49.145.196.254

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Philippines

运营商(isp): Philippine Long Distance Telephone Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt from IP address 49.145.196.254 on Port 445(SMB)	2020-06-15 15:17:30

相同子网IP讨论:

IP	类型	评论内容	时间
49.145.196.89	attackspam	query suspecte, Sniffing for wordpress log:/wp-login.php	2020-09-01 15:43:32
49.145.196.64	attackspambots	Honeypot attack, port: 445, PTR: dsl.49.145.196.64.pldt.net.	2020-02-01 23:56:29

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.145.196.254
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14275
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.145.196.254.			IN	A

;; AUTHORITY SECTION:
.			221	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061500 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 15 15:17:19 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

254.196.145.49.in-addr.arpa domain name pointer dsl.49.145.196.254.pldt.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
254.196.145.49.in-addr.arpa	name = dsl.49.145.196.254.pldt.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
122.163.42.24	attackspam	Unauthorized connection attempt from IP address 122.163.42.24 on Port 445(SMB)	2020-06-17 22:29:02
193.109.225.250	attackbotsspam	2020-06-17T13:43:30.105818MailD postfix/smtpd[6944]: NOQUEUE: reject: RCPT from smtp03.inteligo.pl[193.109.225.250]: 554 5.7.1 : Relay access denied; from= to= proto=ESMTP helo= 2020-06-17T13:43:31.955635MailD postfix/smtpd[6944]: NOQUEUE: reject: RCPT from smtp03.inteligo.pl[193.109.225.250]: 554 5.7.1 : Relay access denied; from= to= proto=ESMTP helo= 2020-06-17T14:03:32.758519MailD postfix/smtpd[8590]: NOQUEUE: reject: RCPT from smtp03.inteligo.pl[193.109.225.250]: 554 5.7.1 : Relay access denied; from= to= proto=ESMTP helo=	2020-06-17 22:21:14
202.70.72.217	attackspam	Failed password for invalid user postgres from 202.70.72.217 port 55038 ssh2	2020-06-17 22:46:06
222.186.175.167	attackbots	2020-06-17T14:04:13.983071shield sshd\[19259\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.167 user=root 2020-06-17T14:04:15.894866shield sshd\[19259\]: Failed password for root from 222.186.175.167 port 24174 ssh2 2020-06-17T14:04:18.905815shield sshd\[19259\]: Failed password for root from 222.186.175.167 port 24174 ssh2 2020-06-17T14:04:22.333517shield sshd\[19259\]: Failed password for root from 222.186.175.167 port 24174 ssh2 2020-06-17T14:04:25.506853shield sshd\[19259\]: Failed password for root from 222.186.175.167 port 24174 ssh2	2020-06-17 22:29:22
222.186.175.216	attackbotsspam	Jun 17 16:28:13 vmd48417 sshd[11727]: Failed password for root from 222.186.175.216 port 36586 ssh2	2020-06-17 22:34:44
158.69.223.91	attack	Jun 17 11:55:06 pbkit sshd[105577]: Invalid user oc from 158.69.223.91 port 59487 Jun 17 11:55:08 pbkit sshd[105577]: Failed password for invalid user oc from 158.69.223.91 port 59487 ssh2 Jun 17 12:03:40 pbkit sshd[105900]: Invalid user marilia from 158.69.223.91 port 57071 ...	2020-06-17 22:16:38
110.93.240.71	attackspambots	Unauthorized connection attempt from IP address 110.93.240.71 on Port 445(SMB)	2020-06-17 22:49:54
191.102.83.164	attackbotsspam	Jun 17 13:59:28 abendstille sshd\[9048\]: Invalid user www from 191.102.83.164 Jun 17 13:59:28 abendstille sshd\[9048\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.102.83.164 Jun 17 13:59:30 abendstille sshd\[9048\]: Failed password for invalid user www from 191.102.83.164 port 16865 ssh2 Jun 17 14:03:09 abendstille sshd\[12823\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.102.83.164 user=root Jun 17 14:03:10 abendstille sshd\[12823\]: Failed password for root from 191.102.83.164 port 45153 ssh2 ...	2020-06-17 22:43:09
118.24.13.248	attackspam	Jun 17 16:10:45 ns381471 sshd[30301]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.13.248 Jun 17 16:10:46 ns381471 sshd[30301]: Failed password for invalid user neve from 118.24.13.248 port 39652 ssh2	2020-06-17 22:54:18
109.94.171.132	attackspam	Lines containing failures of 109.94.171.132 Jun 17 13:37:07 shared10 sshd[1852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.94.171.132 user=r.r Jun 17 13:37:09 shared10 sshd[1852]: Failed password for r.r from 109.94.171.132 port 46508 ssh2 Jun 17 13:37:09 shared10 sshd[1852]: Received disconnect from 109.94.171.132 port 46508:11: Bye Bye [preauth] Jun 17 13:37:09 shared10 sshd[1852]: Disconnected from authenticating user r.r 109.94.171.132 port 46508 [preauth] Jun 17 13:53:00 shared10 sshd[7638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.94.171.132 user=r.r Jun 17 13:53:03 shared10 sshd[7638]: Failed password for r.r from 109.94.171.132 port 57542 ssh2 Jun 17 13:53:03 shared10 sshd[7638]: Received disconnect from 109.94.171.132 port 57542:11: Bye Bye [preauth] Jun 17 13:53:03 shared10 sshd[7638]: Disconnected from authenticating user r.r 109.94.171.132 port 57542 [preaut........ ------------------------------	2020-06-17 22:50:36
37.187.3.145	attackspambots	Jun 17 16:53:59 ns381471 sshd[32256]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.3.145 Jun 17 16:54:01 ns381471 sshd[32256]: Failed password for invalid user user1 from 37.187.3.145 port 39166 ssh2	2020-06-17 23:00:18
94.84.154.130	attack	Unauthorized connection attempt from IP address 94.84.154.130 on Port 445(SMB)	2020-06-17 22:26:06
61.177.172.159	attackspam	Jun 17 14:30:33 localhost sshd[14094]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.159 user=root Jun 17 14:30:35 localhost sshd[14094]: Failed password for root from 61.177.172.159 port 51583 ssh2 Jun 17 14:30:38 localhost sshd[14094]: Failed password for root from 61.177.172.159 port 51583 ssh2 Jun 17 14:30:33 localhost sshd[14094]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.159 user=root Jun 17 14:30:35 localhost sshd[14094]: Failed password for root from 61.177.172.159 port 51583 ssh2 Jun 17 14:30:38 localhost sshd[14094]: Failed password for root from 61.177.172.159 port 51583 ssh2 Jun 17 14:30:33 localhost sshd[14094]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.159 user=root Jun 17 14:30:35 localhost sshd[14094]: Failed password for root from 61.177.172.159 port 51583 ssh2 Jun 17 14:30:38 localhost sshd[14094]: Fa ...	2020-06-17 22:34:13
218.92.0.219	attackspam	2020-06-17T14:22:06.576084shield sshd\[22875\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.219 user=root 2020-06-17T14:22:09.117497shield sshd\[22875\]: Failed password for root from 218.92.0.219 port 40722 ssh2 2020-06-17T14:22:12.176703shield sshd\[22875\]: Failed password for root from 218.92.0.219 port 40722 ssh2 2020-06-17T14:22:14.453531shield sshd\[22875\]: Failed password for root from 218.92.0.219 port 40722 ssh2 2020-06-17T14:22:46.590686shield sshd\[22962\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.219 user=root	2020-06-17 22:23:21
213.79.91.102	attack	Unauthorized connection attempt from IP address 213.79.91.102 on Port 445(SMB)	2020-06-17 22:30:02

最近上报的IP列表

49.51.168.147	134.17.89.54	59.125.182.209	167.114.114.114
115.93.203.70	40.69.153.24	211.45.238.79	91.207.74.92
185.200.53.188	128.199.108.248	203.69.87.151	192.35.168.92
67.191.206.102	191.243.210.16	190.152.5.158	46.28.70.225
103.91.67.28	62.31.252.38	193.95.247.90	177.215.76.214