49.85.49.104 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.85.49.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15613
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.85.49.104.			IN	A

;; AUTHORITY SECTION:
.			191	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022061500 1800 900 604800 86400

;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 15 17:55:25 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 104.49.85.49.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 104.49.85.49.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
88.218.65.66	attack	suspicious query, attemp SQL injection log:/aero/meteo_aero.php?lang=en%27%29+AND+1%3D1+UNION+ALL+SELECT+1%2CNULL%2C%27%3Cscript%3Ealert%28%22XSS%22%29%3C%2Fscript%3E%27%2Ctable_name+FROM+information_schema.tables+WHERE+2%3E1--%2F%2A%2A%2F%3B+EXEC+xp_cmdshell%28%27cat+..%2F..%2F..%2Fetc%2Fpasswd%27%29%23&recherche=LTFH	2020-10-08 03:41:08
115.56.197.167	attack	D-Link DAP-1860 Remote Command Injection Vulnerability, PTR: hn.kd.ny.adsl.	2020-10-08 03:43:15
192.35.169.40	attackbotsspam	Port scan: Attack repeated for 24 hours	2020-10-08 03:44:43
45.142.120.39	attackspam	Oct 7 21:31:31 relay postfix/smtpd\[17591\]: warning: unknown\[45.142.120.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 7 21:31:37 relay postfix/smtpd\[17589\]: warning: unknown\[45.142.120.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 7 21:31:48 relay postfix/smtpd\[17590\]: warning: unknown\[45.142.120.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 7 21:31:48 relay postfix/smtpd\[17037\]: warning: unknown\[45.142.120.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 7 21:31:51 relay postfix/smtpd\[12822\]: warning: unknown\[45.142.120.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-08 03:46:38
69.194.15.75	attackspambots	69.194.15.75 (US/United States/69.194.15.75.16clouds.com), 13 distributed sshd attacks on account [root] in the last 3600 secs	2020-10-08 03:21:05
190.145.192.106	attackbotsspam	Oct 7 21:39:20 inter-technics sshd[10598]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.145.192.106 user=root Oct 7 21:39:23 inter-technics sshd[10598]: Failed password for root from 190.145.192.106 port 59806 ssh2 Oct 7 21:43:21 inter-technics sshd[10933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.145.192.106 user=root Oct 7 21:43:22 inter-technics sshd[10933]: Failed password for root from 190.145.192.106 port 33946 ssh2 Oct 7 21:47:11 inter-technics sshd[11258]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.145.192.106 user=root Oct 7 21:47:14 inter-technics sshd[11258]: Failed password for root from 190.145.192.106 port 36310 ssh2 ...	2020-10-08 03:48:25
45.129.33.4	attack	ET DROP Dshield Block Listed Source group 1 - port: 3391 proto: tcp cat: Misc Attackbytes: 60	2020-10-08 03:35:03
176.32.34.102	attackbots	Port Scan: UDP/1900	2020-10-08 03:18:41
122.70.178.5	attackspam	TCP (SYN) 122.70.178.5:47136 -> port 1433, len 44	2020-10-08 03:23:07
192.35.169.39	attackbots	TCP (SYN) 192.35.169.39:21233 -> port 2058, len 44	2020-10-08 03:47:27
129.226.62.150	attackspam	Oct 7 18:44:05 db sshd[11170]: User root from 129.226.62.150 not allowed because none of user's groups are listed in AllowGroups ...	2020-10-08 03:26:19
177.67.109.207	attackspambots	SSH Bruteforce Attempt on Honeypot	2020-10-08 03:38:30
115.159.196.214	attack	Oct 7 21:35:15 db sshd[18333]: User root from 115.159.196.214 not allowed because none of user's groups are listed in AllowGroups ...	2020-10-08 03:45:15
34.92.183.186	attack	20 attempts against mh-ssh on storm	2020-10-08 03:28:51
89.248.168.176	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 78 - port: 1064 proto: tcp cat: Misc Attackbytes: 60	2020-10-08 03:19:09

Recently Reported IPs

49.85.50.30	49.85.51.89	49.85.53.18	2.58.228.97
49.85.50.197	49.85.52.122	49.85.52.56	49.85.49.138
49.85.50.183	78.46.90.170	49.85.51.242	49.85.49.175
49.85.51.60	49.85.49.231	49.85.49.124	49.85.53.122
49.85.75.16	49.85.53.126	60.167.23.154	60.167.82.207