49.145.197.11 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Philippines

运营商(isp): Philippine Long Distance Telephone Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Unauthorized connection attempt from IP address 49.145.197.11 on Port 445(SMB)	2020-04-13 18:07:38

相同子网IP讨论:

IP	类型	评论内容	时间
49.145.197.35	attack	Unauthorized connection attempt from IP address 49.145.197.35 on Port 445(SMB)	2020-07-04 05:34:38
49.145.197.22	attackbots	Port probing on unauthorized port 445	2020-02-24 14:49:30
49.145.197.206	attackbots	Honeypot attack, port: 445, PTR: dsl.49.145.197.206.pldt.net.	2020-02-20 15:57:10
49.145.197.19	attackspambots	Unauthorized connection attempt detected from IP address 49.145.197.19 to port 445	2020-01-01 04:47:43
49.145.197.95	attackspam	Unauthorized connection attempt detected from IP address 49.145.197.95 to port 445	2019-12-24 22:42:54
49.145.197.64	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 20-12-2019 14:51:01.	2019-12-21 02:50:39
49.145.197.6	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 20-12-2019 06:25:17.	2019-12-20 20:03:17
49.145.197.177	attackspambots	Forged login request.	2019-12-06 23:44:02

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.145.197.11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52374
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.145.197.11.			IN	A

;; AUTHORITY SECTION:
.			558	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041300 1800 900 604800 86400

;; Query time: 94 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 13 18:07:34 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

11.197.145.49.in-addr.arpa domain name pointer dsl.49.145.197.11.pldt.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
11.197.145.49.in-addr.arpa	name = dsl.49.145.197.11.pldt.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
175.139.242.49	attackspambots	Sep 3 10:11:15 plex sshd[20278]: Invalid user hs from 175.139.242.49 port 1938	2019-09-03 16:26:57
49.88.112.114	attack	Sep 3 10:14:27 bouncer sshd\[19731\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114 user=root Sep 3 10:14:29 bouncer sshd\[19731\]: Failed password for root from 49.88.112.114 port 38439 ssh2 Sep 3 10:14:31 bouncer sshd\[19731\]: Failed password for root from 49.88.112.114 port 38439 ssh2 ...	2019-09-03 16:21:08
103.78.214.7	attackbotsspam	8080/tcp [2019-09-03]1pkt	2019-09-03 16:15:44
64.192.91.3	attackspam	Automatic report - Banned IP Access	2019-09-03 16:10:05
14.136.118.138	attack	Automatic report - Banned IP Access	2019-09-03 16:05:59
51.91.36.28	attackspam	2019-09-03T07:31:05.606770abusebot-7.cloudsearch.cf sshd\[25714\]: Invalid user belea from 51.91.36.28 port 49814	2019-09-03 15:38:31
14.161.16.62	attack	Sep 2 18:59:36 tdfoods sshd\[23010\]: Invalid user gast. from 14.161.16.62 Sep 2 18:59:36 tdfoods sshd\[23010\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.16.62 Sep 2 18:59:38 tdfoods sshd\[23010\]: Failed password for invalid user gast. from 14.161.16.62 port 60962 ssh2 Sep 2 19:04:15 tdfoods sshd\[23948\]: Invalid user lmx from 14.161.16.62 Sep 2 19:04:15 tdfoods sshd\[23948\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.16.62	2019-09-03 15:47:09
58.218.66.118	attack	Forbidden directory scan :: 2019/09/03 10:02:49 [error] 7635#7635: *500392 access forbidden by rule, client: 58.218.66.118, server: [censored_1], request: "GET //install/index.php.bak?step=11	2019-09-03 15:55:27
171.84.2.4	attackbots	Fail2Ban Ban Triggered	2019-09-03 16:08:36
61.174.252.201	attackbotsspam	204 attacks on PHP URLs: 61.174.252.201 - - [02/Sep/2019:15:24:27 +0100] "GET /mysql/mysqlmanager/index.php HTTP/1.1" 403 1251 "-" "Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0)"	2019-09-03 15:56:01
2.53.9.188	attackbotsspam	Chat Spam	2019-09-03 16:07:41
58.171.108.172	attackspam	Sep 3 10:18:43 mail sshd\[9188\]: Invalid user git from 58.171.108.172 port 40690 Sep 3 10:18:43 mail sshd\[9188\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.171.108.172 Sep 3 10:18:45 mail sshd\[9188\]: Failed password for invalid user git from 58.171.108.172 port 40690 ssh2 Sep 3 10:24:44 mail sshd\[10074\]: Invalid user school from 58.171.108.172 port 20498 Sep 3 10:24:44 mail sshd\[10074\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.171.108.172	2019-09-03 16:26:19
119.29.242.84	attack	Sep 2 22:06:38 friendsofhawaii sshd\[1669\]: Invalid user dp from 119.29.242.84 Sep 2 22:06:38 friendsofhawaii sshd\[1669\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.242.84 Sep 2 22:06:40 friendsofhawaii sshd\[1669\]: Failed password for invalid user dp from 119.29.242.84 port 48892 ssh2 Sep 2 22:11:21 friendsofhawaii sshd\[2188\]: Invalid user skywalkr from 119.29.242.84 Sep 2 22:11:21 friendsofhawaii sshd\[2188\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.242.84	2019-09-03 16:21:58
141.98.81.111	attack	19/9/3@04:11:21: FAIL: IoT-SSH address from=141.98.81.111 ...	2019-09-03 16:21:27
68.183.236.29	attackbotsspam	Sep 3 00:59:31 dedicated sshd[4332]: Invalid user user from 68.183.236.29 port 47070	2019-09-03 15:37:53

最近上报的IP列表

167.172.145.243	116.241.7.104	113.210.200.154	159.152.25.121
222.247.113.142	176.15.120.136	99.16.240.182	159.224.189.40
14.190.30.127	200.108.165.10	193.37.212.100	51.178.2.79
160.156.46.123	14.170.106.10	78.189.202.253	49.235.142.79
103.145.12.66	85.117.32.86	202.88.216.242	180.101.248.148