1.52.96.149 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.52.96.194	attack	Port probing on unauthorized port 445	2020-08-08 15:29:13
1.52.96.55	attack	2019-07-07 16:44:09 1hk8Oe-0002kF-JH SMTP connection from \(\[1.52.96.55\]\) \[1.52.96.55\]:25980 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-07 16:44:19 1hk8Oo-0002kQ-BY SMTP connection from \(\[1.52.96.55\]\) \[1.52.96.55\]:54324 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-07 16:44:28 1hk8Ox-0002kc-Fk SMTP connection from \(\[1.52.96.55\]\) \[1.52.96.55\]:53012 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-06-01 22:07:08
1.52.96.85	attackbotsspam	2019-06-22 07:53:44 1heYy6-0004Oq-M9 SMTP connection from \(\[1.52.96.85\]\) \[1.52.96.85\]:42015 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-22 07:53:58 1heYyJ-0004P3-O5 SMTP connection from \(\[1.52.96.85\]\) \[1.52.96.85\]:35771 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-22 07:54:05 1heYyQ-0004PN-Uv SMTP connection from \(\[1.52.96.85\]\) \[1.52.96.85\]:38339 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-06-01 22:02:08
1.52.96.38	attackbots	Unauthorized connection attempt detected from IP address 1.52.96.38 to port 445	2020-01-01 20:11:41

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.52.96.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35578
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.52.96.149.			IN	A

;; AUTHORITY SECTION:
.			58	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022001 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 21 12:36:14 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 149.96.52.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 149.96.52.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.175.183	attackspambots	Dec 27 14:48:47 localhost sshd\[6848\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.183 user=root Dec 27 14:48:49 localhost sshd\[6848\]: Failed password for root from 222.186.175.183 port 33256 ssh2 Dec 27 14:48:53 localhost sshd\[6848\]: Failed password for root from 222.186.175.183 port 33256 ssh2	2019-12-27 21:52:23
45.134.203.176	attack	firewall-block, port(s): 23/tcp	2019-12-27 22:07:32
203.162.230.150	attackspam	SSH Brute Force	2019-12-27 21:50:26
80.82.78.211	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-27 22:03:45
85.209.0.231	attackspambots	Dec 27 06:20:07 ms-srv sshd[24480]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.209.0.231 user=root Dec 27 06:20:08 ms-srv sshd[24480]: Failed password for invalid user root from 85.209.0.231 port 49368 ssh2	2019-12-27 22:03:17
69.12.92.22	attackbotsspam	B: Magento admin pass test (wrong country)	2019-12-27 21:51:07
36.22.177.210	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 27-12-2019 06:20:10.	2019-12-27 21:57:40
120.227.0.236	attackspam	Dec 27 12:40:43 host postfix/smtpd[44268]: warning: unknown[120.227.0.236]: SASL LOGIN authentication failed: authentication failure Dec 27 12:40:45 host postfix/smtpd[44268]: warning: unknown[120.227.0.236]: SASL LOGIN authentication failed: authentication failure ...	2019-12-27 22:25:20
183.80.86.3	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 27-12-2019 06:20:09.	2019-12-27 21:56:58
220.134.58.133	attackbotsspam	Automatic report - Banned IP Access	2019-12-27 22:11:29
36.155.113.218	attack	2019-12-27T13:11:52.343705shield sshd\[4581\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.155.113.218 user=root 2019-12-27T13:11:54.147961shield sshd\[4581\]: Failed password for root from 36.155.113.218 port 41454 ssh2 2019-12-27T13:14:34.732310shield sshd\[5451\]: Invalid user biswa from 36.155.113.218 port 48985 2019-12-27T13:14:34.736388shield sshd\[5451\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.155.113.218 2019-12-27T13:14:36.445528shield sshd\[5451\]: Failed password for invalid user biswa from 36.155.113.218 port 48985 ssh2	2019-12-27 22:16:51
142.90.107.176	attack	Invalid user weblogic from 142.90.107.176 port 53148	2019-12-27 21:54:42
110.136.114.110	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 27-12-2019 06:20:08.	2019-12-27 22:00:16
106.12.179.81	attackspam	Invalid user castle from 106.12.179.81 port 55658	2019-12-27 21:51:46
218.92.0.141	attack	Dec 27 15:01:47 * sshd[17633]: Failed password for root from 218.92.0.141 port 19482 ssh2 Dec 27 15:02:00 * sshd[17633]: Failed password for root from 218.92.0.141 port 19482 ssh2 Dec 27 15:02:00 * sshd[17633]: error: maximum authentication attempts exceeded for root from 218.92.0.141 port 19482 ssh2 [preauth]	2019-12-27 22:08:09

Recently Reported IPs

1.52.88.148	1.53.12.18	1.53.143.175	1.53.252.35
1.53.198.0	1.53.205.24	1.53.25.37	1.53.67.178
1.53.89.83	1.53.48.160	1.54.133.163	1.54.101.208
1.54.199.150	1.54.213.185	1.54.4.109	1.54.7.187
1.54.214.28	1.55.108.196	1.55.109.88	1.55.215.132