49.85.55.34 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.85.55.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1810
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.85.55.34.			IN	A

;; AUTHORITY SECTION:
.			234	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022061501 1800 900 604800 86400

;; Query time: 119 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 16 02:03:44 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 34.55.85.49.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 34.55.85.49.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.98.26.179	attack	19/9/8@22:19:53: FAIL: Alarm-SSH address from=218.98.26.179 ...	2019-09-09 10:54:42
114.33.207.200	attackspambots	52869/tcp 23/tcp... [2019-07-23/09-08]4pkt,2pt.(tcp)	2019-09-09 10:57:59
37.187.100.54	attackspambots	Sep 9 03:13:33 game-panel sshd[5362]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.100.54 Sep 9 03:13:35 game-panel sshd[5362]: Failed password for invalid user 123456 from 37.187.100.54 port 39664 ssh2 Sep 9 03:20:20 game-panel sshd[5595]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.100.54	2019-09-09 11:20:42
177.8.254.73	attackbots	failed_logins	2019-09-09 11:09:46
37.59.147.186	attackbots	WordPress XMLRPC scan :: 37.59.147.186 0.152 BYPASS [09/Sep/2019:05:26:44 1000] [censored_1] "POST /xmlrpc.php HTTP/1.1" 200 413 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-09-09 11:04:19
188.93.234.85	attack	Sep 8 11:13:45 friendsofhawaii sshd\[16270\]: Invalid user admin from 188.93.234.85 Sep 8 11:13:45 friendsofhawaii sshd\[16270\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.93.234.85 Sep 8 11:13:47 friendsofhawaii sshd\[16270\]: Failed password for invalid user admin from 188.93.234.85 port 49798 ssh2 Sep 8 11:20:05 friendsofhawaii sshd\[16748\]: Invalid user sinusbot from 188.93.234.85 Sep 8 11:20:05 friendsofhawaii sshd\[16748\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.93.234.85	2019-09-09 11:01:38
141.98.80.80	attack	2019-09-09 13:26:00 fixed_plain authenticator failed for $\[141.98.80.80\]$ \[141.98.80.80\]: 535 Incorrect authentication data $set_id=chris@thepuddles.net.nz$ 2019-09-09 13:26:05 fixed_plain authenticator failed for $\[141.98.80.80\]$ \[141.98.80.80\]: 535 Incorrect authentication data $set_id=chris$ 2019-09-09 14:48:15 fixed_plain authenticator failed for $\[141.98.80.80\]$ \[141.98.80.80\]: 535 Incorrect authentication data $set_id=hobo@thepuddles.net.nz$ ...	2019-09-09 10:51:01
186.71.57.18	attack	Sep 8 17:13:44 aiointranet sshd\[31127\]: Invalid user ftpadmin from 186.71.57.18 Sep 8 17:13:44 aiointranet sshd\[31127\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.71.57.18 Sep 8 17:13:46 aiointranet sshd\[31127\]: Failed password for invalid user ftpadmin from 186.71.57.18 port 40216 ssh2 Sep 8 17:20:47 aiointranet sshd\[31754\]: Invalid user kerapetse from 186.71.57.18 Sep 8 17:20:47 aiointranet sshd\[31754\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.71.57.18	2019-09-09 11:25:20
207.38.86.247	attackspam	207.38.86.247 - - [09/Sep/2019:04:35:31 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 207.38.86.247 - - [09/Sep/2019:04:35:32 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 207.38.86.247 - - [09/Sep/2019:04:35:32 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 207.38.86.247 - - [09/Sep/2019:04:35:33 +0200] "POST /wp-login.php HTTP/1.1" 200 1489 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 207.38.86.247 - - [09/Sep/2019:04:35:33 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 207.38.86.247 - - [09/Sep/2019:04:35:34 +0200] "POST /wp-login.php HTTP/1.1" 200 1491 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-09-09 11:17:14
167.250.173.106	attackspambots	$f2bV_matches	2019-09-09 11:23:01
124.74.131.106	attack	[SunSep0821:25:58.1932582019][:error][pid26868:tid47825462339328][client124.74.131.106:55673][client124.74.131.106]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\\\\\\\\\(chr\?\\\\\\\\\(\?[0-9]{1\,3}\?\\\\\\\\$\\|\?=\?f$\?:open\\|write$\?\\\\\\\\$\\|\\\\\\\\b\(\?:passthru\\|serialize\\|php_uname\\|phpinfo\\|shell_exec\\|preg_\\\\\\\\w \\|mysql_query\\|exec\\|eval\\|base64_decode\\|decode_base64\\|rot13\\|base64_url_decode\\|gz\(\?:inflate\\|decode\\|uncompress$\\|strrev\\|zlib_\\\\\\\\w \)\\\\\\\\b\?$\?..."atARGS:admin.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"767"][id"340095"][rev"53"][msg"Atomicorp.comWAFRules:AttackBlocked-PHPfunctioninArgument-thismaybeanattack."][data"die\(@md5\,ARGS:admin"][severity"CRITICAL"][hostname"148.251.104.84"][uri"/App.php"][unique_id"XXVVxnXRRDaOkurNzma-DwAAAMU"][SunSep0821:26:29.9051722019][:error][pid26868:tid47825547187968][client124.74.131.106:63148][client124.74.131.106]ModSecurity:Accessdeniedwithcode403\(phase2$.Pa	2019-09-09 11:12:15
192.241.201.182	attackbots	Sep 8 11:58:20 php1 sshd\[22541\]: Invalid user admin from 192.241.201.182 Sep 8 11:58:20 php1 sshd\[22541\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.201.182 Sep 8 11:58:22 php1 sshd\[22541\]: Failed password for invalid user admin from 192.241.201.182 port 35962 ssh2 Sep 8 12:02:45 php1 sshd\[22960\]: Invalid user sameer from 192.241.201.182 Sep 8 12:02:45 php1 sshd\[22960\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.201.182	2019-09-09 11:23:56
200.23.228.201	attack	$f2bV_matches	2019-09-09 10:49:18
5.55.90.222	attack	[Sun Sep 08 16:27:19.065600 2019] [:error] [pid 229221] [client 5.55.90.222:46922] [client 5.55.90.222] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "91"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 18)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "127.0.0.1"] [uri "/cgi-bin/ViewLog.asp"] [unique_id "XXVWF8Oko6IxncScSWaZ@gAAAAY"] ...	2019-09-09 10:42:14
189.161.62.169	attack	port scan/probe/communication attempt	2019-09-09 10:55:13

Recently Reported IPs

130.91.153.161	38.145.222.115	49.85.72.209	49.85.75.122
49.85.75.205	23.250.2.237	78.46.199.217	49.85.84.187
78.46.181.154	78.46.201.102	23.250.2.251	78.47.20.197
78.47.119.70	49.85.97.109	49.85.97.128	49.85.97.152
49.85.97.214	49.85.97.240	49.85.98.93	49.85.98.138