必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Thailand

运营商(isp): Triple T Internet PCL

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:
类型 评论内容 时间
attackbots
MultiHost/MultiPort Probe, Scan, Hack -
2020-02-18 16:33:34
相同子网IP讨论:
IP 类型 评论内容 时间
49.49.245.225 attackspambots
WordPress brute force
2020-08-25 05:37:17
49.49.245.40 attack
Unauthorized connection attempt from IP address 49.49.245.40 on Port 445(SMB)
2020-08-22 03:34:33
49.49.245.93 attackspambots
Unauthorised access (May 24) SRC=49.49.245.93 LEN=52 TTL=114 ID=15200 DF TCP DPT=445 WINDOW=8192 SYN
2020-05-25 04:29:23
49.49.245.84 attackspam
Invalid user admin from 49.49.245.84 port 51591
2020-05-23 12:31:17
49.49.245.103 attackbots
Lines containing failures of 49.49.245.103
Jan 17 13:48:06 shared05 sshd[8729]: Invalid user ubnt from 49.49.245.103 port 30995
Jan 17 13:48:07 shared05 sshd[8729]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.49.245.103
Jan 17 13:48:08 shared05 sshd[8729]: Failed password for invalid user ubnt from 49.49.245.103 port 30995 ssh2
Jan 17 13:48:09 shared05 sshd[8729]: Connection closed by invalid user ubnt 49.49.245.103 port 30995 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=49.49.245.103
2020-01-17 22:02:11
49.49.245.71 attackbots
Unauthorized connection attempt detected from IP address 49.49.245.71 to port 445
2020-01-02 20:50:45
49.49.245.155 attack
Dec  1 12:05:11 nginx sshd[74095]: Invalid user admin from 49.49.245.155
Dec  1 12:05:11 nginx sshd[74095]: Connection closed by 49.49.245.155 port 59906 [preauth]
2019-12-01 20:56:41
49.49.245.132 attackbots
445/tcp
[2019-11-06]1pkt
2019-11-06 14:19:45
49.49.245.5 attackbotsspam
Sat, 20 Jul 2019 21:55:27 +0000 likely compromised host or open proxy. ddos rate spidering
2019-07-21 10:28:54
49.49.245.238 attackbotsspam
php WP PHPmyadamin ABUSE blocked for 12h
2019-07-02 12:41:22
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.49.245.78
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20442
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.49.245.78.			IN	A

;; AUTHORITY SECTION:
.			196	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021801 1800 900 604800 86400

;; Query time: 436 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 18 16:33:31 CST 2020
;; MSG SIZE  rcvd: 116
HOST信息:
78.245.49.49.in-addr.arpa domain name pointer mx-ll-49.49.245-78.dynamic.3bb.in.th.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
78.245.49.49.in-addr.arpa	name = mx-ll-49.49.245-78.dynamic.3bb.co.th.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
51.255.35.58 attackspam
Sep 13 00:39:29 hb sshd\[22029\]: Invalid user admin from 51.255.35.58
Sep 13 00:39:29 hb sshd\[22029\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.ip-51-255-35.eu
Sep 13 00:39:31 hb sshd\[22029\]: Failed password for invalid user admin from 51.255.35.58 port 34533 ssh2
Sep 13 00:43:27 hb sshd\[22343\]: Invalid user csgoserver from 51.255.35.58
Sep 13 00:43:27 hb sshd\[22343\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.ip-51-255-35.eu
2019-09-13 08:50:38
90.94.133.38 attackspambots
Automatic report - Port Scan Attack
2019-09-13 08:27:17
189.68.60.142 attack
Lines containing failures of 189.68.60.142
Sep 11 05:19:44 *** sshd[15218]: Invalid user admin from 189.68.60.142 port 41374
Sep 11 05:19:44 *** sshd[15218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.68.60.142
Sep 11 05:19:46 *** sshd[15218]: Failed password for invalid user admin from 189.68.60.142 port 41374 ssh2
Sep 11 05:19:46 *** sshd[15218]: Received disconnect from 189.68.60.142 port 41374:11: Bye Bye [preauth]
Sep 11 05:19:46 *** sshd[15218]: Disconnected from invalid user admin 189.68.60.142 port 41374 [preauth]
Sep 11 05:31:58 *** sshd[16585]: Invalid user mysql from 189.68.60.142 port 41108
Sep 11 05:31:58 *** sshd[16585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.68.60.142
Sep 11 05:32:01 *** sshd[16585]: Failed password for invalid user mysql from 189.68.60.142 port 41108 ssh2
Sep 11 05:32:01 *** sshd[16585]: Received disconnect from 189.68.60.142 port 41108:1........
------------------------------
2019-09-13 08:18:09
182.16.115.130 attackspam
Invalid user teamspeak from 182.16.115.130 port 34518
2019-09-13 08:11:31
190.192.56.19 attack
port scan and connect, tcp 23 (telnet)
2019-09-13 08:12:21
40.118.129.156 attackspambots
Sep 12 14:04:40 php1 sshd\[28867\]: Invalid user user from 40.118.129.156
Sep 12 14:04:40 php1 sshd\[28867\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.118.129.156
Sep 12 14:04:42 php1 sshd\[28867\]: Failed password for invalid user user from 40.118.129.156 port 26560 ssh2
Sep 12 14:10:57 php1 sshd\[29757\]: Invalid user arma3server from 40.118.129.156
Sep 12 14:10:57 php1 sshd\[29757\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.118.129.156
2019-09-13 08:21:33
156.220.17.39 attackbotsspam
445/tcp
[2019-09-12]1pkt
2019-09-13 08:24:34
78.194.214.19 attackspambots
Sep 12 22:24:57 localhost sshd\[1547\]: Invalid user leah from 78.194.214.19 port 35096
Sep 12 22:24:57 localhost sshd\[1547\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.194.214.19
Sep 12 22:25:00 localhost sshd\[1547\]: Failed password for invalid user leah from 78.194.214.19 port 35096 ssh2
2019-09-13 08:45:21
104.196.50.15 attack
Sep 12 13:37:02 tdfoods sshd\[22677\]: Invalid user 12345 from 104.196.50.15
Sep 12 13:37:02 tdfoods sshd\[22677\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=15.50.196.104.bc.googleusercontent.com
Sep 12 13:37:03 tdfoods sshd\[22677\]: Failed password for invalid user 12345 from 104.196.50.15 port 48396 ssh2
Sep 12 13:42:49 tdfoods sshd\[23269\]: Invalid user password123 from 104.196.50.15
Sep 12 13:42:49 tdfoods sshd\[23269\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=15.50.196.104.bc.googleusercontent.com
2019-09-13 08:40:49
119.28.84.97 attack
Sep 12 11:45:07 plusreed sshd[17868]: Invalid user tester from 119.28.84.97
...
2019-09-13 08:34:11
120.52.152.15 attackspam
12.09.2019 23:55:58 Connection to port 2628 blocked by firewall
2019-09-13 08:46:22
124.243.245.3 attackspam
Sep 12 09:00:39 aiointranet sshd\[32467\]: Invalid user test from 124.243.245.3
Sep 12 09:00:39 aiointranet sshd\[32467\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.243.245.3
Sep 12 09:00:42 aiointranet sshd\[32467\]: Failed password for invalid user test from 124.243.245.3 port 47012 ssh2
Sep 12 09:03:36 aiointranet sshd\[32701\]: Invalid user mcguitaruser from 124.243.245.3
Sep 12 09:03:36 aiointranet sshd\[32701\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.243.245.3
2019-09-13 08:24:52
206.189.221.160 attackbotsspam
Sep 12 19:47:59 ny01 sshd[10897]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.221.160
Sep 12 19:48:01 ny01 sshd[10897]: Failed password for invalid user P@ssw0rd from 206.189.221.160 port 52150 ssh2
Sep 12 19:54:04 ny01 sshd[11899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.221.160
2019-09-13 08:26:22
95.179.142.110 attackspam
12.09.2019 16:43:19 - RDP Login Fail Detected by 
https://www.elinox.de/RDP-Wächter
2019-09-13 08:39:07
162.243.4.134 attack
Sep 12 13:38:34 hcbb sshd\[13723\]: Invalid user admin from 162.243.4.134
Sep 12 13:38:34 hcbb sshd\[13723\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.4.134
Sep 12 13:38:36 hcbb sshd\[13723\]: Failed password for invalid user admin from 162.243.4.134 port 58450 ssh2
Sep 12 13:44:48 hcbb sshd\[14347\]: Invalid user admin from 162.243.4.134
Sep 12 13:44:48 hcbb sshd\[14347\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.4.134
2019-09-13 08:10:59

最近上报的IP列表

218.66.205.244 123.148.146.132 49.37.133.40 27.66.81.102
49.245.50.12 1.34.209.63 106.58.169.162 237.166.249.197
59.89.216.123 184.178.32.178 205.26.207.100 153.136.44.39
81.175.147.133 116.93.82.66 49.245.100.3 42.127.20.194
39.244.219.147 11.0.28.70 49.244.159.26 79.76.27.84