2.131.97.49 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Denmark

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.131.97.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1665
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.131.97.49.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025013100 1800 900 604800 86400

;; Query time: 34 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 31 19:29:20 CST 2025
;; MSG SIZE  rcvd: 104

Host info

49.97.131.2.in-addr.arpa domain name pointer 002131097049.mbb.telenor.dk.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
49.97.131.2.in-addr.arpa	name = 002131097049.mbb.telenor.dk.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.195.26.196	attackspam	Trying ports that it shouldn't be.	2020-09-09 06:24:06
37.59.98.179	attackspam	37.59.98.179 - - [08/Sep/2020:23:11:14 +0200] "GET /wp-login.php HTTP/1.1" 200 9184 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 37.59.98.179 - - [08/Sep/2020:23:11:17 +0200] "POST /wp-login.php HTTP/1.1" 200 9435 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 37.59.98.179 - - [08/Sep/2020:23:11:20 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-09 06:05:09
54.38.240.23	attackbotsspam	SSH Invalid Login	2020-09-09 06:13:42
14.115.28.120	attackbots	SSH Brute Force	2020-09-09 06:16:22
94.23.33.22	attackspambots	Failed password for root from 94.23.33.22 port 57852 ssh2 Failed password for root from 94.23.33.22 port 35808 ssh2	2020-09-09 06:15:37
51.178.27.237	attackbots	Port Scan detected from 51.178.27.237 (FR/France/Hauts-de-France/Gravelines/237.ip-51-178-27.eu). 4 hits in the last 235 seconds	2020-09-09 06:25:46
81.68.135.238	attackspam	2020-09-08T16:55:35.641781www1-sb.mstrade.org sshd[28047]: Invalid user mick from 81.68.135.238 port 40866 2020-09-08T16:55:35.652859www1-sb.mstrade.org sshd[28047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.135.238 2020-09-08T16:55:35.641781www1-sb.mstrade.org sshd[28047]: Invalid user mick from 81.68.135.238 port 40866 2020-09-08T16:55:37.625343www1-sb.mstrade.org sshd[28047]: Failed password for invalid user mick from 81.68.135.238 port 40866 ssh2 2020-09-08T16:59:16.517313www1-sb.mstrade.org sshd[28248]: Invalid user cpanelrrdtool from 81.68.135.238 port 59602 ...	2020-09-09 06:00:12
54.38.53.251	attackbots	Sep 8 17:23:23 firewall sshd[12809]: Failed password for root from 54.38.53.251 port 56148 ssh2 Sep 8 17:27:20 firewall sshd[12947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.53.251 user=root Sep 8 17:27:22 firewall sshd[12947]: Failed password for root from 54.38.53.251 port 34222 ssh2 ...	2020-09-09 05:54:42
180.248.147.172	attackspam	Automatic report - Port Scan Attack	2020-09-09 05:53:42
185.220.102.8	attackspam	Time: Tue Sep 8 23:35:56 2020 +0200 IP: 185.220.102.8 (DE/Germany/185-220-102-8.torservers.net) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 8 23:35:40 mail-01 sshd[5948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.220.102.8 user=root Sep 8 23:35:43 mail-01 sshd[5948]: Failed password for root from 185.220.102.8 port 38869 ssh2 Sep 8 23:35:45 mail-01 sshd[5948]: Failed password for root from 185.220.102.8 port 38869 ssh2 Sep 8 23:35:48 mail-01 sshd[5948]: Failed password for root from 185.220.102.8 port 38869 ssh2 Sep 8 23:35:50 mail-01 sshd[5948]: Failed password for root from 185.220.102.8 port 38869 ssh2	2020-09-09 06:03:32
144.172.93.124	attack	Spam	2020-09-09 05:57:06
207.38.83.210	attack	Business review scam/spam	2020-09-09 06:02:28
125.24.7.109	attack	mail auth brute force	2020-09-09 06:06:51
213.192.226.4	attack	Automatic report - XMLRPC Attack	2020-09-09 05:51:33
112.85.42.174	attack	Sep 8 23:52:35 mail sshd\[23686\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.174 user=root Sep 8 23:52:37 mail sshd\[23686\]: Failed password for root from 112.85.42.174 port 46253 ssh2 Sep 8 23:52:53 mail sshd\[23699\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.174 user=root Sep 8 23:52:55 mail sshd\[23699\]: Failed password for root from 112.85.42.174 port 8260 ssh2 Sep 8 23:53:11 mail sshd\[23699\]: Failed password for root from 112.85.42.174 port 8260 ssh2 ...	2020-09-09 05:56:06

Recently Reported IPs

241.224.172.217	21.39.166.161	67.229.71.31	13.49.54.166
86.208.53.133	95.49.121.211	63.18.221.253	63.211.237.211
148.60.1.209	159.242.66.111	89.14.61.138	240.57.130.53
237.215.170.149	137.157.219.231	247.225.253.248	179.122.108.135
65.63.76.143	60.223.165.52	23.120.40.167	184.84.186.108