199.244.49.220

Basic Info

City: New York

Region: New York

Country: United States

Internet Service Provider: Kamatera Inc.

Hostname: unknown

Organization: Kamatera, Inc.

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	2020-06-22T22:49:32+0200 Failed SSH Authentication/Brute Force Attack. (Server 10)	2020-06-23 05:13:45
attackspam	"Unauthorized connection attempt on SSHD detected"	2020-06-22 17:26:02
attackspam	GET / - Blank UA (403)	2020-05-31 13:37:52
attackspambots	SSH Brute Force	2019-06-24 01:06:13

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 199.244.49.220
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6209
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;199.244.49.220.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040903 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Wed Apr 10 11:46:44 +08 2019
;; MSG SIZE  rcvd: 118

Host info

Host 220.49.244.199.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 220.49.244.199.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
112.13.91.29	attack	SSH login attempts.	2020-10-13 17:03:44
54.36.180.236	attackspam	$f2bV_matches	2020-10-13 16:52:33
106.12.15.56	attackspambots	ssh brute force	2020-10-13 17:19:38
189.213.139.132	attack	Automatic report - Port Scan Attack	2020-10-13 17:08:24
190.52.191.49	attackbots	2020-10-10T04:53:08.348460kitsunetech sshd[13408]: Invalid user amavis from 190.52.191.49 port 38908	2020-10-13 16:59:35
156.96.44.121	attackspam	[2020-10-12 18:45:10] NOTICE[1182][C-000036c7] chan_sip.c: Call from '' (156.96.44.121:65220) to extension '01146812410486' rejected because extension not found in context 'public'. [2020-10-12 18:45:10] SECURITY[1204] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-10-12T18:45:10.707-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146812410486",SessionID="0x7f22f840cf98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/156.96.44.121/65220",ACLName="no_extension_match" [2020-10-12 18:55:10] NOTICE[1182][C-000036d4] chan_sip.c: Call from '' (156.96.44.121:51383) to extension '901146812410486' rejected because extension not found in context 'public'. [2020-10-12 18:55:10] SECURITY[1204] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-10-12T18:55:10.333-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="901146812410486",SessionID="0x7f22f840f098",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/15 ...	2020-10-13 17:22:14
201.72.186.50	attackspambots	Unauthorized connection attempt from IP address 201.72.186.50 on Port 445(SMB)	2020-10-13 17:20:20
178.62.241.30	attackspam	UDP 178.62.241.30:47902 -> port 161, len 28	2020-10-13 17:15:32
218.29.54.108	attackspam	$f2bV_matches	2020-10-13 17:03:20
79.124.62.86	attackspam	Oct 13 10:31:06 hidden kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:00:07:7d:bd:41:7f:08:00 SRC=79.124.62.86 DST=217.198.117.163 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=20695 PROTO=TCP SPT=53030 DPT=1254 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 13 10:31:47 hidden kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:00:07:7d:bd:41:7f:08:00 SRC=79.124.62.86 DST=217.198.117.163 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=31793 PROTO=TCP SPT=53030 DPT=63135 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 13 10:32:24 hidden kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:00:07:7d:bd:41:7f:08:00 SRC=79.124.62.86 DST=217.198.117.163 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=28585 PROTO=TCP SPT=53030 DPT=29216 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 13 10:33:50 hidden kernel: [UFW BLOCK] IN=ens192 OUT= MAC=00:50:56:bc:13:b8:00:07:7d:bd:41:7f:08:00 SRC=79.124.62.86 DST=217.198.117.163 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=8516 PROTO=TCP SPT=53030 DPT=22402 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 13 10: ...	2020-10-13 17:02:08
42.63.9.198	attackbots	SSH login attempts.	2020-10-13 17:21:08
183.6.107.68	attackbotsspam	[SID2] Fail2ban detected 5 failed SSH login attempts within 30 minutes. This report was submitted automatically.	2020-10-13 16:43:04
178.59.174.14	attackbots	SMB Server BruteForce Attack	2020-10-13 16:40:17
1.214.245.27	attackspam	SSH login attempts.	2020-10-13 17:04:16
46.218.85.122	attack	SSH login attempts.	2020-10-13 16:41:39

Recently Reported IPs

163.172.170.222	172.69.226.14	136.233.8.100	36.89.251.107
125.76.246.6	82.56.31.201	167.99.145.227	103.200.40.194
121.34.33.241	166.62.35.135	37.49.230.195	216.218.206.112
201.149.20.160	196.175.250.98	119.119.187.92	79.24.25.77
121.141.148.158	209.97.143.4	94.176.141.94	89.232.34.161