49.145.197.138

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Philippines (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
49.145.197.35	attack	Unauthorized connection attempt from IP address 49.145.197.35 on Port 445(SMB)	2020-07-04 05:34:38
49.145.197.11	attackspambots	Unauthorized connection attempt from IP address 49.145.197.11 on Port 445(SMB)	2020-04-13 18:07:38
49.145.197.22	attackbots	Port probing on unauthorized port 445	2020-02-24 14:49:30
49.145.197.206	attackbots	Honeypot attack, port: 445, PTR: dsl.49.145.197.206.pldt.net.	2020-02-20 15:57:10
49.145.197.19	attackspambots	Unauthorized connection attempt detected from IP address 49.145.197.19 to port 445	2020-01-01 04:47:43
49.145.197.95	attackspam	Unauthorized connection attempt detected from IP address 49.145.197.95 to port 445	2019-12-24 22:42:54
49.145.197.64	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 20-12-2019 14:51:01.	2019-12-21 02:50:39
49.145.197.6	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 20-12-2019 06:25:17.	2019-12-20 20:03:17
49.145.197.177	attackspambots	Forged login request.	2019-12-06 23:44:02

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.145.197.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48788
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.145.197.138.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025030100 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 01 14:07:02 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

138.197.145.49.in-addr.arpa domain name pointer dsl.49.145.197.138.pldt.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
138.197.145.49.in-addr.arpa	name = dsl.49.145.197.138.pldt.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
203.75.29.110	attackbots	Jun 6 03:58:35 gw1 sshd[7644]: Failed password for root from 203.75.29.110 port 36666 ssh2 ...	2020-06-06 07:31:27
116.196.107.128	attackbots	(sshd) Failed SSH login from 116.196.107.128 (CN/China/-): 5 in the last 3600 secs	2020-06-06 07:24:29
164.68.105.228	attack	Jun 3 12:06:38 nxxxxxxx0 sshd[8981]: Did not receive identification string from 164.68.105.228 Jun 3 12:07:38 nxxxxxxx0 sshd[9068]: Address 164.68.105.228 maps to melion.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jun 3 12:07:38 nxxxxxxx0 sshd[9068]: Invalid user soundcode from 164.68.105.228 Jun 3 12:07:38 nxxxxxxx0 sshd[9068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.68.105.228 Jun 3 12:07:40 nxxxxxxx0 sshd[9068]: Failed password for invalid user soundcode from 164.68.105.228 port 34484 ssh2 Jun 3 12:07:40 nxxxxxxx0 sshd[9068]: Received disconnect from 164.68.105.228: 11: Normal Shutdown, Thank you for playing [preauth] Jun 3 12:07:43 nxxxxxxx0 sshd[9072]: Address 164.68.105.228 maps to melion.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jun 3 12:07:43 nxxxxxxx0 sshd[9072]: Invalid user aerospike from 164.68.105.228 Jun 3 12:07:43 nxxxxxxx0 sshd[........ -------------------------------	2020-06-06 07:13:55
61.141.221.236	attack	Jun 5 19:07:31 Tower sshd[5881]: Connection from 61.141.221.236 port 56012 on 192.168.10.220 port 22 rdomain "" Jun 5 19:07:33 Tower sshd[5881]: Failed password for root from 61.141.221.236 port 56012 ssh2 Jun 5 19:07:34 Tower sshd[5881]: Received disconnect from 61.141.221.236 port 56012:11: Bye Bye [preauth] Jun 5 19:07:34 Tower sshd[5881]: Disconnected from authenticating user root 61.141.221.236 port 56012 [preauth]	2020-06-06 07:27:04
185.176.27.62	attackspambots	Jun 5 23:25:50 debian kernel: [291311.778350] [UFW BLOCK] IN=eth0 OUT= MAC=52:54:00:be:e4:65:08:e8:4f:6e:48:0c:08:00 SRC=185.176.27.62 DST=89.252.131.35 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=14238 PROTO=TCP SPT=47856 DPT=20999 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-06 07:20:01
200.53.21.59	attackspam	Honeypot attack, port: 445, PTR: 200-53-21-59.acessoline.net.br.	2020-06-06 07:34:07
49.235.144.143	attackspambots	Jun 5 23:53:42 journals sshd\[122953\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.144.143 user=root Jun 5 23:53:43 journals sshd\[122953\]: Failed password for root from 49.235.144.143 port 39372 ssh2 Jun 5 23:56:03 journals sshd\[123196\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.144.143 user=root Jun 5 23:56:04 journals sshd\[123196\]: Failed password for root from 49.235.144.143 port 38132 ssh2 Jun 5 23:58:24 journals sshd\[123493\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.144.143 user=root ...	2020-06-06 07:18:52
114.43.178.235	attackspam	TCP (SYN) 114.43.178.235:11530 -> port 2323, len 44	2020-06-06 07:36:51
58.87.76.77	attack	SASL PLAIN auth failed: ruser=...	2020-06-06 07:19:30
106.52.115.36	attackbotsspam	SSH bruteforce	2020-06-06 07:20:49
91.234.147.82	attackbots	Honeypot attack, port: 81, PTR: PTR record not found	2020-06-06 07:26:49
112.85.42.178	attackspambots	Jun 6 01:12:49 mail sshd\[12372\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.178 user=root Jun 6 01:12:50 mail sshd\[12372\]: Failed password for root from 112.85.42.178 port 39703 ssh2 Jun 6 01:12:53 mail sshd\[12372\]: Failed password for root from 112.85.42.178 port 39703 ssh2 ...	2020-06-06 07:18:34
139.198.122.19	attackbots	SASL PLAIN auth failed: ruser=...	2020-06-06 07:16:42
91.233.42.38	attackbots	Jun 6 00:03:02 abendstille sshd\[3745\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.233.42.38 user=root Jun 6 00:03:05 abendstille sshd\[3745\]: Failed password for root from 91.233.42.38 port 41744 ssh2 Jun 6 00:06:35 abendstille sshd\[7036\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.233.42.38 user=root Jun 6 00:06:38 abendstille sshd\[7036\]: Failed password for root from 91.233.42.38 port 42783 ssh2 Jun 6 00:10:08 abendstille sshd\[10815\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.233.42.38 user=root ...	2020-06-06 07:34:40
178.128.162.10	attack	Jun 6 01:32:29 legacy sshd[12898]: Failed password for root from 178.128.162.10 port 46208 ssh2 Jun 6 01:35:41 legacy sshd[13007]: Failed password for root from 178.128.162.10 port 48272 ssh2 ...	2020-06-06 07:39:59

最近上报的IP列表

71.36.117.126	245.114.209.84	97.24.92.227	32.22.188.90
6.120.194.177	155.160.78.129	152.79.145.229	6.107.13.147
77.98.141.6	182.149.76.252	91.227.194.197	134.247.106.157
104.171.16.0	194.203.188.243	141.223.51.2	79.3.195.96
55.140.166.72	210.119.169.148	82.244.69.21	117.148.34.102