49.0.1.18 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT Usaha Adi Sanggoro

Hostname: unknown

Organization: PT. Usaha Adisanggoro

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	ENG,WP GET /v2/wp-includes/wlwmanifest.xml	2020-06-02 00:55:24

Comments on same subnet:

IP	Type	Details	Datetime
49.0.113.26	attack	Unauthorized connection attempt detected from IP address 49.0.113.26 to port 445 [T]	2020-08-16 18:52:33
49.0.113.2	attackbots	Unauthorized connection attempt from IP address 49.0.113.2 on Port 445(SMB)	2020-07-11 05:31:41
49.0.113.2	attackspambots	Unauthorized connection attempt from IP address 49.0.113.2 on Port 445(SMB)	2020-06-11 14:14:16
49.0.114.246	attackbotsspam	1581742239 - 02/15/2020 05:50:39 Host: 49.0.114.246/49.0.114.246 Port: 445 TCP Blocked	2020-02-15 17:43:26
49.0.113.2	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-06 21:31:47
49.0.122.149	attackspambots	Unauthorized connection attempt detected from IP address 49.0.122.149 to port 5555 [J]	2020-01-19 17:05:22
49.0.125.187	attackbotsspam	19/11/24@23:57:48: FAIL: Alarm-Intrusion address from=49.0.125.187 ...	2019-11-25 14:21:32

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.0.1.18
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64398
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.0.1.18.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081001 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Aug 11 03:38:28 CST 2019
;; MSG SIZE  rcvd: 113

Host info

18.1.0.49.in-addr.arpa domain name pointer server01.aka.ac.id.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
18.1.0.49.in-addr.arpa	name = server01.aka.ac.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.65.111.89	attack	Feb 2 04:46:54 gw1 sshd[25708]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.111.89 Feb 2 04:46:55 gw1 sshd[25708]: Failed password for invalid user webmaster from 159.65.111.89 port 54796 ssh2 ...	2020-02-02 07:59:10
52.58.94.204	attack	Unauthorized connection attempt detected from IP address 52.58.94.204 to port 80	2020-02-02 08:20:39
123.207.153.52	attackspambots	Invalid user student from 123.207.153.52 port 50100	2020-02-02 08:11:27
139.99.17.0	attack	Unauthorized connection attempt detected from IP address 139.99.17.0 to port 23 [J]	2020-02-02 08:29:31
37.193.108.101	attack	Invalid user rajjat from 37.193.108.101 port 63990	2020-02-02 07:59:55
37.203.208.3	attackspam	Unauthorized connection attempt detected from IP address 37.203.208.3 to port 2220 [J]	2020-02-02 08:21:51
123.126.20.90	attackspam	Unauthorized connection attempt detected from IP address 123.126.20.90 to port 2220 [J]	2020-02-02 08:05:33
193.70.36.161	attackspam	Unauthorized connection attempt detected from IP address 193.70.36.161 to port 2220 [J]	2020-02-02 07:55:03
52.34.83.11	attackbotsspam	02/02/2020-00:50:31.031731 52.34.83.11 Protocol: 6 SURICATA TLS invalid record/traffic	2020-02-02 08:03:11
185.232.67.6	attackbotsspam	Feb 2 01:22:53 dedicated sshd[18938]: Invalid user admin from 185.232.67.6 port 43604	2020-02-02 08:23:48
139.99.87.51	attack	Feb 1 22:56:57 server postfix/smtpd[31627]: NOQUEUE: reject: RCPT from smtp1-52.pinkpillmedia.org[139.99.87.51]: 554 5.7.1 Service unavailable; Client host [139.99.87.51] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=	2020-02-02 07:57:30
112.85.42.189	attack	01.02.2020 23:36:59 SSH access blocked by firewall	2020-02-02 07:56:56
195.158.99.111	attackspambots	2020-02-01 15:56:14 H=(as6p111.access.maltanet.net) [195.158.99.111]:59313 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/195.158.99.111) 2020-02-01 15:56:15 H=(as6p111.access.maltanet.net) [195.158.99.111]:59313 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/195.158.99.111) 2020-02-01 15:56:15 H=(as6p111.access.maltanet.net) [195.158.99.111]:59313 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/195.158.99.111) ...	2020-02-02 08:21:07
185.153.199.210	attackbots	Feb 2 02:18:39 server2 sshd\[29681\]: Invalid user 0 from 185.153.199.210 Feb 2 02:18:39 server2 sshd\[29680\]: Invalid user 0 from 185.153.199.210 Feb 2 02:18:39 server2 sshd\[29684\]: Invalid user 0 from 185.153.199.210 Feb 2 02:18:41 server2 sshd\[29692\]: Invalid user 22 from 185.153.199.210 Feb 2 02:18:41 server2 sshd\[29690\]: Invalid user 22 from 185.153.199.210 Feb 2 02:18:41 server2 sshd\[29683\]: Invalid user 0 from 185.153.199.210	2020-02-02 08:19:42
222.186.42.7	attack	Feb 2 05:34:47 areeb-Workstation sshd[16257]: Failed password for root from 222.186.42.7 port 23873 ssh2 Feb 2 05:34:51 areeb-Workstation sshd[16257]: Failed password for root from 222.186.42.7 port 23873 ssh2 ...	2020-02-02 08:08:07

Recently Reported IPs

106.53.81.162	188.4.216.175	41.73.252.236	82.82.20.27
119.139.101.116	67.229.70.89	35.192.32.247	68.183.203.23
81.221.122.245	131.146.48.4	99.62.132.54	107.74.229.77
161.133.25.219	112.41.223.101	139.59.230.18	69.104.217.85
105.223.43.65	195.208.20.215	128.186.123.18	109.217.132.216