49.145.4.161 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Philippines

运营商(isp): Philippine Long Distance Telephone Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	1580705258 - 02/03/2020 05:47:38 Host: 49.145.4.161/49.145.4.161 Port: 445 TCP Blocked	2020-02-03 18:44:54

相同子网IP讨论:

IP	类型	评论内容	时间
49.145.45.137	attackbots	Unauthorized connection attempt from IP address 49.145.45.137 on Port 445(SMB)	2020-08-29 18:01:07
49.145.42.13	attack	20/7/28@23:51:43: FAIL: Alarm-Network address from=49.145.42.13 ...	2020-07-29 17:08:28

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.145.4.161
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60833
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.145.4.161.			IN	A

;; AUTHORITY SECTION:
.			179	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020300 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 03 18:44:51 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

161.4.145.49.in-addr.arpa domain name pointer dsl.49.145.4.161.pldt.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
161.4.145.49.in-addr.arpa	name = dsl.49.145.4.161.pldt.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
87.154.248.245	attackbotsspam	Nov 22 09:08:14 mail postfix/smtpd[19305]: warning: p579AF8F5.dip0.t-ipconnect.de[87.154.248.245]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 22 09:11:53 mail postfix/smtpd[19289]: warning: p579AF8F5.dip0.t-ipconnect.de[87.154.248.245]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 22 09:16:16 mail postfix/smtpd[19040]: warning: p579AF8F5.dip0.t-ipconnect.de[87.154.248.245]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-22 18:38:23
78.185.94.67	attack	Nov 22 07:19:54 m2 sshd[17445]: Failed password for r.r from 78.185.94.67 port 40304 ssh2 Nov 22 07:19:56 m2 sshd[17445]: Failed password for r.r from 78.185.94.67 port 40304 ssh2 Nov 22 07:19:58 m2 sshd[17445]: Failed password for r.r from 78.185.94.67 port 40304 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=78.185.94.67	2019-11-22 18:43:35
150.95.217.109	attackbots	SSH brute-force: detected 11 distinct usernames within a 24-hour window.	2019-11-22 18:56:52
74.208.12.196	attackbotsspam	Nov 22 03:45:24 ny01 sshd[330]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.208.12.196 Nov 22 03:45:27 ny01 sshd[330]: Failed password for invalid user guest from 74.208.12.196 port 38122 ssh2 Nov 22 03:48:50 ny01 sshd[647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.208.12.196	2019-11-22 18:54:25
157.47.178.162	attack	RDP Bruteforce	2019-11-22 18:39:31
188.166.31.205	attackbots	Nov 22 06:40:44 ldap01vmsma01 sshd[20106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.31.205 Nov 22 06:40:46 ldap01vmsma01 sshd[20106]: Failed password for invalid user kalash from 188.166.31.205 port 35419 ssh2 ...	2019-11-22 18:47:20
153.3.232.177	attackspambots	Nov 22 14:56:39 vibhu-HP-Z238-Microtower-Workstation sshd\[14336\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.3.232.177 user=root Nov 22 14:56:41 vibhu-HP-Z238-Microtower-Workstation sshd\[14336\]: Failed password for root from 153.3.232.177 port 47498 ssh2 Nov 22 15:01:18 vibhu-HP-Z238-Microtower-Workstation sshd\[14522\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.3.232.177 user=games Nov 22 15:01:20 vibhu-HP-Z238-Microtower-Workstation sshd\[14522\]: Failed password for games from 153.3.232.177 port 50566 ssh2 Nov 22 15:05:55 vibhu-HP-Z238-Microtower-Workstation sshd\[14798\]: Invalid user hiroe from 153.3.232.177 Nov 22 15:05:55 vibhu-HP-Z238-Microtower-Workstation sshd\[14798\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.3.232.177 ...	2019-11-22 18:49:00
190.67.116.12	attackbotsspam	Nov 22 10:33:13 MK-Soft-Root2 sshd[5830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.67.116.12 Nov 22 10:33:15 MK-Soft-Root2 sshd[5830]: Failed password for invalid user abc from 190.67.116.12 port 53518 ssh2 ...	2019-11-22 18:58:27
49.81.203.186	attack	Brute force SMTP login attempts.	2019-11-22 18:36:28
142.217.22.247	attackspam	142.217.22.247 - - [22/Nov/2019:07:23:42 +0100] "GET /awstats.pl?framename=mainright&output=refererpages HTTP/1.1" 404 280 "-" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Maxthon/4.4.8.2000 Chrome/30.0.1599.101 Safari/537.36"	2019-11-22 18:49:26
59.25.197.142	attack	2019-11-22T09:24:31.456784abusebot-5.cloudsearch.cf sshd\[30268\]: Invalid user hp from 59.25.197.142 port 35962	2019-11-22 18:40:32
113.64.117.90	attackspambots	badbot	2019-11-22 18:27:01
1.203.115.141	attackspam	Nov 22 11:14:31 tux-35-217 sshd\[10542\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.203.115.141 user=root Nov 22 11:14:33 tux-35-217 sshd\[10542\]: Failed password for root from 1.203.115.141 port 60122 ssh2 Nov 22 11:18:24 tux-35-217 sshd\[10565\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.203.115.141 user=root Nov 22 11:18:26 tux-35-217 sshd\[10565\]: Failed password for root from 1.203.115.141 port 46897 ssh2 ...	2019-11-22 18:34:34
178.33.130.196	attackspam	Nov 22 11:23:34 server sshd\[29943\]: Invalid user ident from 178.33.130.196 Nov 22 11:23:34 server sshd\[29943\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.130.196 Nov 22 11:23:36 server sshd\[29943\]: Failed password for invalid user ident from 178.33.130.196 port 49176 ssh2 Nov 22 11:45:12 server sshd\[3379\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.130.196 user=root Nov 22 11:45:15 server sshd\[3379\]: Failed password for root from 178.33.130.196 port 55180 ssh2 ...	2019-11-22 18:41:47
206.189.225.85	attackspambots	Nov 22 10:34:33 MK-Soft-VM5 sshd[31779]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.225.85 Nov 22 10:34:35 MK-Soft-VM5 sshd[31779]: Failed password for invalid user test from 206.189.225.85 port 58162 ssh2 ...	2019-11-22 18:47:50

最近上报的IP列表

51.233.85.95	198.57.161.11	169.146.125.218	136.15.1.3
194.206.58.54	1.62.236.132	166.74.150.13	188.170.192.40
139.107.211.110	170.42.147.150	179.48.225.147	168.205.76.35
39.2.37.206	48.150.154.97	63.168.242.122	76.84.83.23
189.180.235.37	17.195.162.238	64.33.68.175	194.57.209.143