49.49.244.228 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Thailand

运营商(isp): Triple T Internet PCL

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Honeypot attack, port: 445, PTR: mx-ll-49.49.244-228.dynamic.3bb.co.th.	2020-02-11 08:48:14

相同子网IP讨论:

IP	类型	评论内容	时间
49.49.244.64	attackspambots	1591388878 - 06/05/2020 22:27:58 Host: 49.49.244.64/49.49.244.64 Port: 445 TCP Blocked	2020-06-06 05:27:04
49.49.244.132	attackspam	Lines containing failures of 49.49.244.132 May 21 13:56:31 MAKserver05 sshd[9300]: Did not receive identification string from 49.49.244.132 port 62422 May 21 13:56:36 MAKserver05 sshd[9303]: Invalid user tech from 49.49.244.132 port 43174 May 21 13:56:37 MAKserver05 sshd[9303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.49.244.132 May 21 13:56:39 MAKserver05 sshd[9303]: Failed password for invalid user tech from 49.49.244.132 port 43174 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=49.49.244.132	2020-05-21 21:09:27
49.49.244.52	attackspam	REQUESTED PAGE: /manager/html	2019-09-14 07:11:42

类型

评论内容

时间

49.49.244.64

attackspambots

1591388878 - 06/05/2020 22:27:58 Host: 49.49.244.64/49.49.244.64 Port: 445 TCP Blocked

2020-06-06 05:27:04

49.49.244.132

attackspam

Lines containing failures of 49.49.244.132
May 21 13:56:31 MAKserver05 sshd[9300]: Did not receive identification string from 49.49.244.132 port 62422
May 21 13:56:36 MAKserver05 sshd[9303]: Invalid user tech from 49.49.244.132 port 43174
May 21 13:56:37 MAKserver05 sshd[9303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.49.244.132 
May 21 13:56:39 MAKserver05 sshd[9303]: Failed password for invalid user tech from 49.49.244.132 port 43174 ssh2


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=49.49.244.132

2020-05-21 21:09:27

49.49.244.52

attackspam

REQUESTED PAGE: /manager/html

2019-09-14 07:11:42

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.49.244.228
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27768
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.49.244.228.			IN	A

;; AUTHORITY SECTION:
.			381	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021001 1800 900 604800 86400

;; Query time: 242 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 11 08:48:11 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

228.244.49.49.in-addr.arpa domain name pointer mx-ll-49.49.244-228.dynamic.3bb.in.th.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
228.244.49.49.in-addr.arpa	name = mx-ll-49.49.244-228.dynamic.3bb.co.th.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
88.204.242.54	attackspam	Unauthorized connection attempt from IP address 88.204.242.54 on Port 445(SMB)	2019-08-31 15:14:48
18.204.48.107	attack	by Amazon Technologies Inc.	2019-08-31 14:49:36
188.119.120.100	attackbots	Aug 31 08:22:44 meumeu sshd[688]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.119.120.100 Aug 31 08:22:46 meumeu sshd[688]: Failed password for invalid user jan from 188.119.120.100 port 40518 ssh2 Aug 31 08:31:52 meumeu sshd[1836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.119.120.100 ...	2019-08-31 14:47:43
158.69.252.161	attackspambots	Invalid user ftpuser from 158.69.252.161 port 48526	2019-08-31 14:41:32
178.62.181.74	attackspam	Invalid user bitnami from 178.62.181.74 port 41981	2019-08-31 15:15:16
164.132.24.138	attackspam	2019-08-31T13:39:09.928047enmeeting.mahidol.ac.th sshd\[30306\]: Invalid user pichu from 164.132.24.138 port 53196 2019-08-31T13:39:09.947473enmeeting.mahidol.ac.th sshd\[30306\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.24.138 2019-08-31T13:39:11.569328enmeeting.mahidol.ac.th sshd\[30306\]: Failed password for invalid user pichu from 164.132.24.138 port 53196 ssh2 ...	2019-08-31 14:52:20
222.186.30.165	attackbotsspam	Aug 31 09:24:46 ubuntu-2gb-nbg1-dc3-1 sshd[8082]: Failed password for root from 222.186.30.165 port 48864 ssh2 Aug 31 09:24:52 ubuntu-2gb-nbg1-dc3-1 sshd[8082]: error: maximum authentication attempts exceeded for root from 222.186.30.165 port 48864 ssh2 [preauth] ...	2019-08-31 15:25:28
185.234.219.193	attack	Aug 31 06:40:18 mail postfix/smtpd\[30727\]: warning: unknown\[185.234.219.193\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 31 06:48:21 mail postfix/smtpd\[29789\]: warning: unknown\[185.234.219.193\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 31 06:56:12 mail postfix/smtpd\[32196\]: warning: unknown\[185.234.219.193\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 31 07:27:22 mail postfix/smtpd\[32109\]: warning: unknown\[185.234.219.193\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-08-31 14:39:17
222.186.15.110	attackspambots	Aug 31 02:15:58 aat-srv002 sshd[3911]: Failed password for root from 222.186.15.110 port 43858 ssh2 Aug 31 02:16:08 aat-srv002 sshd[3913]: Failed password for root from 222.186.15.110 port 16778 ssh2 Aug 31 02:16:10 aat-srv002 sshd[3913]: Failed password for root from 222.186.15.110 port 16778 ssh2 Aug 31 02:16:13 aat-srv002 sshd[3913]: Failed password for root from 222.186.15.110 port 16778 ssh2 ...	2019-08-31 15:22:43
103.84.165.4	attackspambots	Telnet/23 MH Probe, BF, Hack -	2019-08-31 15:16:55
159.89.225.82	attack	Aug 31 02:11:35 plusreed sshd[11520]: Invalid user techadmin from 159.89.225.82 ...	2019-08-31 15:33:40
95.181.52.102	attack	Unauthorized connection attempt from IP address 95.181.52.102 on Port 445(SMB)	2019-08-31 15:26:01
77.247.110.127	attackspambots	\[2019-08-31 02:12:52\] NOTICE\[1829\] chan_sip.c: Registration from '"990" \' failed for '77.247.110.127:5109' - Wrong password \[2019-08-31 02:12:52\] SECURITY\[1837\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-31T02:12:52.930-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="990",SessionID="0x7f7b30db7498",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.127/5109",Challenge="307ca0a4",ReceivedChallenge="307ca0a4",ReceivedHash="8bd32e9e9b82110524f8971e388ca704" \[2019-08-31 02:12:53\] NOTICE\[1829\] chan_sip.c: Registration from '"990" \' failed for '77.247.110.127:5109' - Wrong password \[2019-08-31 02:12:53\] SECURITY\[1837\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-31T02:12:53.048-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="990",SessionID="0x7f7b30606748",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/7	2019-08-31 15:16:07
162.247.74.27	attackspam	Aug 30 19:53:59 web9 sshd\[26640\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.247.74.27 user=root Aug 30 19:54:01 web9 sshd\[26640\]: Failed password for root from 162.247.74.27 port 55910 ssh2 Aug 30 20:01:44 web9 sshd\[28105\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.247.74.27 user=root Aug 30 20:01:46 web9 sshd\[28105\]: Failed password for root from 162.247.74.27 port 57794 ssh2 Aug 30 20:01:55 web9 sshd\[28105\]: Failed password for root from 162.247.74.27 port 57794 ssh2	2019-08-31 14:56:49
42.157.129.158	attack	Aug 31 07:15:23 MK-Soft-VM6 sshd\[1208\]: Invalid user bridget from 42.157.129.158 port 34900 Aug 31 07:15:23 MK-Soft-VM6 sshd\[1208\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.129.158 Aug 31 07:15:25 MK-Soft-VM6 sshd\[1208\]: Failed password for invalid user bridget from 42.157.129.158 port 34900 ssh2 ...	2019-08-31 15:17:55

最近上报的IP列表

95.59.188.75	49.207.144.155	39.57.97.82	36.90.122.182
220.54.197.168	183.87.116.9	51.215.201.99	116.111.82.142
69.51.23.67	24.36.38.61	217.77.221.27	123.20.25.44
31.40.152.247	182.50.130.70	123.21.221.44	188.194.58.39
113.172.163.127	223.206.222.220	113.180.43.120	223.205.223.2