49.149.72.100 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Philippines

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
49.149.72.12	attack	1592625191 - 06/20/2020 05:53:11 Host: 49.149.72.12/49.149.72.12 Port: 445 TCP Blocked	2020-06-20 14:31:22
49.149.72.75	attackbotsspam	Unauthorized connection attempt detected from IP address 49.149.72.75 to port 445	2019-12-31 20:15:33
49.149.72.26	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 29-12-2019 06:25:09.	2019-12-29 21:37:45
49.149.72.91	attack	Unauthorized connection attempt from IP address 49.149.72.91 on Port 445(SMB)	2019-11-13 22:31:01

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.149.72.100
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42789
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.149.72.100.			IN	A

;; AUTHORITY SECTION:
.			275	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 08:53:06 CST 2022
;; MSG SIZE  rcvd: 106

Host info

100.72.149.49.in-addr.arpa domain name pointer dsl.49.149.72.100.pldt.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
100.72.149.49.in-addr.arpa	name = dsl.49.149.72.100.pldt.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
85.159.35.138	attackspam	Dovecot Invalid User Login Attempt.	2020-08-20 22:10:45
103.93.181.10	attackspam	Failed password for root from 103.93.181.10 port 50638 ssh2	2020-08-20 21:52:30
115.243.88.34	attack	20/8/20@08:06:15: FAIL: Alarm-Intrusion address from=115.243.88.34 ...	2020-08-20 22:17:26
46.101.137.182	attack	Aug 20 15:51:18 sso sshd[23205]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.137.182 Aug 20 15:51:19 sso sshd[23205]: Failed password for invalid user lxy from 46.101.137.182 port 57710 ssh2 ...	2020-08-20 22:11:16
212.83.176.242	attackbotsspam	Excessive Port-Scanning	2020-08-20 21:51:32
192.241.234.8	attackbots	" "	2020-08-20 21:54:00
148.72.211.106	attack	tcp 6379	2020-08-20 22:04:02
43.226.34.171	attack	Aug 20 12:06:20 marvibiene sshd[36021]: Invalid user xflow from 43.226.34.171 port 35004 Aug 20 12:06:20 marvibiene sshd[36021]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.226.34.171 Aug 20 12:06:20 marvibiene sshd[36021]: Invalid user xflow from 43.226.34.171 port 35004 Aug 20 12:06:23 marvibiene sshd[36021]: Failed password for invalid user xflow from 43.226.34.171 port 35004 ssh2	2020-08-20 22:14:30
35.200.241.227	attackbots	Aug 20 15:29:09 nextcloud sshd\[14182\]: Invalid user riv from 35.200.241.227 Aug 20 15:29:09 nextcloud sshd\[14182\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.200.241.227 Aug 20 15:29:12 nextcloud sshd\[14182\]: Failed password for invalid user riv from 35.200.241.227 port 46548 ssh2	2020-08-20 22:01:42
14.227.135.2	attackspambots	Port scan on 1 port(s): 445	2020-08-20 21:50:41
183.83.33.169	attackbotsspam	1597925167 - 08/20/2020 14:06:07 Host: 183.83.33.169/183.83.33.169 Port: 445 TCP Blocked	2020-08-20 22:22:47
116.198.207.248	attack	Aug 19 23:30:30 uapps sshd[15395]: Invalid user guest3 from 116.198.207.248 port 48726 Aug 19 23:30:32 uapps sshd[15395]: Failed password for invalid user guest3 from 116.198.207.248 port 48726 ssh2 Aug 19 23:30:32 uapps sshd[15395]: Received disconnect from 116.198.207.248 port 48726:11: Bye Bye [preauth] Aug 19 23:30:32 uapps sshd[15395]: Disconnected from invalid user guest3 116.198.207.248 port 48726 [preauth] Aug 19 23:40:42 uapps sshd[15588]: User r.r from 116.198.207.248 not allowed because not listed in AllowUsers Aug 19 23:40:42 uapps sshd[15588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.198.207.248 user=r.r Aug 19 23:40:44 uapps sshd[15588]: Failed password for invalid user r.r from 116.198.207.248 port 57343 ssh2 Aug 19 23:40:45 uapps sshd[15588]: Received disconnect from 116.198.207.248 port 57343:11: Bye Bye [preauth] Aug 19 23:40:45 uapps sshd[15588]: Disconnected from invalid user r.r 116.198.207.248 por........ -------------------------------	2020-08-20 22:23:17
43.224.3.219	attackspam	C2,WP GET /wp-login.php	2020-08-20 22:03:06
3.125.68.134	attack	Aug 20 16:05:37 abendstille sshd\[16295\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.125.68.134 user=root Aug 20 16:05:39 abendstille sshd\[16295\]: Failed password for root from 3.125.68.134 port 40524 ssh2 Aug 20 16:09:37 abendstille sshd\[20078\]: Invalid user ct from 3.125.68.134 Aug 20 16:09:37 abendstille sshd\[20078\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.125.68.134 Aug 20 16:09:39 abendstille sshd\[20078\]: Failed password for invalid user ct from 3.125.68.134 port 49858 ssh2 ...	2020-08-20 22:14:43
163.172.151.47	attackbotsspam	xmlrpc attack	2020-08-20 21:48:00

Recently Reported IPs

49.150.10.93	49.150.118.229	49.149.71.3	49.158.193.153
49.156.46.110	49.158.201.65	49.156.46.46	49.158.194.209
49.158.245.185	49.159.141.231	49.161.114.64	49.163.105.168
49.159.154.118	49.169.123.163	49.170.89.213	49.186.41.74
49.183.142.163	49.176.238.132	49.184.43.102	49.187.138.106