49.81.44.54 - IPInfo

Basic Info

City: Danyang

Region: Jiangsu

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
49.81.44.125	attack	Email rejected due to spam filtering	2020-05-06 17:09:08

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.81.44.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6511
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.81.44.54.			IN	A

;; AUTHORITY SECTION:
.			296	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022061901 1800 900 604800 86400

;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 20 11:45:04 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 54.44.81.49.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 54.44.81.49.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
77.243.218.63	attackspam	SSH login attempts brute force.	2020-09-25 11:27:41
154.127.41.131	attack	Sep 24 14:49:57 mailman postfix/smtpd[7199]: warning: unknown[154.127.41.131]: SASL PLAIN authentication failed: authentication failure	2020-09-25 11:44:58
49.234.224.88	attackbotsspam	Sep 25 00:12:54 firewall sshd[24062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.224.88 user=root Sep 25 00:12:55 firewall sshd[24062]: Failed password for root from 49.234.224.88 port 48298 ssh2 Sep 25 00:16:30 firewall sshd[24206]: Invalid user jan from 49.234.224.88 ...	2020-09-25 11:42:43
66.117.12.196	attack	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-25 11:34:32
114.32.196.71	attack	firewall-block, port(s): 23/tcp	2020-09-25 11:28:51
194.26.25.108	attack	ET DROP Dshield Block Listed Source group 1 - port: 3389 proto: tcp cat: Misc Attackbytes: 60	2020-09-25 11:18:46
152.136.196.155	attackbotsspam	$f2bV_matches	2020-09-25 11:50:08
139.199.104.65	attackbotsspam	firewall-block, port(s): 28010/tcp	2020-09-25 11:22:59
202.154.180.51	attackspam	Sep 25 12:00:50 web1 sshd[24258]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.154.180.51 user=root Sep 25 12:00:53 web1 sshd[24258]: Failed password for root from 202.154.180.51 port 57701 ssh2 Sep 25 12:14:29 web1 sshd[29040]: Invalid user elasticsearch from 202.154.180.51 port 51947 Sep 25 12:14:29 web1 sshd[29040]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.154.180.51 Sep 25 12:14:29 web1 sshd[29040]: Invalid user elasticsearch from 202.154.180.51 port 51947 Sep 25 12:14:31 web1 sshd[29040]: Failed password for invalid user elasticsearch from 202.154.180.51 port 51947 ssh2 Sep 25 12:18:37 web1 sshd[30396]: Invalid user magento from 202.154.180.51 port 55967 Sep 25 12:18:37 web1 sshd[30396]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.154.180.51 Sep 25 12:18:37 web1 sshd[30396]: Invalid user magento from 202.154.180.51 port 55967 Sep 25 12: ...	2020-09-25 11:51:26
206.189.171.239	attackspam	[f2b] sshd bruteforce, retries: 1	2020-09-25 11:33:23
190.186.42.130	attack	Sep 25 04:11:35 vm2 sshd[9166]: Failed password for root from 190.186.42.130 port 54635 ssh2 Sep 25 04:13:44 vm2 sshd[9184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.186.42.130 ...	2020-09-25 11:41:05
114.67.225.91	attack	Sep 24 23:08:08 pkdns2 sshd\[46006\]: Invalid user shadow from 114.67.225.91Sep 24 23:08:10 pkdns2 sshd\[46006\]: Failed password for invalid user shadow from 114.67.225.91 port 58904 ssh2Sep 24 23:11:53 pkdns2 sshd\[46191\]: Invalid user musicbot from 114.67.225.91Sep 24 23:11:55 pkdns2 sshd\[46191\]: Failed password for invalid user musicbot from 114.67.225.91 port 53514 ssh2Sep 24 23:15:31 pkdns2 sshd\[46358\]: Invalid user lucia from 114.67.225.91Sep 24 23:15:33 pkdns2 sshd\[46358\]: Failed password for invalid user lucia from 114.67.225.91 port 48116 ssh2 ...	2020-09-25 11:51:58
52.146.42.83	attackspambots	Lines containing failures of 52.146.42.83 Sep 23 14:28:34 shared12 sshd[6158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.146.42.83 user=r.r Sep 23 14:28:35 shared12 sshd[6165]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.146.42.83 user=r.r Sep 23 14:28:36 shared12 sshd[6165]: Failed password for r.r from 52.146.42.83 port 27257 ssh2 Sep 23 14:28:36 shared12 sshd[6165]: Received disconnect from 52.146.42.83 port 27257:11: Client disconnecting normally [preauth] Sep 23 14:28:36 shared12 sshd[6165]: Disconnected from authenticating user r.r 52.146.42.83 port 27257 [preauth] Sep 23 14:28:37 shared12 sshd[6158]: Failed password for r.r from 52.146.42.83 port 27168 ssh2 Sep 23 14:28:37 shared12 sshd[6158]: Received disconnect from 52.146.42.83 port 27168:11: Client disconnecting normally [preauth] Sep 23 14:28:37 shared12 sshd[6158]: Disconnected from authenticating user r.r 52.14........ ------------------------------	2020-09-25 11:41:33
218.164.227.86	attack	Port Scan detected! ...	2020-09-25 11:24:08
45.79.120.227	attackspam	Blocked by Sophos UTM Network Protection . / / proto=6 . srcport=80 . dstport=42937 . (3298)	2020-09-25 11:38:52

Recently Reported IPs

233.155.81.71	226.131.100.229	166.114.103.91	184.146.138.183
49.248.57.146	106.202.200.161	37.252.93.150	30.20.101.85
61.244.98.208	240.192.136.230	80.225.19.151	58.102.102.216
93.107.73.108	97.200.107.241	103.18.68.196	116.201.68.241
99.120.180.63	235.146.247.59	195.243.10.65	117.184.79.238