49.85.243.46 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Jiangsu Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	ylmf-pc	2019-08-19 03:50:28

Comments on same subnet:

IP	Type	Details	Datetime
49.85.243.55	attackspam	SASL broute force	2019-11-28 18:59:21
49.85.243.218	attack	Nov 23 23:23:54 mx1 postfix/smtpd\[9791\]: warning: unknown\[49.85.243.218\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6Nov 23 23:24:31 mx1 postfix/smtpd\[9791\]: warning: unknown\[49.85.243.218\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6Nov 23 23:24:48 mx1 postfix/smtpd\[9803\]: warning: unknown\[49.85.243.218\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-11-24 01:21:04
49.85.243.188	attackspam	SASL broute force	2019-11-23 20:46:23
49.85.243.23	attackspam	2019-08-27 07:58:24 dovecot_login authenticator failed for (ylmf-pc) [49.85.243.23]:2241: 535 Incorrect authentication data (set_id=liepaja) 2019-08-27 07:58:32 dovecot_login authenticator failed for (ylmf-pc) [49.85.243.23]:2749: 535 Incorrect authentication data (set_id=liepaja) 2019-08-27 07:58:45 dovecot_login authenticator failed for (ylmf-pc) [49.85.243.23]:3405: 535 Incorrect authentication data (set_id=liepaja) 2019-08-27 07:59:00 dovecot_login authenticator failed for (ylmf-pc) [49.85.243.23]:1407: 535 Incorrect authentication data (set_id=liepaja) 2019-08-27 07:59:03 dovecot_login authenticator failed for (ylmf-pc) [49.85.243.23]:4541: 535 Incorrect authentication data 2019-08-27 07:59:08 dovecot_login authenticator failed for (ylmf-pc) [49.85.243.23]:1574: 535 Incorrect authentication data (set_id=liepaja) 2019-08-27 07:59:19 dovecot_login authenticator failed for (ylmf-pc) [49.85.243.23]:2101: 535 Incorrect authentication data (set_id=liepaja) 2019-08-27 07:5........ ------------------------------	2019-08-28 16:11:50
49.85.243.249	attackspam	2019-08-21 13:52:09 dovecot_login authenticator failed for (ylmf-pc) [49.85.243.249]:1108: 535 Incorrect authentication data (set_id=info) 2019-08-21 13:52:16 dovecot_login authenticator failed for (ylmf-pc) [49.85.243.249]:1528: 535 Incorrect authentication data (set_id=info) 2019-08-21 13:52:27 dovecot_login authenticator failed for (ylmf-pc) [49.85.243.249]:2068: 535 Incorrect authentication data (set_id=info) 2019-08-21 13:52:45 dovecot_login authenticator failed for (ylmf-pc) [49.85.243.249]:2808: 535 Incorrect authentication data 2019-08-21 13:52:56 dovecot_login authenticator failed for (ylmf-pc) [49.85.243.249]:3506: 535 Incorrect authentication data 2019-08-21 13:53:08 dovecot_login authenticator failed for (ylmf-pc) [49.85.243.249]:4091: 535 Incorrect authentication data 2019-08-21 13:53:19 dovecot_login authenticator failed for (ylmf-pc) [49.85.243.249]:4640: 535 Incorrect authentication data 2019-08-21 13:53:30 dovecot_login authenticator failed for (ylmf-pc)........ ------------------------------	2019-08-22 02:46:15
49.85.243.248	attackbotsspam	SSH invalid-user multiple login try	2019-08-19 07:50:12

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.85.243.46
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52963
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.85.243.46.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081801 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Aug 19 03:50:23 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 46.243.85.49.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 46.243.85.49.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
134.175.7.36	attack	$f2bV_matches	2020-01-12 01:05:22
134.209.186.72	attackspambots	2020-01-11T16:55:33.465690shield sshd\[28304\]: Invalid user alisa from 134.209.186.72 port 37762 2020-01-11T16:55:33.470174shield sshd\[28304\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.186.72 2020-01-11T16:55:35.304589shield sshd\[28304\]: Failed password for invalid user alisa from 134.209.186.72 port 37762 ssh2 2020-01-11T16:58:26.961723shield sshd\[29490\]: Invalid user admin from 134.209.186.72 port 49252 2020-01-11T16:58:26.965749shield sshd\[29490\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.186.72	2020-01-12 01:01:17
138.197.175.236	attackbots	Jan 11 16:30:07 vps670341 sshd[25847]: Invalid user gkf from 138.197.175.236 port 45254	2020-01-12 00:42:01
122.58.28.165	attackbotsspam	Unauthorized connection attempt detected from IP address 122.58.28.165 to port 2220 [J]	2020-01-12 00:55:08
200.50.67.105	attackspam	Jan 11 15:11:15 vmanager6029 sshd\[12078\]: Invalid user 123456 from 200.50.67.105 port 43518 Jan 11 15:11:15 vmanager6029 sshd\[12078\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.50.67.105 Jan 11 15:11:17 vmanager6029 sshd\[12078\]: Failed password for invalid user 123456 from 200.50.67.105 port 43518 ssh2	2020-01-12 00:38:09
134.17.94.229	attackbots	$f2bV_matches	2020-01-12 01:11:30
106.52.57.120	attackspam	Unauthorized connection attempt detected from IP address 106.52.57.120 to port 2220 [J]	2020-01-12 00:56:57
134.209.16.36	attack	$f2bV_matches	2020-01-12 01:02:16
138.128.209.35	attackspambots	$f2bV_matches	2020-01-12 00:50:17
138.68.18.232	attackbots	Unauthorized connection attempt detected from IP address 138.68.18.232 to port 2220 [J]	2020-01-12 00:33:16
138.36.204.234	attack	$f2bV_matches	2020-01-12 00:36:03
138.197.151.248	attack	Unauthorized connection attempt detected from IP address 138.197.151.248 to port 2220 [J]	2020-01-12 00:45:42
183.82.37.78	attack	445/tcp [2020-01-11]1pkt	2020-01-12 00:55:32
134.209.24.143	attackspam	$f2bV_matches	2020-01-12 00:59:22
103.243.252.244	attackbots	Unauthorized connection attempt detected from IP address 103.243.252.244 to port 2220 [J]	2020-01-12 00:57:12

Recently Reported IPs

90.42.54.228	97.58.6.181	75.81.60.143	50.235.218.54
47.59.171.228	243.172.81.133	117.8.16.86	71.108.218.135
238.186.10.239	239.180.230.73	106.140.126.211	52.141.96.88
159.203.190.189	134.255.231.88	49.89.182.248	202.229.120.90
114.84.142.178	35.200.28.59	3.216.170.218	5.255.250.111