49.87.44.44 - IPInfo

Basic Info

City: Hefei

Region: Anhui

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
49.87.44.102	attack	Jul 16 06:43:37 eola postfix/smtpd[31992]: connect from unknown[49.87.44.102] Jul 16 06:43:48 eola postfix/smtpd[31992]: NOQUEUE: reject: RCPT from unknown[49.87.44.102]: 504 5.5.2 : Helo command rejected: need fully-qualified hostname; from=x@x helo= Jul 16 06:43:48 eola postfix/smtpd[31992]: disconnect from unknown[49.87.44.102] ehlo=1 mail=1 rcpt=0/1 quhostname=1 commands=3/4 Jul 16 06:43:49 eola postfix/smtpd[31992]: connect from unknown[49.87.44.102] Jul 16 06:43:50 eola postfix/smtpd[31992]: lost connection after AUTH from unknown[49.87.44.102] Jul 16 06:43:50 eola postfix/smtpd[31992]: disconnect from unknown[49.87.44.102] ehlo=1 auth=0/1 commands=1/2 Jul 16 06:43:51 eola postfix/smtpd[32086]: connect from unknown[49.87.44.102] Jul 16 06:43:52 eola postfix/smtpd[32086]: lost connection after AUTH from unknown[49.87.44.102] Jul 16 06:43:52 eola postfix/smtpd[32086]: disconnect from unknown[49.87.44.102] ehlo=1 auth=0/1 commands=1/2 Jul 16 06:43:52 eola ........ -------------------------------	2019-07-16 23:44:51

Type

Details

Datetime

49.87.44.102

attack

Jul 16 06:43:37 eola postfix/smtpd[31992]: connect from unknown[49.87.44.102]
Jul 16 06:43:48 eola postfix/smtpd[31992]: NOQUEUE: reject: RCPT from unknown[49.87.44.102]: 504 5.5.2 : Helo command rejected: need fully-qualified hostname; from=x@x helo=
Jul 16 06:43:48 eola postfix/smtpd[31992]: disconnect from unknown[49.87.44.102] ehlo=1 mail=1 rcpt=0/1 quhostname=1 commands=3/4
Jul 16 06:43:49 eola postfix/smtpd[31992]: connect from unknown[49.87.44.102]
Jul 16 06:43:50 eola postfix/smtpd[31992]: lost connection after AUTH from unknown[49.87.44.102]
Jul 16 06:43:50 eola postfix/smtpd[31992]: disconnect from unknown[49.87.44.102] ehlo=1 auth=0/1 commands=1/2
Jul 16 06:43:51 eola postfix/smtpd[32086]: connect from unknown[49.87.44.102]
Jul 16 06:43:52 eola postfix/smtpd[32086]: lost connection after AUTH from unknown[49.87.44.102]
Jul 16 06:43:52 eola postfix/smtpd[32086]: disconnect from unknown[49.87.44.102] ehlo=1 auth=0/1 commands=1/2
Jul 16 06:43:52 eola ........
-------------------------------

2019-07-16 23:44:51

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.87.44.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15441
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.87.44.44.			IN	A

;; AUTHORITY SECTION:
.			110	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022061401 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 15 08:12:50 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 44.44.87.49.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 44.44.87.49.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
58.57.181.174	attack	Unauthorized connection attempt from IP address 58.57.181.174 on Port 445(SMB)	2020-06-06 23:17:17
14.241.242.2	attackspambots	Unauthorized connection attempt from IP address 14.241.242.2 on Port 445(SMB)	2020-06-06 23:13:51
41.32.63.19	attackspam	Unauthorized connection attempt from IP address 41.32.63.19 on Port 445(SMB)	2020-06-06 22:50:14
203.176.75.1	attackspambots	Jun 6 14:23:54 DAAP sshd[16362]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.176.75.1 user=root Jun 6 14:23:56 DAAP sshd[16362]: Failed password for root from 203.176.75.1 port 53622 ssh2 Jun 6 14:28:04 DAAP sshd[16422]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.176.75.1 user=root Jun 6 14:28:06 DAAP sshd[16422]: Failed password for root from 203.176.75.1 port 37092 ssh2 Jun 6 14:32:09 DAAP sshd[16502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.176.75.1 user=root Jun 6 14:32:11 DAAP sshd[16502]: Failed password for root from 203.176.75.1 port 48792 ssh2 ...	2020-06-06 22:57:52
178.68.34.97	attackspambots	Unauthorized connection attempt from IP address 178.68.34.97 on Port 445(SMB)	2020-06-06 22:50:52
201.179.219.105	attack	Jun 6 11:41:48 marvibiene sshd[5950]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.179.219.105 user=root Jun 6 11:41:50 marvibiene sshd[5950]: Failed password for root from 201.179.219.105 port 39320 ssh2 Jun 6 12:31:53 marvibiene sshd[6624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.179.219.105 user=root Jun 6 12:31:55 marvibiene sshd[6624]: Failed password for root from 201.179.219.105 port 49081 ssh2 ...	2020-06-06 23:13:33
91.222.236.198	attackspam	Bad bot/spoofed identity	2020-06-06 22:37:17
211.147.216.19	attackspambots	Jun 6 16:11:10 mout sshd[20414]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.147.216.19 user=root Jun 6 16:11:12 mout sshd[20414]: Failed password for root from 211.147.216.19 port 37014 ssh2	2020-06-06 22:37:52
41.32.113.42	attack	Port probing on unauthorized port 445	2020-06-06 22:46:11
106.223.55.91	attack	Unauthorized connection attempt from IP address 106.223.55.91 on Port 445(SMB)	2020-06-06 23:12:26
177.53.13.120	attackspam	Unauthorized connection attempt from IP address 177.53.13.120 on Port 445(SMB)	2020-06-06 22:51:18
209.141.41.4	attack	2020-06-06T15:48:51.134644vps773228.ovh.net sshd[31807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.141.41.4 2020-06-06T15:48:51.118347vps773228.ovh.net sshd[31807]: Invalid user ubnt from 209.141.41.4 port 42798 2020-06-06T15:48:53.764809vps773228.ovh.net sshd[31807]: Failed password for invalid user ubnt from 209.141.41.4 port 42798 ssh2 2020-06-06T15:48:55.269324vps773228.ovh.net sshd[31809]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.141.41.4 user=root 2020-06-06T15:48:57.114589vps773228.ovh.net sshd[31809]: Failed password for root from 209.141.41.4 port 48850 ssh2 ...	2020-06-06 22:42:46
103.80.210.152	attackbots	Unauthorized connection attempt from IP address 103.80.210.152 on Port 445(SMB)	2020-06-06 23:00:39
122.225.230.10	attackspambots	Jun 6 06:40:59 mockhub sshd[13989]: Failed password for root from 122.225.230.10 port 38066 ssh2 ...	2020-06-06 22:38:22
106.75.35.150	attack	Jun 6 14:46:03 vps687878 sshd\[24192\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.35.150 user=root Jun 6 14:46:05 vps687878 sshd\[24192\]: Failed password for root from 106.75.35.150 port 44520 ssh2 Jun 6 14:50:54 vps687878 sshd\[24624\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.35.150 user=root Jun 6 14:50:56 vps687878 sshd\[24624\]: Failed password for root from 106.75.35.150 port 38922 ssh2 Jun 6 14:55:41 vps687878 sshd\[24984\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.35.150 user=root ...	2020-06-06 22:44:20

Recently Reported IPs

24.171.99.123	15.164.222.250	15.165.45.79	15.204.141.14
38.123.42.84	49.87.44.156	45.66.128.232	45.66.208.40
38.123.43.168	38.123.112.124	38.123.112.44	38.123.113.84
38.123.113.112	38.123.114.0	38.123.113.170	38.123.114.84
38.123.114.148	38.123.115.28	38.123.115.64	38.123.116.50