49.85.97.114 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
49.85.97.4	attack	Unauthorized connection attempt detected from IP address 49.85.97.4 to port 6656 [T]	2020-01-30 17:09:22

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.85.97.114
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11805
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.85.97.114.			IN	A

;; AUTHORITY SECTION:
.			458	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022061501 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 16 02:44:26 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 114.97.85.49.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 114.97.85.49.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
31.184.215.237	attackspambots	10/13/2019-08:19:44.879972 31.184.215.237 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-10-13 20:35:35
51.254.205.6	attackbots	Oct 13 08:13:23 plusreed sshd[15155]: Invalid user starbound from 51.254.205.6 ...	2019-10-13 20:18:13
81.22.45.48	attackbotsspam	10/13/2019-07:56:34.138933 81.22.45.48 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-13 20:25:14
183.109.79.252	attackspam	Oct 13 12:54:41 microserver sshd[2246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.109.79.252 user=root Oct 13 12:54:43 microserver sshd[2246]: Failed password for root from 183.109.79.252 port 42290 ssh2 Oct 13 12:58:55 microserver sshd[2853]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.109.79.252 user=root Oct 13 12:58:57 microserver sshd[2853]: Failed password for root from 183.109.79.252 port 26279 ssh2 Oct 13 13:03:11 microserver sshd[3486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.109.79.252 user=root Oct 13 13:15:49 microserver sshd[5323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.109.79.252 user=root Oct 13 13:15:51 microserver sshd[5323]: Failed password for root from 183.109.79.252 port 18258 ssh2 Oct 13 13:20:06 microserver sshd[5710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=	2019-10-13 20:30:02
81.22.45.190	attackspam	2019-10-13T13:57:13.211526+02:00 lumpi kernel: [790245.651871] INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.190 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=38096 PROTO=TCP SPT=47027 DPT=9025 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-13 20:00:51
51.83.33.156	attackbots	Oct 13 14:08:42 meumeu sshd[10487]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.33.156 Oct 13 14:08:44 meumeu sshd[10487]: Failed password for invalid user P@$$W00RD@2017 from 51.83.33.156 port 56794 ssh2 Oct 13 14:12:57 meumeu sshd[11405]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.33.156 ...	2019-10-13 20:17:47
138.68.12.43	attack	Oct 13 06:13:42 ncomp sshd[26813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.12.43 user=root Oct 13 06:13:44 ncomp sshd[26813]: Failed password for root from 138.68.12.43 port 59262 ssh2 Oct 13 06:22:46 ncomp sshd[27009]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.12.43 user=root Oct 13 06:22:47 ncomp sshd[27009]: Failed password for root from 138.68.12.43 port 45212 ssh2	2019-10-13 19:51:02
157.55.39.236	attack	Automatic report - Banned IP Access	2019-10-13 19:56:09
62.234.190.206	attackbotsspam	$f2bV_matches	2019-10-13 19:51:17
79.143.186.36	attack	Oct 13 13:52:16 vps647732 sshd[23681]: Failed password for root from 79.143.186.36 port 52980 ssh2 ...	2019-10-13 20:12:22
46.38.144.32	attack	Oct 13 14:04:33 relay postfix/smtpd\[17097\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 14:05:14 relay postfix/smtpd\[5946\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 14:08:11 relay postfix/smtpd\[17702\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 14:08:51 relay postfix/smtpd\[18137\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 14:11:55 relay postfix/smtpd\[11007\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-10-13 20:15:00
51.75.248.251	attackbots	10/13/2019-08:00:58.017820 51.75.248.251 Protocol: 6 ET SCAN Potential SSH Scan	2019-10-13 20:01:17
180.148.214.181	attackspambots	Oct 12 22:43:11 mailman postfix/smtpd[29207]: NOQUEUE: reject: RCPT from unknown[180.148.214.181]: 554 5.7.1 Service unavailable; Client host [180.148.214.181] blocked using sbl-xbl.spamhaus.org; https://www.spamhaus.org/query/ip/180.148.214.181; from= to= proto=ESMTP helo=<[180.148.214.181]> Oct 12 22:43:24 mailman postfix/smtpd[29207]: NOQUEUE: reject: RCPT from unknown[180.148.214.181]: 554 5.7.1 Service unavailable; Client host [180.148.214.181] blocked using sbl-xbl.spamhaus.org; https://www.spamhaus.org/query/ip/180.148.214.181; from= to= proto=ESMTP helo=<[180.148.214.181]>	2019-10-13 19:54:33
79.133.56.144	attackbotsspam	2019-10-13T13:50:58.862525lon01.zurich-datacenter.net sshd\[11473\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.manuplayslp.de user=root 2019-10-13T13:51:01.166742lon01.zurich-datacenter.net sshd\[11473\]: Failed password for root from 79.133.56.144 port 55704 ssh2 2019-10-13T13:53:48.548434lon01.zurich-datacenter.net sshd\[11530\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.manuplayslp.de user=root 2019-10-13T13:53:50.520464lon01.zurich-datacenter.net sshd\[11530\]: Failed password for root from 79.133.56.144 port 33942 ssh2 2019-10-13T13:56:46.516656lon01.zurich-datacenter.net sshd\[11620\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.manuplayslp.de user=root ...	2019-10-13 20:18:28
185.178.220.126	attackspam	2019-10-13 H=$1st.net$ \[185.178.220.126\] F=\ rejected RCPT \: Mail not accepted. 185.178.220.126 is listed at a DNSBL. 2019-10-13 H=$1st.net$ \[185.178.220.126\] F=\ rejected RCPT \: Mail not accepted. 185.178.220.126 is listed at a DNSBL. 2019-10-13 H=$1st.net$ \[185.178.220.126\] F=\ rejected RCPT \<REMOVED@REMOVED.de\>: Mail not accepted. 185.178.220.126 is listed at a DNSBL.	2019-10-13 20:03:08

Recently Reported IPs

131.100.137.183	49.85.98.241	49.85.97.249	49.85.98.184
49.85.99.47	49.85.99.170	49.85.111.29	49.85.99.228
49.85.162.44	45.32.153.249	78.48.47.180	45.12.30.166
78.61.208.189	78.60.172.37	78.60.136.4	49.85.51.83
78.61.163.137	45.32.145.101	78.63.240.135	49.85.52.182