49.81.93.107 - IPInfo

Basic Info

City: Xuzhou

Region: Jiangsu

Country: China

Internet Service Provider: ChinaNet Jiangsu Province Network

Hostname: unknown

Organization: No.31,Jin-rong Street

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	[Aegis] @ 2019-08-10 03:35:32 0100 -> Sendmail rejected message.	2019-08-10 15:31:28

Comments on same subnet:

IP	Type	Details	Datetime
49.81.93.1	attack	unauthorized connection attempt	2020-02-26 15:30:25
49.81.93.89	attackspambots	Dec 31 15:48:11 grey postfix/smtpd\[29490\]: NOQUEUE: reject: RCPT from unknown\[49.81.93.89\]: 554 5.7.1 Service unavailable\; Client host \[49.81.93.89\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=49.81.93.89\; from=\ to=\ proto=ESMTP helo=\ ...	2020-01-01 05:48:10
49.81.93.51	attack	" "	2019-12-27 01:15:57
49.81.93.177	attackbots	Dec 15 06:53:46 elektron postfix/smtpd\[21048\]: NOQUEUE: reject: RCPT from unknown\[49.81.93.177\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[49.81.93.177\]\; from=\ to=\ proto=ESMTP helo=\ Dec 15 06:54:20 elektron postfix/smtpd\[21048\]: NOQUEUE: reject: RCPT from unknown\[49.81.93.177\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[49.81.93.177\]\; from=\ to=\ proto=ESMTP helo=\ Dec 15 06:56:30 elektron postfix/smtpd\[21048\]: NOQUEUE: reject: RCPT from unknown\[49.81.93.177\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[49.81.93.177\]\; from=\ to=\ proto=ESMTP helo=\ Dec 15 06:57:27 elektron postfix/smtpd\[24171\]: NOQUEUE: reject: RCPT from unknown\[49.81.93.177\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[49.81.93.177\]\; from=\ to=\ proto=ESMTP helo=\ Dec 15 0	2019-12-15 13:40:23
49.81.93.227	attackspambots	Brute force SMTP login attempts.	2019-12-02 05:33:15
49.81.93.84	attack	SpamReport	2019-11-21 15:05:35
49.81.93.242	attackbots	SpamReport	2019-11-15 15:24:53
49.81.93.137	attackbotsspam	NOQUEUE: reject: RCPT from unknown\[49.81.93.137\]: 554 5.7.1 Service unavailable\; host \[49.81.93.137\] blocked using sbl-xbl.spamhaus.org\; https://www.spamhaus.org/sbl/query/SBLCSS	2019-09-24 19:57:13
49.81.93.74	attackspam	Brute force SMTP login attempts.	2019-08-29 13:40:02
49.81.93.142	attackbotsspam	[Aegis] @ 2019-08-02 09:51:24 0100 -> Sendmail rejected message.	2019-08-02 17:50:51
49.81.93.12	spambotsattack	Bloquei imediatamente de seus servidores. Range : 49.64.0.0/16 - China Domínio : qq.com Adicionais : (mxbiz2.qq.com)[49.81.93.12] mgkzbine@morna.sk Outros : 113.121.0.0/16 114.104.239.0/24 117.84.0.0/16 113.121.0.0/16 114.229.21.0/24 117.84.0.0/16 115.217.0.0/16 122.244.0.0/16 106.56.0.0/16 Spam, Brute-force e outros attackes.	2019-07-31 04:16:19

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.81.93.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21331
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.81.93.107.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019042000 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat Apr 20 14:39:52 +08 2019
;; MSG SIZE  rcvd: 116

Host info

Host 107.93.81.49.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 107.93.81.49.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
46.38.144.179	attack	Jan 13 16:39:11 relay postfix/smtpd\[20979\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 13 16:39:26 relay postfix/smtpd\[20401\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 13 16:39:57 relay postfix/smtpd\[10864\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 13 16:40:13 relay postfix/smtpd\[18055\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 13 16:40:45 relay postfix/smtpd\[27337\]: warning: unknown\[46.38.144.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-01-13 23:47:46
222.186.15.18	attack	Jan 13 16:30:50 OPSO sshd\[7442\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.18 user=root Jan 13 16:30:53 OPSO sshd\[7442\]: Failed password for root from 222.186.15.18 port 31212 ssh2 Jan 13 16:30:55 OPSO sshd\[7442\]: Failed password for root from 222.186.15.18 port 31212 ssh2 Jan 13 16:30:57 OPSO sshd\[7442\]: Failed password for root from 222.186.15.18 port 31212 ssh2 Jan 13 16:37:24 OPSO sshd\[7936\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.18 user=root	2020-01-13 23:58:05
182.74.121.116	attack	20/1/13@08:07:42: FAIL: Alarm-Network address from=182.74.121.116 ...	2020-01-13 23:39:14
188.254.0.160	attackbotsspam	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.160 user=root Failed password for root from 188.254.0.160 port 53730 ssh2 Invalid user administrator from 188.254.0.160 port 56564 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.160 Failed password for invalid user administrator from 188.254.0.160 port 56564 ssh2	2020-01-13 23:58:42
61.216.101.61	attackspam	Honeypot attack, port: 445, PTR: 61-216-101-61.HINET-IP.hinet.net.	2020-01-13 23:59:33
194.154.147.101	attackbotsspam	Unauthorized connection attempt detected from IP address 194.154.147.101 to port 5555 [J]	2020-01-13 23:45:16
222.186.180.41	attack	Jan 13 05:40:45 php1 sshd\[22197\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.41 user=root Jan 13 05:40:46 php1 sshd\[22197\]: Failed password for root from 222.186.180.41 port 52518 ssh2 Jan 13 05:41:03 php1 sshd\[22231\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.41 user=root Jan 13 05:41:05 php1 sshd\[22231\]: Failed password for root from 222.186.180.41 port 60850 ssh2 Jan 13 05:41:14 php1 sshd\[22231\]: Failed password for root from 222.186.180.41 port 60850 ssh2	2020-01-13 23:52:23
87.255.217.154	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-14 00:06:29
118.27.9.229	attackbots	Jan 13 16:10:01 vpn01 sshd[25463]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.27.9.229 Jan 13 16:10:03 vpn01 sshd[25463]: Failed password for invalid user tong from 118.27.9.229 port 38100 ssh2 ...	2020-01-13 23:47:11
90.115.178.146	attack	Unauthorized connection attempt detected from IP address 90.115.178.146 to port 2220 [J]	2020-01-13 23:45:44
51.38.80.173	attack	Jan 13 14:18:08 pi sshd[11215]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.80.173 Jan 13 14:18:10 pi sshd[11215]: Failed password for invalid user so from 51.38.80.173 port 48302 ssh2	2020-01-13 23:50:15
223.16.210.238	attackbotsspam	Honeypot attack, port: 5555, PTR: 238-210-16-223-on-nets.com.	2020-01-13 23:54:59
113.255.36.92	attackbots	Honeypot attack, port: 5555, PTR: 92-36-255-113-on-nets.com.	2020-01-13 23:28:59
185.210.86.79	attack	Honeypot attack, port: 81, PTR: 185-31-84-79.uatel.eu.	2020-01-13 23:38:31
5.125.212.38	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-13 23:46:11

Recently Reported IPs

51.79.130.148	223.131.192.219	212.86.115.124	181.48.116.50
171.240.24.73	51.79.130.149	185.65.203.194	51.79.130.190
95.216.140.176	125.143.82.91	51.79.130.130	138.219.50.13
81.1.235.234	51.79.130.182	123.8.234.201	202.22.142.111
51.79.130.221	192.167.9.40	115.186.4.185	38.109.112.22