49.0.1.18 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: PT Usaha Adi Sanggoro

Hostname: unknown

Organization: PT. Usaha Adisanggoro

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	ENG,WP GET /v2/wp-includes/wlwmanifest.xml	2020-06-02 00:55:24

Comments on same subnet:

IP	Type	Details	Datetime
49.0.113.26	attack	Unauthorized connection attempt detected from IP address 49.0.113.26 to port 445 [T]	2020-08-16 18:52:33
49.0.113.2	attackbots	Unauthorized connection attempt from IP address 49.0.113.2 on Port 445(SMB)	2020-07-11 05:31:41
49.0.113.2	attackspambots	Unauthorized connection attempt from IP address 49.0.113.2 on Port 445(SMB)	2020-06-11 14:14:16
49.0.114.246	attackbotsspam	1581742239 - 02/15/2020 05:50:39 Host: 49.0.114.246/49.0.114.246 Port: 445 TCP Blocked	2020-02-15 17:43:26
49.0.113.2	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-06 21:31:47
49.0.122.149	attackspambots	Unauthorized connection attempt detected from IP address 49.0.122.149 to port 5555 [J]	2020-01-19 17:05:22
49.0.125.187	attackbotsspam	19/11/24@23:57:48: FAIL: Alarm-Intrusion address from=49.0.125.187 ...	2019-11-25 14:21:32

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.0.1.18
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64398
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.0.1.18.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081001 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Aug 11 03:38:28 CST 2019
;; MSG SIZE  rcvd: 113

Host info

18.1.0.49.in-addr.arpa domain name pointer server01.aka.ac.id.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
18.1.0.49.in-addr.arpa	name = server01.aka.ac.id.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.203.191.221	attackspambots	Apr 13 19:18:30 debian-2gb-nbg1-2 kernel: \[9057303.353916\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=159.203.191.221 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=56701 PROTO=TCP SPT=50980 DPT=4199 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-14 03:38:25
51.75.27.239	attackbots	Apr 13 23:22:45 gw1 sshd[19646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.27.239 Apr 13 23:22:47 gw1 sshd[19646]: Failed password for invalid user alex from 51.75.27.239 port 36216 ssh2 ...	2020-04-14 03:27:28
222.186.175.217	attackbots	2020-04-13T19:52:10.301944abusebot-4.cloudsearch.cf sshd[17947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root 2020-04-13T19:52:11.933302abusebot-4.cloudsearch.cf sshd[17947]: Failed password for root from 222.186.175.217 port 4334 ssh2 2020-04-13T19:52:15.531582abusebot-4.cloudsearch.cf sshd[17947]: Failed password for root from 222.186.175.217 port 4334 ssh2 2020-04-13T19:52:10.301944abusebot-4.cloudsearch.cf sshd[17947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root 2020-04-13T19:52:11.933302abusebot-4.cloudsearch.cf sshd[17947]: Failed password for root from 222.186.175.217 port 4334 ssh2 2020-04-13T19:52:15.531582abusebot-4.cloudsearch.cf sshd[17947]: Failed password for root from 222.186.175.217 port 4334 ssh2 2020-04-13T19:52:10.301944abusebot-4.cloudsearch.cf sshd[17947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty= ...	2020-04-14 03:52:56
5.89.10.81	attackspambots	Apr 13 13:44:08 server1 sshd\[27046\]: Invalid user morag from 5.89.10.81 Apr 13 13:44:08 server1 sshd\[27046\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.89.10.81 Apr 13 13:44:09 server1 sshd\[27046\]: Failed password for invalid user morag from 5.89.10.81 port 52246 ssh2 Apr 13 13:49:43 server1 sshd\[28577\]: Invalid user fluffy from 5.89.10.81 Apr 13 13:49:43 server1 sshd\[28577\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.89.10.81 ...	2020-04-14 03:52:16
82.62.232.235	attackbotsspam	Automatic report - Port Scan Attack	2020-04-14 03:27:15
111.21.99.227	attack	SSH brute force attempt	2020-04-14 04:01:05
208.68.36.57	attackbots	$f2bV_matches	2020-04-14 03:54:55
62.28.253.197	attackbotsspam	SSH Bruteforce attack	2020-04-14 03:23:28
112.30.125.25	attack	Apr 13 19:09:51 ns382633 sshd\[22210\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.30.125.25 user=root Apr 13 19:09:53 ns382633 sshd\[22210\]: Failed password for root from 112.30.125.25 port 43140 ssh2 Apr 13 19:18:30 ns382633 sshd\[24027\]: Invalid user harvard from 112.30.125.25 port 45152 Apr 13 19:18:30 ns382633 sshd\[24027\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.30.125.25 Apr 13 19:18:32 ns382633 sshd\[24027\]: Failed password for invalid user harvard from 112.30.125.25 port 45152 ssh2	2020-04-14 03:35:31
145.239.83.104	attackbotsspam	Apr 13 21:17:31 legacy sshd[27140]: Failed password for root from 145.239.83.104 port 46248 ssh2 Apr 13 21:21:20 legacy sshd[27265]: Failed password for root from 145.239.83.104 port 53694 ssh2 ...	2020-04-14 03:39:22
125.141.139.9	attack	$f2bV_matches	2020-04-14 03:58:42
106.13.46.123	attackspambots	2020-04-13T17:08:57.298526abusebot-7.cloudsearch.cf sshd[23900]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.46.123 user=root 2020-04-13T17:08:59.187170abusebot-7.cloudsearch.cf sshd[23900]: Failed password for root from 106.13.46.123 port 50728 ssh2 2020-04-13T17:15:10.739690abusebot-7.cloudsearch.cf sshd[24260]: Invalid user othello from 106.13.46.123 port 56272 2020-04-13T17:15:10.743738abusebot-7.cloudsearch.cf sshd[24260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.46.123 2020-04-13T17:15:10.739690abusebot-7.cloudsearch.cf sshd[24260]: Invalid user othello from 106.13.46.123 port 56272 2020-04-13T17:15:13.173962abusebot-7.cloudsearch.cf sshd[24260]: Failed password for invalid user othello from 106.13.46.123 port 56272 ssh2 2020-04-13T17:18:18.456470abusebot-7.cloudsearch.cf sshd[24424]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106. ...	2020-04-14 03:43:57
104.154.239.199	attackspam	Apr 13 14:20:16 ws12vmsma01 sshd[3476]: Failed password for invalid user testman from 104.154.239.199 port 48706 ssh2 Apr 13 14:22:06 ws12vmsma01 sshd[3735]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.239.154.104.bc.googleusercontent.com user=root Apr 13 14:22:08 ws12vmsma01 sshd[3735]: Failed password for root from 104.154.239.199 port 46032 ssh2 ...	2020-04-14 03:38:51
106.225.129.0	attack	2020-04-13 19:18:40,459 fail2ban.actions: WARNING [ssh] Ban 106.225.129.0	2020-04-14 03:33:54
190.89.188.128	attackbotsspam	Brute-force attempt banned	2020-04-14 03:24:45

Recently Reported IPs

106.53.81.162	188.4.216.175	41.73.252.236	82.82.20.27
119.139.101.116	67.229.70.89	35.192.32.247	68.183.203.23
81.221.122.245	131.146.48.4	99.62.132.54	107.74.229.77
161.133.25.219	112.41.223.101	139.59.230.18	69.104.217.85
105.223.43.65	195.208.20.215	128.186.123.18	109.217.132.216