49.249.248.255

Basic Info

City: unknown

Region: unknown

Country: India

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
49.249.248.34	attackspambots	Jun 19 03:55:21 meumeu sshd[16387]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.249.248.34 Jun 19 03:55:23 meumeu sshd[16387]: Failed password for invalid user ftpuser from 49.249.248.34 port 55625 ssh2 Jun 19 03:58:08 meumeu sshd[16691]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.249.248.34 ...	2019-12-01 08:08:44

Type

Details

Datetime

49.249.248.34

attackspambots

Jun 19 03:55:21 meumeu sshd[16387]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.249.248.34 
Jun 19 03:55:23 meumeu sshd[16387]: Failed password for invalid user ftpuser from 49.249.248.34 port 55625 ssh2
Jun 19 03:58:08 meumeu sshd[16691]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.249.248.34 
...

2019-12-01 08:08:44

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.249.248.255
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60846
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.249.248.255.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022200 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 22 21:36:42 CST 2025
;; MSG SIZE  rcvd: 107

Host info

255.248.249.49.in-addr.arpa domain name pointer static-255.248.249.49-tataidc.co.in.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
255.248.249.49.in-addr.arpa	name = static-255.248.249.49-tataidc.co.in.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.173.238	attackspam	Mar 1 09:58:55 gw1 sshd[10738]: Failed password for root from 222.186.173.238 port 33874 ssh2 Mar 1 09:59:07 gw1 sshd[10738]: error: maximum authentication attempts exceeded for root from 222.186.173.238 port 33874 ssh2 [preauth] ...	2020-03-01 13:02:25
118.24.178.224	attackbots	Feb 29 18:49:15 tdfoods sshd\[13356\]: Invalid user ftpuser from 118.24.178.224 Feb 29 18:49:15 tdfoods sshd\[13356\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.178.224 Feb 29 18:49:17 tdfoods sshd\[13356\]: Failed password for invalid user ftpuser from 118.24.178.224 port 36302 ssh2 Feb 29 18:59:02 tdfoods sshd\[14243\]: Invalid user weblogic from 118.24.178.224 Feb 29 18:59:02 tdfoods sshd\[14243\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.178.224	2020-03-01 13:06:42
189.179.239.10	attackspambots	Honeypot attack, port: 445, PTR: dsl-189-179-239-10-dyn.prod-infinitum.com.mx.	2020-03-01 13:01:47
70.31.200.12	attackspambots	Automatic report - Port Scan Attack	2020-03-01 09:40:09
39.155.215.142	attackbots	Invalid user nx from 39.155.215.142 port 29047	2020-03-01 09:35:23
83.97.20.37	attack	Mar 1 02:23:04 debian-2gb-nbg1-2 kernel: \[5284972.293604\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=83.97.20.37 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=53851 DPT=8060 WINDOW=65535 RES=0x00 SYN URGP=0	2020-03-01 09:48:42
217.113.10.250	attackbotsspam	[munged]::80 217.113.10.250 - - [29/Feb/2020:23:47:07 +0100] "POST /[munged]: HTTP/1.1" 200 2065 "-" "-"	2020-03-01 09:45:51
202.51.110.214	attack	Mar 1 06:28:14 gw1 sshd[25702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.51.110.214 Mar 1 06:28:16 gw1 sshd[25702]: Failed password for invalid user cron from 202.51.110.214 port 51540 ssh2 ...	2020-03-01 09:43:31
139.199.23.233	attackbotsspam	Invalid user cpanelrrdtool from 139.199.23.233 port 46478	2020-03-01 09:46:40
178.94.54.246	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-01 09:32:50
111.231.135.232	attack	Brute-force attempt banned	2020-03-01 09:57:55
178.95.110.117	attack	Unauthorized connection attempt detected from IP address 178.95.110.117 to port 23 [J]	2020-03-01 09:30:54
106.52.246.170	attack	Feb 29 15:50:38 hanapaa sshd\[16541\]: Invalid user ts3server from 106.52.246.170 Feb 29 15:50:38 hanapaa sshd\[16541\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.246.170 Feb 29 15:50:40 hanapaa sshd\[16541\]: Failed password for invalid user ts3server from 106.52.246.170 port 37816 ssh2 Feb 29 15:55:02 hanapaa sshd\[16946\]: Invalid user cpanel from 106.52.246.170 Feb 29 15:55:02 hanapaa sshd\[16946\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.246.170	2020-03-01 09:58:42
49.235.190.177	attackspam	DATE:2020-03-01 02:09:06, IP:49.235.190.177, PORT:ssh SSH brute force auth (docker-dc)	2020-03-01 09:33:46
139.199.14.105	attack	Mar 1 01:51:24 host sshd[20771]: Invalid user nivinform from 139.199.14.105 port 55706 ...	2020-03-01 10:08:36

Recently Reported IPs

92.189.199.151	164.174.172.62	251.52.24.157	20.68.236.92
189.233.89.158	80.61.60.3	74.118.145.81	149.72.150.209
161.162.198.176	190.8.120.136	91.166.244.49	31.108.185.44
43.65.179.67	143.58.186.215	198.106.65.231	55.169.84.171
206.74.10.30	88.55.198.177	96.63.106.52	15.109.211.195