49.158.20.94 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Republic of China (ROC)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
49.158.205.209	attackspambots	Unauthorized connection attempt detected from IP address 49.158.205.209 to port 83 [T]	2020-05-20 13:51:16
49.158.201.99	attack	Unauthorized connection attempt detected from IP address 49.158.201.99 to port 9000 [T]	2020-05-20 12:34:40
49.158.201.242	attackspambots	Unauthorized connection attempt detected from IP address 49.158.201.242 to port 8000 [T]	2020-05-20 09:33:03
49.158.200.241	attackbots	TCP (SYN) 49.158.200.241:31772 -> port 81, len 40	2020-05-20 06:32:40
49.158.201.218	attack	Unauthorized connection attempt detected from IP address 49.158.201.218 to port 81 [T]	2020-03-27 05:06:05
49.158.207.100	attackbotsspam	Unauthorized connection attempt from IP address 49.158.207.100 on Port 445(SMB)	2020-02-19 07:21:29
49.158.202.44	attackbots	...	2020-02-06 18:15:43
49.158.201.200	attackbotsspam	Unauthorized connection attempt detected from IP address 49.158.201.200 to port 23 [T]	2020-02-01 21:31:36
49.158.202.44	attack	Unauthorized connection attempt detected from IP address 49.158.202.44 to port 22 [J]	2020-01-29 10:37:15
49.158.205.82	attack	Unauthorized connection attempt detected from IP address 49.158.205.82 to port 8080 [T]	2020-01-16 02:12:30

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.158.20.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55801
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.158.20.94.			IN	A

;; AUTHORITY SECTION:
.			195	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 45 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 21:24:46 CST 2022
;; MSG SIZE  rcvd: 105

Host info

94.20.158.49.in-addr.arpa domain name pointer 49-158-20-94.dynamic.elinx.com.tw.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
94.20.158.49.in-addr.arpa	name = 49-158-20-94.dynamic.elinx.com.tw.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.72.137.115	attackspambots	Feb 6 10:49:59 nxxxxxxx0 sshd[7507]: Invalid user gnome-inhostnameal-setup from 222.72.137.115 Feb 6 10:49:59 nxxxxxxx0 sshd[7507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.72.137.115 Feb 6 10:50:01 nxxxxxxx0 sshd[7507]: Failed password for invalid user gnome-inhostnameal-setup from 222.72.137.115 port 16501 ssh2 Feb 6 10:50:01 nxxxxxxx0 sshd[7507]: Received disconnect from 222.72.137.115: 11: Bye Bye [preauth] Feb 6 10:51:01 nxxxxxxx0 sshd[7560]: Invalid user gnome-inhostnameial-setu from 222.72.137.115 Feb 6 10:51:01 nxxxxxxx0 sshd[7560]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.72.137.115 Feb 6 10:51:02 nxxxxxxx0 sshd[7560]: Failed password for invalid user gnome-inhostnameial-setu from 222.72.137.115 port 43439 ssh2 Feb 6 10:51:02 nxxxxxxx0 sshd[7560]: Received disconnect from 222.72.137.115: 11: Bye Bye [preauth] Feb 6 10:52:05 nxxxxxxx0 sshd[7652]: Inva........ -------------------------------	2020-02-09 04:14:04
148.70.223.115	attackbots	Feb 8 19:07:04 sd-53420 sshd\[2524\]: Invalid user npw from 148.70.223.115 Feb 8 19:07:04 sd-53420 sshd\[2524\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.223.115 Feb 8 19:07:06 sd-53420 sshd\[2524\]: Failed password for invalid user npw from 148.70.223.115 port 52874 ssh2 Feb 8 19:11:27 sd-53420 sshd\[3173\]: Invalid user oki from 148.70.223.115 Feb 8 19:11:27 sd-53420 sshd\[3173\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.223.115 ...	2020-02-09 03:46:06
121.46.250.184	attackbots	Feb 8 17:51:18 tuxlinux sshd[4192]: Invalid user byg from 121.46.250.184 port 48398 Feb 8 17:51:18 tuxlinux sshd[4192]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.250.184 Feb 8 17:51:18 tuxlinux sshd[4192]: Invalid user byg from 121.46.250.184 port 48398 Feb 8 17:51:18 tuxlinux sshd[4192]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.250.184 Feb 8 17:51:18 tuxlinux sshd[4192]: Invalid user byg from 121.46.250.184 port 48398 Feb 8 17:51:18 tuxlinux sshd[4192]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.250.184 Feb 8 17:51:20 tuxlinux sshd[4192]: Failed password for invalid user byg from 121.46.250.184 port 48398 ssh2 ...	2020-02-09 03:48:56
106.13.88.44	attackspambots	Feb 8 19:09:33 legacy sshd[28291]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.88.44 Feb 8 19:09:35 legacy sshd[28291]: Failed password for invalid user ohi from 106.13.88.44 port 58708 ssh2 Feb 8 19:13:30 legacy sshd[28486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.88.44 ...	2020-02-09 04:17:27
13.235.8.123	attackspambots	(sshd) Failed SSH login from 13.235.8.123 (IN/India/ec2-13-235-8-123.ap-south-1.compute.amazonaws.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Feb 8 20:09:19 elude sshd[5893]: Invalid user fsc from 13.235.8.123 port 37732 Feb 8 20:09:21 elude sshd[5893]: Failed password for invalid user fsc from 13.235.8.123 port 37732 ssh2 Feb 8 20:34:21 elude sshd[7370]: Invalid user dgx from 13.235.8.123 port 58264 Feb 8 20:34:23 elude sshd[7370]: Failed password for invalid user dgx from 13.235.8.123 port 58264 ssh2 Feb 8 20:37:57 elude sshd[7610]: Invalid user fhp from 13.235.8.123 port 59224	2020-02-09 04:10:42
5.196.75.47	attack	Feb 8 18:42:27 srv206 sshd[26945]: Invalid user wbt from 5.196.75.47 Feb 8 18:42:27 srv206 sshd[26945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3003413.ip-5-196-75.eu Feb 8 18:42:27 srv206 sshd[26945]: Invalid user wbt from 5.196.75.47 Feb 8 18:42:30 srv206 sshd[26945]: Failed password for invalid user wbt from 5.196.75.47 port 46388 ssh2 ...	2020-02-09 03:38:36
187.44.106.11	attack	$f2bV_matches	2020-02-09 04:14:34
49.88.112.62	attackbotsspam	5x Failed Password	2020-02-09 04:06:41
178.34.150.78	attackbotsspam	Feb 6 15:49:16 django sshd[38069]: Did not receive identification string from 178.34.150.78 Feb 6 15:49:20 django sshd[38074]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.34.150.78 user=r.r Feb 6 15:49:21 django sshd[38074]: Failed password for r.r from 178.34.150.78 port 20444 ssh2 Feb 6 15:49:22 django sshd[38075]: Connection closed by 178.34.150.78 Feb 6 15:49:28 django sshd[38081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.34.150.78 user=r.r Feb 6 15:49:30 django sshd[38081]: Failed password for r.r from 178.34.150.78 port 24576 ssh2 Feb 6 15:49:30 django sshd[38082]: Connection closed by 178.34.150.78 Feb 6 15:49:31 django sshd[38087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.34.150.78 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=178.34.150.78	2020-02-09 04:19:26
51.79.119.45	attackbotsspam	Unauthorized connection attempt detected from IP address 51.79.119.45 to port 3389	2020-02-09 04:13:31
113.173.158.209	attack	Feb 8 17:24:12 server sshd\[29012\]: Invalid user admin from 113.173.158.209 Feb 8 17:24:12 server sshd\[29012\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.173.158.209 Feb 8 17:24:14 server sshd\[29012\]: Failed password for invalid user admin from 113.173.158.209 port 59464 ssh2 Feb 8 17:24:21 server sshd\[29022\]: Invalid user admin from 113.173.158.209 Feb 8 17:24:21 server sshd\[29022\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.173.158.209 ...	2020-02-09 03:53:36
89.163.225.107	attackspam	ET CINS Active Threat Intelligence Poor Reputation IP group 86 - port: 3702 proto: UDP cat: Misc Attack	2020-02-09 03:34:27
82.194.21.128	attack	Automatic report - Windows Brute-Force Attack	2020-02-09 03:41:47
192.255.189.254	attack	Feb 5 02:57:38 finn sshd[22656]: Invalid user rummel from 192.255.189.254 port 41156 Feb 5 02:57:38 finn sshd[22656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.255.189.254 Feb 5 02:57:40 finn sshd[22656]: Failed password for invalid user rummel from 192.255.189.254 port 41156 ssh2 Feb 5 02:57:40 finn sshd[22656]: Received disconnect from 192.255.189.254 port 41156:11: Bye Bye [preauth] Feb 5 02:57:40 finn sshd[22656]: Disconnected from 192.255.189.254 port 41156 [preauth] Feb 5 03:07:40 finn sshd[24978]: Invalid user deploy from 192.255.189.254 port 46484 Feb 5 03:07:40 finn sshd[24978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.255.189.254 Feb 5 03:07:42 finn sshd[24978]: Failed password for invalid user deploy from 192.255.189.254 port 46484 ssh2 Feb 5 03:07:42 finn sshd[24978]: Received disconnect from 192.255.189.254 port 46484:11: Bye Bye [preauth] Feb 5 03........ -------------------------------	2020-02-09 04:07:08
185.56.153.229	attackbots	Feb 8 17:30:59 h1745522 sshd[14455]: Invalid user eda from 185.56.153.229 port 55422 Feb 8 17:30:59 h1745522 sshd[14455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.56.153.229 Feb 8 17:30:59 h1745522 sshd[14455]: Invalid user eda from 185.56.153.229 port 55422 Feb 8 17:31:01 h1745522 sshd[14455]: Failed password for invalid user eda from 185.56.153.229 port 55422 ssh2 Feb 8 17:33:08 h1745522 sshd[14494]: Invalid user bod from 185.56.153.229 port 41366 Feb 8 17:33:08 h1745522 sshd[14494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.56.153.229 Feb 8 17:33:08 h1745522 sshd[14494]: Invalid user bod from 185.56.153.229 port 41366 Feb 8 17:33:10 h1745522 sshd[14494]: Failed password for invalid user bod from 185.56.153.229 port 41366 ssh2 Feb 8 17:35:22 h1745522 sshd[14555]: Invalid user ehb from 185.56.153.229 port 55548 ...	2020-02-09 03:45:43

Recently Reported IPs

45.56.100.203	116.49.16.100	197.10.92.88	87.121.76.168
41.77.7.234	103.137.250.106	128.68.28.163	189.139.226.200
47.112.197.67	125.165.204.219	27.6.197.0	172.247.34.106
20.52.154.79	73.217.229.146	138.204.105.102	94.46.38.250
138.36.231.115	123.193.144.82	218.236.74.102	181.27.230.59