49.149.103.72 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Philippines

运营商(isp): Philippine Long Distance Telephone Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Honeypot attack, port: 445, PTR: dsl.49.149.103.72.pldt.net.	2020-01-27 19:18:40

相同子网IP讨论:

IP	类型	评论内容	时间
49.149.103.45	attack	This user hacked my Roblox account pls find his address and arrest him	2025-01-11 21:43:35
49.149.103.45	attack	This user hacked my Roblox account pls find his address	2025-01-11 21:43:13
49.149.103.45	attack	This user hacked my Roblox account pls find his address	2025-01-11 21:43:10
49.149.103.45	attack	This user hacked my Roblox account pls find his address	2025-01-11 21:42:59
49.149.103.91	attackspam	Unauthorized connection attempt from IP address 49.149.103.91 on Port 445(SMB)	2020-09-23 00:32:37
49.149.103.91	attackbots	Unauthorized connection attempt from IP address 49.149.103.91 on Port 445(SMB)	2020-09-22 16:33:42
49.149.103.157	attackbots	Honeypot attack, port: 445, PTR: dsl.49.149.103.157.pldt.net.	2020-06-21 22:27:36
49.149.103.157	attackspambots	Unauthorized connection attempt from IP address 49.149.103.157 on Port 445(SMB)	2020-06-19 21:40:20
49.149.103.45	attackbots	Unauthorized connection attempt from IP address 49.149.103.45 on Port 445(SMB)	2020-01-15 01:44:38
49.149.103.115	attack	1577514588 - 12/28/2019 07:29:48 Host: 49.149.103.115/49.149.103.115 Port: 445 TCP Blocked	2019-12-28 14:59:48
49.149.103.196	attack	Unauthorised access (Dec 1) SRC=49.149.103.196 LEN=52 TTL=117 ID=6555 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-02 02:23:19

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.149.103.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15004
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.149.103.72.			IN	A

;; AUTHORITY SECTION:
.			563	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012700 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 27 19:18:37 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

72.103.149.49.in-addr.arpa domain name pointer dsl.49.149.103.72.pldt.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
72.103.149.49.in-addr.arpa	name = dsl.49.149.103.72.pldt.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
122.51.114.51	attack	Apr 6 14:48:58 ns382633 sshd\[12477\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.114.51 user=root Apr 6 14:49:00 ns382633 sshd\[12477\]: Failed password for root from 122.51.114.51 port 55672 ssh2 Apr 6 15:01:50 ns382633 sshd\[15394\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.114.51 user=root Apr 6 15:01:52 ns382633 sshd\[15394\]: Failed password for root from 122.51.114.51 port 38090 ssh2 Apr 6 15:06:33 ns382633 sshd\[16360\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.114.51 user=root	2020-04-06 22:27:59
222.124.178.219	attackbots	Telnet Server BruteForce Attack	2020-04-06 23:13:15
122.155.11.89	attackbots	Apr 6 15:23:38 host sshd[7773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.155.11.89 user=root Apr 6 15:23:40 host sshd[7773]: Failed password for root from 122.155.11.89 port 40578 ssh2 ...	2020-04-06 22:35:26
99.183.144.132	attackspam	$f2bV_matches	2020-04-06 23:23:58
27.78.14.83	attack	Apr 6 16:38:57 ift sshd\[62487\]: Failed password for root from 27.78.14.83 port 48466 ssh2Apr 6 16:39:07 ift sshd\[62507\]: Invalid user ubnt from 27.78.14.83Apr 6 16:39:10 ift sshd\[62507\]: Failed password for invalid user ubnt from 27.78.14.83 port 53684 ssh2Apr 6 16:39:14 ift sshd\[62512\]: Failed password for invalid user admin from 27.78.14.83 port 56754 ssh2Apr 6 16:39:29 ift sshd\[62570\]: Invalid user support from 27.78.14.83 ...	2020-04-06 22:58:46
149.202.238.204	attackbotsspam	$f2bV_matches	2020-04-06 23:10:30
167.114.251.107	attack	Apr 6 15:25:47 sshd\[23582\]: User root from 107.ip-167-114-251.eu not allowed because not listed in AllowUsersApr 6 15:25:49 sshd\[23582\]: Failed password for invalid user root from 167.114.251.107 port 38867 ssh2 ...	2020-04-06 23:08:48
1.53.89.0	attackspam	Unauthorized connection attempt from IP address 1.53.89.0 on Port 445(SMB)	2020-04-06 22:26:09
222.186.30.112	attackbotsspam	Apr 6 17:08:59 santamaria sshd\[3416\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.112 user=root Apr 6 17:09:01 santamaria sshd\[3416\]: Failed password for root from 222.186.30.112 port 25521 ssh2 Apr 6 17:09:03 santamaria sshd\[3416\]: Failed password for root from 222.186.30.112 port 25521 ssh2 ...	2020-04-06 23:09:23
167.172.35.121	attackbotsspam	Unauthorised connection attempt detected at AUO NODE 1. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-04-06 23:07:15
182.61.61.44	attack	Apr 6 14:37:50 mail sshd[11656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.61.44 user=root Apr 6 14:37:52 mail sshd[11656]: Failed password for root from 182.61.61.44 port 40120 ssh2 Apr 6 14:44:35 mail sshd[12549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.61.44 user=root Apr 6 14:44:37 mail sshd[12549]: Failed password for root from 182.61.61.44 port 37130 ssh2 ...	2020-04-06 23:01:05
222.106.61.152	attack	Apr 6 14:44:41 dev0-dcde-rnet sshd[18391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.106.61.152 Apr 6 14:44:42 dev0-dcde-rnet sshd[18393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.106.61.152 Apr 6 14:44:43 dev0-dcde-rnet sshd[18391]: Failed password for invalid user pi from 222.106.61.152 port 49618 ssh2	2020-04-06 22:53:44
222.186.30.76	attack	Unauthorized connection attempt detected from IP address 222.186.30.76 to port 22 [T]	2020-04-06 22:25:16
37.187.183.89	attack	Apr 6 16:50:55 legacy sshd[22019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.183.89 Apr 6 16:50:57 legacy sshd[22019]: Failed password for invalid user zverev from 37.187.183.89 port 39532 ssh2 Apr 6 16:51:34 legacy sshd[22026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.183.89 ...	2020-04-06 23:02:05
180.76.110.210	attackbotsspam	5x Failed Password	2020-04-06 23:05:27

最近上报的IP列表

170.85.255.135	178.238.198.97	227.117.248.133	122.117.189.71
125.72.41.128	177.17.0.10	175.19.187.234	42.236.74.171
171.232.189.39	118.99.103.181	90.57.74.91	49.248.71.130
95.0.84.198	158.240.246.229	110.77.163.191	241.24.1.93
177.137.141.183	182.156.249.250	189.91.192.220	111.134.136.212