75.49.249.16 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: AT&T Corp.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	2019-09-27T11:46:04.016451suse-nuc sshd[21302]: Invalid user openbravo from 75.49.249.16 port 55314 ...	2020-02-18 08:55:07
attackbots	Nov 21 17:19:32 vmd26974 sshd[4165]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.49.249.16 Nov 21 17:19:34 vmd26974 sshd[4165]: Failed password for invalid user oracle from 75.49.249.16 port 43648 ssh2 ...	2019-11-22 04:05:49
attack	Nov 19 21:57:41 tdfoods sshd\[10848\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=75-49-249-16.lightspeed.snjsca.sbcglobal.net user=root Nov 19 21:57:43 tdfoods sshd\[10848\]: Failed password for root from 75.49.249.16 port 45550 ssh2 Nov 19 22:01:03 tdfoods sshd\[11136\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=75-49-249-16.lightspeed.snjsca.sbcglobal.net user=root Nov 19 22:01:05 tdfoods sshd\[11136\]: Failed password for root from 75.49.249.16 port 52968 ssh2 Nov 19 22:04:31 tdfoods sshd\[11421\]: Invalid user yoyo from 75.49.249.16	2019-11-20 17:50:41
attackspambots	SSH Brute Force, server-1 sshd[5019]: Failed password for invalid user test6 from 75.49.249.16 port 53926 ssh2	2019-11-18 06:09:26
attackspambots	2019-11-13 10:07:57 server sshd[42233]: Failed password for invalid user muthalu from 75.49.249.16 port 58546 ssh2	2019-11-15 02:52:22
attack	Fail2Ban - SSH Bruteforce Attempt	2019-11-14 04:10:46
attack	Nov 12 19:31:12 root sshd[4356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.49.249.16 Nov 12 19:31:14 root sshd[4356]: Failed password for invalid user ka from 75.49.249.16 port 58320 ssh2 Nov 12 19:35:46 root sshd[4391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.49.249.16 ...	2019-11-13 03:10:04
attackspambots	2019-11-06T06:03:35.586229host3.slimhost.com.ua sshd[3850465]: Failed password for root from 75.49.249.16 port 53758 ssh2 2019-11-06T06:07:04.169612host3.slimhost.com.ua sshd[3853064]: Invalid user pollinate from 75.49.249.16 port 35416 2019-11-06T06:07:04.175281host3.slimhost.com.ua sshd[3853064]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75-49-249-16.lightspeed.snjsca.sbcglobal.net 2019-11-06T06:07:04.169612host3.slimhost.com.ua sshd[3853064]: Invalid user pollinate from 75.49.249.16 port 35416 2019-11-06T06:07:05.726412host3.slimhost.com.ua sshd[3853064]: Failed password for invalid user pollinate from 75.49.249.16 port 35416 ssh2 ...	2019-11-06 13:08:58
attackbotsspam	Invalid user User from 75.49.249.16 port 53510	2019-10-29 07:19:32
attackbots	2019-10-14T17:40:56.900468abusebot-8.cloudsearch.cf sshd\[23212\]: Invalid user edit from 75.49.249.16 port 56966	2019-10-15 03:28:16
attackbotsspam	Oct 7 11:30:09 php1 sshd\[26040\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.49.249.16 user=root Oct 7 11:30:11 php1 sshd\[26040\]: Failed password for root from 75.49.249.16 port 42666 ssh2 Oct 7 11:33:55 php1 sshd\[26312\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.49.249.16 user=root Oct 7 11:33:57 php1 sshd\[26312\]: Failed password for root from 75.49.249.16 port 53898 ssh2 Oct 7 11:37:34 php1 sshd\[26651\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.49.249.16 user=root	2019-10-08 05:43:13
attackspam	Sep 29 02:09:51 core sshd[4702]: Invalid user redbot from 75.49.249.16 port 37734 Sep 29 02:09:53 core sshd[4702]: Failed password for invalid user redbot from 75.49.249.16 port 37734 ssh2 ...	2019-09-29 08:19:59
attackspam	Sep 26 07:07:27 vps691689 sshd[7130]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.49.249.16 Sep 26 07:07:29 vps691689 sshd[7130]: Failed password for invalid user eprcuser from 75.49.249.16 port 50098 ssh2 Sep 26 07:11:35 vps691689 sshd[7172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.49.249.16 ...	2019-09-26 14:06:40
attack	Sep 16 03:18:48 jane sshd[20438]: Failed password for www-data from 75.49.249.16 port 37938 ssh2 Sep 16 03:22:33 jane sshd[23189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.49.249.16 ...	2019-09-16 13:27:59
attack	Sep 11 22:23:59 fr01 sshd[26101]: Invalid user ftpuser from 75.49.249.16 Sep 11 22:23:59 fr01 sshd[26101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.49.249.16 Sep 11 22:23:59 fr01 sshd[26101]: Invalid user ftpuser from 75.49.249.16 Sep 11 22:24:01 fr01 sshd[26101]: Failed password for invalid user ftpuser from 75.49.249.16 port 51690 ssh2 ...	2019-09-12 11:20:10
attackspam	Sep 5 10:28:01 MK-Soft-Root2 sshd\[30736\]: Invalid user 1234 from 75.49.249.16 port 46608 Sep 5 10:28:01 MK-Soft-Root2 sshd\[30736\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.49.249.16 Sep 5 10:28:03 MK-Soft-Root2 sshd\[30736\]: Failed password for invalid user 1234 from 75.49.249.16 port 46608 ssh2 ...	2019-09-06 01:33:36
attackbotsspam	Sep 1 19:10:22 auw2 sshd\[8981\]: Invalid user test from 75.49.249.16 Sep 1 19:10:22 auw2 sshd\[8981\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=75-49-249-16.lightspeed.snjsca.sbcglobal.net Sep 1 19:10:23 auw2 sshd\[8981\]: Failed password for invalid user test from 75.49.249.16 port 47398 ssh2 Sep 1 19:14:32 auw2 sshd\[9326\]: Invalid user party from 75.49.249.16 Sep 1 19:14:32 auw2 sshd\[9326\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=75-49-249-16.lightspeed.snjsca.sbcglobal.net	2019-09-02 13:15:52
attackspambots	Aug 31 20:24:57 legacy sshd[4885]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.49.249.16 Aug 31 20:24:59 legacy sshd[4885]: Failed password for invalid user weblogic from 75.49.249.16 port 55368 ssh2 Aug 31 20:29:13 legacy sshd[5000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.49.249.16 ...	2019-09-01 02:47:12
attack	Aug 25 18:15:10 auw2 sshd\[25175\]: Invalid user suporte from 75.49.249.16 Aug 25 18:15:10 auw2 sshd\[25175\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=75-49-249-16.lightspeed.snjsca.sbcglobal.net Aug 25 18:15:12 auw2 sshd\[25175\]: Failed password for invalid user suporte from 75.49.249.16 port 48122 ssh2 Aug 25 18:19:35 auw2 sshd\[25558\]: Invalid user mindy from 75.49.249.16 Aug 25 18:19:35 auw2 sshd\[25558\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=75-49-249-16.lightspeed.snjsca.sbcglobal.net	2019-08-26 12:29:15
attackbots	Automatic report - SSH Brute-Force Attack	2019-08-22 11:10:18

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 75.49.249.16
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38185
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;75.49.249.16.			IN	A

;; AUTHORITY SECTION:
.			1621	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082101 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 22 11:10:10 CST 2019
;; MSG SIZE  rcvd: 116

Host info

16.249.49.75.in-addr.arpa domain name pointer 75-49-249-16.lightspeed.snjsca.sbcglobal.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
16.249.49.75.in-addr.arpa	name = 75-49-249-16.lightspeed.snjsca.sbcglobal.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
71.6.232.5	attackspambots	Unauthorized connection attempt detected from IP address 71.6.232.5 to port 3000	2020-08-03 16:14:53
111.229.76.117	attack	$f2bV_matches	2020-08-03 16:29:08
221.0.185.199	attackbots	08/02/2020-23:52:58.602637 221.0.185.199 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-08-03 16:18:35
58.69.160.157	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-08-03 16:16:50
75.134.60.248	attackbots	Aug 3 09:43:25 [host] sshd[13936]: pam_unix(sshd: Aug 3 09:43:27 [host] sshd[13936]: Failed passwor Aug 3 09:47:47 [host] sshd[14108]: pam_unix(sshd:	2020-08-03 16:05:17
93.73.120.183	attackspambots	[portscan] Port scan	2020-08-03 16:11:30
113.125.117.48	attackspam	Bruteforce detected by fail2ban	2020-08-03 16:05:47
222.186.30.76	attackspam	Aug 3 10:20:53 dev0-dcde-rnet sshd[21458]: Failed password for root from 222.186.30.76 port 37893 ssh2 Aug 3 10:21:05 dev0-dcde-rnet sshd[21460]: Failed password for root from 222.186.30.76 port 37341 ssh2	2020-08-03 16:30:45
27.65.194.38	attackbotsspam	1596426740 - 08/03/2020 05:52:20 Host: 27.65.194.38/27.65.194.38 Port: 445 TCP Blocked	2020-08-03 16:43:44
186.210.92.196	attackspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-08-03 16:18:57
85.209.0.100	attack	Aug 3 11:23:24 server2 sshd\[4538\]: User root from 85.209.0.100 not allowed because not listed in AllowUsers Aug 3 11:23:25 server2 sshd\[4536\]: User root from 85.209.0.100 not allowed because not listed in AllowUsers Aug 3 11:23:25 server2 sshd\[4537\]: User root from 85.209.0.100 not allowed because not listed in AllowUsers Aug 3 11:23:25 server2 sshd\[4535\]: User root from 85.209.0.100 not allowed because not listed in AllowUsers Aug 3 11:23:26 server2 sshd\[4533\]: User root from 85.209.0.100 not allowed because not listed in AllowUsers Aug 3 11:23:26 server2 sshd\[4534\]: User root from 85.209.0.100 not allowed because not listed in AllowUsers	2020-08-03 16:44:24
106.12.36.3	attack	Aug 3 09:25:07 gw1 sshd[31945]: Failed password for root from 106.12.36.3 port 37546 ssh2 ...	2020-08-03 16:32:04
34.67.85.82	attackbotsspam	Aug 3 09:44:31 pve1 sshd[9159]: Failed password for root from 34.67.85.82 port 57308 ssh2 ...	2020-08-03 16:33:45
42.82.211.87	attackspambots	Port probing on unauthorized port 81	2020-08-03 16:34:11
47.108.206.133	attackbotsspam	k+ssh-bruteforce	2020-08-03 16:42:53

Recently Reported IPs

60.128.204.144	144.95.55.120	20.240.60.100	142.80.110.211
105.184.218.173	20.121.73.133	72.238.216.208	81.2.240.203
88.26.191.68	23.187.50.24	2.44.60.3	107.128.103.162
106.12.106.78	201.150.22.237	187.120.145.85	201.243.67.14
80.184.92.40	187.1.116.14	199.84.249.176	197.54.206.184