49.69.56.48 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Jiangsu Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	1581831772 - 02/16/2020 06:42:52 Host: 49.69.56.48/49.69.56.48 Port: 23 TCP Blocked	2020-02-16 17:41:41

Comments on same subnet:

IP	Type	Details	Datetime
49.69.56.124	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-18 13:04:58
49.69.56.179	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-18 13:01:28
49.69.56.203	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-18 13:00:51

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.69.56.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54240
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.69.56.48.			IN	A

;; AUTHORITY SECTION:
.			419	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021600 1800 900 604800 86400

;; Query time: 515 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 16 17:41:38 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 48.56.69.49.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 48.56.69.49.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
123.138.18.35	attackspambots	Oct 29 05:50:54 localhost sshd\[8086\]: Invalid user taspberry from 123.138.18.35 Oct 29 05:50:54 localhost sshd\[8086\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.138.18.35 Oct 29 05:50:56 localhost sshd\[8086\]: Failed password for invalid user taspberry from 123.138.18.35 port 49625 ssh2 Oct 29 05:55:40 localhost sshd\[8311\]: Invalid user exxxtreme from 123.138.18.35 Oct 29 05:55:40 localhost sshd\[8311\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.138.18.35 ...	2019-10-29 18:09:57
54.39.187.138	attackspambots	Oct 29 09:59:57 MK-Soft-VM6 sshd[6889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.187.138 Oct 29 09:59:59 MK-Soft-VM6 sshd[6889]: Failed password for invalid user password321 from 54.39.187.138 port 53066 ssh2 ...	2019-10-29 18:06:33
58.20.39.232	attackbots	DATE:2019-10-29 04:47:38, IP:58.20.39.232, PORT:1433 - MSSQL brute force auth on a honeypot server (epe-dc)	2019-10-29 18:11:13
58.20.39.233	attackbots	DATE:2019-10-29 04:47:38, IP:58.20.39.233, PORT:1433 - MSSQL brute force auth on a honeypot server (epe-dc)	2019-10-29 18:12:09
220.130.10.13	attackspam	Oct 29 10:31:39 server sshd\[7781\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220-130-10-13.hinet-ip.hinet.net user=root Oct 29 10:31:40 server sshd\[7781\]: Failed password for root from 220.130.10.13 port 58552 ssh2 Oct 29 10:46:32 server sshd\[11159\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220-130-10-13.hinet-ip.hinet.net user=root Oct 29 10:46:33 server sshd\[11159\]: Failed password for root from 220.130.10.13 port 55762 ssh2 Oct 29 10:50:31 server sshd\[12157\]: Invalid user emerson from 220.130.10.13 Oct 29 10:50:31 server sshd\[12157\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220-130-10-13.hinet-ip.hinet.net ...	2019-10-29 18:01:55
155.12.30.2	attackspam	Oct 29 11:07:57 sso sshd[23082]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=155.12.30.2 Oct 29 11:07:59 sso sshd[23082]: Failed password for invalid user driver from 155.12.30.2 port 36488 ssh2 ...	2019-10-29 18:14:40
159.89.13.0	attackbotsspam	web-1 [ssh_2] SSH Attack	2019-10-29 17:39:54
62.168.92.206	attackbots	$f2bV_matches	2019-10-29 17:43:23
148.70.116.223	attackspambots	5x Failed Password	2019-10-29 18:07:50
118.24.90.64	attackbotsspam	Repeated brute force against a port	2019-10-29 18:09:19
47.134.135.48	attackbots	Invalid user ku from 47.134.135.48 port 49178	2019-10-29 18:00:01
148.70.76.34	attackspam	Oct 29 07:50:16 vps666546 sshd\[18128\]: Invalid user worinihainenggaodaomimaa from 148.70.76.34 port 55178 Oct 29 07:50:17 vps666546 sshd\[18128\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.76.34 Oct 29 07:50:19 vps666546 sshd\[18128\]: Failed password for invalid user worinihainenggaodaomimaa from 148.70.76.34 port 55178 ssh2 Oct 29 07:55:45 vps666546 sshd\[18212\]: Invalid user datacenter from 148.70.76.34 port 37782 Oct 29 07:55:45 vps666546 sshd\[18212\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.76.34 ...	2019-10-29 18:19:59
142.44.240.12	attack	Oct 29 11:10:05 SilenceServices sshd[14076]: Failed password for root from 142.44.240.12 port 55252 ssh2 Oct 29 11:13:52 SilenceServices sshd[15072]: Failed password for root from 142.44.240.12 port 38386 ssh2	2019-10-29 18:18:22
58.56.9.5	attack	Invalid user john from 58.56.9.5 port 49488	2019-10-29 18:17:49
112.164.83.218	attack	Telnet/23 MH Probe, BF, Hack -	2019-10-29 17:55:44

Recently Reported IPs

61.90.110.122	45.4.85.53	42.114.72.204	1.179.153.17
201.144.25.115	190.75.57.154	180.105.58.47	171.224.89.95
134.17.185.226	114.35.91.167	103.49.189.68	90.188.115.251
59.126.27.137	59.97.48.254	37.72.7.166	27.79.218.154
27.74.129.255	197.210.53.251	176.118.54.192	165.154.35.14