49.149.103.157

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Philippines

运营商(isp): Philippine Long Distance Telephone Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Honeypot attack, port: 445, PTR: dsl.49.149.103.157.pldt.net.	2020-06-21 22:27:36
attackspambots	Unauthorized connection attempt from IP address 49.149.103.157 on Port 445(SMB)	2020-06-19 21:40:20

相同子网IP讨论:

IP	类型	评论内容	时间
49.149.103.45	attack	This user hacked my Roblox account pls find his address and arrest him	2025-01-11 21:43:35
49.149.103.45	attack	This user hacked my Roblox account pls find his address	2025-01-11 21:43:13
49.149.103.45	attack	This user hacked my Roblox account pls find his address	2025-01-11 21:43:10
49.149.103.45	attack	This user hacked my Roblox account pls find his address	2025-01-11 21:42:59
49.149.103.91	attackspam	Unauthorized connection attempt from IP address 49.149.103.91 on Port 445(SMB)	2020-09-23 00:32:37
49.149.103.91	attackbots	Unauthorized connection attempt from IP address 49.149.103.91 on Port 445(SMB)	2020-09-22 16:33:42
49.149.103.72	attackbots	Honeypot attack, port: 445, PTR: dsl.49.149.103.72.pldt.net.	2020-01-27 19:18:40
49.149.103.45	attackbots	Unauthorized connection attempt from IP address 49.149.103.45 on Port 445(SMB)	2020-01-15 01:44:38
49.149.103.115	attack	1577514588 - 12/28/2019 07:29:48 Host: 49.149.103.115/49.149.103.115 Port: 445 TCP Blocked	2019-12-28 14:59:48
49.149.103.196	attack	Unauthorised access (Dec 1) SRC=49.149.103.196 LEN=52 TTL=117 ID=6555 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-02 02:23:19

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.149.103.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61164
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.149.103.157.			IN	A

;; AUTHORITY SECTION:
.			557	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061900 1800 900 604800 86400

;; Query time: 90 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 19 21:40:16 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

157.103.149.49.in-addr.arpa domain name pointer dsl.49.149.103.157.pldt.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
157.103.149.49.in-addr.arpa	name = dsl.49.149.103.157.pldt.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
219.156.130.30	attack	Aug 26 19:01:22 * sshd[32613]: Failed password for root from 219.156.130.30 port 45302 ssh2 Aug 26 19:01:34 * sshd[32613]: error: maximum authentication attempts exceeded for root from 219.156.130.30 port 45302 ssh2 [preauth]	2019-08-27 01:13:23
88.26.252.74	attackspam	Unauthorized connection attempt from IP address 88.26.252.74 on Port 445(SMB)	2019-08-27 01:18:54
62.234.154.56	attackbots	2019-08-26T16:54:07.551837abusebot-4.cloudsearch.cf sshd\[12453\]: Invalid user strenesse from 62.234.154.56 port 40317	2019-08-27 01:11:13
91.244.123.5	attack	2019-08-26T14:33:36.217257beta postfix/smtpd[24214]: NOQUEUE: reject: RCPT from unknown[91.244.123.5]: 450 4.7.1 Client host rejected: cannot find your reverse hostname, [91.244.123.5]; from= to= proto=ESMTP helo=<[91.244.123.5]> 2019-08-26T14:35:23.899028beta postfix/smtpd[24260]: NOQUEUE: reject: RCPT from unknown[91.244.123.5]: 450 4.7.1 Client host rejected: cannot find your reverse hostname, [91.244.123.5]; from= to= proto=ESMTP helo=<[91.244.123.5]> 2019-08-26T14:36:29.151652beta postfix/smtpd[24260]: NOQUEUE: reject: RCPT from unknown[91.244.123.5]: 450 4.7.1 Client host rejected: cannot find your reverse hostname, [91.244.123.5]; from= to= proto=ESMTP helo=<[91.244.123.5]> ...	2019-08-27 00:22:35
171.25.193.25	attack	Aug 26 18:51:31 dedicated sshd[13513]: Failed password for sshd from 171.25.193.25 port 59061 ssh2 Aug 26 18:51:34 dedicated sshd[13513]: Failed password for sshd from 171.25.193.25 port 59061 ssh2 Aug 26 18:51:36 dedicated sshd[13513]: Failed password for sshd from 171.25.193.25 port 59061 ssh2 Aug 26 18:51:39 dedicated sshd[13513]: Failed password for sshd from 171.25.193.25 port 59061 ssh2 Aug 26 18:51:42 dedicated sshd[13513]: Failed password for sshd from 171.25.193.25 port 59061 ssh2	2019-08-27 00:52:25
51.38.150.104	attack	Aug 26 18:36:00 lnxded63 sshd[12986]: Failed password for sshd from 51.38.150.104 port 36094 ssh2 Aug 26 18:36:01 lnxded63 sshd[12986]: Failed password for sshd from 51.38.150.104 port 36094 ssh2 Aug 26 18:36:04 lnxded63 sshd[12986]: Failed password for sshd from 51.38.150.104 port 36094 ssh2 Aug 26 18:36:07 lnxded63 sshd[12986]: Failed password for sshd from 51.38.150.104 port 36094 ssh2	2019-08-27 00:40:11
103.206.245.94	attackbotsspam	Aug 26 18:12:44 rpi sshd[30768]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.206.245.94 Aug 26 18:12:46 rpi sshd[30768]: Failed password for invalid user 1234qwer from 103.206.245.94 port 37658 ssh2	2019-08-27 00:25:45
42.238.82.49	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-27 01:22:00
190.116.21.131	attackbotsspam	Aug 26 05:57:22 php1 sshd\[1450\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.116.21.131 user=root Aug 26 05:57:24 php1 sshd\[1450\]: Failed password for root from 190.116.21.131 port 36490 ssh2 Aug 26 06:02:53 php1 sshd\[2378\]: Invalid user mapr from 190.116.21.131 Aug 26 06:02:53 php1 sshd\[2378\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.116.21.131 Aug 26 06:02:55 php1 sshd\[2378\]: Failed password for invalid user mapr from 190.116.21.131 port 55432 ssh2	2019-08-27 00:15:49
123.51.152.53	attack	fail2ban honeypot	2019-08-27 01:22:40
80.67.172.162	attackbotsspam	Aug 26 17:44:53 ubuntu-2gb-nbg1-dc3-1 sshd[30110]: Failed password for sshd from 80.67.172.162 port 48608 ssh2 Aug 26 17:44:56 ubuntu-2gb-nbg1-dc3-1 sshd[30110]: error: maximum authentication attempts exceeded for sshd from 80.67.172.162 port 48608 ssh2 [preauth] ...	2019-08-27 00:11:23
162.247.72.199	attackbotsspam	Aug 26 06:14:49 php1 sshd\[3795\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.247.72.199 user=sshd Aug 26 06:14:51 php1 sshd\[3795\]: Failed password for sshd from 162.247.72.199 port 46470 ssh2 Aug 26 06:15:01 php1 sshd\[3795\]: Failed password for sshd from 162.247.72.199 port 46470 ssh2 Aug 26 06:15:03 php1 sshd\[3795\]: Failed password for sshd from 162.247.72.199 port 46470 ssh2 Aug 26 06:15:07 php1 sshd\[3901\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.247.72.199 user=sshd	2019-08-27 00:17:32
217.146.68.118	attackspam	fail2ban honeypot	2019-08-27 01:13:59
51.38.239.2	attack	2019-08-26T17:12:40.021048abusebot.cloudsearch.cf sshd\[10606\]: Invalid user celery from 51.38.239.2 port 52180 2019-08-26T17:12:40.025948abusebot.cloudsearch.cf sshd\[10606\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.ip-51-38-239.eu	2019-08-27 01:16:50
145.239.82.192	attackspambots	Aug 26 06:33:48 wbs sshd\[22071\]: Invalid user silence from 145.239.82.192 Aug 26 06:33:48 wbs sshd\[22071\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.ip-145-239-82.eu Aug 26 06:33:50 wbs sshd\[22071\]: Failed password for invalid user silence from 145.239.82.192 port 46606 ssh2 Aug 26 06:38:24 wbs sshd\[22480\]: Invalid user servis from 145.239.82.192 Aug 26 06:38:24 wbs sshd\[22480\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.ip-145-239-82.eu	2019-08-27 00:42:36

最近上报的IP列表

162.213.251.87	119.116.13.121	104.219.248.88	84.141.246.67
81.133.24.24	79.137.80.110	78.138.157.42	68.65.122.236
54.38.65.215	176.65.114.96	104.219.248.45	199.188.201.24
176.67.81.9	123.181.62.247	7.52.218.122	100.36.131.254
231.4.101.151	231.209.179.181	103.129.195.196	135.0.128.165