49.88.64.0 - IPInfo

Basic Info

City: Shanghai

Region: Shanghai

Country: China

Internet Service Provider: ChinaNet Jiangsu Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Dec 24 16:31:15 icecube postfix/smtpd[2532]: NOQUEUE: reject: RCPT from unknown[49.88.64.0]: 554 5.7.1 Service unavailable; Client host [49.88.64.0] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/49.88.64.0; from= to= proto=ESMTP helo=	2019-12-25 03:48:02

Type

Details

Datetime

attack

Dec 24 16:31:15 icecube postfix/smtpd[2532]: NOQUEUE: reject: RCPT from unknown[49.88.64.0]: 554 5.7.1 Service unavailable; Client host [49.88.64.0] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/49.88.64.0; from= to= proto=ESMTP helo=

2019-12-25 03:48:02

Comments on same subnet:

IP	Type	Details	Datetime
49.88.64.121	attackbots	Email rejected due to spam filtering	2020-06-24 16:43:50
49.88.64.137	attack	Email rejected due to spam filtering	2020-04-10 18:53:41
49.88.64.108	attackspam	Jan 2 15:53:23 grey postfix/smtpd\[17754\]: NOQUEUE: reject: RCPT from unknown\[49.88.64.108\]: 554 5.7.1 Service unavailable\; Client host \[49.88.64.108\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=49.88.64.108\; from=\ to=\ proto=ESMTP helo=\ ...	2020-01-03 04:30:45
49.88.64.193	attackbotsspam	IP: 49.88.64.193 ASN: AS4134 No.31 Jin-rong Street Port: Simple Mail Transfer 25 Found in one or more Blacklists Date: 16/12/2019 6:57:21 AM UTC	2019-12-16 17:30:18
49.88.64.49	attackbots	SpamReport	2019-11-15 15:24:34
49.88.64.18	attack	Lines containing failures of 49.88.64.18 Sep 7 10:31:20 expertgeeks postfix/smtpd[21639]: connect from unknown[49.88.64.18] Sep 7 10:31:21 expertgeeks policyd-spf[21643]: None; identhostnamey=helo; client-ip=49.88.64.18; helo=vrfan.com; envelope-from=x@x Sep 7 10:31:21 expertgeeks policyd-spf[21643]: None; identhostnamey=mailfrom; client-ip=49.88.64.18; helo=vrfan.com; envelope-from=x@x Sep 7 10:31:21 expertgeeks sqlgrey: grey: new: 49.88.64(49.88.64.18), x@x -> x@x Sep 7 10:31:21 expertgeeks sqlgrey: grey: early reconnect: 49.88.64(49.88.64.18), x@x -> x@x Sep x@x Sep 7 10:31:22 expertgeeks postfix/smtpd[21639]: disconnect from unknown[49.88.64.18] ehlo=1 mail=1 rcpt=0/1 quhostname=1 commands=3/4 Sep 7 10:31:28 expertgeeks postfix/smtpd[21639]: connect from unknown[49.88.64.18] Sep 7 10:31:28 expertgeeks policyd-spf[21643]: None; identhostnamey=helo; client-ip=49.88.64.18; helo=vrfan.com; envelope-from=x@x Sep 7 10:31:28 expertgeeks policyd-spf[21643]: None; id........ ------------------------------	2019-09-07 22:33:52
49.88.64.158	attackbots	Brute force SMTP login attempts.	2019-08-22 04:30:40

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.88.64.0
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25114
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.88.64.0.			IN	A

;; AUTHORITY SECTION:
.			435	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122401 1800 900 604800 86400

;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Dec 25 03:48:00 CST 2019
;; MSG SIZE  rcvd: 114

Host info

Host 0.64.88.49.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 0.64.88.49.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
36.73.196.42	attackbotsspam	Unauthorized connection attempt from IP address 36.73.196.42 on Port 445(SMB)	2019-06-29 22:17:53
183.82.246.220	attack	Unauthorized connection attempt from IP address 183.82.246.220 on Port 445(SMB)	2019-06-29 22:22:34
82.221.131.71	attackspambots	SSHAttack	2019-06-29 22:44:00
181.114.224.71	attackbots	Unauthorized connection attempt from IP address 181.114.224.71 on Port 445(SMB)	2019-06-29 22:15:01
216.244.66.196	attackbots	20 attempts against mh-misbehave-ban on comet.magehost.pro	2019-06-29 22:14:32
187.33.161.59	attackspam	Unauthorized connection attempt from IP address 187.33.161.59 on Port 445(SMB)	2019-06-29 22:34:48
182.61.170.251	attackspam	" "	2019-06-29 22:22:54
14.163.47.147	attackbots	Unauthorized connection attempt from IP address 14.163.47.147 on Port 445(SMB)	2019-06-29 22:58:53
46.182.106.190	attackspambots	SSHAttack	2019-06-29 22:44:56
189.45.10.249	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-06-29 12:15:41,619 INFO [amun_request_handler] PortScan Detected on Port: 445 (189.45.10.249)	2019-06-29 22:55:25
37.28.154.68	attackbotsspam	SSHAttack	2019-06-29 22:45:32
89.248.162.168	attack	29.06.2019 14:08:04 Connection to port 1499 blocked by firewall	2019-06-29 22:20:29
103.195.141.27	attackspam	Unauthorized connection attempt from IP address 103.195.141.27 on Port 445(SMB)	2019-06-29 22:06:10
201.41.148.228	attackspambots	$f2bV_matches	2019-06-29 22:07:31
182.247.101.99	attackbots	Unauthorized connection attempt from IP address 182.247.101.99 on Port 445(SMB)	2019-06-29 22:31:06

Recently Reported IPs

94.219.75.129	132.165.73.104	201.30.8.69	49.158.46.214
190.207.247.83	64.214.135.72	142.183.244.17	221.152.107.16
201.233.152.87	128.187.237.73	104.45.226.37	60.53.118.219
86.19.47.120	63.32.217.9	66.3.208.128	1.156.200.56
156.217.225.237	121.163.185.103	39.176.4.123	182.167.136.101