110.52.149.64 - IPInfo

Basic Info

City: Changsha

Region: Hunan

Country: China

Internet Service Provider: China Unicom

Hostname: unknown

Organization: CHINA UNICOM China169 Backbone

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
110.52.149.106	attack	Port 1433 Scan	2019-09-10 03:59:51

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 110.52.149.64
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34906
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;110.52.149.64.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061201 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jun 13 10:11:02 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 64.149.52.110.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 64.149.52.110.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.146.32.200	attackspambots	Sep 25 15:23:33 rpi sshd[32013]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.146.32.200 Sep 25 15:23:35 rpi sshd[32013]: Failed password for invalid user quange from 190.146.32.200 port 54918 ssh2	2019-09-25 22:54:33
198.228.145.150	attack	Sep 25 15:59:17 lnxweb62 sshd[23528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.228.145.150	2019-09-25 22:34:23
81.133.112.195	attackspam	2019-09-25T14:40:00.903526abusebot-3.cloudsearch.cf sshd\[25402\]: Invalid user corp from 81.133.112.195 port 49537	2019-09-25 22:47:11
103.65.194.5	attackbotsspam	Automatic report - Banned IP Access	2019-09-25 23:17:22
202.137.142.102	attack	Sep 25 14:20:52 vpn01 sshd[27287]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.137.142.102 Sep 25 14:20:54 vpn01 sshd[27287]: Failed password for invalid user admin from 202.137.142.102 port 35514 ssh2	2019-09-25 23:15:38
203.114.102.69	attackbots	Sep 25 02:35:31 hiderm sshd\[27360\]: Invalid user viktor from 203.114.102.69 Sep 25 02:35:31 hiderm sshd\[27360\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.114.102.69 Sep 25 02:35:33 hiderm sshd\[27360\]: Failed password for invalid user viktor from 203.114.102.69 port 58433 ssh2 Sep 25 02:40:15 hiderm sshd\[27868\]: Invalid user webmaster from 203.114.102.69 Sep 25 02:40:16 hiderm sshd\[27868\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.114.102.69	2019-09-25 23:03:23
80.213.255.129	attackbotsspam	$f2bV_matches	2019-09-25 22:43:22
49.88.112.80	attackspambots	Too many connections or unauthorized access detected from Arctic banned ip	2019-09-25 22:32:09
113.172.98.59	attackspambots	Chat Spam	2019-09-25 23:01:14
51.83.33.228	attackbotsspam	Too many connections or unauthorized access detected from Arctic banned ip	2019-09-25 23:13:47
58.64.136.50	attackspambots	58.64.136.50 has been banned for [spam] ...	2019-09-25 23:10:05
180.169.17.242	attackbots	Sep 25 08:07:47 aat-srv002 sshd[10728]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.169.17.242 Sep 25 08:07:48 aat-srv002 sshd[10728]: Failed password for invalid user webmaster from 180.169.17.242 port 49934 ssh2 Sep 25 08:11:14 aat-srv002 sshd[10805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.169.17.242 Sep 25 08:11:16 aat-srv002 sshd[10805]: Failed password for invalid user aleica from 180.169.17.242 port 53452 ssh2 ...	2019-09-25 22:49:09
103.28.38.21	attackspam	Attacks websites by trying to access known vulnerables of plugins, brute-force of backends or probing of administrative tools	2019-09-25 22:55:21
159.65.65.204	attackbotsspam	[WedSep2514:20:51.5695082019][:error][pid29348:tid47123171276544][client159.65.65.204:59584][client159.65.65.204]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\<\?script\\|\(\?:\<\\|\<\?/$$\?:\(\?:java\\|vb$script\\|about\\|applet\\|activex\\|chrome\\|qx\?ss\\|embed\)\\|\<\?/\?i\?frame\\\\\\\\b\)"atARGS:read-more-text.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"1079"][id"340147"][rev"141"][msg"Atomicorp.comWAFRules:PotentialCrossSiteScriptingAttack"][data"\	2019-09-25 23:15:07
203.205.41.78	attackspambots	Chat Spam	2019-09-25 22:38:19

Recently Reported IPs

143.117.49.153	175.220.97.114	177.75.13.66	96.30.135.241
195.189.0.2	218.30.103.162	125.202.42.62	168.181.49.133
2.225.255.209	203.208.187.81	88.149.158.90	110.128.120.11
188.205.172.150	186.196.87.58	113.97.236.243	81.217.43.10
97.212.106.12	70.35.205.110	193.169.145.66	154.48.155.195