49.85.97.48 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
49.85.97.4	attack	Unauthorized connection attempt detected from IP address 49.85.97.4 to port 6656 [T]	2020-01-30 17:09:22

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.85.97.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40534
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.85.97.48.			IN	A

;; AUTHORITY SECTION:
.			214	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022061501 1800 900 604800 86400

;; Query time: 45 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 16 01:48:28 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 48.97.85.49.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 48.97.85.49.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.99.98.91	attack	Dec 9 15:49:39 * sshd[16736]: Invalid user ubnt from 167.99.98.91 Dec 9 15:49:39 * sshd[16736]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.98.91 Dec 9 15:49:42 * sshd[16736]: Failed password for invalid user ubnt from 167.99.98.91 port 60674 ssh2 Dec 9 15:49:42 * sshd[16736]: Received disconnect from 167.99.98.91: 11: Bye Bye [preauth] Dec 9 15:49:43 * sshd[16738]: Invalid user admin from 167.99.98.91 Dec 9 15:49:43 * sshd[16738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.98.91 Dec 9 15:49:44 * sshd[16738]: Failed password for invalid user admin from 167.99.98.91 port 36576 ssh2 Dec 9 15:49:45 * sshd[16738]: Received disconnect from 167.99.98.91: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=167.99.98.91	2019-12-09 23:46:56
104.248.122.143	attackspam	Dec 9 05:32:30 auw2 sshd\[32463\]: Invalid user ahti from 104.248.122.143 Dec 9 05:32:30 auw2 sshd\[32463\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.122.143 Dec 9 05:32:31 auw2 sshd\[32463\]: Failed password for invalid user ahti from 104.248.122.143 port 33596 ssh2 Dec 9 05:38:01 auw2 sshd\[570\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.122.143 user=root Dec 9 05:38:04 auw2 sshd\[570\]: Failed password for root from 104.248.122.143 port 43086 ssh2	2019-12-09 23:49:31
198.211.114.102	attack	Dec 9 16:15:52 meumeu sshd[21115]: Failed password for root from 198.211.114.102 port 49906 ssh2 Dec 9 16:21:16 meumeu sshd[21846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.211.114.102 Dec 9 16:21:18 meumeu sshd[21846]: Failed password for invalid user gibbie from 198.211.114.102 port 58788 ssh2 ...	2019-12-09 23:24:47
31.163.7.226	attack	Dec 9 15:47:29 pl1server sshd[25232]: Invalid user admin from 31.163.7.226 Dec 9 15:47:29 pl1server sshd[25232]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.163.7.226 Dec 9 15:47:30 pl1server sshd[25232]: Failed password for invalid user admin from 31.163.7.226 port 49029 ssh2 Dec 9 15:47:31 pl1server sshd[25232]: Connection closed by 31.163.7.226 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=31.163.7.226	2019-12-09 23:33:33
173.45.164.2	attackbotsspam	Dec 9 16:15:41 cp sshd[22389]: Failed password for root from 173.45.164.2 port 39098 ssh2 Dec 9 16:15:41 cp sshd[22389]: Failed password for root from 173.45.164.2 port 39098 ssh2	2019-12-09 23:40:07
83.56.9.1	attackspambots	Dec 9 17:37:14 server sshd\[21483\]: Invalid user tester from 83.56.9.1 Dec 9 17:37:14 server sshd\[21483\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.red-83-56-9.staticip.rima-tde.net Dec 9 17:37:16 server sshd\[21483\]: Failed password for invalid user tester from 83.56.9.1 port 35520 ssh2 Dec 9 18:04:27 server sshd\[28809\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.red-83-56-9.staticip.rima-tde.net user=root Dec 9 18:04:29 server sshd\[28809\]: Failed password for root from 83.56.9.1 port 50512 ssh2 ...	2019-12-09 23:57:34
117.50.49.223	attackbotsspam	Dec 9 16:21:59 vps691689 sshd[24142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.49.223 Dec 9 16:22:00 vps691689 sshd[24142]: Failed password for invalid user chunkin from 117.50.49.223 port 53712 ssh2 ...	2019-12-09 23:35:30
13.251.203.150	attackbotsspam	3389BruteforceFW23	2019-12-09 23:38:09
124.235.206.130	attack	Dec 9 05:22:02 web1 sshd\[16607\]: Invalid user keyana from 124.235.206.130 Dec 9 05:22:02 web1 sshd\[16607\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.235.206.130 Dec 9 05:22:04 web1 sshd\[16607\]: Failed password for invalid user keyana from 124.235.206.130 port 24130 ssh2 Dec 9 05:30:36 web1 sshd\[17664\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.235.206.130 user=root Dec 9 05:30:38 web1 sshd\[17664\]: Failed password for root from 124.235.206.130 port 1069 ssh2	2019-12-09 23:36:19
51.68.64.220	attackspam	Dec 9 10:04:17 TORMINT sshd\[4782\]: Invalid user daharah from 51.68.64.220 Dec 9 10:04:17 TORMINT sshd\[4782\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.64.220 Dec 9 10:04:18 TORMINT sshd\[4782\]: Failed password for invalid user daharah from 51.68.64.220 port 41844 ssh2 ...	2019-12-10 00:04:20
123.206.17.68	attackspam	2019-12-09T15:04:46.909671abusebot-2.cloudsearch.cf sshd\[16529\]: Invalid user changyoung from 123.206.17.68 port 36396	2019-12-09 23:30:22
118.81.62.100	attackbotsspam	Automatic report - Port Scan Attack	2019-12-09 23:52:25
192.64.86.92	attack	Port scan: Attack repeated for 24 hours	2019-12-09 23:56:33
54.37.21.211	attack	Automatic report - XMLRPC Attack	2019-12-09 23:53:39
49.88.112.64	attackspam	Dec 9 17:29:29 sauna sshd[80397]: Failed password for root from 49.88.112.64 port 1175 ssh2 Dec 9 17:29:33 sauna sshd[80397]: Failed password for root from 49.88.112.64 port 1175 ssh2 ...	2019-12-09 23:32:18

Recently Reported IPs

49.85.84.215	49.85.163.247	49.85.189.212	49.85.189.136
49.85.197.168	49.85.197.29	49.85.229.135	49.85.85.47
49.85.96.12	49.85.96.246	49.85.96.208	49.85.188.254
49.85.189.162	49.85.189.20	49.85.189.236	45.57.204.16
37.201.214.205	46.18.210.216	46.19.98.42	46.19.137.16