalua sshd\[4287\]: Failed password for mysql from 213.32.91.37 port 50466 ssh2 Dec 19 09:08:36 kapalua sshd\[4923\]: Invalid user loredana from 213.32.91.37 Dec 19 09:08:36 kapalua sshd\[4923\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.ip-213-32-91.eu Dec 19 09:08:38 kapalua sshd\[4923\]: Failed password for invalid user loredana from 213.32.91.37 port 56282 ssh2	2019-12-20 03:08:52
183.111.227.199	attack	SSH bruteforce	2019-12-20 02:53:45
51.38.33.178	attackbots	Dec 19 18:09:21 meumeu sshd[27336]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.33.178 Dec 19 18:09:22 meumeu sshd[27336]: Failed password for invalid user leland from 51.38.33.178 port 37152 ssh2 Dec 19 18:14:30 meumeu sshd[27993]: Failed password for root from 51.38.33.178 port 40431 ssh2 ...	2019-12-20 02:54:44
200.111.137.132	attack	Dec 19 16:02:46 vps647732 sshd[2388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.111.137.132 Dec 19 16:02:48 vps647732 sshd[2388]: Failed password for invalid user a1775b from 200.111.137.132 port 42770 ssh2 ...	2019-12-20 02:57:21
198.20.103.245	attackbotsspam	" "	2019-12-20 03:01:23
80.211.61.236	attackspambots	Dec 19 08:33:23 kapalua sshd\[1104\]: Invalid user production from 80.211.61.236 Dec 19 08:33:23 kapalua sshd\[1104\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.61.236 Dec 19 08:33:24 kapalua sshd\[1104\]: Failed password for invalid user production from 80.211.61.236 port 52302 ssh2 Dec 19 08:38:36 kapalua sshd\[1584\]: Invalid user kevin from 80.211.61.236 Dec 19 08:38:36 kapalua sshd\[1584\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.61.236	2019-12-20 02:45:29
61.38.37.74	attackbots	Dec 19 19:10:59 localhost sshd\[41635\]: Invalid user soloki from 61.38.37.74 port 36278 Dec 19 19:10:59 localhost sshd\[41635\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.38.37.74 Dec 19 19:11:01 localhost sshd\[41635\]: Failed password for invalid user soloki from 61.38.37.74 port 36278 ssh2 Dec 19 19:17:02 localhost sshd\[41813\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.38.37.74 user=root Dec 19 19:17:05 localhost sshd\[41813\]: Failed password for root from 61.38.37.74 port 44130 ssh2 ...	2019-12-20 03:17:23
125.227.236.60	attackspam	Dec 19 07:41:41 tdfoods sshd\[12533\]: Invalid user albino from 125.227.236.60 Dec 19 07:41:41 tdfoods sshd\[12533\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125-227-236-60.hinet-ip.hinet.net Dec 19 07:41:43 tdfoods sshd\[12533\]: Failed password for invalid user albino from 125.227.236.60 port 53888 ssh2 Dec 19 07:47:32 tdfoods sshd\[13102\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125-227-236-60.hinet-ip.hinet.net user=bin Dec 19 07:47:35 tdfoods sshd\[13102\]: Failed password for bin from 125.227.236.60 port 60044 ssh2	2019-12-20 02:49:26
200.71.55.143	attackspam	Dec 19 12:37:54 firewall sshd[2389]: Invalid user admin from 200.71.55.143 Dec 19 12:37:56 firewall sshd[2389]: Failed password for invalid user admin from 200.71.55.143 port 59073 ssh2 Dec 19 12:44:56 firewall sshd[2476]: Invalid user asterisk from 200.71.55.143 ...	2019-12-20 02:47:50

最近上报的IP列表

241.9.152.142	245.121.244.155	130.50.237.27	25.209.136.168
155.108.31.91	52.143.184.104	52.188.158.119	52.161.102.241
0.159.108.239	5.228.183.194	52.188.150.208	178.133.223.170
52.175.56.56	1.4.128.47	186.7.57.212	104.210.105.222
70.37.70.119	51.141.41.105	58.186.78.41	40.87.100.178