JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 49.72.38.70

49.72.38.70 was found in our database!

This IP was reported 25 times. Confidence of Abuse is 0%: ?

ISP	CHINANET jiangsu province network
Usage Type	Fixed Line ISP
ASN	AS4134
Domain Name	chinatelecom.cn
Country	🇨🇳 China
City	Nanjing, Jiangsu

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 49.72.38.70

Whois 49.72.38.70

IP Abuse Reports for 49.72.38.70:

This IP address has been reported a total of 25 times from 23 distinct sources. 49.72.38.70 was first reported on June 13th 2024, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 Linuxmalwarehuntingnl	2024-06-30 09:44:37 (1 year ago)	Unauthorized connection attempt	Brute-Force
🇳🇱 Linuxmalwarehuntingnl	2024-06-30 09:40:59 (1 year ago)	Unauthorized connection attempt	Brute-Force
🇦🇹 urnilxfgbez	2024-06-17 22:45:00 (1 year ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇬🇧 Axel	2024-06-17 22:20:01 (1 year ago)	This IP was banned by Fail2Ban on behalf of 26ThAve. Reason: Multiple incorrect SSH login credential ... show more This IP was banned by Fail2Ban on behalf of 26ThAve. Reason: Multiple incorrect SSH login credentials. Server ID 408 US-LOSANGELES. (SSH & BRUTE-FORCE) show less	SSH
🇺🇸 RAP	2024-06-17 21:29:25 (1 year ago)	2024-06-17 21:29:25 UTC Unauthorized activity to TCP port 22. SSH	SSH
🇩🇪 ghostwarriors	2024-06-17 20:20:32 (1 year ago)	Unauthorized connection attempt detected, SSH Brute-Force	Port Scan Brute-Force SSH
🇫🇮 pr0vieh	2024-06-17 19:40:11 (1 year ago)	2024-06-17T19:39:00.425834+00:00 Linux04 sshd[2076747]: Failed password for root from 49.72.38.70 po ... show more 2024-06-17T19:39:00.425834+00:00 Linux04 sshd[2076747]: Failed password for root from 49.72.38.70 port 2565 ssh2 2024-06-17T19:39:21.838061+00:00 Linux04 sshd[2076747]: error: maximum authentication attempts exceeded for root from 49.72.38.70 port 2565 ssh2 [preauth] 2024-06-17T19:39:31.876142+00:00 Linux04 sshd[2078118]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.72.38.70 user=root 2024-06-17T19:39:34.369811+00:00 Linux04 sshd[2078118]: Failed password for root from 49.72.38.70 port 2906 ssh2 2024-06-17T19:39:38.814572+00:00 Linux04 sshd[2078118]: Failed password for root from 49.72.38.70 port 2906 ssh2 2024-06-17T19:40:00.263758+00:00 Linux04 sshd[2079157]: Invalid user admin from 49.72.38.70 port 3198 2024-06-17T19:40:00.266807+00:00 Linux04 sshd[2079157]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.72.38.70 2024-06-17T19:40:02.409507+00:00 Linux04 sshd[2079157]: Failed password for inva ... show less	Brute-Force SSH
🇨🇦 craftxbox	2024-06-17 11:49:38 (1 year ago)	Jun 17 11:49:13 mail sshd[411513]: error: maximum authentication attempts exceeded for root from 49. ... show more Jun 17 11:49:13 mail sshd[411513]: error: maximum authentication attempts exceeded for root from 49.72.38.70 port 9997 ssh2 [preauth] Jun 17 11:49:27 mail sshd[411524]: Invalid user admin from 49.72.38.70 port 10144 Jun 17 11:49:27 mail sshd[411524]: Invalid user admin from 49.72.38.70 port 10144 Jun 17 11:49:28 mail sshd[411524]: error: maximum authentication attempts exceeded for invalid user admin from 49.72.38.70 port 10144 ssh2 [preauth] Jun 17 11:49:37 mail sshd[411526]: Invalid user admin from 49.72.38.70 port 10223 ... show less	Brute-Force SSH
Anonymous	2024-06-16 21:40:29 (1 year ago)	Jun 16 21:39:59 marseille sshd[1634176]: error: maximum authentication attempts exceeded for root fr ... show more Jun 16 21:39:59 marseille sshd[1634176]: error: maximum authentication attempts exceeded for root from 49.72.38.70 port 9453 ssh2 [preauth] Jun 16 21:40:07 marseille sshd[1634183]: error: maximum authentication attempts exceeded for root from 49.72.38.70 port 9525 ssh2 [preauth] Jun 16 21:40:14 marseille sshd[1634200]: error: maximum authentication attempts exceeded for root from 49.72.38.70 port 9600 ssh2 [preauth] Jun 16 21:40:21 marseille sshd[1634243]: error: maximum authentication attempts exceeded for root from 49.72.38.70 port 9660 ssh2 [preauth] Jun 16 21:40:28 marseille sshd[1634304]: error: maximum authentication attempts exceeded for root from 49.72.38.70 port 9726 ssh2 [preauth] ... show less	Port Scan Hacking Brute-Force Bad Web Bot Web App Attack SSH
Anonymous	2024-06-16 10:19:20 (1 year ago)	sshd	Brute-Force SSH
🇺🇸 en0	2024-06-16 09:48:23 (1 year ago)	2024-06-16 04:48:23,146 fail2ban.actions [986]: NOTICE [sshd] Ban 49.72.38.70	Brute-Force SSH
🇹🇼 AndCycle	2024-06-15 17:49:34 (2 years ago)	Jun 16 01:48:40 bacztwo sshd[19368]: error: maximum authentication attempts exceeded for root from 4 ... show more Jun 16 01:48:40 bacztwo sshd[19368]: error: maximum authentication attempts exceeded for root from 49.72.38.70 port 3203 ssh2 [preauth] Jun 16 01:48:47 bacztwo sshd[19432]: error: maximum authentication attempts exceeded for root from 49.72.38.70 port 3259 ssh2 [preauth] Jun 16 01:48:56 bacztwo sshd[20028]: Invalid user admin from 49.72.38.70 port 3362 Jun 16 01:48:57 bacztwo sshd[20028]: error: maximum authentication attempts exceeded for invalid user admin from 49.72.38.70 port 3362 ssh2 [preauth] Jun 16 01:49:02 bacztwo sshd[20078]: Invalid user admin from 49.72.38.70 port 3430 Jun 16 01:49:03 bacztwo sshd[20078]: error: maximum authentication attempts exceeded for invalid user admin from 49.72.38.70 port 3430 ssh2 [preauth] Jun 16 01:49:09 bacztwo sshd[20137]: Invalid user admin from 49.72.38.70 port 3480 Jun 16 01:49:14 bacztwo sshd[20181]: Invalid user oracle from 49.72.38.70 port 3537 Jun 16 01:49:14 bacztwo sshd[20181]: error: maximum authentication attempts exceeded for invali ... show less	Brute-Force SSH
🇨🇿 lp	2024-06-15 15:20:14 (2 years ago)	SSH Brute force: 1 attempts were recorded from 49.72.38.70 2024-06-15T16:52:40+02:00 error: maximum ... show more SSH Brute force: 1 attempts were recorded from 49.72.38.70 2024-06-15T16:52:40+02:00 error: maximum authentication attempts exceeded for root from 49.72.38.70 port 5110 ssh2 [preauth] show less	Brute-Force SSH
🇫🇮 Ticlem	2024-06-15 09:43:09 (2 years ago)	2024-06-15T11:42:53.898173+02:00 clement-turlure.fr sshd[2910005]: Failed password for root from 49. ... show more 2024-06-15T11:42:53.898173+02:00 clement-turlure.fr sshd[2910005]: Failed password for root from 49.72.38.70 port 7913 ssh2 2024-06-15T11:42:56.327183+02:00 clement-turlure.fr sshd[2910005]: Failed password for root from 49.72.38.70 port 7913 ssh2 2024-06-15T11:43:00.246197+02:00 clement-turlure.fr sshd[2910005]: Failed password for root from 49.72.38.70 port 7913 ssh2 2024-06-15T11:43:04.835505+02:00 clement-turlure.fr sshd[2910005]: Failed password for root from 49.72.38.70 port 7913 ssh2 2024-06-15T11:43:08.422261+02:00 clement-turlure.fr sshd[2910005]: Failed password for root from 49.72.38.70 port 7913 ssh2 ... show less	Brute-Force SSH
🇧🇷 diego	2024-06-15 08:03:13 (2 years ago)	[rede-44-49] (sshd) Failed SSH login from 49.72.38.70 (CN/China/-): 5 in the last 3600 secs; Ports: ... show more [rede-44-49] (sshd) Failed SSH login from 49.72.38.70 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Jun 15 05:02:43 sshd[12539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.72.38.70 user=[USERNAME] Jun 15 05:02:46 sshd[12539]: Failed password for [USERNAME] from 49.72.38.70 port 6905 ssh2 Jun 15 05:02:48 sshd[12539]: Failed password for [USERNAME] from 49.72.38.70 port 6905 ssh2 Jun 15 05:02:51 sshd[12539]: Failed password for [USERNAME] from 49.72.38.70 port 6905 ssh2 Jun 15 05:02:54 sshd[12539]: Failed password for [USERNAME] from 49.72.38.70 p show less	Port Scan

Showing 1 to 15 of 25 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 205.210.31.243

🇰🇪 197.248.207.139

🇲🇽 187.191.48.5

🇧🇷 45.71.123.226

🇷🇴 2.57.122.177

🇺🇸 2a03:2880:7ff:56::

🇺🇸 216.180.246.6

🇧🇬 193.24.211.107

🇺🇸 192.3.13.105

🇮🇷 188.253.64.22

🇧🇷 170.80.65.140

🇺🇸 152.32.182.41

🇻🇳 116.110.216.230

🇨🇦 85.217.149.45

🇩🇪 81.169.154.173

🇺🇸 66.132.172.182

🇺🇸 50.46.141.125

🇨🇴 38.252.93.30

🇺🇸 34.41.247.182

🇺🇸 20.46.244.172