149.96.72.242 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.96.72.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29007
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;149.96.72.242.			IN	A

;; AUTHORITY SECTION:
.			482	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022010500 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 05 22:43:19 CST 2022
;; MSG SIZE  rcvd: 106

Host info

242.72.96.149.in-addr.arpa domain name pointer vip-149-96-72-242.cust.service-now.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
242.72.96.149.in-addr.arpa	name = vip-149-96-72-242.cust.service-now.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
195.210.46.21	attack	WordPress install sniffing: "GET /1/wp-includes/wlwmanifest.xml"	2020-08-15 18:47:21
180.97.80.246	attackspam	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-08-15 18:59:39
111.72.197.24	attack	Aug 15 06:20:44 srv01 postfix/smtpd\[31636\]: warning: unknown\[111.72.197.24\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 06:20:56 srv01 postfix/smtpd\[31636\]: warning: unknown\[111.72.197.24\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 06:21:13 srv01 postfix/smtpd\[31636\]: warning: unknown\[111.72.197.24\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 06:21:31 srv01 postfix/smtpd\[31636\]: warning: unknown\[111.72.197.24\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 06:21:43 srv01 postfix/smtpd\[31636\]: warning: unknown\[111.72.197.24\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-08-15 18:23:00
94.25.181.91	attack	2020-08-15 05:50:21,707 fail2ban.actions: WARNING [sasl] Ban 94.25.181.91	2020-08-15 18:36:07
222.186.61.19	attackspambots	firewall-block, port(s): 53281/tcp, 55443/tcp	2020-08-15 18:35:21
139.59.90.31	attackspam	$f2bV_matches	2020-08-15 18:44:12
106.12.34.97	attackspam	frenzy	2020-08-15 18:26:41
188.165.255.8	attackbotsspam	"Unauthorized connection attempt on SSHD detected"	2020-08-15 18:52:56
180.126.185.94	attack	Lines containing failures of 180.126.185.94 Aug 15 11:52:31 shared03 sshd[9035]: Bad protocol version identification '' from 180.126.185.94 port 59119 Aug 15 11:52:33 shared03 sshd[9037]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.126.185.94 user=r.r Aug 15 11:52:35 shared03 sshd[9037]: Failed password for r.r from 180.126.185.94 port 59758 ssh2 Aug 15 11:52:37 shared03 sshd[9037]: Connection closed by authenticating user r.r 180.126.185.94 port 59758 [preauth] Aug 15 11:52:43 shared03 sshd[9052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.126.185.94 user=r.r Aug 15 11:52:45 shared03 sshd[9052]: Failed password for r.r from 180.126.185.94 port 33427 ssh2 Aug 15 11:52:46 shared03 sshd[9052]: Connection closed by authenticating user r.r 180.126.185.94 port 33427 [preauth] Aug 15 11:52:50 shared03 sshd[9074]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 ........ ------------------------------	2020-08-15 18:28:27
119.161.98.141	attackspambots	[portscan] tcp/1433 [MsSQL] *(RWIN=1024)(08151055)	2020-08-15 18:27:16
123.207.149.93	attackspam	$f2bV_matches	2020-08-15 18:20:49
193.32.161.149	attackspam	TCP ports : 24722 / 59388	2020-08-15 18:37:15
106.111.118.240	attackspam	$f2bV_matches	2020-08-15 19:00:23
218.92.0.185	attack	Aug 15 12:42:09 OPSO sshd\[9578\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.185 user=root Aug 15 12:42:11 OPSO sshd\[9578\]: Failed password for root from 218.92.0.185 port 20617 ssh2 Aug 15 12:42:16 OPSO sshd\[9578\]: Failed password for root from 218.92.0.185 port 20617 ssh2 Aug 15 12:42:19 OPSO sshd\[9578\]: Failed password for root from 218.92.0.185 port 20617 ssh2 Aug 15 12:42:22 OPSO sshd\[9578\]: Failed password for root from 218.92.0.185 port 20617 ssh2	2020-08-15 18:44:57
198.12.225.100	attackbotsspam	Automatic report - Banned IP Access	2020-08-15 18:45:15

Recently Reported IPs

180.108.56.167	178.49.128.237	12.241.53.253	178.170.221.54
107.77.193.117	80.162.172.231	180.242.153.16	204.229.83.157
46.41.22.150	218.95.143.136	49.91.161.116	25.90.139.93
182.56.152.250	50.113.154.178	182.80.222.100	76.126.105.186
183.221.89.178	86.82.216.232	70.188.203.222	183.45.199.161