63.82.49.26 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Lanset America Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Mar 1 14:22:12 grey postfix/smtpd\[19933\]: NOQUEUE: reject: RCPT from knowing.sapuxfiori.com\[63.82.49.26\]: 554 5.7.1 Service unavailable\; Client host \[63.82.49.26\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[63.82.49.26\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-03-02 01:57:48

Type

Details

Datetime

attackspam

Mar  1 14:22:12 grey postfix/smtpd\[19933\]: NOQUEUE: reject: RCPT from knowing.sapuxfiori.com\[63.82.49.26\]: 554 5.7.1 Service unavailable\; Client host \[63.82.49.26\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[63.82.49.26\]\; from=\ to=\ proto=ESMTP helo=\
...

2020-03-02 01:57:48

Comments on same subnet:

IP	Type	Details	Datetime
63.82.49.59	attackbots		2020-05-05 00:43:08
63.82.49.36	attack	Apr 26 06:47:54 mail.srvfarm.net postfix/smtpd[1243822]: NOQUEUE: reject: RCPT from unknown[63.82.49.36]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Apr 26 06:47:54 mail.srvfarm.net postfix/smtpd[1242661]: NOQUEUE: reject: RCPT from unknown[63.82.49.36]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Apr 26 06:47:54 mail.srvfarm.net postfix/smtpd[1244515]: NOQUEUE: reject: RCPT from unknown[63.82.49.36]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Apr 26 06:47:54 mail.srvfarm.net postfix/smtpd[1245194]: NOQUEUE: reject: RCPT from unknown[63.82.49.36]:	2020-04-26 18:58:57
63.82.49.67	attack	Apr 25 05:40:18 mail.srvfarm.net postfix/smtpd[852178]: NOQUEUE: reject: RCPT from unknown[63.82.49.67]: 554 5.7.1 Service unavailable; Client host [63.82.49.67] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo= Apr 25 05:40:48 mail.srvfarm.net postfix/smtpd[852178]: NOQUEUE: reject: RCPT from unknown[63.82.49.67]: 554 5.7.1 Service unavailable; Client host [63.82.49.67] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo= Apr 25 05:40:54 mail.srvfarm.net postfix/smtpd[849742]: NOQUEUE: reject: RCPT from unknown[63.82.49.67]: 554 5.7.1 Service unavailable; Client host [63.82.49.67] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo= Apr 25	2020-04-25 14:05:18
63.82.49.25	attack	Apr 24 23:19:33 mail.srvfarm.net postfix/smtpd[574078]: NOQUEUE: reject: RCPT from unknown[63.82.49.25]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Apr 24 23:19:33 mail.srvfarm.net postfix/smtpd[575140]: NOQUEUE: reject: RCPT from unknown[63.82.49.25]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Apr 24 23:19:33 mail.srvfarm.net postfix/smtpd[573787]: NOQUEUE: reject: RCPT from unknown[63.82.49.25]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Apr 24 23:19:33 mail.srvfarm.net postfix/smtpd[575147]: NOQUEUE: reject: RCPT from unknown[63.82.49	2020-04-25 07:04:27
63.82.49.53	attack	Apr 23 10:03:36 web01.agentur-b-2.de postfix/smtpd[115787]: NOQUEUE: reject: RCPT from unknown[63.82.49.53]: 554 5.7.1 Service unavailable; Client host [63.82.49.53] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo= Apr 23 10:06:24 web01.agentur-b-2.de postfix/smtpd[128143]: NOQUEUE: reject: RCPT from unknown[63.82.49.53]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Apr 23 10:06:24 web01.agentur-b-2.de postfix/smtpd[128159]: NOQUEUE: reject: RCPT from unknown[63.82.49.53]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Apr 23 10:06:24 web01.agentur-b-2.de postfix/smtpd[128160]: NOQUEUE: rejec	2020-04-23 21:59:37
63.82.49.33	attack	Apr 17 06:00:24 web01.agentur-b-2.de postfix/smtpd[884902]: NOQUEUE: reject: RCPT from unknown[63.82.49.33]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Apr 17 06:09:42 web01.agentur-b-2.de postfix/smtpd[884902]: NOQUEUE: reject: RCPT from unknown[63.82.49.33]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Apr 17 06:09:42 web01.agentur-b-2.de postfix/smtpd[883792]: NOQUEUE: reject: RCPT from unknown[63.82.49.33]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Apr 17 06:09:42 web01.agentur-b-2.de postfix/smtpd[887607]: NOQUEUE: reject: RCPT from unknown[63.82.49.33]: 450 4.7.1 : Helo command r	2020-04-17 15:39:43
63.82.49.47	spam	Spam	2020-04-16 17:18:41
63.82.49.175	attackbots	Mar 24 00:22:23 web01 postfix/smtpd[7559]: connect from tempt.kaagaan.com[63.82.49.175] Mar 24 00:22:23 web01 policyd-spf[8166]: None; identhostnamey=helo; client-ip=63.82.49.175; helo=tempt.teedasa.com; envelope-from=x@x Mar 24 00:22:23 web01 policyd-spf[8166]: Pass; identhostnamey=mailfrom; client-ip=63.82.49.175; helo=tempt.teedasa.com; envelope-from=x@x Mar x@x Mar 24 00:22:23 web01 postfix/smtpd[7559]: disconnect from tempt.kaagaan.com[63.82.49.175] Mar 24 00:22:33 web01 postfix/smtpd[7559]: connect from tempt.kaagaan.com[63.82.49.175] Mar 24 00:22:34 web01 policyd-spf[8166]: None; identhostnamey=helo; client-ip=63.82.49.175; helo=tempt.teedasa.com; envelope-from=x@x Mar 24 00:22:34 web01 policyd-spf[8166]: Pass; identhostnamey=mailfrom; client-ip=63.82.49.175; helo=tempt.teedasa.com; envelope-from=x@x Mar x@x Mar 24 00:22:34 web01 postfix/smtpd[7559]: disconnect from tempt.kaagaan.com[63.82.49.175] Mar 24 00:23:04 web01 postfix/smtpd[7559]: connect from tempt.kaag........ -------------------------------	2020-03-24 10:12:19
63.82.49.134	attack	Email Spam	2020-03-23 09:12:14
63.82.49.144	attack	Email Spam	2020-03-23 09:11:41
63.82.49.178	attackspambots	Email Spam	2020-03-23 09:11:26
63.82.49.193	attackspambots	Email Spam	2020-03-23 09:11:11
63.82.49.163	attackspambots	Mar 22 04:30:46 mail.srvfarm.net postfix/smtpd[541910]: NOQUEUE: reject: RCPT from unknown[63.82.49.163]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 22 04:30:46 mail.srvfarm.net postfix/smtpd[541893]: NOQUEUE: reject: RCPT from unknown[63.82.49.163]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 22 04:30:46 mail.srvfarm.net postfix/smtpd[541911]: NOQUEUE: reject: RCPT from unknown[63.82.49.163]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 22 04:30:46 mail.srvfarm.net postfix/smtpd[541912]: NOQUEUE: reject: RCPT from unknown[63.82.49.163]: 450 4.1.8	2020-03-22 15:50:36
63.82.49.50	attackspam	SpamScore above: 10.0	2020-03-17 09:00:48
63.82.49.161	attackbotsspam	Mar 16 13:24:14 web01 postfix/smtpd[12674]: connect from group.kaagaan.com[63.82.49.161] Mar 16 13:24:14 web01 policyd-spf[12676]: None; identhostnamey=helo; client-ip=63.82.49.161; helo=group.teedasa.com; envelope-from=x@x Mar 16 13:24:14 web01 policyd-spf[12676]: Pass; identhostnamey=mailfrom; client-ip=63.82.49.161; helo=group.teedasa.com; envelope-from=x@x Mar x@x Mar 16 13:24:15 web01 postfix/smtpd[12674]: disconnect from group.kaagaan.com[63.82.49.161] Mar 16 13:26:10 web01 postfix/smtpd[12674]: connect from group.kaagaan.com[63.82.49.161] Mar 16 13:26:10 web01 policyd-spf[12676]: None; identhostnamey=helo; client-ip=63.82.49.161; helo=group.teedasa.com; envelope-from=x@x Mar 16 13:26:10 web01 policyd-spf[12676]: Pass; identhostnamey=mailfrom; client-ip=63.82.49.161; helo=group.teedasa.com; envelope-from=x@x Mar x@x Mar 16 13:26:11 web01 postfix/smtpd[12674]: disconnect from group.kaagaan.com[63.82.49.161] Mar 16 13:26:16 web01 postfix/smtpd[12670]: connect from g........ -------------------------------	2020-03-16 23:01:51

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 63.82.49.26
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38947
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;63.82.49.26.			IN	A

;; AUTHORITY SECTION:
.			439	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030101 1800 900 604800 86400

;; Query time: 180 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 02 01:57:44 CST 2020
;; MSG SIZE  rcvd: 115

Host info

26.49.82.63.in-addr.arpa domain name pointer knowing.sapuxfiori.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
26.49.82.63.in-addr.arpa	name = knowing.sapuxfiori.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
139.199.112.85	attackspam	Aug 25 10:19:03 pornomens sshd\[32285\]: Invalid user server from 139.199.112.85 port 47538 Aug 25 10:19:03 pornomens sshd\[32285\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.112.85 Aug 25 10:19:05 pornomens sshd\[32285\]: Failed password for invalid user server from 139.199.112.85 port 47538 ssh2 ...	2019-08-25 18:50:09
54.38.183.181	attack	Aug 25 00:40:49 eddieflores sshd\[23447\]: Invalid user valet from 54.38.183.181 Aug 25 00:40:49 eddieflores sshd\[23447\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.ip-54-38-183.eu Aug 25 00:40:50 eddieflores sshd\[23447\]: Failed password for invalid user valet from 54.38.183.181 port 53252 ssh2 Aug 25 00:44:53 eddieflores sshd\[23839\]: Invalid user kv from 54.38.183.181 Aug 25 00:44:53 eddieflores sshd\[23839\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.ip-54-38-183.eu	2019-08-25 18:50:37
125.231.29.222	attackspambots	Unauthorized connection attempt from IP address 125.231.29.222 on Port 445(SMB)	2019-08-25 18:37:55
217.141.88.34	attack	Aug 25 12:46:51 ubuntu-2gb-nbg1-dc3-1 sshd[32573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.141.88.34 Aug 25 12:46:53 ubuntu-2gb-nbg1-dc3-1 sshd[32573]: Failed password for invalid user dpowers from 217.141.88.34 port 35892 ssh2 ...	2019-08-25 18:49:10
58.59.125.10	attackbots	Unauthorized connection attempt from IP address 58.59.125.10 on Port 445(SMB)	2019-08-25 19:15:07
41.39.43.32	attackspambots	Unauthorized connection attempt from IP address 41.39.43.32 on Port 445(SMB)	2019-08-25 18:48:28
68.183.234.12	attackbotsspam	fail2ban	2019-08-25 18:39:42
46.100.95.186	attackspam	445/tcp [2019-08-25]1pkt	2019-08-25 18:43:43
37.194.126.12	attack	Unauthorized connection attempt from IP address 37.194.126.12 on Port 445(SMB)	2019-08-25 18:50:58
148.70.218.43	attackspam	2019-08-25T10:12:56.809958abusebot-6.cloudsearch.cf sshd\[12448\]: Invalid user cmsftp from 148.70.218.43 port 39152	2019-08-25 18:55:41
115.78.72.198	attack	Unauthorized connection attempt from IP address 115.78.72.198 on Port 445(SMB)	2019-08-25 19:08:33
185.176.27.54	attackspam	Splunk® : port scan detected: Aug 25 05:50:48 testbed kernel: Firewall: TCP_IN Blocked IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:64:c3:d6:0b:ef:f0:08:00 SRC=185.176.27.54 DST=104.248.11.191 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=402 PROTO=TCP SPT=52410 DPT=29999 WINDOW=1024 RES=0x00 SYN URGP=0	2019-08-25 18:56:33
203.113.130.198	attackbots	Unauthorized connection attempt from IP address 203.113.130.198 on Port 445(SMB)	2019-08-25 18:48:54
151.84.222.52	attackspam	Aug 25 10:21:29 MK-Soft-VM7 sshd\[2839\]: Invalid user test from 151.84.222.52 port 23624 Aug 25 10:21:29 MK-Soft-VM7 sshd\[2839\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.84.222.52 Aug 25 10:21:30 MK-Soft-VM7 sshd\[2839\]: Failed password for invalid user test from 151.84.222.52 port 23624 ssh2 ...	2019-08-25 18:37:05
89.228.10.186	attack	Unauthorized connection attempt from IP address 89.228.10.186 on Port 445(SMB)	2019-08-25 19:16:57

Recently Reported IPs

149.141.56.233	104.10.47.26	202.65.149.3	167.1.136.111
149.195.50.5	91.121.175.138	77.223.89.93	167.77.228.94
144.43.118.132	221.218.62.77	213.92.178.255	18.51.6.82
186.202.233.96	97.102.200.232	156.49.31.129	86.157.35.14
18.84.134.74	11.84.81.23	186.177.253.43	191.231.90.20