149.56.10.72 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
149.56.102.43	attack	failed root login	2020-09-23 01:18:20
149.56.102.43	attack	failed root login	2020-09-22 17:20:56
149.56.100.237	attackspam	2020-09-09T13:27:45+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)	2020-09-10 01:21:01
149.56.100.237	attackspambots	$f2bV_matches	2020-09-03 04:09:16
149.56.100.237	attack	Invalid user ftp1 from 149.56.100.237 port 56500	2020-09-02 19:51:59
149.56.100.237	attackbots	Aug 28 23:28:31 lukav-desktop sshd\[25910\]: Invalid user user3 from 149.56.100.237 Aug 28 23:28:31 lukav-desktop sshd\[25910\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.100.237 Aug 28 23:28:34 lukav-desktop sshd\[25910\]: Failed password for invalid user user3 from 149.56.100.237 port 53816 ssh2 Aug 28 23:32:57 lukav-desktop sshd\[25960\]: Invalid user mark from 149.56.100.237 Aug 28 23:32:57 lukav-desktop sshd\[25960\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.100.237	2020-08-29 04:54:17
149.56.107.216	attackspambots	Aug 28 11:11:30 gw1 sshd[16318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.107.216 Aug 28 11:11:31 gw1 sshd[16318]: Failed password for invalid user sonar from 149.56.107.216 port 50124 ssh2 ...	2020-08-28 14:39:27
149.56.102.43	attack	Aug 26 13:59:28 NPSTNNYC01T sshd[22809]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.102.43 Aug 26 13:59:30 NPSTNNYC01T sshd[22809]: Failed password for invalid user felins from 149.56.102.43 port 36390 ssh2 Aug 26 14:05:53 NPSTNNYC01T sshd[26322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.102.43 ...	2020-08-27 03:44:23
149.56.100.237	attack	Aug 23 14:14:08 ajax sshd[23543]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.100.237 Aug 23 14:14:10 ajax sshd[23543]: Failed password for invalid user fangnan from 149.56.100.237 port 52500 ssh2	2020-08-23 21:36:05
149.56.102.43	attack	Aug 18 11:03:17 fhem-rasp sshd[26185]: User lp from 149.56.102.43 not allowed because not listed in AllowUsers ...	2020-08-18 19:59:41
149.56.107.216	attackspambots	Aug 9 18:43:52 ip106 sshd[19342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.107.216 Aug 9 18:43:54 ip106 sshd[19342]: Failed password for invalid user saqib from 149.56.107.216 port 45192 ssh2 ...	2020-08-10 01:08:24
149.56.107.216	attackspam	Aug 9 00:19:16 jane sshd[12063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.107.216 Aug 9 00:19:19 jane sshd[12063]: Failed password for invalid user routhier from 149.56.107.216 port 33422 ssh2 ...	2020-08-09 06:19:37
149.56.107.216	attackspam	Aug 8 16:53:29 ip106 sshd[30425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.107.216 Aug 8 16:53:31 ip106 sshd[30425]: Failed password for invalid user roberto from 149.56.107.216 port 58968 ssh2 ...	2020-08-08 23:05:43
149.56.100.237	attack	Jul 30 10:00:01 vps sshd[210043]: Failed password for invalid user postgre from 149.56.100.237 port 43988 ssh2 Jul 30 10:02:55 vps sshd[226519]: Invalid user sue from 149.56.100.237 port 37308 Jul 30 10:02:55 vps sshd[226519]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=237.ip-149-56-100.net Jul 30 10:02:57 vps sshd[226519]: Failed password for invalid user sue from 149.56.100.237 port 37308 ssh2 Jul 30 10:05:56 vps sshd[242356]: Invalid user butter from 149.56.100.237 port 58860 ...	2020-07-30 18:53:22
149.56.100.237	attackbotsspam	Jul 27 10:40:38 OPSO sshd\[11090\]: Invalid user tk from 149.56.100.237 port 45754 Jul 27 10:40:38 OPSO sshd\[11090\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.100.237 Jul 27 10:40:40 OPSO sshd\[11090\]: Failed password for invalid user tk from 149.56.100.237 port 45754 ssh2 Jul 27 10:42:08 OPSO sshd\[11500\]: Invalid user user2 from 149.56.100.237 port 40474 Jul 27 10:42:08 OPSO sshd\[11500\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.100.237	2020-07-27 16:43:49

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.56.10.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23859
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;149.56.10.72.			IN	A

;; AUTHORITY SECTION:
.			537	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 12:50:11 CST 2022
;; MSG SIZE  rcvd: 105

Host info

72.10.56.149.in-addr.arpa domain name pointer srv.portaldoaz.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
72.10.56.149.in-addr.arpa	name = srv.portaldoaz.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
141.98.9.32	attack	2020-10-06T14:22:16.711602shield sshd\[10506\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.9.32 user=root 2020-10-06T14:22:18.845791shield sshd\[10506\]: Failed password for root from 141.98.9.32 port 40753 ssh2 2020-10-06T14:22:47.234724shield sshd\[10571\]: Invalid user guest from 141.98.9.32 port 33053 2020-10-06T14:22:47.246753shield sshd\[10571\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.9.32 2020-10-06T14:22:49.636773shield sshd\[10571\]: Failed password for invalid user guest from 141.98.9.32 port 33053 ssh2	2020-10-06 22:31:03
109.72.192.78	attackspambots	Attempted Brute Force (dovecot)	2020-10-06 23:01:18
193.169.253.108	attackbotsspam	Brute forcing email accounts	2020-10-06 22:42:23
150.136.31.34	attackbotsspam	Oct 6 23:14:10 web1 sshd[8449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.136.31.34 user=root Oct 6 23:14:12 web1 sshd[8449]: Failed password for root from 150.136.31.34 port 35620 ssh2 Oct 6 23:26:12 web1 sshd[12452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.136.31.34 user=root Oct 6 23:26:14 web1 sshd[12452]: Failed password for root from 150.136.31.34 port 51408 ssh2 Oct 6 23:29:43 web1 sshd[13555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.136.31.34 user=root Oct 6 23:29:46 web1 sshd[13555]: Failed password for root from 150.136.31.34 port 59826 ssh2 Oct 6 23:33:17 web1 sshd[14756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.136.31.34 user=root Oct 6 23:33:19 web1 sshd[14756]: Failed password for root from 150.136.31.34 port 40030 ssh2 Oct 6 23:36:58 web1 sshd[15998]: pam_ ...	2020-10-06 22:38:34
108.188.199.237	attackspambots	Automatic report - Banned IP Access	2020-10-06 22:52:06
85.209.0.253	attackbotsspam	Oct 6 16:26:44 debian64 sshd[4698]: Failed password for root from 85.209.0.253 port 59048 ssh2 ...	2020-10-06 22:29:28
139.199.62.142	attackbotsspam	SSH login attempts.	2020-10-06 23:09:11
178.47.143.198	attackspam	[ssh] SSH attack	2020-10-06 22:43:23
49.235.107.186	attack	(sshd) Failed SSH login from 49.235.107.186 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 6 10:36:01 optimus sshd[11749]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.107.186 user=root Oct 6 10:36:04 optimus sshd[11749]: Failed password for root from 49.235.107.186 port 46116 ssh2 Oct 6 10:41:39 optimus sshd[13105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.107.186 user=root Oct 6 10:41:41 optimus sshd[13105]: Failed password for root from 49.235.107.186 port 36578 ssh2 Oct 6 10:46:09 optimus sshd[14384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.107.186 user=root	2020-10-06 22:52:25
37.112.60.154	attackbotsspam	Automatic report - Banned IP Access	2020-10-06 22:54:40
148.71.87.174	attackbots	Port Scan: TCP/443	2020-10-06 22:53:44
14.115.30.10	attackspam	Lines containing failures of 14.115.30.10 (max 1000) Oct 5 20:54:45 mxbb sshd[22191]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.115.30.10 user=r.r Oct 5 20:54:47 mxbb sshd[22191]: Failed password for r.r from 14.115.30.10 port 52142 ssh2 Oct 5 20:54:47 mxbb sshd[22191]: Received disconnect from 14.115.30.10 port 52142:11: Bye Bye [preauth] Oct 5 20:54:47 mxbb sshd[22191]: Disconnected from 14.115.30.10 port 52142 [preauth] Oct 5 21:02:07 mxbb sshd[22364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.115.30.10 user=r.r Oct 5 21:02:09 mxbb sshd[22364]: Failed password for r.r from 14.115.30.10 port 53004 ssh2 Oct 5 21:02:09 mxbb sshd[22364]: Received disconnect from 14.115.30.10 port 53004:11: Bye Bye [preauth] Oct 5 21:02:09 mxbb sshd[22364]: Disconnected from 14.115.30.10 port 53004 [preauth] Oct 5 21:04:36 mxbb sshd[22435]: pam_unix(sshd:auth): authentication failur........ ------------------------------	2020-10-06 22:28:34
115.91.22.2	attackbots	20/10/5@16:42:19: FAIL: Alarm-Network address from=115.91.22.2 ...	2020-10-06 22:50:09
146.56.220.95	attack	Oct 6 13:55:16 vpn01 sshd[27792]: Failed password for root from 146.56.220.95 port 50936 ssh2 ...	2020-10-06 23:10:14
112.216.39.234	attackbotsspam	Automatic report - Banned IP Access	2020-10-06 22:38:19

Recently Reported IPs

149.5.24.115	149.56.103.13	149.5.244.44	149.5.37.1
149.56.109.246	149.56.106.108	149.56.110.98	149.56.11.178
149.56.117.110	149.56.117.142	149.56.117.69	149.56.121.17
149.56.118.36	149.56.119.229	149.5.4.220	149.56.123.169
149.56.129.223	149.56.124.36	149.56.120.51	149.56.13.167