49.159.38.242 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Taiwan (Province of China)

Internet Service Provider: TFN Media Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Port probing on unauthorized port 23	2020-06-21 18:01:24

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.159.38.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4231
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.159.38.242.			IN	A

;; AUTHORITY SECTION:
.			391	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062100 1800 900 604800 86400

;; Query time: 84 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 21 18:01:19 CST 2020
;; MSG SIZE  rcvd: 117

Host info

242.38.159.49.in-addr.arpa domain name pointer 49-159-38-242.dynamic.elinx.com.tw.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
242.38.159.49.in-addr.arpa	name = 49-159-38-242.dynamic.elinx.com.tw.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
132.232.53.41	attackbotsspam	Dec 1 17:49:33 dedicated sshd[18390]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.53.41 user=backup Dec 1 17:49:35 dedicated sshd[18390]: Failed password for backup from 132.232.53.41 port 36010 ssh2	2019-12-02 04:50:15
46.246.26.8	attackspambots	Automatic report - XMLRPC Attack	2019-12-02 05:05:10
138.197.95.2	attack	WordPress login Brute force / Web App Attack on client site.	2019-12-02 05:09:54
171.226.105.53	attackbotsspam	port scan and connect, tcp 23 (telnet)	2019-12-02 05:13:04
186.249.192.102	attack	(From ashton.marshburn@outlook.com) Hi there I just checked out your website savannahhillsfamilychiropractic.com and wanted to find out if you need help for SEO Link Building ? If you aren't using SEO Software then you will know the amount of work load involved in creating accounts, confirming emails and submitting your contents to thousands of websites. With THIS SOFTWARE the link submission process will be the easiest task and completely automated, you will be able to build unlimited number of links and increase traffic to your websites which will lead to a higher number of customers and much more sales for you. IF YOU ARE INTERESTED, We offer you 7 days free trial ==> http://bit.ly/Robot_Submitter Kind Regards, Ashton Marshburn ! Business Development Manager	2019-12-02 04:35:38
118.122.77.5	attackspambots	Fail2Ban Ban Triggered	2019-12-02 04:47:56
159.65.54.48	attackspam	Automatic report - XMLRPC Attack	2019-12-02 04:40:52
49.49.241.125	attackbotsspam	Dec 1 19:13:23 MK-Soft-Root1 sshd[30500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.49.241.125 Dec 1 19:13:24 MK-Soft-Root1 sshd[30500]: Failed password for invalid user temp from 49.49.241.125 port 19299 ssh2 ...	2019-12-02 05:12:08
119.93.156.229	attackspambots	Dec 1 20:35:09 vps58358 sshd\[29825\]: Invalid user cortez from 119.93.156.229Dec 1 20:35:11 vps58358 sshd\[29825\]: Failed password for invalid user cortez from 119.93.156.229 port 58570 ssh2Dec 1 20:38:49 vps58358 sshd\[29842\]: Invalid user server from 119.93.156.229Dec 1 20:38:51 vps58358 sshd\[29842\]: Failed password for invalid user server from 119.93.156.229 port 47986 ssh2Dec 1 20:42:32 vps58358 sshd\[29928\]: Invalid user selina from 119.93.156.229Dec 1 20:42:34 vps58358 sshd\[29928\]: Failed password for invalid user selina from 119.93.156.229 port 37392 ssh2 ...	2019-12-02 04:47:00
196.195.202.68	attack	Dec 1 17:26:35 XXX sshd[46559]: Invalid user anonymous from 196.195.202.68 port 2304	2019-12-02 05:07:09
123.16.13.240	attackbots	Unauthorised access (Dec 1) SRC=123.16.13.240 LEN=60 TTL=52 ID=660 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-02 04:56:14
121.122.111.182	attack	Dec 1 15:02:56 nandi sshd[11895]: Invalid user pi from 121.122.111.182 Dec 1 15:02:56 nandi sshd[11898]: Invalid user pi from 121.122.111.182 Dec 1 15:02:56 nandi sshd[11898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.122.111.182 Dec 1 15:02:56 nandi sshd[11895]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.122.111.182 Dec 1 15:02:59 nandi sshd[11898]: Failed password for invalid user pi from 121.122.111.182 port 50158 ssh2 Dec 1 15:02:59 nandi sshd[11895]: Failed password for invalid user pi from 121.122.111.182 port 61261 ssh2 Dec 1 15:02:59 nandi sshd[11898]: Connection closed by 121.122.111.182 [preauth] Dec 1 15:02:59 nandi sshd[11895]: Connection closed by 121.122.111.182 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=121.122.111.182	2019-12-02 04:47:26
112.85.42.173	attack	Dec 1 15:57:45 xentho sshd[1076]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.173 user=root Dec 1 15:57:47 xentho sshd[1076]: Failed password for root from 112.85.42.173 port 61524 ssh2 Dec 1 15:57:50 xentho sshd[1076]: Failed password for root from 112.85.42.173 port 61524 ssh2 Dec 1 15:57:45 xentho sshd[1076]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.173 user=root Dec 1 15:57:47 xentho sshd[1076]: Failed password for root from 112.85.42.173 port 61524 ssh2 Dec 1 15:57:50 xentho sshd[1076]: Failed password for root from 112.85.42.173 port 61524 ssh2 Dec 1 15:57:45 xentho sshd[1076]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.173 user=root Dec 1 15:57:47 xentho sshd[1076]: Failed password for root from 112.85.42.173 port 61524 ssh2 Dec 1 15:57:50 xentho sshd[1076]: Failed password for root from 112.85.42.173 po ...	2019-12-02 05:03:12
104.131.178.223	attackspam	$f2bV_matches	2019-12-02 04:42:55
106.12.6.136	attack	Dec 1 18:07:14 cp sshd[21682]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.6.136	2019-12-02 04:54:42

Recently Reported IPs

123.241.149.225	62.25.253.157	8.142.200.124	2.15.108.228
119.111.93.76	78.113.87.219	89.232.192.40	111.224.14.236
102.44.26.121	51.159.30.87	93.41.242.160	111.229.68.113
104.225.238.37	23.94.28.18	23.94.27.17	157.119.227.120
125.162.26.25	23.94.175.40	198.12.93.99	83.221.161.97