49.248.38.94 - IPInfo

Basic Info

City: Pune

Region: Maharashtra

Country: India

Internet Service Provider: Tata Teleservices Ltd

Hostname: unknown

Organization: Tata Teleservices Maharashtra Ltd

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Unauthorized connection attempt from IP address 49.248.38.94 on Port 445(SMB)	2020-09-24 02:24:00
attackspam	Unauthorized connection attempt from IP address 49.248.38.94 on Port 445(SMB)	2020-09-23 18:31:34
attackspam	Unauthorized connection attempt from IP address 49.248.38.94 on Port 445(SMB)	2020-08-21 03:42:51

Type

Details

Datetime

attackspambots

Unauthorized connection attempt from IP address 49.248.38.94 on Port 445(SMB)

2020-09-24 02:24:00

attackspam

Unauthorized connection attempt from IP address 49.248.38.94 on Port 445(SMB)

2020-09-23 18:31:34

attackspam

Unauthorized connection attempt from IP address 49.248.38.94 on Port 445(SMB)

2020-08-21 03:42:51

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.248.38.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58236
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.248.38.94.			IN	A

;; AUTHORITY SECTION:
.			2749	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040800 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 08 19:51:06 +08 2019
;; MSG SIZE  rcvd: 116

Host info

94.38.248.49.in-addr.arpa domain name pointer static-94.38.248.49-tataidc.co.in.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
94.38.248.49.in-addr.arpa	name = static-94.38.248.49-tataidc.co.in.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
134.0.119.111	attack	2020-05-27T22:52:55.506374abusebot.cloudsearch.cf sshd[14911]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134-0-119-111.cloudvps.regruhosting.ru user=root 2020-05-27T22:52:57.436532abusebot.cloudsearch.cf sshd[14911]: Failed password for root from 134.0.119.111 port 55302 ssh2 2020-05-27T22:56:15.153242abusebot.cloudsearch.cf sshd[15196]: Invalid user eachbytr from 134.0.119.111 port 60400 2020-05-27T22:56:15.157651abusebot.cloudsearch.cf sshd[15196]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134-0-119-111.cloudvps.regruhosting.ru 2020-05-27T22:56:15.153242abusebot.cloudsearch.cf sshd[15196]: Invalid user eachbytr from 134.0.119.111 port 60400 2020-05-27T22:56:16.547365abusebot.cloudsearch.cf sshd[15196]: Failed password for invalid user eachbytr from 134.0.119.111 port 60400 ssh2 2020-05-27T22:59:26.888044abusebot.cloudsearch.cf sshd[15448]: pam_unix(sshd:auth): authentication failure; logname= ...	2020-05-28 07:50:00
109.87.233.131	attack	Unauthorized connection attempt from IP address 109.87.233.131 on Port 445(SMB)	2020-05-28 07:25:48
192.236.198.174	attackspam	DATE:2020-05-27 20:16:01, IP:192.236.198.174, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-05-28 07:37:10
129.213.107.56	attackbots	Invalid user aaaaa from 129.213.107.56 port 57206	2020-05-28 07:27:00
51.83.171.20	attackspam	May 28 01:42:06 debian-2gb-nbg1-2 kernel: \[12881718.796608\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=51.83.171.20 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=43453 PROTO=TCP SPT=52005 DPT=10052 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-28 07:54:46
83.97.20.244	attack	Tor exit node	2020-05-28 07:28:32
195.231.69.225	attackbotsspam	Unauthorized connection attempt from IP address 195.231.69.225 on Port 3389(RDP)	2020-05-28 08:00:18
27.255.57.167	attack	Unauthorized connection attempt from IP address 27.255.57.167 on Port 445(SMB)	2020-05-28 07:24:43
183.82.142.252	attackspam	1590603355 - 05/27/2020 20:15:55 Host: 183.82.142.252/183.82.142.252 Port: 445 TCP Blocked	2020-05-28 07:43:24
92.50.249.166	attackbotsspam	SSH Invalid Login	2020-05-28 08:00:44
91.234.62.28	attackspam	Automatic report - Banned IP Access	2020-05-28 07:22:47
180.76.173.75	attack	2020-05-28T01:24:53.703989 sshd[8105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.173.75 user=root 2020-05-28T01:24:55.274723 sshd[8105]: Failed password for root from 180.76.173.75 port 44826 ssh2 2020-05-28T01:28:32.961544 sshd[8167]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.173.75 user=root 2020-05-28T01:28:34.597481 sshd[8167]: Failed password for root from 180.76.173.75 port 42020 ssh2 ...	2020-05-28 07:38:00
105.247.37.37	attackspambots	Unauthorized connection attempt from IP address 105.247.37.37 on Port 445(SMB)	2020-05-28 07:44:42
180.76.190.221	attackbots	May 27 22:54:48: Invalid user nelu from 180.76.190.221 port 41526	2020-05-28 07:53:34
164.177.54.201	attackbotsspam	Unauthorized connection attempt from IP address 164.177.54.201 on Port 445(SMB)	2020-05-28 07:55:09

Recently Reported IPs

45.225.138.25	132.232.10.4	103.36.18.164	82.64.25.207
121.84.221.236	106.13.33.5	114.141.191.238	61.231.52.221
41.79.67.1	80.130.52.61	207.189.0.201	75.147.148.169
130.61.58.126	113.161.131.150	113.255.246.176	177.106.29.3
134.73.7.252	118.69.72.164	164.132.128.57	203.194.99.239