119.165.48.49 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom Shandong Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt detected from IP address 119.165.48.49 to port 2323	2020-04-15 02:04:44

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.165.48.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57995
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;119.165.48.49.			IN	A

;; AUTHORITY SECTION:
.			219	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041400 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 15 02:04:41 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 49.48.165.119.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 49.48.165.119.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
36.239.80.151	attackspambots	37215/tcp [2019-06-30]1pkt	2019-06-30 13:50:50
94.191.68.83	attackspam	Jun 30 06:07:26 meumeu sshd[7949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.68.83 Jun 30 06:07:28 meumeu sshd[7949]: Failed password for invalid user il from 94.191.68.83 port 40722 ssh2 Jun 30 06:09:12 meumeu sshd[8160]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.68.83 ...	2019-06-30 13:21:22
10.187.237.29	attackspambots	Attempted to connect 3 times to port 23 TCP	2019-06-30 13:14:06
103.254.153.113	attackbotsspam	Jun 29 22:29:44 ingram sshd[32219]: Did not receive identification string from 103.254.153.113 Jun 29 22:29:45 ingram sshd[32221]: Invalid user admin from 103.254.153.113 Jun 29 22:29:45 ingram sshd[32221]: Failed none for invalid user admin from 103.254.153.113 port 62408 ssh2 Jun 29 22:29:46 ingram sshd[32221]: Failed password for invalid user admin from 103.254.153.113 port 62408 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.254.153.113	2019-06-30 13:54:37
123.14.5.115	attackbots	Invalid user steamcmd from 123.14.5.115 port 58076	2019-06-30 13:49:16
197.89.185.33	attackspambots	60001/tcp [2019-06-30]1pkt	2019-06-30 13:06:56
186.232.49.26	attack	8080/tcp [2019-06-30]1pkt	2019-06-30 13:41:23
138.68.178.64	attack	Invalid user teamspeak3 from 138.68.178.64 port 60674	2019-06-30 13:07:15
61.224.137.19	attackbotsspam	37215/tcp [2019-06-30]1pkt	2019-06-30 13:51:43
111.248.97.185	attackbots	37215/tcp [2019-06-30]1pkt	2019-06-30 13:26:26
106.3.36.101	attackbots	Jun 27 22:32:25 h2034429 sshd[32328]: Invalid user sqoop from 106.3.36.101 Jun 27 22:32:25 h2034429 sshd[32328]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.3.36.101 Jun 27 22:32:27 h2034429 sshd[32328]: Failed password for invalid user sqoop from 106.3.36.101 port 59520 ssh2 Jun 27 22:32:27 h2034429 sshd[32328]: Received disconnect from 106.3.36.101 port 59520:11: Bye Bye [preauth] Jun 27 22:32:27 h2034429 sshd[32328]: Disconnected from 106.3.36.101 port 59520 [preauth] Jun 28 04:49:21 h2034429 sshd[5167]: Invalid user prestam5 from 106.3.36.101 Jun 28 04:49:21 h2034429 sshd[5167]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.3.36.101 Jun 28 04:49:23 h2034429 sshd[5167]: Failed password for invalid user prestam5 from 106.3.36.101 port 58098 ssh2 Jun 28 04:49:23 h2034429 sshd[5167]: Received disconnect from 106.3.36.101 port 58098:11: Bye Bye [preauth] Jun 28 04:49:23 h2034429........ -------------------------------	2019-06-30 13:47:59
112.222.29.147	attack	Invalid user mycat from 112.222.29.147 port 50204	2019-06-30 13:43:13
173.249.35.163	attack	Automatic report - Web App Attack	2019-06-30 13:03:09
165.227.97.108	attack	Jun 30 07:36:50 srv03 sshd\[32613\]: Invalid user ftp from 165.227.97.108 port 48980 Jun 30 07:36:50 srv03 sshd\[32613\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.97.108 Jun 30 07:36:52 srv03 sshd\[32613\]: Failed password for invalid user ftp from 165.227.97.108 port 48980 ssh2	2019-06-30 13:53:51
121.58.244.228	attackspambots	Telnet Server BruteForce Attack	2019-06-30 13:04:13

Recently Reported IPs

85.113.129.173	80.64.167.16	77.222.109.104	59.63.149.95
59.55.110.106	59.55.110.87	59.55.110.49	59.52.60.51
58.209.162.138	58.20.251.108	49.158.138.86	99.233.4.66
46.45.154.244	255.255.135.169	42.51.136.12	176.117.190.118
36.88.37.172	27.197.61.153	27.188.192.89	143.1.145.63