6.197.245.149 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 6.197.245.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27217
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;6.197.245.149.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021100 1800 900 604800 86400

;; Query time: 40 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 12 00:09:20 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

b'Host 149.245.197.6.in-addr.arpa not found: 2(SERVFAIL)
'

NSLOOKUP信息:

server can't find 6.197.245.149.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
212.64.16.126	attackbots	212.64.16.126 - - [07/Nov/2019:15:46:34 +0100] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.64.16.126 - - [07/Nov/2019:15:46:40 +0100] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.64.16.126 - - [07/Nov/2019:15:46:40 +0100] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.64.16.126 - - [07/Nov/2019:15:46:41 +0100] "POST /wp-login.php HTTP/1.1" 200 1486 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.64.16.126 - - [07/Nov/2019:15:46:43 +0100] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 212.64.16.126 - - [07/Nov/2019:15:46:44 +0100] "POST /wp-login.php HTTP/1.1" 200 1486 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-11-08 00:53:02
181.211.244.248	attackspambots	Unauthorized connection attempt from IP address 181.211.244.248 on Port 445(SMB)	2019-11-08 00:41:32
188.165.240.15	attackspambots	11/07/2019-15:47:00.413666 188.165.240.15 Protocol: 6 ET POLICY Cleartext WordPress Login	2019-11-08 00:38:47
146.88.240.4	attackspambots	11/07/2019-11:38:13.066922 146.88.240.4 Protocol: 17 ET DROP Dshield Block Listed Source group 1	2019-11-08 00:42:43
112.15.38.218	attack	Lines containing failures of 112.15.38.218 Nov 6 12:06:57 nextcloud sshd[13931]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.15.38.218 user=r.r Nov 6 12:06:59 nextcloud sshd[13931]: Failed password for r.r from 112.15.38.218 port 35032 ssh2 Nov 6 12:06:59 nextcloud sshd[13931]: Received disconnect from 112.15.38.218 port 35032:11: Bye Bye [preauth] Nov 6 12:06:59 nextcloud sshd[13931]: Disconnected from authenticating user r.r 112.15.38.218 port 35032 [preauth] Nov 6 12:37:06 nextcloud sshd[16808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.15.38.218 user=r.r Nov 6 12:37:08 nextcloud sshd[16808]: Failed password for r.r from 112.15.38.218 port 50594 ssh2 Nov 6 12:37:08 nextcloud sshd[16808]: Received disconnect from 112.15.38.218 port 50594:11: Bye Bye [preauth] Nov 6 12:37:08 nextcloud sshd[16808]: Disconnected from authenticating user r.r 112.15.38.218 port 50594 ........ ------------------------------	2019-11-08 00:48:21
176.59.52.74	attack	Unauthorized connection attempt from IP address 176.59.52.74 on Port 445(SMB)	2019-11-08 01:17:19
121.101.186.242	attackbotsspam	SPAM Delivery Attempt	2019-11-08 01:15:46
49.146.45.112	attackspambots	Unauthorized connection attempt from IP address 49.146.45.112 on Port 445(SMB)	2019-11-08 00:58:08
150.242.173.255	attackspam	Unauthorized connection attempt from IP address 150.242.173.255 on Port 445(SMB)	2019-11-08 00:43:40
176.99.124.32	attackbots	Unauthorized connection attempt from IP address 176.99.124.32 on Port 445(SMB)	2019-11-08 01:16:20
36.79.254.190	attackbots	Unauthorized connection attempt from IP address 36.79.254.190 on Port 445(SMB)	2019-11-08 00:46:57
49.232.23.127	attackspam	Nov 7 16:46:16 srv-ubuntu-dev3 sshd[39264]: Invalid user webconfig from 49.232.23.127 Nov 7 16:46:16 srv-ubuntu-dev3 sshd[39264]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.23.127 Nov 7 16:46:16 srv-ubuntu-dev3 sshd[39264]: Invalid user webconfig from 49.232.23.127 Nov 7 16:46:18 srv-ubuntu-dev3 sshd[39264]: Failed password for invalid user webconfig from 49.232.23.127 port 59578 ssh2 Nov 7 16:50:22 srv-ubuntu-dev3 sshd[39597]: Invalid user password from 49.232.23.127 Nov 7 16:50:22 srv-ubuntu-dev3 sshd[39597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.23.127 Nov 7 16:50:22 srv-ubuntu-dev3 sshd[39597]: Invalid user password from 49.232.23.127 Nov 7 16:50:25 srv-ubuntu-dev3 sshd[39597]: Failed password for invalid user password from 49.232.23.127 port 55162 ssh2 Nov 7 16:54:37 srv-ubuntu-dev3 sshd[39989]: Invalid user !QAZ from 49.232.23.127 ...	2019-11-08 00:44:09
168.232.197.33	attack	Nov 7 16:09:54 ms-srv sshd[55015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.232.197.33 Nov 7 16:09:56 ms-srv sshd[55015]: Failed password for invalid user admin from 168.232.197.33 port 57352 ssh2	2019-11-08 00:39:23
45.125.66.66	attackspam	\[2019-11-07 12:01:43\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-07T12:01:43.061-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="5748501148627490017",SessionID="0x7fdf2c614b28",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.66.66/51499",ACLName="no_extension_match" \[2019-11-07 12:01:50\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-07T12:01:50.483-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="5083101148957156001",SessionID="0x7fdf2cae1298",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.66.66/59740",ACLName="no_extension_match" \[2019-11-07 12:02:13\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-07T12:02:13.336-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="5413901148757329001",SessionID="0x7fdf2c19f8b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.66.66/53921",ACLNam	2019-11-08 01:07:36
61.163.78.132	attackbotsspam	Nov 7 06:41:56 hanapaa sshd\[24750\]: Invalid user both from 61.163.78.132 Nov 7 06:41:56 hanapaa sshd\[24750\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.163.78.132 Nov 7 06:41:58 hanapaa sshd\[24750\]: Failed password for invalid user both from 61.163.78.132 port 51540 ssh2 Nov 7 06:48:33 hanapaa sshd\[25275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.163.78.132 user=root Nov 7 06:48:36 hanapaa sshd\[25275\]: Failed password for root from 61.163.78.132 port 33022 ssh2	2019-11-08 01:08:19

最近上报的IP列表

117.69.10.172	201.156.105.255	46.99.35.100	44.87.167.174
63.146.188.74	235.80.186.180	186.51.85.91	233.141.134.249
59.109.107.2	88.213.189.253	75.202.177.60	166.19.104.103
200.168.219.200	152.228.42.134	74.159.70.36	224.157.233.5
194.187.246.16	136.237.10.140	209.251.88.5	159.162.24.250