49.50.236.221 - IPInfo

Basic Info

City: Kuching

Region: Sarawak

Country: Malaysia

Internet Service Provider: Universiti Malaysia Sarawak

Hostname: unknown

Organization: unknown

Usage Type: University/College/School

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt from IP address 49.50.236.221 on Port 445(SMB)	2020-09-18 20:41:35
attackbots	Unauthorized connection attempt from IP address 49.50.236.221 on Port 445(SMB)	2020-09-18 13:00:33
attack	Unauthorized connection attempt from IP address 49.50.236.221 on Port 445(SMB)	2020-09-18 03:15:11
attackbots	Unauthorized connection attempt from IP address 49.50.236.221 on Port 445(SMB)	2020-03-11 11:26:08
attackspam	Unauthorized connection attempt from IP address 49.50.236.221 on Port 445(SMB)	2020-02-29 01:07:27
attack	Unauthorized connection attempt detected from IP address 49.50.236.221 to port 445	2020-02-25 06:05:21

Comments on same subnet:

IP	Type	Details	Datetime
49.50.236.213	attackspam	Unauthorized connection attempt from IP address 49.50.236.213 on Port 445(SMB)	2020-09-07 03:26:58
49.50.236.213	attack	Unauthorized connection attempt from IP address 49.50.236.213 on Port 445(SMB)	2020-09-06 18:54:56
49.50.236.222	attack	Unauthorized connection attempt from IP address 49.50.236.222 on Port 445(SMB)	2020-08-19 21:05:35
49.50.236.243	attack	Unauthorized connection attempt from IP address 49.50.236.243 on Port 445(SMB)	2020-07-14 06:11:46
49.50.236.211	attack	20/3/9@17:13:26: FAIL: Alarm-Network address from=49.50.236.211 20/3/9@17:13:26: FAIL: Alarm-Network address from=49.50.236.211 ...	2020-03-10 06:09:30
49.50.236.53	attackbotsspam	Unauthorized connection attempt from IP address 49.50.236.53 on Port 445(SMB)	2020-02-22 04:02:19

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.50.236.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32405
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.50.236.221.			IN	A

;; AUTHORITY SECTION:
.			463	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022401 1800 900 604800 86400

;; Query time: 99 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 25 06:05:18 CST 2020
;; MSG SIZE  rcvd: 117

Host info

221.236.50.49.in-addr.arpa domain name pointer 221-subnet236.unimas.my.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
221.236.50.49.in-addr.arpa	name = 221-subnet236.unimas.my.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.52.126.205	attack	Aug 4 03:36:07 site1 sshd\[56144\]: Invalid user tomcat from 106.52.126.205Aug 4 03:36:08 site1 sshd\[56144\]: Failed password for invalid user tomcat from 106.52.126.205 port 40056 ssh2Aug 4 03:40:54 site1 sshd\[56621\]: Invalid user webin from 106.52.126.205Aug 4 03:40:57 site1 sshd\[56621\]: Failed password for invalid user webin from 106.52.126.205 port 35850 ssh2Aug 4 03:45:43 site1 sshd\[57655\]: Invalid user zaky from 106.52.126.205Aug 4 03:45:45 site1 sshd\[57655\]: Failed password for invalid user zaky from 106.52.126.205 port 59883 ssh2 ...	2019-08-04 14:56:33
129.150.177.163	attackspambots	Feb 23 18:36:03 motanud sshd\[14216\]: Invalid user teamspeak from 129.150.177.163 port 36208 Feb 23 18:36:03 motanud sshd\[14216\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.150.177.163 Feb 23 18:36:04 motanud sshd\[14216\]: Failed password for invalid user teamspeak from 129.150.177.163 port 36208 ssh2	2019-08-04 14:32:53
139.199.34.112	attackspambots	Feb 23 03:22:13 motanud sshd\[30052\]: Invalid user andrew from 139.199.34.112 port 33302 Feb 23 03:22:13 motanud sshd\[30052\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.34.112 Feb 23 03:22:15 motanud sshd\[30052\]: Failed password for invalid user andrew from 139.199.34.112 port 33302 ssh2	2019-08-04 14:42:56
129.144.3.228	attackspambots	Feb 28 17:32:31 motanud sshd\[7711\]: Invalid user jt from 129.144.3.228 port 52651 Feb 28 17:32:31 motanud sshd\[7711\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.144.3.228 Feb 28 17:32:32 motanud sshd\[7711\]: Failed password for invalid user jt from 129.144.3.228 port 52651 ssh2	2019-08-04 14:39:05
116.255.169.148	attack	Aug 4 08:57:12 ks10 sshd[12320]: Failed password for root from 116.255.169.148 port 59004 ssh2 Aug 4 08:57:12 ks10 sshd[12320]: error: Received disconnect from 116.255.169.148 port 59004:3: com.jcraft.jsch.JSchException: Auth fail [preauth] ...	2019-08-04 15:11:03
14.140.175.194	attackspam	ECShop Remote Code Execution Vulnerability, PTR: 14.140.175.194.STATIC-Mumbai-vsnl.net.in.	2019-08-04 15:22:07
213.32.91.37	attackbots	SSH Brute Force, server-1 sshd[12559]: Failed password for invalid user ecastro from 213.32.91.37 port 45040 ssh2	2019-08-04 14:50:14
58.87.106.183	attack	2019-08-04T03:24:23.172855abusebot-2.cloudsearch.cf sshd\[30377\]: Invalid user jader from 58.87.106.183 port 54892	2019-08-04 15:07:41
129.150.97.252	attackbotsspam	Jan 18 20:15:05 motanud sshd\[15331\]: Invalid user ava from 129.150.97.252 port 14821 Jan 18 20:15:05 motanud sshd\[15331\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.150.97.252 Jan 18 20:15:07 motanud sshd\[15331\]: Failed password for invalid user ava from 129.150.97.252 port 14821 ssh2	2019-08-04 14:28:20
85.195.222.234	attackspam	Invalid user hb from 85.195.222.234 port 53240	2019-08-04 15:26:52
109.109.37.19	attackbotsspam	SSH-BruteForce	2019-08-04 15:19:55
177.101.255.26	attackbots	Aug 4 02:45:17 lnxmail61 sshd[24345]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.101.255.26	2019-08-04 15:23:08
103.85.109.44	attack	Automatic report generated by Wazuh	2019-08-04 15:07:11
201.235.19.122	attackspam	Aug 4 07:56:16 * sshd[1379]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.235.19.122 Aug 4 07:56:17 * sshd[1379]: Failed password for invalid user nasec from 201.235.19.122 port 37150 ssh2	2019-08-04 14:40:12
49.88.112.65	attack	Aug 4 01:45:56 plusreed sshd[32598]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.65 user=root Aug 4 01:45:58 plusreed sshd[32598]: Failed password for root from 49.88.112.65 port 17931 ssh2 ...	2019-08-04 14:51:11

Recently Reported IPs

174.126.143.108	89.208.228.187	204.91.243.132	149.64.180.255
173.102.155.140	165.22.89.254	139.141.237.118	5.15.226.116
89.47.209.167	189.21.176.147	64.3.200.9	137.17.174.255
129.204.56.213	12.78.233.174	66.107.194.81	202.131.130.26
52.237.186.5	132.156.23.250	36.77.92.127	37.73.38.24