49.85.98.241 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
49.85.98.183	spamattack	[2020/02/17 00:38:20] [49.85.98.183:2105-0] User leslie@luxnetcorp.com.tw AUTH fails. [2020/02/17 00:38:21] [49.85.98.183:2098-0] User leslie@luxnetcorp.com.tw AUTH fails. [2020/02/17 00:39:10] [49.85.98.183:2105-0] User leslie@luxnetcorp.com.tw AUTH fails. [2020/02/17 00:39:11] [49.85.98.183:2097-0] User leslie@luxnetcorp.com.tw AUTH fails. [2020/02/17 00:39:15] [49.85.98.183:2102-0] User leslie@luxnetcorp.com.tw AUTH fails. [2020/02/17 00:39:17] [49.85.98.183:2097-0] User leslie@luxnetcorp.com.tw AUTH fails. [2020/02/17 00:39:20] [49.85.98.183:2095-0] User leslie@luxnetcorp.com.tw AUTH fails.	2020-02-17 09:12:29
49.85.98.250	attackbotsspam	Unauthorized connection attempt detected from IP address 49.85.98.250 to port 6656 [T]	2020-01-30 18:09:23
49.85.98.97	attackspam	Unauthorized connection attempt detected from IP address 49.85.98.97 to port 6656 [T]	2020-01-27 08:01:47

Type

Details

Datetime

49.85.98.183

spamattack

[2020/02/17 00:38:20] [49.85.98.183:2105-0] User leslie@luxnetcorp.com.tw AUTH fails.
[2020/02/17 00:38:21] [49.85.98.183:2098-0] User leslie@luxnetcorp.com.tw AUTH fails.
[2020/02/17 00:39:10] [49.85.98.183:2105-0] User leslie@luxnetcorp.com.tw AUTH fails.
[2020/02/17 00:39:11] [49.85.98.183:2097-0] User leslie@luxnetcorp.com.tw AUTH fails.
[2020/02/17 00:39:15] [49.85.98.183:2102-0] User leslie@luxnetcorp.com.tw AUTH fails.
[2020/02/17 00:39:17] [49.85.98.183:2097-0] User leslie@luxnetcorp.com.tw AUTH fails.
[2020/02/17 00:39:20] [49.85.98.183:2095-0] User leslie@luxnetcorp.com.tw AUTH fails.

2020-02-17 09:12:29

49.85.98.250

attackbotsspam

Unauthorized connection attempt detected from IP address 49.85.98.250 to port 6656 [T]

2020-01-30 18:09:23

49.85.98.97

attackspam

Unauthorized connection attempt detected from IP address 49.85.98.97 to port 6656 [T]

2020-01-27 08:01:47

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.85.98.241
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22212
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.85.98.241.			IN	A

;; AUTHORITY SECTION:
.			374	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022061501 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 16 02:44:30 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 241.98.85.49.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 241.98.85.49.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
137.26.29.118	attack	May 25 18:53:41 * sshd[32681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.26.29.118 May 25 18:53:43 * sshd[32681]: Failed password for invalid user aunon from 137.26.29.118 port 44706 ssh2	2020-05-26 00:59:36
189.126.60.195	attackbotsspam	Port probing on unauthorized port 23	2020-05-26 01:24:23
188.149.76.74	attack	Automatic report - Port Scan Attack	2020-05-26 01:30:27
175.142.65.15	attackspambots	175.142.65.15 - - [25/May/2020:14:00:02 +0200] "GET /wp-login.php HTTP/1.1" 302 576 ...	2020-05-26 01:34:39
91.126.98.41	attackbots	May 25 17:07:56 game-panel sshd[7274]: Failed password for root from 91.126.98.41 port 50326 ssh2 May 25 17:12:22 game-panel sshd[7580]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.126.98.41 May 25 17:12:23 game-panel sshd[7580]: Failed password for invalid user superman from 91.126.98.41 port 57086 ssh2	2020-05-26 01:18:33
167.71.78.146	attack	Fail2Ban Ban Triggered	2020-05-26 01:07:05
205.185.116.157	attackspam	TCP (SYN) 205.185.116.157:43363 -> port 22, len 44	2020-05-26 01:35:50
124.156.105.251	attack	Bruteforce detected by fail2ban	2020-05-26 01:17:44
222.122.202.149	attackspam	Invalid user db2inst2 from 222.122.202.149 port 61782	2020-05-26 01:23:33
162.243.144.161	attackspam	" "	2020-05-26 01:27:14
177.135.103.94	attack	(imapd) Failed IMAP login from 177.135.103.94 (BR/Brazil/177.135.103.94.dynamic.adsl.gvt.net.br): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: May 25 17:51:23 ir1 dovecot[2885757]: imap-login: Disconnected (auth failed, 1 attempts in 6 secs): user=, method=PLAIN, rip=177.135.103.94, lip=5.63.12.44, session=	2020-05-26 01:24:40
36.90.179.19	attack	firewall-block, port(s): 23/tcp	2020-05-26 01:38:57
194.126.40.118	attackbots	Unauthorized connection attempt from IP address 194.126.40.118 on Port 445(SMB)	2020-05-26 01:05:30
175.139.191.169	attackspam	May 25 09:20:12 server1 sshd\[32410\]: Failed password for invalid user jayashree from 175.139.191.169 port 34692 ssh2 May 25 09:24:38 server1 sshd\[1186\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.139.191.169 user=root May 25 09:24:40 server1 sshd\[1186\]: Failed password for root from 175.139.191.169 port 39980 ssh2 May 25 09:29:11 server1 sshd\[2427\]: Invalid user heinemann from 175.139.191.169 May 25 09:29:11 server1 sshd\[2427\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.139.191.169 ...	2020-05-26 01:16:51
185.232.65.105	attackbotsspam	Triggered by Fail2Ban at Ares web server	2020-05-26 01:34:12

Recently Reported IPs

49.85.97.114	49.85.97.249	49.85.98.184	49.85.99.47
49.85.99.170	49.85.111.29	49.85.99.228	49.85.162.44
45.32.153.249	78.48.47.180	45.12.30.166	78.61.208.189
78.60.172.37	78.60.136.4	49.85.51.83	78.61.163.137
45.32.145.101	78.63.240.135	49.85.52.182	49.85.53.240