49.145.245.197

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Philippines

运营商(isp): Philippine Long Distance Telephone Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Unauthorized connection attempt from IP address 49.145.245.197 on Port 445(SMB)	2020-02-08 01:57:54

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.145.245.197
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21269
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.145.245.197.			IN	A

;; AUTHORITY SECTION:
.			570	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020700 1800 900 604800 86400

;; Query time: 408 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 08 01:57:50 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

197.245.145.49.in-addr.arpa domain name pointer dsl.49.145.245.197.pldt.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
197.245.145.49.in-addr.arpa	name = dsl.49.145.245.197.pldt.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
62.110.66.66	attackspam	5x Failed Password	2019-11-29 23:12:11
49.236.195.48	attackbotsspam	Nov 29 15:54:23 sd-53420 sshd\[22976\]: Invalid user alumni from 49.236.195.48 Nov 29 15:54:23 sd-53420 sshd\[22976\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.236.195.48 Nov 29 15:54:25 sd-53420 sshd\[22976\]: Failed password for invalid user alumni from 49.236.195.48 port 49260 ssh2 Nov 29 15:58:08 sd-53420 sshd\[23546\]: Invalid user named from 49.236.195.48 Nov 29 15:58:08 sd-53420 sshd\[23546\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.236.195.48 ...	2019-11-29 22:59:16
171.229.229.236	attackspambots	port scan and connect, tcp 23 (telnet)	2019-11-29 23:27:22
187.181.25.134	attackbots	187.181.25.134 - - \[29/Nov/2019:16:14:11 +0100\] "POST /wp-login.php HTTP/1.0" 200 2406 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 187.181.25.134 - - \[29/Nov/2019:16:14:14 +0100\] "POST /wp-login.php HTTP/1.0" 200 2364 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 187.181.25.134 - - \[29/Nov/2019:16:14:17 +0100\] "POST /wp-login.php HTTP/1.0" 200 2374 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-11-29 23:22:09
217.27.219.14	attackbots	Unauthorized connection attempt from IP address 217.27.219.14 on Port 25(SMTP)	2019-11-29 23:31:30
213.205.242.151	attackspam	Chat Spam	2019-11-29 22:56:22
51.140.60.221	attackspam	\[2019-11-29 10:12:21\] SECURITY\[2765\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-29T10:12:21.464-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011441603976936",SessionID="0x7f26c48e9848",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/51.140.60.221/57260",ACLName="no_extension_match" \[2019-11-29 10:13:54\] SECURITY\[2765\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-29T10:13:54.215-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="011442038075093",SessionID="0x7f26c4b0adc8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/51.140.60.221/53547",ACLName="no_extension_match" \[2019-11-29 10:14:28\] SECURITY\[2765\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-29T10:14:28.640-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="011442922550332",SessionID="0x7f26c4a9e0e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/51.140.60.221/60735",ACLName="no_ex	2019-11-29 23:17:30
1.23.185.98	attackspam	Nov 29 17:07:41 microserver sshd[50409]: Invalid user luo from 1.23.185.98 port 47090 Nov 29 17:07:41 microserver sshd[50409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.23.185.98 Nov 29 17:07:44 microserver sshd[50409]: Failed password for invalid user luo from 1.23.185.98 port 47090 ssh2 Nov 29 17:07:51 microserver sshd[50417]: Invalid user shao from 1.23.185.98 port 47584 Nov 29 17:07:51 microserver sshd[50417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.23.185.98 Nov 29 17:24:57 microserver sshd[52994]: Invalid user jacob from 1.23.185.98 port 60566 Nov 29 17:24:57 microserver sshd[52994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.23.185.98 Nov 29 17:24:59 microserver sshd[52994]: Failed password for invalid user jacob from 1.23.185.98 port 60566 ssh2 Nov 29 17:25:13 microserver sshd[53370]: Invalid user user from 1.23.185.98 port 60924 Nov 29 17:25:13 microserver s	2019-11-29 23:05:59
128.199.103.239	attackbotsspam	Nov 29 16:10:14 ns381471 sshd[10415]: Failed password for root from 128.199.103.239 port 37604 ssh2	2019-11-29 23:20:54
167.71.56.82	attackspambots	Nov 29 15:37:17 amit sshd\[11236\]: Invalid user user from 167.71.56.82 Nov 29 15:37:17 amit sshd\[11236\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.56.82 Nov 29 15:37:19 amit sshd\[11236\]: Failed password for invalid user user from 167.71.56.82 port 51234 ssh2 ...	2019-11-29 22:54:00
45.55.177.230	attackbots	Nov 29 04:41:25 wbs sshd\[23379\]: Invalid user oracle from 45.55.177.230 Nov 29 04:41:25 wbs sshd\[23379\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.177.230 Nov 29 04:41:26 wbs sshd\[23379\]: Failed password for invalid user oracle from 45.55.177.230 port 43387 ssh2 Nov 29 04:45:35 wbs sshd\[23746\]: Invalid user clicksoccer from 45.55.177.230 Nov 29 04:45:35 wbs sshd\[23746\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.177.230	2019-11-29 22:54:33
46.38.144.179	attackspam	Nov 29 16:02:46 vmanager6029 postfix/smtpd\[19917\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 29 16:03:57 vmanager6029 postfix/smtpd\[19917\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-29 23:06:34
185.209.0.92	attackspam	firewall-block, port(s): 3384/tcp	2019-11-29 23:33:08
80.211.67.90	attackbotsspam	Nov 29 04:42:39 php1 sshd\[3973\]: Invalid user hoem from 80.211.67.90 Nov 29 04:42:39 php1 sshd\[3973\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.67.90 Nov 29 04:42:40 php1 sshd\[3973\]: Failed password for invalid user hoem from 80.211.67.90 port 50896 ssh2 Nov 29 04:46:03 php1 sshd\[4366\]: Invalid user tiou from 80.211.67.90 Nov 29 04:46:03 php1 sshd\[4366\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.67.90	2019-11-29 22:52:29
58.213.166.140	attackspambots	Nov 29 15:29:07 srv206 sshd[20747]: Invalid user xphear from 58.213.166.140 Nov 29 15:29:07 srv206 sshd[20747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.213.166.140 Nov 29 15:29:07 srv206 sshd[20747]: Invalid user xphear from 58.213.166.140 Nov 29 15:29:08 srv206 sshd[20747]: Failed password for invalid user xphear from 58.213.166.140 port 60814 ssh2 ...	2019-11-29 22:55:51

最近上报的IP列表

162.14.20.83	115.59.77.175	37.116.230.78	191.13.91.62
182.253.201.26	82.142.157.34	212.83.136.19	157.47.168.217
124.127.206.4	45.95.168.159	14.226.35.67	36.226.177.21
115.79.199.164	45.125.66.189	109.49.45.132	113.173.45.252
14.177.235.215	14.169.217.14	14.169.108.183	113.173.167.104