Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Jiangsu Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
Type Details Datetime
attackspambots
Dec 29 07:15:35 dns-1 sshd[8816]: Did not receive identification string from 49.89.47.50 port 56916
Dec 29 07:16:48 dns-1 sshd[8859]: User r.r from 49.89.47.50 not allowed because not listed in AllowUsers
Dec 29 07:16:48 dns-1 sshd[8859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.89.47.50  user=r.r
Dec 29 07:16:50 dns-1 sshd[8859]: Failed password for invalid user r.r from 49.89.47.50 port 56947 ssh2
Dec 29 07:16:52 dns-1 sshd[8859]: Received disconnect from 49.89.47.50 port 56947:11: Normal Shutdown, Thank you for playing [preauth]
Dec 29 07:16:52 dns-1 sshd[8859]: Disconnected from invalid user r.r 49.89.47.50 port 56947 [preauth]
Dec 29 07:18:39 dns-1 sshd[8935]: User r.r from 49.89.47.50 not allowed because not listed in AllowUsers
Dec 29 07:18:39 dns-1 sshd[8935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.89.47.50  user=r.r
Dec 29 07:18:41 dns-1 sshd[8935]: Failed pass........
-------------------------------
2019-12-29 22:58:53
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.89.47.50
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52019
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.89.47.50.			IN	A

;; AUTHORITY SECTION:
.			359	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122900 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 29 22:58:49 CST 2019
;; MSG SIZE  rcvd: 115
Host info
50.47.89.49.in-addr.arpa domain name pointer 50.47.89.49.broad.sz.js.dynamic.163data.com.cn.
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
50.47.89.49.in-addr.arpa	name = 50.47.89.49.broad.sz.js.dynamic.163data.com.cn.

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
124.16.139.243 attackbots
Dec  9 01:32:25 linuxvps sshd\[2942\]: Invalid user home from 124.16.139.243
Dec  9 01:32:25 linuxvps sshd\[2942\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.16.139.243
Dec  9 01:32:28 linuxvps sshd\[2942\]: Failed password for invalid user home from 124.16.139.243 port 48282 ssh2
Dec  9 01:39:08 linuxvps sshd\[7427\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.16.139.243  user=root
Dec  9 01:39:10 linuxvps sshd\[7427\]: Failed password for root from 124.16.139.243 port 42286 ssh2
2019-12-09 14:47:01
51.83.46.16 attackspam
Dec  9 06:04:22 v22018086721571380 sshd[28219]: Failed password for invalid user stahlke from 51.83.46.16 port 36720 ssh2
Dec  9 07:05:34 v22018086721571380 sshd[477]: Failed password for invalid user cmakler from 51.83.46.16 port 54322 ssh2
2019-12-09 14:06:43
88.249.243.138 attackspambots
--- report ---
Dec  9 02:28:15 sshd: Connection from 88.249.243.138 port 45102
Dec  9 02:28:16 sshd: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.249.243.138  user=root
Dec  9 02:28:16 sshd: reverse mapping checking getaddrinfo for 88.249.243.138.static.ttnet.com.tr [88.249.243.138] failed - POSSIBLE BREAK-IN ATTEMPT!
Dec  9 02:28:19 sshd: Failed password for root from 88.249.243.138 port 45102 ssh2
Dec  9 02:28:19 sshd: Received disconnect from 88.249.243.138: 11: Bye Bye [preauth]
2019-12-09 14:12:48
61.227.125.6 attackspam
Unauthorised access (Dec  9) SRC=61.227.125.6 LEN=52 TTL=107 ID=14887 DF TCP DPT=445 WINDOW=8192 SYN
2019-12-09 14:43:50
159.89.201.59 attackspambots
Dec  9 06:57:51 vpn01 sshd[29133]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.201.59
Dec  9 06:57:53 vpn01 sshd[29133]: Failed password for invalid user prokein from 159.89.201.59 port 45184 ssh2
...
2019-12-09 14:14:56
210.92.105.120 attackspambots
Dec  6 23:05:37 mail sshd[1851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.92.105.120 
Dec  6 23:05:39 mail sshd[1851]: Failed password for invalid user edelstein from 210.92.105.120 port 35092 ssh2
Dec  6 23:12:49 mail sshd[3604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.92.105.120
2019-12-09 14:49:30
148.70.183.43 attackspambots
Dec  9 06:51:51 OPSO sshd\[3026\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.183.43  user=root
Dec  9 06:51:53 OPSO sshd\[3026\]: Failed password for root from 148.70.183.43 port 40050 ssh2
Dec  9 06:58:33 OPSO sshd\[5122\]: Invalid user appolonia from 148.70.183.43 port 43705
Dec  9 06:58:33 OPSO sshd\[5122\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.183.43
Dec  9 06:58:35 OPSO sshd\[5122\]: Failed password for invalid user appolonia from 148.70.183.43 port 43705 ssh2
2019-12-09 14:28:03
118.24.158.42 attackbots
Dec  8 20:08:55 kapalua sshd\[11750\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.158.42  user=root
Dec  8 20:08:57 kapalua sshd\[11750\]: Failed password for root from 118.24.158.42 port 36028 ssh2
Dec  8 20:15:10 kapalua sshd\[12489\]: Invalid user manit from 118.24.158.42
Dec  8 20:15:10 kapalua sshd\[12489\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.158.42
Dec  8 20:15:12 kapalua sshd\[12489\]: Failed password for invalid user manit from 118.24.158.42 port 35548 ssh2
2019-12-09 14:15:25
139.199.66.206 attack
Dec  6 23:03:59 mail sshd[1437]: Failed password for root from 139.199.66.206 port 52504 ssh2
Dec  6 23:10:11 mail sshd[3129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.66.206 
Dec  6 23:10:13 mail sshd[3129]: Failed password for invalid user aclocal from 139.199.66.206 port 43720 ssh2
2019-12-09 14:51:57
91.209.54.54 attackbotsspam
2019-12-09T06:38:30.562647abusebot-6.cloudsearch.cf sshd\[23742\]: Invalid user 111111 from 91.209.54.54 port 50844
2019-12-09 14:40:51
116.108.235.140 attackspambots
Automatic report - Port Scan Attack
2019-12-09 14:24:40
123.13.210.89 attackbots
Dec  9 07:39:00 dedicated sshd[15586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.13.210.89  user=root
Dec  9 07:39:02 dedicated sshd[15586]: Failed password for root from 123.13.210.89 port 51404 ssh2
2019-12-09 14:48:01
212.64.54.49 attack
Dec  9 09:23:43 server sshd\[6347\]: Invalid user test from 212.64.54.49
Dec  9 09:23:43 server sshd\[6347\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.54.49 
Dec  9 09:23:44 server sshd\[6347\]: Failed password for invalid user test from 212.64.54.49 port 38386 ssh2
Dec  9 09:32:50 server sshd\[9172\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.54.49  user=named
Dec  9 09:32:51 server sshd\[9172\]: Failed password for named from 212.64.54.49 port 49362 ssh2
...
2019-12-09 14:41:42
60.249.21.132 attack
Dec  9 13:02:15 webhost01 sshd[27975]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.249.21.132
Dec  9 13:02:17 webhost01 sshd[27975]: Failed password for invalid user shepherd from 60.249.21.132 port 59308 ssh2
...
2019-12-09 14:29:23
190.221.81.6 attackspam
2019-12-09T06:03:50.546890abusebot-7.cloudsearch.cf sshd\[23621\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.221.81.6  user=root
2019-12-09 14:28:38

Recently Reported IPs

46.182.218.164 113.172.52.214 46.161.60.105 193.203.10.19
185.250.44.176 23.253.85.153 139.180.222.49 95.66.191.126
176.123.10.11 183.124.245.238 72.109.177.32 139.198.11.138
62.122.203.19 49.51.198.91 117.33.216.207 110.37.226.66
125.160.212.60 177.74.226.173 3.89.139.236 2.86.213.78