49.206.20.214 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: India

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
49.206.203.45	attackspam	Unauthorized connection attempt from IP address 49.206.203.45 on Port 445(SMB)	2020-10-12 00:46:34
49.206.203.45	attackspambots	Unauthorized connection attempt from IP address 49.206.203.45 on Port 445(SMB)	2020-10-11 10:01:26
49.206.200.193	attack	Unauthorized connection attempt from IP address 49.206.200.193 on Port 445(SMB)	2020-08-08 22:26:49
49.206.203.221	attackspam	Icarus honeypot on github	2020-02-28 20:46:47
49.206.203.42	attackbots	Honeypot attack, port: 445, PTR: broadband.actcorp.in.	2020-02-28 14:06:35
49.206.200.237	attack	unauthorized connection attempt	2020-02-16 15:35:09
49.206.203.70	attackbots	Honeypot attack, port: 445, PTR: broadband.actcorp.in.	2020-01-27 23:27:30
49.206.203.151	attack	1578718257 - 01/11/2020 05:50:57 Host: 49.206.203.151/49.206.203.151 Port: 445 TCP Blocked	2020-01-11 17:55:43
49.206.202.80	attackbots	1578402108 - 01/07/2020 14:01:48 Host: 49.206.202.80/49.206.202.80 Port: 445 TCP Blocked	2020-01-07 23:32:16
49.206.20.81	attackbots	Unauthorized connection attempt detected from IP address 49.206.20.81 to port 445	2020-01-04 18:35:05
49.206.202.172	attackbotsspam	Unauthorized connection attempt from IP address 49.206.202.172 on Port 445(SMB)	2020-01-04 03:18:32
49.206.200.114	attack	Unauthorized connection attempt detected from IP address 49.206.200.114 to port 445	2019-12-30 15:34:03
49.206.203.198	attackspambots	1577285569 - 12/25/2019 15:52:49 Host: 49.206.203.198/49.206.203.198 Port: 445 TCP Blocked	2019-12-26 02:00:08
49.206.200.36	attack	Unauthorized connection attempt from IP address 49.206.200.36 on Port 445(SMB)	2019-12-07 06:03:04
49.206.208.216	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 24-11-2019 04:55:21.	2019-11-24 13:07:45

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.206.20.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63080
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.206.20.214.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 69 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 07:41:29 CST 2022
;; MSG SIZE  rcvd: 106

Host info

214.20.206.49.in-addr.arpa domain name pointer 49.206.20.214.actcorp.in.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
214.20.206.49.in-addr.arpa	name = 49.206.20.214.actcorp.in.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
186.226.188.138	attack	Port scan: Attack repeated for 24 hours	2020-09-13 23:32:11
157.245.139.32	attack	Automatic report - Banned IP Access	2020-09-13 23:41:00
222.186.175.150	attack	Sep 13 20:02:59 gw1 sshd[17871]: Failed password for root from 222.186.175.150 port 4684 ssh2 Sep 13 20:03:12 gw1 sshd[17871]: Failed password for root from 222.186.175.150 port 4684 ssh2 Sep 13 20:03:12 gw1 sshd[17871]: error: maximum authentication attempts exceeded for root from 222.186.175.150 port 4684 ssh2 [preauth] ...	2020-09-13 23:06:49
37.98.196.42	attack	Sep 13 16:08:39 vm1 sshd[12740]: Failed password for root from 37.98.196.42 port 52922 ssh2 ...	2020-09-13 23:18:14
89.122.14.250	attackbotsspam	Automatic report - Port Scan Attack	2020-09-13 23:15:54
193.169.254.91	attackbotsspam	Sep 13 14:43:11 vpn01 sshd[9644]: Failed password for root from 193.169.254.91 port 37737 ssh2 Sep 13 14:43:22 vpn01 sshd[9644]: error: maximum authentication attempts exceeded for root from 193.169.254.91 port 37737 ssh2 [preauth] ...	2020-09-13 23:11:47
72.221.232.142	attack	2020-09-12 18:55:39 wonderland auth[12883]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=sales@wonderland.com rhost=72.221.232.142	2020-09-13 23:38:02
165.227.181.9	attackbotsspam	firewall-block, port(s): 10476/tcp	2020-09-13 23:44:10
27.7.17.245	attack	" "	2020-09-13 23:42:55
51.210.44.157	attackbots	Sep 13 17:18:28 OPSO sshd\[28759\]: Invalid user python from 51.210.44.157 port 54010 Sep 13 17:18:28 OPSO sshd\[28759\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.210.44.157 Sep 13 17:18:29 OPSO sshd\[28759\]: Failed password for invalid user python from 51.210.44.157 port 54010 ssh2 Sep 13 17:25:12 OPSO sshd\[29913\]: Invalid user python from 51.210.44.157 port 59640 Sep 13 17:25:12 OPSO sshd\[29913\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.210.44.157	2020-09-13 23:29:29
144.255.16.81	attackbots	Sep 13 09:59:20 game-panel sshd[31078]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.255.16.81 Sep 13 09:59:21 game-panel sshd[31080]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.255.16.81 Sep 13 09:59:22 game-panel sshd[31080]: Failed password for invalid user pi from 144.255.16.81 port 40856 ssh2	2020-09-13 23:34:28
104.244.78.136	attack	frenzy	2020-09-13 23:31:39
36.22.187.34	attack	Sep 13 14:48:48 ip106 sshd[24317]: Failed password for root from 36.22.187.34 port 55688 ssh2 ...	2020-09-13 23:45:53
190.85.65.236	attackspambots	Sep 13 17:20:24 pve1 sshd[5049]: Failed password for root from 190.85.65.236 port 51376 ssh2 ...	2020-09-13 23:35:54
178.76.246.201	attackbots	[SatSep1218:55:27.3459412020][:error][pid28434:tid47701840639744][client178.76.246.201:54812][client178.76.246.201]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"connector\\\\\\\\.minimal\\\\\\\\.php"atREQUEST_URI.[file"/usr/local/apache.ea3/conf/modsec_rules/99_asl_jitp.conf"][line"321"][id"393781"][rev"1"][msg"Atomicorp.comWAFRules-VirtualJustInTimePatch:WordPressFileManagerPluginattackblocked"][hostname"cser.ch"][uri"/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php"][unique_id"X1z9f9F-s5AkeysgAdCUgQAAAMQ"]\,referer:http://cser.ch/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php[SatSep1218:55:29.6396152020][:error][pid11873:tid47701932660480][client178.76.246.201:55070][client178.76.246.201]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"connector\\\\\\\\.minimal\\\\\\\\.php"atREQUEST_URI.[file"/usr/local/apache.ea3/conf/modsec_rules/99_asl_jitp.conf"][line"321"][id"393781"][rev"1"][msg"Atomicorp.comWAFRules-VirtualJustInTi	2020-09-13 23:43:15

Recently Reported IPs

46.109.50.231	58.186.60.132	219.154.122.186	93.171.224.61
23.105.70.81	2.80.211.117	46.183.121.48	36.95.34.106
110.8.84.56	5.202.40.147	14.236.197.163	45.172.95.254
120.41.89.79	209.145.53.64	93.177.119.67	42.91.68.231
125.167.114.149	125.42.99.189	109.236.55.109	58.229.23.211