49.145.245.197

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Philippines

运营商(isp): Philippine Long Distance Telephone Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Unauthorized connection attempt from IP address 49.145.245.197 on Port 445(SMB)	2020-02-08 01:57:54

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.145.245.197
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21269
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.145.245.197.			IN	A

;; AUTHORITY SECTION:
.			570	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020700 1800 900 604800 86400

;; Query time: 408 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 08 01:57:50 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

197.245.145.49.in-addr.arpa domain name pointer dsl.49.145.245.197.pldt.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
197.245.145.49.in-addr.arpa	name = dsl.49.145.245.197.pldt.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
187.74.217.152	attackspam	2020-07-10T03:50:32.589705abusebot-2.cloudsearch.cf sshd[17211]: Invalid user fektist from 187.74.217.152 port 37156 2020-07-10T03:50:32.603269abusebot-2.cloudsearch.cf sshd[17211]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.74.217.152 2020-07-10T03:50:32.589705abusebot-2.cloudsearch.cf sshd[17211]: Invalid user fektist from 187.74.217.152 port 37156 2020-07-10T03:50:34.574545abusebot-2.cloudsearch.cf sshd[17211]: Failed password for invalid user fektist from 187.74.217.152 port 37156 ssh2 2020-07-10T03:55:35.570235abusebot-2.cloudsearch.cf sshd[17214]: Invalid user dory from 187.74.217.152 port 34422 2020-07-10T03:55:35.580591abusebot-2.cloudsearch.cf sshd[17214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.74.217.152 2020-07-10T03:55:35.570235abusebot-2.cloudsearch.cf sshd[17214]: Invalid user dory from 187.74.217.152 port 34422 2020-07-10T03:55:37.481576abusebot-2.cloudsearch.cf sshd[172 ...	2020-07-10 13:59:17
85.26.140.34	attack	(imapd) Failed IMAP login from 85.26.140.34 (RU/Russia/ip-85-26-140-34.nwgsm.ru): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Jul 10 10:20:39 ir1 dovecot[2885757]: imap-login: Disconnected (auth failed, 1 attempts in 5 secs): user=, method=PLAIN, rip=85.26.140.34, lip=5.63.12.44, TLS, session=	2020-07-10 13:57:35
51.91.105.6	attackbotsspam	51.91.105.6 - - [10/Jul/2020:07:45:18 +0200] "POST /xmlrpc.php HTTP/1.1" 403 15004 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.91.105.6 - - [10/Jul/2020:08:14:52 +0200] "POST /xmlrpc.php HTTP/1.1" 403 15003 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-10 14:36:51
193.70.39.135	attackspambots	Jul 10 06:07:26 h2779839 sshd[30573]: Invalid user denice from 193.70.39.135 port 53068 Jul 10 06:07:26 h2779839 sshd[30573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.39.135 Jul 10 06:07:26 h2779839 sshd[30573]: Invalid user denice from 193.70.39.135 port 53068 Jul 10 06:07:28 h2779839 sshd[30573]: Failed password for invalid user denice from 193.70.39.135 port 53068 ssh2 Jul 10 06:10:29 h2779839 sshd[30686]: Invalid user www from 193.70.39.135 port 49104 Jul 10 06:10:29 h2779839 sshd[30686]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.39.135 Jul 10 06:10:29 h2779839 sshd[30686]: Invalid user www from 193.70.39.135 port 49104 Jul 10 06:10:31 h2779839 sshd[30686]: Failed password for invalid user www from 193.70.39.135 port 49104 ssh2 Jul 10 06:13:41 h2779839 sshd[30812]: Invalid user bernhard from 193.70.39.135 port 45140 ...	2020-07-10 14:21:07
162.243.129.115	attack	Port Scan detected from 162.243.129.115 (US/United States/California/San Francisco/zg-0708b-344.stretchoid.com). 4 hits in the last 275 seconds	2020-07-10 14:21:40
213.171.53.158	attackbots	$f2bV_matches	2020-07-10 14:08:05
124.160.96.249	attack	Icarus honeypot on github	2020-07-10 14:27:53
35.201.225.235	attackspam	Jul 10 13:36:30 webhost01 sshd[17885]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.201.225.235 Jul 10 13:36:31 webhost01 sshd[17885]: Failed password for invalid user user from 35.201.225.235 port 58998 ssh2 ...	2020-07-10 14:38:14
106.52.176.118	attackbotsspam	Jul 10 01:56:24 george sshd[8701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.176.118 user=nagios Jul 10 01:56:26 george sshd[8701]: Failed password for nagios from 106.52.176.118 port 58706 ssh2 Jul 10 02:00:18 george sshd[8784]: Invalid user guest3 from 106.52.176.118 port 45430 Jul 10 02:00:18 george sshd[8784]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.176.118 Jul 10 02:00:20 george sshd[8784]: Failed password for invalid user guest3 from 106.52.176.118 port 45430 ssh2 ...	2020-07-10 14:37:47
2.48.3.18	attackbotsspam	2020-07-10T06:03:37.336980shield sshd\[6936\]: Invalid user kiri from 2.48.3.18 port 41910 2020-07-10T06:03:37.345369shield sshd\[6936\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.48.3.18 2020-07-10T06:03:39.185289shield sshd\[6936\]: Failed password for invalid user kiri from 2.48.3.18 port 41910 ssh2 2020-07-10T06:07:19.542653shield sshd\[8141\]: Invalid user dvd from 2.48.3.18 port 51144 2020-07-10T06:07:19.551476shield sshd\[8141\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.48.3.18	2020-07-10 14:09:31
189.91.5.209	attackspam	SSH invalid-user multiple login try	2020-07-10 14:23:50
69.131.62.50	attack	SSH invalid-user multiple login try	2020-07-10 14:24:26
61.177.172.54	attack	$f2bV_matches	2020-07-10 14:05:41
186.4.222.45	attackspam	2020-07-10T04:05:34.467253shield sshd\[26510\]: Invalid user zhong from 186.4.222.45 port 34746 2020-07-10T04:05:34.476854shield sshd\[26510\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host-186-4-222-45.netlife.ec 2020-07-10T04:05:36.954822shield sshd\[26510\]: Failed password for invalid user zhong from 186.4.222.45 port 34746 ssh2 2020-07-10T04:09:23.096437shield sshd\[28051\]: Invalid user val from 186.4.222.45 port 60838 2020-07-10T04:09:23.104943shield sshd\[28051\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host-186-4-222-45.netlife.ec	2020-07-10 14:35:32
83.48.89.147	attackspam	Jul 10 01:43:42 george sshd[6841]: Failed password for invalid user rr from 83.48.89.147 port 49535 ssh2 Jul 10 01:46:51 george sshd[6876]: Invalid user binjie from 83.48.89.147 port 48170 Jul 10 01:46:51 george sshd[6876]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.48.89.147 Jul 10 01:46:53 george sshd[6876]: Failed password for invalid user binjie from 83.48.89.147 port 48170 ssh2 Jul 10 01:50:05 george sshd[6918]: Invalid user teraria from 83.48.89.147 port 46807 ...	2020-07-10 14:28:05

最近上报的IP列表

162.14.20.83	115.59.77.175	37.116.230.78	191.13.91.62
182.253.201.26	82.142.157.34	212.83.136.19	157.47.168.217
124.127.206.4	45.95.168.159	14.226.35.67	36.226.177.21
115.79.199.164	45.125.66.189	109.49.45.132	113.173.45.252
14.177.235.215	14.169.217.14	14.169.108.183	113.173.167.104