49.85.75.82 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
49.85.75.105	spamattack	[2020/02/17 01:47:45] [49.85.75.105:2105-0] User leslie@luxnetcorp.com.tw AUTH fails. [2020/02/17 01:47:46] [49.85.75.105:2099-0] User leslie@luxnetcorp.com.tw AUTH fails. [2020/02/17 01:47:46] [49.85.75.105:2102-0] User leslie@luxnetcorp.com.tw AUTH fails. [2020/02/17 01:47:47] [49.85.75.105:2100-0] User leslie@luxnetcorp.com.tw AUTH fails. [2020/02/17 01:47:48] [49.85.75.105:2097-0] User leslie@luxnetcorp.com.tw AUTH fails. [2020/02/17 01:47:49] [49.85.75.105:2099-0] User leslie@luxnetcorp.com.tw AUTH fails. [2020/02/17 01:47:53] [49.85.75.105:2102-0] User leslie@luxnetcorp.com.tw AUTH fails. [2020/02/17 01:47:54] [49.85.75.105:2101-0] User leslie@luxnetcorp.com.tw AUTH fails. [2020/02/17 01:47:55] [49.85.75.105:2100-0] User leslie@luxnetcorp.com.tw AUTH fails. [2020/02/17 01:48:16] [49.85.75.105:2105-0] User leslie@luxnetcorp.com.tw AUTH fails. [2020/02/17 01:48:38] [49.85.75.105:2105-0] User leslie@luxnetcorp.com.tw AUTH fails.	2020-02-17 09:10:19

Type

Details

Datetime

49.85.75.105

spamattack

[2020/02/17 01:47:45] [49.85.75.105:2105-0] User leslie@luxnetcorp.com.tw AUTH fails.
[2020/02/17 01:47:46] [49.85.75.105:2099-0] User leslie@luxnetcorp.com.tw AUTH fails.
[2020/02/17 01:47:46] [49.85.75.105:2102-0] User leslie@luxnetcorp.com.tw AUTH fails.
[2020/02/17 01:47:47] [49.85.75.105:2100-0] User leslie@luxnetcorp.com.tw AUTH fails.
[2020/02/17 01:47:48] [49.85.75.105:2097-0] User leslie@luxnetcorp.com.tw AUTH fails.
[2020/02/17 01:47:49] [49.85.75.105:2099-0] User leslie@luxnetcorp.com.tw AUTH fails.
[2020/02/17 01:47:53] [49.85.75.105:2102-0] User leslie@luxnetcorp.com.tw AUTH fails.
[2020/02/17 01:47:54] [49.85.75.105:2101-0] User leslie@luxnetcorp.com.tw AUTH fails.
[2020/02/17 01:47:55] [49.85.75.105:2100-0] User leslie@luxnetcorp.com.tw AUTH fails.
[2020/02/17 01:48:16] [49.85.75.105:2105-0] User leslie@luxnetcorp.com.tw AUTH fails.
[2020/02/17 01:48:38] [49.85.75.105:2105-0] User leslie@luxnetcorp.com.tw AUTH fails.

2020-02-17 09:10:19

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.85.75.82
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52664
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.85.75.82.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025011101 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 12 09:32:34 CST 2025
;; MSG SIZE  rcvd: 104

Host info

Host 82.75.85.49.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 82.75.85.49.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
46.37.189.146	attackspam	Automatic report - XMLRPC Attack	2020-05-20 21:36:28
139.199.74.11	attack	May 19 10:15:33 our-server-hostname sshd[29912]: Invalid user tyf from 139.199.74.11 May 19 10:15:33 our-server-hostname sshd[29912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.74.11 May 19 10:15:35 our-server-hostname sshd[29912]: Failed password for invalid user tyf from 139.199.74.11 port 58740 ssh2 May 19 11:05:36 our-server-hostname sshd[8343]: Invalid user ofl from 139.199.74.11 May 19 11:05:36 our-server-hostname sshd[8343]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.74.11 May 19 11:05:38 our-server-hostname sshd[8343]: Failed password for invalid user ofl from 139.199.74.11 port 33438 ssh2 May 19 11:39:40 our-server-hostname sshd[14037]: Invalid user jmw from 139.199.74.11 May 19 11:39:40 our-server-hostname sshd[14037]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.74.11 May 19 11:39:42 our-server-hostnam........ -------------------------------	2020-05-20 21:52:17
223.197.30.225	attackspam	Unauthorized connection attempt from IP address 223.197.30.225 on Port 445(SMB)	2020-05-20 21:21:57
223.71.73.249	attackspambots	429. On May 17 2020 experienced a Brute Force SSH login attempt -> 1 unique times by 223.71.73.249.	2020-05-20 21:46:10
223.197.151.55	attackspambots	Invalid user ltp from 223.197.151.55 port 57910	2020-05-20 21:47:25
116.96.42.94	attackspam	Unauthorized connection attempt from IP address 116.96.42.94 on Port 445(SMB)	2020-05-20 21:11:06
59.89.31.160	attackspam	Lines containing failures of 59.89.31.160 May 20 15:23:31 g sshd[30259]: Did not receive identification string from 59.89.31.160 port 61256 May 20 15:23:33 g sshd[30260]: Invalid user Adminixxxr from 59.89.31.160 port 61443 May 20 15:23:34 g sshd[30260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.89.31.160 May 20 15:23:36 g sshd[30260]: Failed password for invalid user Adminixxxr from 59.89.31.160 port 61443 ssh2 May 20 15:23:36 g sshd[30260]: Connection closed by invalid user Adminixxxr 59.89.31.160 port 61443 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=59.89.31.160	2020-05-20 21:32:17
31.43.76.10	attack	439. On May 17 2020 experienced a Brute Force SSH login attempt -> 1 unique times by 31.43.76.10.	2020-05-20 21:36:51
218.78.46.81	attackspambots	May 20 11:52:51 jane sshd[25526]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.78.46.81 May 20 11:52:53 jane sshd[25526]: Failed password for invalid user rlt from 218.78.46.81 port 43644 ssh2 ...	2020-05-20 21:27:57
1.193.36.159	attack	Unauthorized connection attempt detected from IP address 1.193.36.159 to port 445 [T]	2020-05-20 21:15:11
36.133.61.171	attackbotsspam	May 19 02:11:00 garuda sshd[320746]: Invalid user evm from 36.133.61.171 May 19 02:11:00 garuda sshd[320746]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.133.61.171 May 19 02:11:02 garuda sshd[320746]: Failed password for invalid user evm from 36.133.61.171 port 37001 ssh2 May 19 02:11:03 garuda sshd[320746]: Received disconnect from 36.133.61.171: 11: Bye Bye [preauth] May 19 02:24:45 garuda sshd[324889]: Invalid user koike from 36.133.61.171 May 19 02:24:45 garuda sshd[324889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.133.61.171 May 19 02:24:47 garuda sshd[324889]: Failed password for invalid user koike from 36.133.61.171 port 40680 ssh2 May 19 02:24:47 garuda sshd[324889]: Received disconnect from 36.133.61.171: 11: Bye Bye [preauth] May 19 02:33:16 garuda sshd[327711]: Invalid user sik from 36.133.61.171 May 19 02:33:16 garuda sshd[327711]: pam_unix(sshd:auth): authent........ -------------------------------	2020-05-20 21:23:52
82.211.9.7	attackbots	Web Server Attack	2020-05-20 21:31:58
222.186.42.7	attackbotsspam	May 20 18:19:42 gw1 sshd[31081]: Failed password for root from 222.186.42.7 port 61879 ssh2 May 20 18:19:44 gw1 sshd[31081]: Failed password for root from 222.186.42.7 port 61879 ssh2 ...	2020-05-20 21:20:56
27.78.14.83	attackbotsspam	SSHD brute force attack detected by fail2ban	2020-05-20 21:39:46
182.253.245.20	attack	Web Server Attack	2020-05-20 21:51:58

Recently Reported IPs

14.153.205.168	57.95.79.12	4.170.229.159	13.49.145.151
4.162.101.234	165.31.99.199	127.174.45.169	253.236.140.28
96.56.223.98	81.88.88.30	30.83.94.232	91.212.233.238
136.126.196.34	166.55.46.212	111.202.167.9	167.12.38.4
119.63.188.75	164.47.5.157	109.42.50.1	16.247.64.184