49.85.49.138 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.85.49.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31557
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.85.49.138.			IN	A

;; AUTHORITY SECTION:
.			96	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022061500 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 15 17:55:52 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 138.49.85.49.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.49.85.49.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.114.227.94	attack	167.114.227.94 - - - [24/Apr/2020:16:46:28 +0200] "GET /w00tw00t.at.ISC.SANS.DFind:) HTTP/1.1" 400 166 "-" "-" "-" "-"	2020-04-25 00:09:06
163.172.158.172	attackbotsspam	Lines containing failures of 163.172.158.172 auth.log:Apr 24 10:19:39 omfg sshd[918]: Connection from 163.172.158.172 port 57084 on 78.46.60.50 port 22 auth.log:Apr 24 10:19:39 omfg sshd[912]: Connection from 163.172.158.172 port 39468 on 78.46.60.16 port 22 auth.log:Apr 24 10:19:39 omfg sshd[915]: Connection from 163.172.158.172 port 40578 on 78.46.60.40 port 22 auth.log:Apr 24 10:19:39 omfg sshd[915]: Did not receive identification string from 163.172.158.172 port 40578 auth.log:Apr 24 10:19:39 omfg sshd[912]: Did not receive identification string from 163.172.158.172 port 39468 auth.log:Apr 24 10:19:39 omfg sshd[917]: Connection from 163.172.158.172 port 52520 on 78.46.60.53 port 22 auth.log:Apr 24 10:19:39 omfg sshd[917]: Did not receive identification string from 163.172.158.172 port 52520 auth.log:Apr 24 10:19:39 omfg sshd[916]: Connection from 163.172.158.172 port 53914 on 78.46.60.42 port 22 auth.log:Apr 24 10:19:39 omfg sshd[916]: Did not receive identification ........ ------------------------------	2020-04-25 00:29:08
107.170.249.6	attack	Apr 24 20:19:11 itv-usvr-01 sshd[25528]: Invalid user console from 107.170.249.6 Apr 24 20:19:11 itv-usvr-01 sshd[25528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.249.6 Apr 24 20:19:11 itv-usvr-01 sshd[25528]: Invalid user console from 107.170.249.6 Apr 24 20:19:13 itv-usvr-01 sshd[25528]: Failed password for invalid user console from 107.170.249.6 port 46962 ssh2 Apr 24 20:29:06 itv-usvr-01 sshd[25891]: Invalid user zv from 107.170.249.6	2020-04-25 00:28:33
201.95.76.103	attackbotsspam	Automatic report - Port Scan Attack	2020-04-25 00:08:45
162.243.237.90	attackbots	Apr 24 16:07:26 santamaria sshd\[23992\]: Invalid user test from 162.243.237.90 Apr 24 16:07:26 santamaria sshd\[23992\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.237.90 Apr 24 16:07:28 santamaria sshd\[23992\]: Failed password for invalid user test from 162.243.237.90 port 36559 ssh2 ...	2020-04-25 00:19:16
129.204.164.84	attackbotsspam	Apr 24 14:05:05 debian-2gb-nbg1-2 kernel: \[9988850.030573\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=129.204.164.84 DST=195.201.40.59 LEN=60 TOS=0x00 PREC=0x00 TTL=44 ID=45952 DF PROTO=TCP SPT=37792 DPT=6379 WINDOW=14600 RES=0x00 SYN URGP=0	2020-04-25 00:18:50
78.180.150.148	attack	Apr 24 12:05:06 system,error,critical: login failure for user admin from 78.180.150.148 via telnet Apr 24 12:05:08 system,error,critical: login failure for user 888888 from 78.180.150.148 via telnet Apr 24 12:05:09 system,error,critical: login failure for user root from 78.180.150.148 via telnet Apr 24 12:05:14 system,error,critical: login failure for user root from 78.180.150.148 via telnet Apr 24 12:05:15 system,error,critical: login failure for user admin from 78.180.150.148 via telnet Apr 24 12:05:17 system,error,critical: login failure for user root from 78.180.150.148 via telnet Apr 24 12:05:21 system,error,critical: login failure for user 666666 from 78.180.150.148 via telnet Apr 24 12:05:23 system,error,critical: login failure for user administrator from 78.180.150.148 via telnet Apr 24 12:05:24 system,error,critical: login failure for user admin from 78.180.150.148 via telnet Apr 24 12:05:29 system,error,critical: login failure for user root from 78.180.150.148 via telnet	2020-04-25 00:02:46
209.97.133.196	attack	Apr 24 15:00:34 DAAP sshd[5434]: Invalid user virgin from 209.97.133.196 port 51888 Apr 24 15:00:34 DAAP sshd[5434]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.133.196 Apr 24 15:00:34 DAAP sshd[5434]: Invalid user virgin from 209.97.133.196 port 51888 Apr 24 15:00:36 DAAP sshd[5434]: Failed password for invalid user virgin from 209.97.133.196 port 51888 ssh2 Apr 24 15:06:36 DAAP sshd[5670]: Invalid user search from 209.97.133.196 port 43134 ...	2020-04-25 00:13:03
186.114.125.245	attackbots	TCP Port Scanning	2020-04-25 00:04:12
160.226.166.4	attack	Sniffing for wp-login	2020-04-25 00:35:09
221.141.110.215	attackbots	2020-04-24T12:51:09.035489abusebot-8.cloudsearch.cf sshd[29845]: Invalid user hei from 221.141.110.215 port 38294 2020-04-24T12:51:09.045311abusebot-8.cloudsearch.cf sshd[29845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.141.110.215 2020-04-24T12:51:09.035489abusebot-8.cloudsearch.cf sshd[29845]: Invalid user hei from 221.141.110.215 port 38294 2020-04-24T12:51:10.814589abusebot-8.cloudsearch.cf sshd[29845]: Failed password for invalid user hei from 221.141.110.215 port 38294 ssh2 2020-04-24T12:56:51.743516abusebot-8.cloudsearch.cf sshd[30369]: Invalid user cam from 221.141.110.215 port 60922 2020-04-24T12:56:51.752362abusebot-8.cloudsearch.cf sshd[30369]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.141.110.215 2020-04-24T12:56:51.743516abusebot-8.cloudsearch.cf sshd[30369]: Invalid user cam from 221.141.110.215 port 60922 2020-04-24T12:56:53.805363abusebot-8.cloudsearch.cf sshd[30369]: Fa ...	2020-04-25 00:35:24
125.99.46.50	attackspambots	Apr 24 14:29:55 OPSO sshd\[23569\]: Invalid user csm from 125.99.46.50 port 58292 Apr 24 14:29:55 OPSO sshd\[23569\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.99.46.50 Apr 24 14:29:57 OPSO sshd\[23569\]: Failed password for invalid user csm from 125.99.46.50 port 58292 ssh2 Apr 24 14:32:40 OPSO sshd\[24720\]: Invalid user kozai from 125.99.46.50 port 42658 Apr 24 14:32:40 OPSO sshd\[24720\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.99.46.50	2020-04-25 00:26:56
51.77.148.77	attack	Apr 24 17:57:15 vps647732 sshd[21939]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.148.77 Apr 24 17:57:17 vps647732 sshd[21939]: Failed password for invalid user th from 51.77.148.77 port 49876 ssh2 ...	2020-04-25 00:03:20
139.190.95.117	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-04-25 00:34:39
118.24.249.20	attackbotsspam	Apr 24 11:45:29 host sshd[16648]: Invalid user anna from 118.24.249.20 port 52660 Apr 24 11:45:29 host sshd[16648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.249.20 Apr 24 11:45:30 host sshd[16648]: Failed password for invalid user anna from 118.24.249.20 port 52660 ssh2 Apr 24 11:45:31 host sshd[16648]: Received disconnect from 118.24.249.20 port 52660:11: Bye Bye [preauth] Apr 24 11:45:31 host sshd[16648]: Disconnected from invalid user anna 118.24.249.20 port 52660 [preauth] Apr 24 11:49:47 host sshd[17813]: Invalid user margaret from 118.24.249.20 port 39694 Apr 24 11:49:47 host sshd[17813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.249.20 Apr 24 11:49:50 host sshd[17813]: Failed password for invalid user margaret from 118.24.249.20 port 39694 ssh2 Apr 24 11:49:50 host sshd[17813]: Received disconnect from 118.24.249.20 port 39694:11: Bye Bye [preauth] Apr 24 11........ -------------------------------	2020-04-25 00:01:46

Recently Reported IPs

49.85.52.56	49.85.50.183	78.46.90.170	49.85.51.242
49.85.49.175	49.85.51.60	49.85.49.231	49.85.49.124
49.85.53.122	49.85.75.16	49.85.53.126	60.167.23.154
60.167.82.207	60.167.102.191	60.167.102.221	60.167.103.204
60.167.112.39	22.31.35.216	20.101.243.141	60.167.112.173