49.85.50.154 - IPInfo

Basic Info

City: Jinan

Region: Jiangsu

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.85.50.154
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56584
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.85.50.154.			IN	A

;; AUTHORITY SECTION:
.			60	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022061401 1800 900 604800 86400

;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 15 09:05:29 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 154.50.85.49.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 154.50.85.49.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.137.233.133	attack	Port scan attempt detected by AWS-CCS, CTS, India	2019-07-10 00:30:29
95.44.60.193	attackbots	$f2bV_matches	2019-07-10 00:09:47
154.0.170.215	attack	firewall-block, port(s): 445/tcp	2019-07-10 00:42:47
134.175.27.130	attackspam	Jul 9 15:40:15 MK-Soft-Root2 sshd\[5270\]: Invalid user developer from 134.175.27.130 port 26767 Jul 9 15:40:15 MK-Soft-Root2 sshd\[5270\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.27.130 Jul 9 15:40:17 MK-Soft-Root2 sshd\[5270\]: Failed password for invalid user developer from 134.175.27.130 port 26767 ssh2 ...	2019-07-10 00:34:34
23.239.67.2	attack	TCP port 445 (SMB) attempt blocked by firewall. [2019-07-09 15:37:25]	2019-07-10 01:14:15
185.176.27.26	attackspam	Jul 9 02:04:51 box kernel: [745315.834105] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=185.176.27.26 DST=[munged] LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=58177 PROTO=TCP SPT=46046 DPT=18392 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 9 02:44:30 box kernel: [747694.229734] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=185.176.27.26 DST=[munged] LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=44143 PROTO=TCP SPT=46046 DPT=18394 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 9 03:18:09 box kernel: [749713.024971] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=185.176.27.26 DST=[munged] LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=59320 PROTO=TCP SPT=46046 DPT=18393 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 9 12:38:06 box kernel: [783310.154085] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=185.176.27.26 DST=[munged] LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=27945 PROTO=TCP SPT=43065 DPT=18495 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 9 15:39:44 box kernel: [794208.508194] [UFW BLOCK] IN=eth0 OUT= MAC=[munged] SRC=185.176.27.26 DST=[munged] LEN=40 TOS=0x00 PREC=0x00 TTL=248	2019-07-10 00:55:56
94.198.195.42	attackspambots	Unauthorized IMAP connection attempt	2019-07-10 01:11:00
2607:5300:60:172::1	attackspam	[munged]::443 2607:5300:60:172::1 - - [09/Jul/2019:15:38:30 +0200] "POST /[munged]: HTTP/1.1" 200 6315 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 2607:5300:60:172::1 - - [09/Jul/2019:15:38:31 +0200] "POST /[munged]: HTTP/1.1" 200 6287 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-07-10 01:18:47
218.155.162.71	attack	Jul 8 23:50:17 mailserver sshd[27375]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.155.162.71 user=man Jul 8 23:50:18 mailserver sshd[27375]: Failed password for man from 218.155.162.71 port 38034 ssh2 Jul 8 23:50:19 mailserver sshd[27375]: Received disconnect from 218.155.162.71 port 38034:11: Normal Shutdown, Thank you for playing [preauth] Jul 8 23:50:19 mailserver sshd[27375]: Disconnected from 218.155.162.71 port 38034 [preauth] Jul 9 02:55:38 mailserver sshd[4482]: Invalid user zewa from 218.155.162.71 Jul 9 02:55:38 mailserver sshd[4482]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.155.162.71 Jul 9 02:55:40 mailserver sshd[4482]: Failed password for invalid user zewa from 218.155.162.71 port 38646 ssh2 Jul 9 02:55:40 mailserver sshd[4482]: Received disconnect from 218.155.162.71 port 38646:11: Normal Shutdown, Thank you for playing [preauth] Jul 9 02:55:40 ma........ -------------------------------	2019-07-10 01:03:46
211.195.251.157	attack	Unauthorised access (Jul 9) SRC=211.195.251.157 LEN=40 TTL=50 ID=46134 TCP DPT=23 WINDOW=39132 SYN	2019-07-10 01:26:14
163.172.11.200	attackspambots	Unauthorized IMAP connection attempt	2019-07-10 01:24:08
187.189.72.243	attackbotsspam	Unauthorised access (Jul 9) SRC=187.189.72.243 LEN=52 TTL=117 ID=30412 DF TCP DPT=445 WINDOW=8192 SYN	2019-07-10 00:47:35
185.53.88.47	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-10 00:28:23
207.46.13.71	attackbots	Automatic report - Web App Attack	2019-07-10 00:16:05
88.99.63.123	attackspambots	More ports : 14924 15537 23401	2019-07-10 01:13:28

Recently Reported IPs

106.54.190.59	38.210.251.36	45.50.9.250	254.48.40.58
49.77.59.169	106.75.140.137	42.4.39.119	107.155.219.187
107.155.231.81	107.155.255.80	219.156.235.190	107.173.126.48
20.239.174.170	60.168.65.177	81.24.88.110	61.250.200.78
107.152.248.95	107.155.216.184	107.173.126.122	94.66.57.149