49.82.38.194 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.82.38.194
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50958
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.82.38.194.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025011101 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 12 09:55:20 CST 2025
;; MSG SIZE  rcvd: 105

Host info

Host 194.38.82.49.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 194.38.82.49.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
113.116.98.192	attack	spam	2020-09-07 05:35:35
23.129.64.183	attack	Brute force SMTP login attempted. ...	2020-09-07 05:57:22
118.24.7.98	attackspambots	SSH login attempts.	2020-09-07 05:48:00
36.80.97.187	attack	Port probing on unauthorized port 445	2020-09-07 05:38:26
222.186.30.76	attackspam	(sshd) Failed SSH login from 222.186.30.76 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 6 18:06:52 optimus sshd[30751]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.76 user=root Sep 6 18:06:53 optimus sshd[30751]: Failed password for root from 222.186.30.76 port 45761 ssh2 Sep 6 18:06:56 optimus sshd[30751]: Failed password for root from 222.186.30.76 port 45761 ssh2 Sep 6 18:06:58 optimus sshd[30751]: Failed password for root from 222.186.30.76 port 45761 ssh2 Sep 6 18:07:01 optimus sshd[30776]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.76 user=root	2020-09-07 06:07:55
186.37.84.198	attack	Sep 6 19:50:34 pkdns2 sshd\[28951\]: Failed password for root from 186.37.84.198 port 58904 ssh2Sep 6 19:52:10 pkdns2 sshd\[29010\]: Failed password for root from 186.37.84.198 port 43562 ssh2Sep 6 19:53:50 pkdns2 sshd\[29056\]: Invalid user web1 from 186.37.84.198Sep 6 19:53:52 pkdns2 sshd\[29056\]: Failed password for invalid user web1 from 186.37.84.198 port 56490 ssh2Sep 6 19:55:31 pkdns2 sshd\[29167\]: Failed password for root from 186.37.84.198 port 41160 ssh2Sep 6 19:57:08 pkdns2 sshd\[29222\]: Failed password for root from 186.37.84.198 port 54030 ssh2 ...	2020-09-07 05:46:32
142.93.130.58	attackbots	srv02 Mass scanning activity detected Target: 29750 ..	2020-09-07 05:53:38
37.139.20.6	attackspam	SSH login attempts.	2020-09-07 05:39:00
185.132.53.194	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-09-06T21:12:20Z and 2020-09-06T21:13:36Z	2020-09-07 05:42:33
45.142.120.215	attack	Sep 6 23:58:24 vmanager6029 postfix/smtpd\[22227\]: warning: unknown\[45.142.120.215\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 6 23:59:03 vmanager6029 postfix/smtpd\[22329\]: warning: unknown\[45.142.120.215\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-09-07 06:02:14
103.10.227.176	attackbots	DDOS	2020-09-07 06:04:11
104.244.75.153	attackbots	Auto Fail2Ban report, multiple SSH login attempts.	2020-09-07 05:55:38
192.71.38.71	attackspambots	Multiple 404 errors on a honeypot website	2020-09-07 05:59:40
173.252.95.35	attack	[Sun Sep 06 23:53:54.625273 2020] [:error] [pid 31435:tid 140397542881024] [client 173.252.95.35:42156] [client 173.252.95.35] ModSecurity: Access denied with code 403 (phase 2). Match of "eq 0" against "&REQUEST_HEADERS:Transfer-Encoding" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "202"] [id "920171"] [msg "GET or HEAD Request with Transfer-Encoding."] [data "1"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/INVALID_HREQ"] [tag "CAPEC-272"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/depan/service-worker-v4.js"] [unique_id "X1UUIqKFltyTD6lc4lcewAAAOwQ"], referer: https://karangploso.jatim.bmkg.go.id/depan/service-worker-v4.js ...	2020-09-07 05:53:17
116.100.90.227	attack	Honeypot attack, port: 445, PTR: dynamic-adsl.viettel.vn.	2020-09-07 06:01:47

Recently Reported IPs

195.217.91.20	88.83.126.218	240.156.224.191	229.12.215.49
94.116.226.194	38.186.142.253	210.8.6.150	220.122.104.113
188.171.166.203	167.99.5.109	249.172.50.230	44.107.151.110
185.82.30.67	77.229.171.39	56.86.224.173	57.245.26.223
127.37.194.92	49.154.96.222	166.130.103.72	117.55.138.197