IP Address Inspector

ATTENTION
  • This IP has not seen any suspicious activity within the last 3 months. This IP is most likely clean and trustworthy now. (This record will remain public for historical purposes, however.)

202.112.49.247 Spam ServerDictionary Attacker

The Project Honey Pot system has detected behavior from the IP address consistent with that of a mail server, dictionary attacker, comment spammer and bad web host. Below we've reported some other data associated with this IP. This interrelated data helps map spammers' networks and aids in law enforcement efforts. If you know something about this IP, please leave a comment.

Lookup IP In: Domain Tools | SpamHaus | Spamcop | SenderBase | Google Groups | Google

Geographic Location China China
Spider First Seen approximately 5 years, 8 months, 4 weeks ago
Spider Last Seen within 4 years, 8 months, 3 weeks
Spider Sightings 86 visit(s)
User-Agents seen with 30 user-agent(s)

First Received From approximately 5 years, 9 months, 4 weeks ago
Last Received From within 1 year, 8 months, 2 weeks
Number Received 719 email(s) sent from this IP

First Bad Host Appearance approximately 3 years, 6 months, 1 week ago
Last Bad Host Appearance within 3 years, 1 month, 4 weeks
Bad Host Appearances 230 appearance(s) in spam e-mail or spam post urls

First Post On approximately 5 years, 8 months, 4 weeks ago
Last Post On within 4 years, 8 months, 3 weeks
Form Posts 13 web post submission(s) sent from this IP

Dictionary Attacks 34 email(s) sent from this IP
First Received From approximately 5 years, 9 months, 4 weeks ago
Last Received From within 1 year, 8 months, 2 weeks

Associated Harvesters
80.253.81.195 | H Switzerland
217.95.140.13 | H Germany
78.46.189.229 | HS Germany
84.178.135.225 | H Germany
80.253.81.31 | H Switzerland
78.46.189.228 | H Germany
80.253.80.108 | H Switzerland
122.16.111.96 | H Japan
80.253.80.57 | H Switzerland
80.253.80.94 | H Switzerland
84.178.147.20 | H Germany
80.253.81.68 | H Switzerland
80.253.81.162 | H Switzerland
80.253.81.75 | H Switzerland
80.253.81.39 | H Switzerland
80.253.81.96 | H Switzerland
80.253.81.27 | H Switzerland
84.178.174.41 | H Germany
221.187.33.151 | H Japan
217.95.235.164 | H Germany
61.192.188.10 | H Japan
84.178.175.50 | H Germany
84.176.95.96 | H Germany
84.177.135.239 | H Germany
84.178.188.203 | HS Germany
84.178.178.56 | H Germany
78.46.225.45 | HR Germany
80.253.81.164 | H Switzerland
80.253.80.114 | H Switzerland
80.253.81.14 | H Switzerland
82.174.110.242 | HSD Netherlands
80.253.80.75 | H Switzerland
84.176.184.131 | HS Germany
80.253.81.218 | H Switzerland
217.95.232.109 | H Germany
84.178.176.214 | H Germany
217.95.197.139 | H Germany
80.253.81.101 | H Switzerland
84.178.138.33 | H Germany
222.149.243.3 | H Japan
118.167.135.156 | H Taiwan
58.93.58.112 | H Japan
222.144.66.245 | H Japan
221.189.206.88 | H Japan
221.191.105.116 | H Japan
219.66.233.209 | H Japan
59.106.128.138 | H Japan
220.150.237.170 | H Japan
61.192.190.232 | H Japan
125.232.232.137 | HS Taiwan
198.54.202.210 | HC South Africa
189.79.106.20 | HS Brazil
189.79.72.23 | HSD Brazil
222.149.231.94 | H Japan
211.3.201.254 | H Japan
61.192.206.104 | H Japan
61.214.29.211 | H Japan
220.111.147.204 | H Japan
61.209.182.129 | H Japan
189.79.112.189 | HS Brazil
222.149.234.85 | H Japan
220.148.187.127 | H Japan
58.147.194.250 | H Japan
60.39.215.88 | H Japan
201.1.207.232 | HSD Brazil
221.115.95.197 | H Japan
219.198.148.119 | H Japan
220.104.119.244 | H Japan
124.87.239.201 | H Japan
61.231.69.112 | H Taiwan
61.194.3.241 | H Japan
123.225.4.113 | H Japan
122.21.233.9 | H Japan
123.224.172.47 | H Japan
222.145.180.155 | H Japan
IPs In The Neighborhood
202.112.49.242 | C China
202.112.49.244 | SC China
202.112.49.246 China
202.112.50.36 China
202.112.50.61 | SDC China
202.112.50.72 China
202.112.50.73 | C China
202.112.50.74 China
202.112.50.77 China
202.112.50.88 | SDC China
202.112.50.96 | C China
202.112.50.121 China
202.112.50.140 | C China
202.112.50.141 | C China
202.112.50.144 China
202.112.50.165 China
202.112.50.195 | C China
202.112.50.201 | S China
202.112.50.204 China
Sample Spam URLs & Keywords Posted From 202.112.49.247
Domain: www.vs777.com
URL: http://www.vs777.com/gallery
Keywords: mature drunk wives
Domain: www.hasici.unas.cz
URL: http://www.hasici.unas.cz/porn
Keywords: extreme wife swap porn
Domain: www.tempestinc.org
URL: http://www.tempestinc.org/videos
Keywords: amateur gangbanged
Domain: hallead.com
URL: http://hallead.com/nude
Keywords: elaeagnus angustifolia mature width
Domain: www.vs777.com
URL: http://www.vs777.com/gallery
Keywords: elaeagnus angustifolia mature width
Domain: www.hasici.unas.cz
URL: http://www.hasici.unas.cz/porn
Keywords: elaeagnus angustifolia mature width
Domain: www.tempestinc.org
URL: http://www.tempestinc.org/videos
Keywords: elaeagnus angustifolia mature width
Domain: hallead.com
URL: http://hallead.com/nude
Keywords: elaeagnus angustifolia mature width
Domain: tombakercpa.com
URL: http://tombakercpa.com/digimon
Keywords: hentai ml
Domain: www.artin-co.com
URL: http://www.artin-co.com/dragon
Keywords: scout hentai
Domain: moja-hisa.110mb.com
URL: http://moja-hisa.110mb.com/hot
Keywords: ryu and chun li hentai
Domain: www.devadoes.com
URL: http://www.devadoes.com/girl
Keywords: creampie wife knocked up
Domain: www.segundo.com.br
URL: http://www.segundo.com.br/hot
Keywords: exottic matures
Domain: tombakercpa.com
URL: http://tombakercpa.com/digimon
Keywords: exottic matures
Domain: www.artin-co.com
URL: http://www.artin-co.com/dragon
Keywords: exottic matures
202.112.49.247's User Agent Strings
Mozilla/1.22 (compatible; MSIE 2.0; Windows 95)
Mozilla/2.0 (compatible; MSIE 3.02; Windows CE; 240x320)
Mozilla/4.0 (compatible; MSIE 4.01; Digital AlphaServer 1000A 4/233; Windows NT; Powered By 64-Bit Alpha Processor)
Mozilla/4.0 (compatible; MSIE 5.0; Windows 3.1)
Mozilla/4.0 (compatible; MSIE 5.0; Windows 95) Opera 6.01 [en]
Mozilla/4.0 (compatible; MSIE 5.5; Windows 95)
Mozilla/4.0 (compatible; MSIE 5.5; Windows NT 4.0; .NET CLR 1.0.2914)
Mozilla/4.0 (compatible; MSIE 5.5; Windows NT 5.0)
Mozilla/4.0 (compatible; MSIE 5.5; Windows NT 5.0; T312461)
Mozilla/4.0 (compatible; MSIE 6.0; AOL 9.0; Windows NT 5.1)
Mozilla/4.0 (compatible; MSIE 6.0; MSIE 5.5; Windows NT 4.0) Opera 7.0 [en]
Mozilla/4.0 (compatible; MSIE 6.0; Update a; AOL 6.0; Windows 98)
Mozilla/4.0 (compatible; MSIE 6.0; Windows 98; Win 9x 4.90; Creative)
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; KTXN)
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.0.3705; .NET CLR 1.1.4322)
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; en) Opera 8.00
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; FREE; .NET CLR 1.1.4322)
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; MRA 4.3 (build 01218); .NET CLR 1.1.4322)
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1) Netscape/8.0.4
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; Q312461)
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; ru) Opera 8.01
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; ru) Opera 8.50
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; Crazy Browser 2.0.0 Beta 1; .NET CLR 1.0.3705; .NET CLR 1.1.4322)
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; InfoPath.1
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.0.3705; .NET CLR 1.1.4322; .NET CLR 2.0.40607)
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322)
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 1.1.4322; .NET CLR 2.0.50727)
Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.2; SV1; .NET CLR 1.1.4322; .NET CLR 2.0.50727)
Example Messages Sent From 202.112.49.247
From:
Subject: Look at me
From:
Subject: I'm a brunette with blue eyes
From:
Subject: You're looking for a wife?
From:
Subject: We'll be happy together!
From:
Subject: You and I just have a dream
From:
Subject: How long for?
From:
Subject: At four will
From:
Subject: Do you propose to meet?
From:
Subject: Not just for fun ...
From:
Subject: You have 2 messages that will be deleted in a few
From:
Subject: File has been sent
From:
Subject: Your photo has been uploaded
From:
Subject: Images has been corrupted
From:
Subject: Comparablemarlene-Cheap-Medicines Now
From:
Subject: Hi Teodoraschwarten. Delayed messages milk
From:
Subject: You have 2 messages that will be deleted soon idio
From:
Subject: Attention Gregory M Stakelin. Deferred emails subm
From:
Subject: Claretha G Clemmey - Your files has been sent
From:
Subject: New voicemail(s), Jun 8 2014, 09 seconds
From:
Subject: New voicemail(s), Jun 8
From:
Subject: You're so addictive
From:
Subject: Betty N Bailado HereYou CanGetExclusiveDrugs :)
From:
Subject: IT Department just sent you direct message interro
From:
Subject: Caution You have missed mails sulphate
From:
Subject: Missed voice message - 7:18PM
Example User Names Used By 202.112.49.247
User-name: accounts
User-name: adtnodjfafdj
User-name: alisha_christofori
User-name: louis.laneve
User-name: muccillofek
User-name: ollom
User-name: adamlsieving
User-name: devinrients
User-name: wolaver
User-name: arduini
User-name: bussing
User-name: alicea
User-name: clients
User-name: betteejarrel
User-name: annettevanriper
User-name: connie.k.grew
User-name: annie.r.golab
User-name: pat.colla
User-name: shanifcanedo
User-name: letitia_p_rabbitt
User-name: reptilenicol
User-name: jong
User-name: karla.g.itri
User-name: pedigreeterminable
User-name: lenard.o.madrazo
User-name: harry_mccroskey
User-name: awnout
User-name: shayna_rogue
User-name: consensualfiser
User-name: carylon_plaisted
K.Kaz commented...
Spam Server
Dictionary Attacker

inetnum: 202.112.48.0 - 202.112.55.255
netname: GZCOMP-CN
descr: CERNET super computer center
descr: Guangzhou
country: CN
admin-c: JW1-CN
tech-c: XL1-CN
tech-c: CER-AP
remarks: origin AS4538
changed: hm-changed@net.edu.cn 19960325
mnt-by: MAINT-CERNET-AP
status: ASSIGNED NON-PORTABLE
source: APNIC

role: CERNET Helpdesk
address: Room 224, Main Building
address: Tsinghua University
address: Beijing 100084, China
country: CN
phone: +86-10-6278-4049
fax-no: +86-10-6278-5933
e-mail: cernet-helpdesk-ip@net.edu.cn
remarks: abuse@net.edu.cn
admin-c: XL1-CN
tech-c: SZ2-AP
nic-hdl: CER-AP
remarks: Point of Contact for admin-c
mnt-by: MAINT-CERNET-AP
changed: cernet-helpdesk-ip@net.edu.cn 20010903
source: APNIC
changed: hm-changed@apnic.net 20111114

person: Jianping Wu
address: China Education and Research Network Center
address: Room 225, Main Building, Tsinghua University
address: Beijing 100084
country: CN
phone: +86-10-6278-5983
fax-no: +86-10-6278-5933
e-mail: jianping@cernet.edu.cn
nic-hdl: JW1-CN
mnt-by: MAINT-CERNET-AP
changed: hm-changed@net.edu.cn 20020918
source: APNIC
changed: hm-changed@apnic.net 20111122
April 29 2014 02:54 PM

Page generated on: May 06 2016 05:56:56 PM
John OrwinJason OrwinJasonJason
marcgrossman262@vbwebmail.com jeanneruss537@vbwebmail.com valeriegonzalez749@outlook.com derekgustafson625@outlook.com
do not follow this link

Privacy Policy | Terms of Use | About Project Honey Pot | FAQ | CloudFlare Site Protection | Contact Us

Copyright © 2004–16, Unspam Technologies, Inc. All rights reserved.

Advertisements displayed on this page are not necessarily endorsed by Project Honey Pot

contact | wiki | email