49.158.20.94 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Republic of China (ROC)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
49.158.205.209	attackspambots	Unauthorized connection attempt detected from IP address 49.158.205.209 to port 83 [T]	2020-05-20 13:51:16
49.158.201.99	attack	Unauthorized connection attempt detected from IP address 49.158.201.99 to port 9000 [T]	2020-05-20 12:34:40
49.158.201.242	attackspambots	Unauthorized connection attempt detected from IP address 49.158.201.242 to port 8000 [T]	2020-05-20 09:33:03
49.158.200.241	attackbots	TCP (SYN) 49.158.200.241:31772 -> port 81, len 40	2020-05-20 06:32:40
49.158.201.218	attack	Unauthorized connection attempt detected from IP address 49.158.201.218 to port 81 [T]	2020-03-27 05:06:05
49.158.207.100	attackbotsspam	Unauthorized connection attempt from IP address 49.158.207.100 on Port 445(SMB)	2020-02-19 07:21:29
49.158.202.44	attackbots	...	2020-02-06 18:15:43
49.158.201.200	attackbotsspam	Unauthorized connection attempt detected from IP address 49.158.201.200 to port 23 [T]	2020-02-01 21:31:36
49.158.202.44	attack	Unauthorized connection attempt detected from IP address 49.158.202.44 to port 22 [J]	2020-01-29 10:37:15
49.158.205.82	attack	Unauthorized connection attempt detected from IP address 49.158.205.82 to port 8080 [T]	2020-01-16 02:12:30

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.158.20.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55801
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.158.20.94.			IN	A

;; AUTHORITY SECTION:
.			195	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 45 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 21:24:46 CST 2022
;; MSG SIZE  rcvd: 105

Host info

94.20.158.49.in-addr.arpa domain name pointer 49-158-20-94.dynamic.elinx.com.tw.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
94.20.158.49.in-addr.arpa	name = 49-158-20-94.dynamic.elinx.com.tw.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
110.43.49.148	attackspambots	2020-05-13T07:50:49.825577 sshd[4671]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.43.49.148 user=wwwrun 2020-05-13T07:50:51.752689 sshd[4671]: Failed password for wwwrun from 110.43.49.148 port 22422 ssh2 2020-05-13T07:57:53.805246 sshd[4799]: Invalid user sysomc from 110.43.49.148 port 34010 ...	2020-05-13 20:02:50
111.229.219.226	attackspambots	...	2020-05-13 19:34:34
51.15.99.106	attackspambots	May 13 11:10:51 ns382633 sshd\[26485\]: Invalid user cdc from 51.15.99.106 port 56538 May 13 11:10:51 ns382633 sshd\[26485\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.99.106 May 13 11:10:53 ns382633 sshd\[26485\]: Failed password for invalid user cdc from 51.15.99.106 port 56538 ssh2 May 13 11:25:32 ns382633 sshd\[29353\]: Invalid user cinstall from 51.15.99.106 port 48616 May 13 11:25:32 ns382633 sshd\[29353\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.99.106	2020-05-13 19:51:27
157.230.127.240	attack	May 13 13:14:54 vpn01 sshd[24978]: Failed password for root from 157.230.127.240 port 49854 ssh2 ...	2020-05-13 19:52:55
36.82.99.23	attack	May 13 05:50:05 host sshd[5041]: Invalid user supervisor from 36.82.99.23 port 49748 ...	2020-05-13 19:35:34
5.101.0.209	attackbots	Unauthorized connection attempt detected from IP address 5.101.0.209 to port 8081 [T]	2020-05-13 19:42:43
222.213.97.76	attack	reverse mapping checking getaddrinfo for 76.97.213.222.broad.dy.sc.dynamic.163data.com.cn [222.213.97.76] failed - POSSIBLE BREAK-IN ATTEMPT!	2020-05-13 20:06:36
101.51.220.129	attack	SSH invalid-user multiple login try	2020-05-13 19:39:45
183.89.211.13	attackspambots	Dovecot Invalid User Login Attempt.	2020-05-13 19:53:55
105.184.184.98	attackspambots	2020-05-13 05:06:19 H=(184-184-105-98.north.dsl.telkomsa.net) [105.184.184.98] rejected EHLO or HELO 184-184-105-98.north.dsl.telkomsa.net: "Dropped IP-only or IP-starting helo" ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=105.184.184.98	2020-05-13 20:13:38
113.21.113.176	attack	Dovecot Invalid User Login Attempt.	2020-05-13 19:45:07
123.145.107.63	attack	Invalid user postgres from 123.145.107.63 port 57537	2020-05-13 20:08:40
51.75.122.213	attackbotsspam	May 13 13:26:30 jane sshd[18999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.122.213 May 13 13:26:32 jane sshd[18999]: Failed password for invalid user oracle from 51.75.122.213 port 34950 ssh2 ...	2020-05-13 19:49:02
80.211.56.72	attackspambots	(sshd) Failed SSH login from 80.211.56.72 (IT/Italy/host72-56-211-80.serverdedicati.aruba.it): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 13 11:53:34 ubnt-55d23 sshd[17898]: Invalid user vnc from 80.211.56.72 port 58056 May 13 11:53:36 ubnt-55d23 sshd[17898]: Failed password for invalid user vnc from 80.211.56.72 port 58056 ssh2	2020-05-13 20:07:13
92.86.118.153	attackspambots	firewall-block, port(s): 81/tcp	2020-05-13 19:27:56

Recently Reported IPs

45.56.100.203	116.49.16.100	197.10.92.88	87.121.76.168
41.77.7.234	103.137.250.106	128.68.28.163	189.139.226.200
47.112.197.67	125.165.204.219	27.6.197.0	172.247.34.106
20.52.154.79	73.217.229.146	138.204.105.102	94.46.38.250
138.36.231.115	123.193.144.82	218.236.74.102	181.27.230.59