49.5.1.18 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Digital Home Network Technology corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	6379/tcp 7001/tcp 9200/tcp... [2019-09-13/11-14]14pkt,6pt.(tcp)	2019-11-14 13:30:02
attack	10/25/2019-23:54:22.058614 49.5.1.18 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 47	2019-10-26 12:23:26

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.5.1.18
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52181
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.5.1.18.			IN	A

;; AUTHORITY SECTION:
.			470	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102502 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 26 12:23:23 CST 2019
;; MSG SIZE  rcvd: 113

HOST信息:

Host 18.1.5.49.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 18.1.5.49.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
180.183.251.242	attack	Attempted Brute Force (dovecot)	2020-08-15 16:26:26
159.65.128.182	attackbotsspam	Aug 15 07:44:16 scw-6657dc sshd[21579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.128.182 user=root Aug 15 07:44:16 scw-6657dc sshd[21579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.128.182 user=root Aug 15 07:44:18 scw-6657dc sshd[21579]: Failed password for root from 159.65.128.182 port 48140 ssh2 ...	2020-08-15 16:30:25
184.154.74.67	attackspam	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-08-15 16:26:03
188.26.125.126	attack	Automatic report - Banned IP Access	2020-08-15 16:24:23
198.27.115.120	attack	Aug 15 01:00:30 websrv1.derweidener.de postfix/smtpd[3318121]: warning: unknown[198.27.115.120]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 01:00:30 websrv1.derweidener.de postfix/smtpd[3318121]: lost connection after AUTH from unknown[198.27.115.120] Aug 15 01:00:38 websrv1.derweidener.de postfix/smtpd[3318121]: warning: unknown[198.27.115.120]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 01:00:38 websrv1.derweidener.de postfix/smtpd[3318121]: lost connection after AUTH from unknown[198.27.115.120] Aug 15 01:00:50 websrv1.derweidener.de postfix/smtpd[3318121]: warning: unknown[198.27.115.120]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 01:00:50 websrv1.derweidener.de postfix/smtpd[3318121]: lost connection after AUTH from unknown[198.27.115.120]	2020-08-15 16:06:23
45.167.8.33	attack	Aug 15 01:23:48 mail.srvfarm.net postfix/smtps/smtpd[928606]: warning: unknown[45.167.8.33]: SASL PLAIN authentication failed: Aug 15 01:23:50 mail.srvfarm.net postfix/smtps/smtpd[928606]: lost connection after AUTH from unknown[45.167.8.33] Aug 15 01:27:41 mail.srvfarm.net postfix/smtps/smtpd[915291]: lost connection after CONNECT from unknown[45.167.8.33] Aug 15 01:28:42 mail.srvfarm.net postfix/smtps/smtpd[931402]: warning: unknown[45.167.8.33]: SASL PLAIN authentication failed: Aug 15 01:28:46 mail.srvfarm.net postfix/smtps/smtpd[931402]: lost connection after AUTH from unknown[45.167.8.33]	2020-08-15 16:02:25
203.213.66.170	attackbots	Aug 15 05:48:29 icinga sshd[61798]: Failed password for root from 203.213.66.170 port 39773 ssh2 Aug 15 05:52:13 icinga sshd[3503]: Failed password for root from 203.213.66.170 port 48764 ssh2 ...	2020-08-15 15:47:19
114.104.135.51	attackspam	Aug 15 07:36:50 srv01 postfix/smtpd\[21398\]: warning: unknown\[114.104.135.51\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 07:37:02 srv01 postfix/smtpd\[21398\]: warning: unknown\[114.104.135.51\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 07:37:18 srv01 postfix/smtpd\[21398\]: warning: unknown\[114.104.135.51\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 07:37:38 srv01 postfix/smtpd\[21398\]: warning: unknown\[114.104.135.51\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 07:37:49 srv01 postfix/smtpd\[21398\]: warning: unknown\[114.104.135.51\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-08-15 16:23:28
185.191.126.241	attackbotsspam	SSH brutforce	2020-08-15 16:30:01
176.97.251.202	attackbots	Aug 15 00:59:03 mail.srvfarm.net postfix/smtpd[910665]: warning: unknown[176.97.251.202]: SASL PLAIN authentication failed: Aug 15 00:59:03 mail.srvfarm.net postfix/smtpd[910665]: lost connection after AUTH from unknown[176.97.251.202] Aug 15 01:02:53 mail.srvfarm.net postfix/smtpd[910647]: lost connection after CONNECT from unknown[176.97.251.202] Aug 15 01:07:33 mail.srvfarm.net postfix/smtps/smtpd[927776]: warning: unknown[176.97.251.202]: SASL PLAIN authentication failed: Aug 15 01:07:33 mail.srvfarm.net postfix/smtps/smtpd[927776]: lost connection after AUTH from unknown[176.97.251.202]	2020-08-15 16:09:52
185.18.133.116	attack	Aug 15 00:52:40 mail.srvfarm.net postfix/smtps/smtpd[913466]: warning: unknown[185.18.133.116]: SASL PLAIN authentication failed: Aug 15 00:52:40 mail.srvfarm.net postfix/smtps/smtpd[913466]: lost connection after AUTH from unknown[185.18.133.116] Aug 15 00:58:59 mail.srvfarm.net postfix/smtps/smtpd[913466]: warning: unknown[185.18.133.116]: SASL PLAIN authentication failed: Aug 15 00:58:59 mail.srvfarm.net postfix/smtps/smtpd[913466]: lost connection after AUTH from unknown[185.18.133.116] Aug 15 01:01:07 mail.srvfarm.net postfix/smtps/smtpd[913775]: warning: unknown[185.18.133.116]: SASL PLAIN authentication failed:	2020-08-15 16:08:08
177.44.17.21	attack	Aug 15 01:18:50 mail.srvfarm.net postfix/smtpd[929438]: warning: unknown[177.44.17.21]: SASL PLAIN authentication failed: Aug 15 01:18:51 mail.srvfarm.net postfix/smtpd[929438]: lost connection after AUTH from unknown[177.44.17.21] Aug 15 01:23:29 mail.srvfarm.net postfix/smtpd[929432]: warning: unknown[177.44.17.21]: SASL PLAIN authentication failed: Aug 15 01:23:29 mail.srvfarm.net postfix/smtpd[929432]: lost connection after AUTH from unknown[177.44.17.21] Aug 15 01:23:47 mail.srvfarm.net postfix/smtpd[929427]: warning: unknown[177.44.17.21]: SASL PLAIN authentication failed:	2020-08-15 15:57:47
41.78.223.51	attackspambots	Aug 15 01:10:03 mail.srvfarm.net postfix/smtps/smtpd[915855]: warning: unknown[41.78.223.51]: SASL PLAIN authentication failed: Aug 15 01:10:03 mail.srvfarm.net postfix/smtps/smtpd[915855]: lost connection after AUTH from unknown[41.78.223.51] Aug 15 01:10:49 mail.srvfarm.net postfix/smtpd[929427]: warning: unknown[41.78.223.51]: SASL PLAIN authentication failed: Aug 15 01:10:49 mail.srvfarm.net postfix/smtpd[929427]: lost connection after AUTH from unknown[41.78.223.51] Aug 15 01:15:59 mail.srvfarm.net postfix/smtpd[928779]: warning: unknown[41.78.223.51]: SASL PLAIN authentication failed:	2020-08-15 16:03:56
112.85.42.200	attackspambots	Aug 14 21:31:27 php1 sshd\[16272\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.200 user=root Aug 14 21:31:29 php1 sshd\[16272\]: Failed password for root from 112.85.42.200 port 55744 ssh2 Aug 14 21:31:39 php1 sshd\[16272\]: Failed password for root from 112.85.42.200 port 55744 ssh2 Aug 14 21:31:42 php1 sshd\[16272\]: Failed password for root from 112.85.42.200 port 55744 ssh2 Aug 14 21:31:46 php1 sshd\[16292\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.200 user=root	2020-08-15 15:46:49
201.148.246.213	attack	Aug 15 00:47:53 mail.srvfarm.net postfix/smtps/smtpd[913774]: warning: unknown[201.148.246.213]: SASL PLAIN authentication failed: Aug 15 00:47:55 mail.srvfarm.net postfix/smtps/smtpd[913774]: lost connection after AUTH from unknown[201.148.246.213] Aug 15 00:49:21 mail.srvfarm.net postfix/smtps/smtpd[908454]: warning: unknown[201.148.246.213]: SASL PLAIN authentication failed: Aug 15 00:49:21 mail.srvfarm.net postfix/smtps/smtpd[908454]: lost connection after AUTH from unknown[201.148.246.213] Aug 15 00:51:27 mail.srvfarm.net postfix/smtpd[909093]: warning: unknown[201.148.246.213]: SASL PLAIN authentication failed:	2020-08-15 16:05:57

最近上报的IP列表

151.237.79.37	144.91.103.40	2.224.171.57	189.213.166.124
78.134.113.253	37.255.194.71	157.185.235.135	186.238.198.31
1.52.238.150	110.177.74.90	52.192.157.127	150.255.84.163
116.252.2.206	125.213.224.250	47.200.46.81	27.224.136.234
13.69.48.132	219.143.174.207	189.211.179.22	171.34.176.153