Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
No discussion about this IP yet. Click above link to make one.
Comments on same subnet:
IP Type Details Datetime
49.49.198.226 attackbots
 TCP (SYN) 49.49.198.226:30546 -> port 23, len 44
2020-08-10 18:40:54
49.49.183.91 attackspambots
"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:
2020-08-03 19:25:46
49.49.194.104 attackspam
SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: mx-ll-49.49.194-104.dynamic.3bb.co.th.
2020-07-07 20:42:05
49.49.139.146 attack
Unauthorized connection attempt detected from IP address 49.49.139.146 to port 23
2020-06-29 04:28:33
49.49.183.7 attackspambots
" "
2020-06-15 10:07:36
49.49.195.145 attackbots
LAMP,DEF GET /shell?/bin/busybox+ABCD
2020-06-12 23:36:12
49.49.113.92 attackspam
Unauthorized connection attempt detected from IP address 49.49.113.92 to port 80 [T]
2020-05-09 04:21:00
49.49.193.156 attackspambots
"SMTP brute force auth login attempt."
2020-04-19 05:56:21
49.49.146.110 attackspam
Unauthorized connection attempt detected from IP address 49.49.146.110 to port 445
2020-04-16 12:52:03
49.49.192.165 attack
Apr 11 05:55:35 debian-2gb-nbg1-2 kernel: \[8836340.593888\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=49.49.192.165 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=48 ID=15719 PROTO=TCP SPT=37981 DPT=23 WINDOW=43195 RES=0x00 SYN URGP=0
2020-04-11 12:50:02
49.49.153.26 attack
MultiHost/MultiPort Probe, Scan, Hack -
2020-02-18 16:35:31
49.49.112.178 attackspam
Unauthorized connection attempt detected from IP address 49.49.112.178 to port 8080 [J]
2020-01-29 05:33:23
49.49.12.122 attackbots
Honeypot attack, port: 81, PTR: mx-ll-49.49.12-122.dynamic.3bb.co.th.
2020-01-20 03:58:34
49.49.191.187 attack
Unauthorized connection attempt detected from IP address 49.49.191.187 to port 9090 [T]
2020-01-16 02:12:58
49.49.17.170 attackbots
Scanning random ports - tries to find possible vulnerable services
2020-01-10 20:20:53
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.49.1.217
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42758
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.49.1.217.			IN	A

;; AUTHORITY SECTION:
.			291	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020701 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 05:01:09 CST 2022
;; MSG SIZE  rcvd: 104
Host info
217.1.49.49.in-addr.arpa domain name pointer mx-ll-49.49.1-217.dynamic.3bb.in.th.
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
217.1.49.49.in-addr.arpa	name = mx-ll-49.49.1-217.dynamic.3bb.in.th.

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
51.83.42.66 attackbotsspam
Aug 30 21:28:53 webhost01 sshd[8271]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.42.66
Aug 30 21:28:55 webhost01 sshd[8271]: Failed password for invalid user smile from 51.83.42.66 port 43975 ssh2
...
2020-08-30 23:26:10
180.71.58.82 attackspambots
Aug 31 00:11:48 localhost sshd[1751168]: Connection closed by 180.71.58.82 port 39400 [preauth]
...
2020-08-30 22:55:23
122.224.237.234 attackspam
Aug 30 09:04:05 ws19vmsma01 sshd[66598]: Failed password for root from 122.224.237.234 port 47894 ssh2
Aug 30 09:39:19 ws19vmsma01 sshd[98144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.224.237.234
Aug 30 09:39:21 ws19vmsma01 sshd[98144]: Failed password for invalid user test from 122.224.237.234 port 50777 ssh2
...
2020-08-30 23:03:35
49.235.157.5 attackspambots
$f2bV_matches
2020-08-30 22:57:13
36.110.27.122 attackspambots
reported through recidive - multiple failed attempts(SSH)
2020-08-30 22:49:12
206.189.207.227 attackspam
SSH Login Bruteforce
2020-08-30 22:42:15
58.65.136.170 attackbots
Aug 30 09:53:02 NPSTNNYC01T sshd[22243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.65.136.170
Aug 30 09:53:05 NPSTNNYC01T sshd[22243]: Failed password for invalid user program from 58.65.136.170 port 22384 ssh2
Aug 30 09:57:12 NPSTNNYC01T sshd[22615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.65.136.170
...
2020-08-30 22:48:47
137.59.242.231 attack
1598789689 - 08/30/2020 14:14:49 Host: 137.59.242.231/137.59.242.231 Port: 445 TCP Blocked
2020-08-30 23:06:40
5.3.6.82 attackbots
2020-08-30T17:47:13.714652lavrinenko.info sshd[10760]: Failed password for root from 5.3.6.82 port 46200 ssh2
2020-08-30T17:50:14.413778lavrinenko.info sshd[10897]: Invalid user service from 5.3.6.82 port 46662
2020-08-30T17:50:14.420305lavrinenko.info sshd[10897]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.3.6.82
2020-08-30T17:50:14.413778lavrinenko.info sshd[10897]: Invalid user service from 5.3.6.82 port 46662
2020-08-30T17:50:16.619498lavrinenko.info sshd[10897]: Failed password for invalid user service from 5.3.6.82 port 46662 ssh2
...
2020-08-30 23:20:36
185.97.119.150 attackbots
Aug 30 16:28:03 buvik sshd[21764]: Failed password for invalid user jenkins from 185.97.119.150 port 51276 ssh2
Aug 30 16:32:18 buvik sshd[22527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.97.119.150  user=root
Aug 30 16:32:20 buvik sshd[22527]: Failed password for root from 185.97.119.150 port 56470 ssh2
...
2020-08-30 22:53:55
222.98.173.216 attackbotsspam
Aug 30 14:32:15 haigwepa sshd[25032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.98.173.216 
Aug 30 14:32:17 haigwepa sshd[25032]: Failed password for invalid user masako from 222.98.173.216 port 33078 ssh2
...
2020-08-30 23:09:32
128.199.160.225 attackspambots
Aug 30 07:07:30 askasleikir sshd[31066]: Failed password for root from 128.199.160.225 port 56738 ssh2
Aug 30 06:50:44 askasleikir sshd[30983]: Failed password for invalid user nancy from 128.199.160.225 port 34418 ssh2
Aug 30 06:59:00 askasleikir sshd[31011]: Failed password for invalid user myo from 128.199.160.225 port 48550 ssh2
2020-08-30 22:44:26
218.15.201.194 attackbots
brute-force
2020-08-30 23:09:51
103.4.217.139 attackbots
Banned for a week because repeated abuses, for example SSH, but not only
2020-08-30 23:08:36
191.181.20.126 attackbotsspam
Aug 30 16:08:24 fhem-rasp sshd[12170]: Invalid user artin from 191.181.20.126 port 56600
...
2020-08-30 22:58:21

Recently Reported IPs

190.245.17.204 189.212.122.130 91.193.175.169 120.56.113.226
78.164.77.164 93.170.171.134 113.25.25.33 179.228.113.39
171.97.201.134 124.163.27.48 116.75.212.31 70.79.156.173
220.198.205.11 112.26.121.53 45.241.58.15 79.127.88.154
5.138.247.32 31.59.206.71 177.44.16.111 156.214.77.174