49.149.72.12 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Philippines

Internet Service Provider: Philippine Long Distance Telephone Company

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	1592625191 - 06/20/2020 05:53:11 Host: 49.149.72.12/49.149.72.12 Port: 445 TCP Blocked	2020-06-20 14:31:22

Comments on same subnet:

IP	Type	Details	Datetime
49.149.72.75	attackbotsspam	Unauthorized connection attempt detected from IP address 49.149.72.75 to port 445	2019-12-31 20:15:33
49.149.72.26	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 29-12-2019 06:25:09.	2019-12-29 21:37:45
49.149.72.91	attack	Unauthorized connection attempt from IP address 49.149.72.91 on Port 445(SMB)	2019-11-13 22:31:01

Type

Details

Datetime

49.149.72.75

attackbotsspam

Unauthorized connection attempt detected from IP address 49.149.72.75 to port 445

2019-12-31 20:15:33

49.149.72.26

attackspambots

Attempt to attack host OS, exploiting network vulnerabilities, on 29-12-2019 06:25:09.

2019-12-29 21:37:45

49.149.72.91

attack

Unauthorized connection attempt from IP address 49.149.72.91 on Port 445(SMB)

2019-11-13 22:31:01

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.149.72.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60083
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.149.72.12.			IN	A

;; AUTHORITY SECTION:
.			317	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061901 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jun 20 14:31:18 CST 2020
;; MSG SIZE  rcvd: 116

Host info

12.72.149.49.in-addr.arpa domain name pointer dsl.49.149.72.12.pldt.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
12.72.149.49.in-addr.arpa	name = dsl.49.149.72.12.pldt.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
150.109.205.242	attack	Port Scan/VNC login attempt ...	2020-08-09 20:59:30
213.160.143.146	attackbots	Aug 9 14:15:11 h2829583 sshd[25428]: Failed password for root from 213.160.143.146 port 53528 ssh2	2020-08-09 20:53:21
112.91.145.58	attackbots	Aug 9 14:42:26 abendstille sshd\[13590\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.91.145.58 user=root Aug 9 14:42:28 abendstille sshd\[13590\]: Failed password for root from 112.91.145.58 port 27575 ssh2 Aug 9 14:46:32 abendstille sshd\[17679\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.91.145.58 user=root Aug 9 14:46:33 abendstille sshd\[17679\]: Failed password for root from 112.91.145.58 port 27609 ssh2 Aug 9 14:48:30 abendstille sshd\[19579\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.91.145.58 user=root ...	2020-08-09 20:49:58
58.165.216.33	attackspambots	Draytek Vigor Remote Command Injection Vulnerability	2020-08-09 20:34:19
129.226.138.179	attack	Aug 9 05:30:07 mockhub sshd[3680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.138.179 Aug 9 05:30:09 mockhub sshd[3680]: Failed password for invalid user x1i5n3nu#2011 from 129.226.138.179 port 52890 ssh2 ...	2020-08-09 20:41:19
51.178.182.35	attack	Failed password for root from 51.178.182.35 port 59582 ssh2	2020-08-09 21:06:12
107.170.63.221	attack	$f2bV_matches	2020-08-09 20:33:44
118.71.171.224	attackbotsspam	Unauthorised access (Aug 9) SRC=118.71.171.224 LEN=40 TOS=0x10 PREC=0x40 TTL=51 ID=12916 TCP DPT=23 WINDOW=35153 SYN	2020-08-09 20:51:58
179.97.63.117	attack	From send-alceu-1618-alkosa.com.br-8@summerbox.com.br Sun Aug 09 09:14:57 2020 Received: from mm63-117.summerbox.com.br ([179.97.63.117]:37847)	2020-08-09 21:07:00
89.37.2.65	attack	Unauthorized connection attempt from IP address 89.37.2.65 on Port 445(SMB)	2020-08-09 20:57:04
14.177.228.242	attackspam	Unauthorized connection attempt from IP address 14.177.228.242 on Port 445(SMB)	2020-08-09 20:42:06
218.103.33.5	attackspambots	Unauthorized connection attempt from IP address 218.103.33.5 on Port 445(SMB)	2020-08-09 20:52:50
157.230.38.102	attack	Aug 9 14:15:00 hidden sshd[41705]: Failed password for hidden from 157.230.38.102 port 36614 ssh2 Aug 9 14:19:17 hidden sshd[42476]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.38.102 user=root Aug 9 14:19:19 hidden sshd[42476]: Failed password for hidden from 157.230.38.102 port 47518 ssh2	2020-08-09 20:48:51
104.152.52.25	attackspam	Masscan Port Scanning Tool Detection	2020-08-09 20:30:04
129.211.33.59	attack	Port Scan/VNC login attempt ...	2020-08-09 20:56:50

Recently Reported IPs

171.247.194.109	24.220.126.28	72.221.232.144	211.140.118.19
189.248.94.140	66.97.41.80	36.85.217.178	34.210.46.212
83.198.196.110	106.53.61.167	120.193.235.101	77.88.5.131
114.237.109.68	107.186.185.225	250.2.168.237	161.148.188.150
135.74.134.186	125.161.116.126	64.146.123.167	198.82.55.27