110.152.149.49

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 110.152.149.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41354
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;110.152.149.49.			IN	A

;; AUTHORITY SECTION:
.			522	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022040201 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 03 07:57:35 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 49.149.152.110.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 49.149.152.110.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.148.10.179	attack	[Mon Feb 10 03:00:16.646334 2020] [:error] [pid 4063:tid 140264400824064] [client 45.148.10.179:60000] [client 45.148.10.179] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_http_versions}" against "REQUEST_PROTOCOL" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "972"] [id "920430"] [msg "HTTP protocol version is not allowed by policy"] [data "HTTP/1.0"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/POLICY/PROTOCOL_NOT_ALLOWED"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/"] [unique_id "XkBk0PAiq7wP4HzQutKyfgAAAbs"] ...	2020-02-10 04:58:20
185.66.230.225	attackspam	Unauthorized connection attempt from IP address 185.66.230.225 on Port 445(SMB)	2020-02-10 04:35:46
218.92.0.191	attackspam	Feb 9 21:46:56 dcd-gentoo sshd[13582]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Feb 9 21:46:58 dcd-gentoo sshd[13582]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Feb 9 21:46:56 dcd-gentoo sshd[13582]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Feb 9 21:46:58 dcd-gentoo sshd[13582]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Feb 9 21:46:56 dcd-gentoo sshd[13582]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Feb 9 21:46:58 dcd-gentoo sshd[13582]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Feb 9 21:46:58 dcd-gentoo sshd[13582]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.191 port 12224 ssh2 ...	2020-02-10 04:53:48
123.201.141.226	attack	1581254973 - 02/09/2020 14:29:33 Host: 123.201.141.226/123.201.141.226 Port: 445 TCP Blocked	2020-02-10 04:54:14
14.177.119.114	attackspambots	Fail2Ban Ban Triggered	2020-02-10 04:50:26
27.72.89.196	attackbotsspam	Fail2Ban Ban Triggered	2020-02-10 04:48:14
186.146.2.111	attackbotsspam	IP: 186.146.2.111 Ports affected Simple Mail Transfer (25) Abuse Confidence rating 81% Found in DNSBL('s) ASN Details AS10620 Telmex Colombia S.A. Colombia (CO) CIDR 186.146.0.0/16 Log Date: 9/02/2020 12:47:31 PM UTC	2020-02-10 04:35:18
61.53.69.32	attackspam	Unauthorised access (Feb 9) SRC=61.53.69.32 LEN=40 TTL=49 ID=48232 TCP DPT=23 WINDOW=47227 SYN	2020-02-10 04:37:14
71.187.183.209	attackbotsspam	Unauthorized connection attempt from IP address 71.187.183.209 on Port 445(SMB)	2020-02-10 04:28:55
218.104.133.243	attack	Brute force attempt	2020-02-10 04:56:14
193.232.218.12	attack	Feb 5 01:21:17 m3 sshd[6880]: Failed password for r.r from 193.232.218.12 port 45474 ssh2 Feb 5 01:36:57 m3 sshd[8608]: Invalid user vadim from 193.232.218.12 Feb 5 01:37:00 m3 sshd[8608]: Failed password for invalid user vadim from 193.232.218.12 port 47828 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=193.232.218.12	2020-02-10 04:56:35
218.78.30.224	attackspambots	Ssh brute force	2020-02-10 04:50:12
178.128.221.162	attackspambots	Feb 9 20:09:33 server sshd\[25374\]: Invalid user gnh from 178.128.221.162 Feb 9 20:09:33 server sshd\[25374\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.221.162 Feb 9 20:09:35 server sshd\[25374\]: Failed password for invalid user gnh from 178.128.221.162 port 37948 ssh2 Feb 9 20:16:37 server sshd\[26676\]: Invalid user ftf from 178.128.221.162 Feb 9 20:16:37 server sshd\[26676\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.221.162 ...	2020-02-10 04:59:46
185.41.97.236	attackbots	Fail2Ban Ban Triggered	2020-02-10 04:27:40
124.158.109.62	attackbotsspam	Unauthorized connection attempt detected from IP address 124.158.109.62 to port 445	2020-02-10 05:02:11

Recently Reported IPs

110.152.139.217	110.152.167.247	110.152.235.34	110.152.251.126
110.153.189.246	110.159.229.64	110.164.44.3	110.165.22.236
110.165.22.43	110.165.23.147	110.165.33.14	110.166.254.104
110.166.254.106	110.166.254.119	110.168.14.173	110.168.212.245
110.168.24.247	110.224.212.47	110.224.222.57	110.225.1.183