49.81.95.52 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Jiangsu Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
49.81.95.239	attackspambots	Dec 16 07:29:54 grey postfix/smtpd\[10632\]: NOQUEUE: reject: RCPT from unknown\[49.81.95.239\]: 554 5.7.1 Service unavailable\; Client host \[49.81.95.239\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[49.81.95.239\]\; from=\ to=\ proto=ESMTP helo=\ ...	2019-12-16 15:02:25
49.81.95.190	attackspam	$f2bV_matches	2019-12-01 00:41:17
49.81.95.184	attack	[Aegis] @ 2019-11-27 06:23:34 0000 -> Sendmail rejected message.	2019-11-27 19:46:04
49.81.95.53	attack	SpamReport	2019-11-08 15:32:59
49.81.95.3	attackbotsspam	$f2bV_matches	2019-10-22 03:04:09
49.81.95.115	attack	Email spam message	2019-10-20 17:37:47
49.81.95.211	attackbots	Brute force attempt	2019-10-01 09:03:17
49.81.95.225	attack	SMTP/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2019-09-14 03:04:53
49.81.95.207	attackspambots	IP: 49.81.95.207 ASN: AS4134 No.31 Jin-rong Street Port: Simple Mail Transfer 25 Found in one or more Blacklists Date: 3/09/2019 8:07:41 AM UTC	2019-09-03 19:46:28
49.81.95.160	attack	Brute force SMTP login attempts.	2019-08-28 09:39:19
49.81.95.103	attackbotsspam	MagicSpam Rule: check_ip_reverse_dns; Spammer IP: 49.81.95.103	2019-07-20 16:45:33
49.81.95.164	attackbotsspam	TCP Port: 25 _ invalid blocked abuseat-org barracudacentral _ _ _ _ (457)	2019-07-11 23:29:57

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.81.95.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65415
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.81.95.52.			IN	A

;; AUTHORITY SECTION:
.			1781	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081300 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Aug 13 19:05:35 CST 2019
;; MSG SIZE  rcvd: 115

Host info

Host 52.95.81.49.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 52.95.81.49.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
216.218.206.119	attack	445/tcp 23/tcp 11211/tcp... [2020-07-01/08-29]37pkt,14pt.(tcp),2pt.(udp)	2020-08-29 15:05:21
77.55.208.178	attackbots	Aug 29 06:22:50 eventyay sshd[29616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.55.208.178 Aug 29 06:22:52 eventyay sshd[29616]: Failed password for invalid user build from 77.55.208.178 port 39438 ssh2 Aug 29 06:26:43 eventyay sshd[29829]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.55.208.178 ...	2020-08-29 14:58:19
191.8.189.214	attackbots	SMB Server BruteForce Attack	2020-08-29 14:48:39
144.217.42.212	attack	Aug 29 08:00:23 santamaria sshd\[30733\]: Invalid user chencheng from 144.217.42.212 Aug 29 08:00:23 santamaria sshd\[30733\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.42.212 Aug 29 08:00:25 santamaria sshd\[30733\]: Failed password for invalid user chencheng from 144.217.42.212 port 48871 ssh2 ...	2020-08-29 14:42:21
120.77.145.154	attackbotsspam	(sshd) Failed SSH login from 120.77.145.154 (CN/China/-): 5 in the last 3600 secs	2020-08-29 14:44:38
171.255.72.109	attackbotsspam	SMB Server BruteForce Attack	2020-08-29 14:43:39
23.129.64.197	attackspam	Bruteforce detected by fail2ban	2020-08-29 14:35:52
192.241.228.101	attackspambots	TCP (SYN) 192.241.228.101:38604 -> port 8087, len 44	2020-08-29 14:36:29
118.24.104.55	attack	Aug 29 05:54:01 minden010 sshd[23510]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.104.55 Aug 29 05:54:03 minden010 sshd[23510]: Failed password for invalid user git from 118.24.104.55 port 32858 ssh2 Aug 29 05:56:32 minden010 sshd[23879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.104.55 ...	2020-08-29 15:07:14
107.6.171.132	attackbots	Unwanted checking 80 or 443 port ...	2020-08-29 14:32:09
139.59.76.217	attackbotsspam	139.59.76.217 - - [29/Aug/2020:07:32:08 +0100] "POST /wp-login.php HTTP/1.1" 200 2046 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.76.217 - - [29/Aug/2020:07:32:11 +0100] "POST /wp-login.php HTTP/1.1" 200 2040 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.76.217 - - [29/Aug/2020:07:32:13 +0100] "POST /wp-login.php HTTP/1.1" 200 2037 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-29 14:39:26
179.217.63.192	attack	Invalid user shiva from 179.217.63.192 port 60486	2020-08-29 14:45:49
122.51.245.240	attack	$f2bV_matches	2020-08-29 14:46:11
176.31.207.10	attackspam	Port Scan ...	2020-08-29 14:33:25
118.70.182.144	attack	20/8/28@23:56:31: FAIL: Alarm-Network address from=118.70.182.144 ...	2020-08-29 15:08:50

Recently Reported IPs

180.126.15.62	87.248.174.71	103.91.85.78	42.114.140.172
222.208.204.104	197.49.114.164	144.76.222.78	87.122.182.126
45.120.126.75	163.172.213.243	36.112.64.50	59.141.158.95
74.225.216.187	14.240.229.105	147.135.249.253	42.112.239.219
175.20.126.74	118.68.141.69	103.39.210.98	113.189.102.197