49.248.3.11 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: India

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
49.248.38.94	attackspambots	Unauthorized connection attempt from IP address 49.248.38.94 on Port 445(SMB)	2020-09-24 02:24:00
49.248.38.94	attackspam	Unauthorized connection attempt from IP address 49.248.38.94 on Port 445(SMB)	2020-09-23 18:31:34
49.248.38.94	attackspam	Unauthorized connection attempt from IP address 49.248.38.94 on Port 445(SMB)	2020-08-21 03:42:51
49.248.3.10	attack	Jul 17 07:01:27 hidden sshd[63524]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.248.3.10 Jul 17 07:01:29 hidden sshd[63524]: Failed password for invalid user test from 49.248.3.10 port 53844 ssh2	2020-07-17 13:17:59
49.248.3.10	attackbots	Jul 6 12:22:18 mout sshd[24175]: Invalid user ssu from 49.248.3.10 port 53870	2020-07-06 18:36:15
49.248.3.10	attackspambots	Jun 11 18:27:31 Tower sshd[11968]: Connection from 49.248.3.10 port 52160 on 192.168.10.220 port 22 rdomain "" Jun 11 18:27:33 Tower sshd[11968]: Invalid user weblogic from 49.248.3.10 port 52160 Jun 11 18:27:33 Tower sshd[11968]: error: Could not get shadow information for NOUSER Jun 11 18:27:33 Tower sshd[11968]: Failed password for invalid user weblogic from 49.248.3.10 port 52160 ssh2 Jun 11 18:27:33 Tower sshd[11968]: Received disconnect from 49.248.3.10 port 52160:11: Bye Bye [preauth] Jun 11 18:27:33 Tower sshd[11968]: Disconnected from invalid user weblogic 49.248.3.10 port 52160 [preauth]	2020-06-12 07:31:12
49.248.3.10	attackspambots	prod8 ...	2020-06-06 18:15:04
49.248.3.10	attack	Jun 3 10:10:07 gw1 sshd[1123]: Failed password for root from 49.248.3.10 port 38684 ssh2 ...	2020-06-03 14:58:31
49.248.3.10	attackbotsspam	May 28 14:40:41 dignus sshd[6406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.248.3.10 May 28 14:40:42 dignus sshd[6406]: Failed password for invalid user admin from 49.248.3.10 port 53629 ssh2 May 28 14:44:33 dignus sshd[6700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.248.3.10 user=root May 28 14:44:35 dignus sshd[6700]: Failed password for root from 49.248.3.10 port 55840 ssh2 May 28 14:48:18 dignus sshd[6977]: Invalid user shenleiyu from 49.248.3.10 port 58319 ...	2020-05-29 06:41:43
49.248.32.110	attack	failed_logins	2020-04-28 03:00:16
49.248.3.10	attack	1586952433 - 04/15/2020 14:07:13 Host: 49.248.3.10/49.248.3.10 Port: 445 TCP Blocked	2020-04-16 02:58:35
49.248.36.154	attackbotsspam	Unauthorized connection attempt from IP address 49.248.36.154 on Port 445(SMB)	2020-01-08 18:14:44
49.248.3.10	attackbots	1576132153 - 12/12/2019 07:29:13 Host: 49.248.3.10/49.248.3.10 Port: 445 TCP Blocked	2019-12-12 15:55:06

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.248.3.11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23962
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.248.3.11.			IN	A

;; AUTHORITY SECTION:
.			574	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 07:44:59 CST 2022
;; MSG SIZE  rcvd: 104

Host info

11.3.248.49.in-addr.arpa domain name pointer static-11.3.248.49-tataidc.co.in.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
11.3.248.49.in-addr.arpa	name = static-11.3.248.49-tataidc.co.in.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
201.229.156.107	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/201.229.156.107/ DO - 1H : (2) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : DO NAME ASN : ASN6400 IP : 201.229.156.107 CIDR : 201.229.128.0/18 PREFIX COUNT : 140 UNIQUE IP COUNT : 832000 WYKRYTE ATAKI Z ASN6400 : 1H - 1 3H - 1 6H - 2 12H - 2 24H - 2 DateTime : 2019-10-10 13:49:01 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery	2019-10-11 03:02:30
139.59.94.225	attackspambots	Oct 10 15:51:46 jane sshd[18824]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.94.225 Oct 10 15:51:48 jane sshd[18824]: Failed password for invalid user 123qaz123 from 139.59.94.225 port 39636 ssh2 ...	2019-10-11 03:10:16
104.236.252.162	attackbotsspam	Oct 10 03:30:29 kapalua sshd\[15196\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.252.162 user=root Oct 10 03:30:31 kapalua sshd\[15196\]: Failed password for root from 104.236.252.162 port 34298 ssh2 Oct 10 03:34:35 kapalua sshd\[15530\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.252.162 user=root Oct 10 03:34:37 kapalua sshd\[15530\]: Failed password for root from 104.236.252.162 port 45616 ssh2 Oct 10 03:38:46 kapalua sshd\[15882\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.252.162 user=root	2019-10-11 02:46:40
111.61.177.158	attack	Automatic report - FTP Brute Force	2019-10-11 02:59:42
60.113.85.41	attackspambots	Oct 10 19:07:46 vpn01 sshd[8052]: Failed password for root from 60.113.85.41 port 45938 ssh2 ...	2019-10-11 02:57:20
114.115.240.97	attackspambots	Oct 7 19:04:37 hostnameis sshd[42092]: reveeclipse mapping checking getaddrinfo for ecs-114-115-240-97.compute.hwclouds-dns.com [114.115.240.97] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 7 19:04:37 hostnameis sshd[42092]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.115.240.97 user=r.r Oct 7 19:04:39 hostnameis sshd[42092]: Failed password for r.r from 114.115.240.97 port 40436 ssh2 Oct 7 19:04:40 hostnameis sshd[42092]: Received disconnect from 114.115.240.97: 11: Bye Bye [preauth] Oct 7 19:13:07 hostnameis sshd[42162]: reveeclipse mapping checking getaddrinfo for ecs-114-115-240-97.compute.hwclouds-dns.com [114.115.240.97] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 7 19:13:07 hostnameis sshd[42162]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.115.240.97 user=r.r Oct 7 19:13:09 hostnameis sshd[42162]: Failed password for r.r from 114.115.240.97 port 34372 ssh2 Oct 7 19:13........ ------------------------------	2019-10-11 03:17:17
162.247.74.216	attackspam	2019-10-10T18:25:12.248065abusebot.cloudsearch.cf sshd\[23915\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=phoolandevi.tor-exit.calyxinstitute.org user=root	2019-10-11 03:11:03
119.163.250.237	attack	SSH-bruteforce attempts	2019-10-11 03:11:21
106.12.32.48	attackbotsspam	Brute force SMTP login attempted. ...	2019-10-11 03:01:38
218.92.0.200	attack	Oct 10 18:43:46 venus sshd\[22552\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.200 user=root Oct 10 18:43:48 venus sshd\[22552\]: Failed password for root from 218.92.0.200 port 54653 ssh2 Oct 10 18:43:50 venus sshd\[22552\]: Failed password for root from 218.92.0.200 port 54653 ssh2 ...	2019-10-11 03:02:12
49.88.112.76	attack	2019-10-10T19:02:03.190204abusebot-3.cloudsearch.cf sshd\[28556\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.76 user=root	2019-10-11 03:24:24
122.152.216.42	attackspam	Oct 10 09:09:32 django sshd[90350]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.152.216.42 user=r.r Oct 10 09:09:34 django sshd[90350]: Failed password for r.r from 122.152.216.42 port 46952 ssh2 Oct 10 09:09:35 django sshd[90352]: Received disconnect from 122.152.216.42: 11: Bye Bye Oct 10 09:28:13 django sshd[92019]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.152.216.42 user=r.r Oct 10 09:28:14 django sshd[92019]: Failed password for r.r from 122.152.216.42 port 60944 ssh2 Oct 10 09:28:14 django sshd[92020]: Received disconnect from 122.152.216.42: 11: Bye Bye Oct 10 09:32:51 django sshd[92425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.152.216.42 user=r.r Oct 10 09:32:53 django sshd[92425]: Failed password for r.r from 122.152.216.42 port 40896 ssh2 Oct 10 09:32:53 django sshd[92426]: Received disconnect from 122.152.21........ -------------------------------	2019-10-11 03:05:49
192.144.164.167	attack	Oct 7 12:26:30 proxmox sshd[7309]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.164.167 user=r.r Oct 7 12:26:32 proxmox sshd[7309]: Failed password for r.r from 192.144.164.167 port 49706 ssh2 Oct 7 12:26:32 proxmox sshd[7309]: Received disconnect from 192.144.164.167 port 49706:11: Bye Bye [preauth] Oct 7 12:26:32 proxmox sshd[7309]: Disconnected from 192.144.164.167 port 49706 [preauth] Oct 7 12:34:24 proxmox sshd[10058]: Connection closed by 192.144.164.167 port 41622 [preauth] Oct 7 12:38:35 proxmox sshd[11456]: Connection closed by 192.144.164.167 port 41180 [preauth] Oct 7 12:42:05 proxmox sshd[13081]: Connection closed by 192.144.164.167 port 40744 [preauth] Oct 7 12:45:20 proxmox sshd[14430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.164.167 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=192.144.164.167	2019-10-11 03:04:23
104.37.169.192	attack	Oct 10 03:30:35 eddieflores sshd\[18677\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.37.169.192 user=root Oct 10 03:30:37 eddieflores sshd\[18677\]: Failed password for root from 104.37.169.192 port 47159 ssh2 Oct 10 03:34:56 eddieflores sshd\[19031\]: Invalid user 123 from 104.37.169.192 Oct 10 03:34:56 eddieflores sshd\[19031\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.37.169.192 Oct 10 03:34:59 eddieflores sshd\[19031\]: Failed password for invalid user 123 from 104.37.169.192 port 40733 ssh2	2019-10-11 03:20:21
1.10.185.247	attack	Failed password for root from 1.10.185.247 port 34278 ssh2	2019-10-11 03:08:06

Recently Reported IPs

221.226.6.226	196.192.169.64	117.80.193.248	121.170.8.146
59.62.154.219	43.131.51.165	102.89.2.146	2.55.80.233
151.235.216.88	73.172.121.100	189.207.28.174	191.53.196.203
189.204.231.210	36.7.147.181	65.18.218.6	123.12.175.234
118.97.187.60	178.46.215.63	123.186.149.59	103.8.118.120