50.38.49.49 - IPInfo

Basic Info

City: Portland

Region: Oregon

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: Frontier Communications of America, Inc.

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
50.38.49.14	attackbots	Probing for vulnerable services	2020-06-27 05:54:25

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 50.38.49.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45147
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;50.38.49.49.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061101 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jun 12 08:28:27 CST 2019
;; MSG SIZE  rcvd: 115

Host info

49.49.38.50.in-addr.arpa domain name pointer 50-38-49-49.csby.or.frontiernet.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
49.49.38.50.in-addr.arpa	name = 50-38-49-49.csby.or.frontiernet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
41.77.146.98	attackspambots	5x Failed Password	2020-01-26 14:47:25
222.186.15.10	attack	Jan 26 07:26:10 vmanager6029 sshd\[17981\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.10 user=root Jan 26 07:26:11 vmanager6029 sshd\[17981\]: Failed password for root from 222.186.15.10 port 30885 ssh2 Jan 26 07:26:14 vmanager6029 sshd\[17981\]: Failed password for root from 222.186.15.10 port 30885 ssh2	2020-01-26 14:28:54
138.0.7.121	attackbots	Brute forcing email accounts	2020-01-26 14:48:03
185.216.128.7	attackbotsspam	Brute forcing email accounts	2020-01-26 14:31:56
217.182.71.54	attackspambots	Invalid user eric from 217.182.71.54 port 58252	2020-01-26 14:35:38
123.231.122.104	attackspam	1580014345 - 01/26/2020 05:52:25 Host: 123.231.122.104/123.231.122.104 Port: 445 TCP Blocked	2020-01-26 14:46:36
82.117.190.170	attack	Unauthorized connection attempt detected from IP address 82.117.190.170 to port 2220 [J]	2020-01-26 14:30:15
106.12.166.105	attack	Unauthorized connection attempt detected from IP address 106.12.166.105 to port 2220 [J]	2020-01-26 15:01:05
222.186.180.6	attackspambots	Jan 25 20:27:10 auw2 sshd\[4424\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.6 user=root Jan 25 20:27:12 auw2 sshd\[4424\]: Failed password for root from 222.186.180.6 port 54574 ssh2 Jan 25 20:27:28 auw2 sshd\[4436\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.6 user=root Jan 25 20:27:30 auw2 sshd\[4436\]: Failed password for root from 222.186.180.6 port 40356 ssh2 Jan 25 20:27:49 auw2 sshd\[4459\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.6 user=root	2020-01-26 14:28:23
5.255.253.25	attackbotsspam	[Sun Jan 26 11:52:17.533135 2020] [:error] [pid 13807:tid 140175978686208] [client 5.255.253.25:62662] [client 5.255.253.25] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "Xi0bATF3Tw168mQK3YLF1QAAADg"] ...	2020-01-26 14:49:47
185.216.128.175	attackspambots	Brute forcing email accounts	2020-01-26 14:50:40
182.61.58.131	attack	Invalid user post from 182.61.58.131 port 39574	2020-01-26 14:57:46
142.93.211.52	attack	Jan 26 07:52:14 MK-Soft-Root2 sshd[30865]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.211.52 Jan 26 07:52:17 MK-Soft-Root2 sshd[30865]: Failed password for invalid user system from 142.93.211.52 port 52342 ssh2 ...	2020-01-26 14:59:46
187.109.165.141	attack	Brute forcing email accounts	2020-01-26 14:26:03
222.186.30.209	attack	Unauthorized connection attempt detected from IP address 222.186.30.209 to port 22 [T]	2020-01-26 15:02:51

Recently Reported IPs

202.66.180.102	76.166.215.183	117.190.148.62	116.237.199.96
143.92.23.5	175.79.113.86	107.221.252.159	41.39.101.191
149.36.55.131	117.10.39.26	47.60.85.229	78.179.99.178
47.34.62.160	24.50.55.31	150.11.218.16	47.210.171.240
92.147.3.242	78.164.86.162	118.83.219.113	94.183.179.33