The host at this IP address is obviously operated by cybercriminals. It is running a malware botnet controller which is being used to control infected computers (bots) around the globe using a trojan horse.
Malware botnet controller located at 49.12.217.106 on port 47738 TCP:
$ telnet 49.12.217.106 47738
Trying 49.12.217.106…
Connected to 49.12.217.106.
Escape character is ‘^]’
$ nslookup 49.12.217.106
static.106.217.12.49.clients.your-server.de
Referencing malware samples (MD5 hash):
a96d3f557a6349100e9b84834012b384 — AV detection: 41 / 71 (57.75%)
c02fa31bed3a7a0e34cdb6336dc6e587 — AV detection: 29 / 65 (44.62%)
ca25cb4e376c0cfe457424504ca8ce59 — AV detection: 7 / 68 (10.29%)
cad46ac0d0eb1b9aafc2746b40adff15 — AV detection: 7 / 60 (11.67%)