112.252.159.254

Basic Info

City: unknown

Region: Shandong

Country: China

Internet Service Provider: China Unicom

Hostname: unknown

Organization: CHINA UNICOM China169 Backbone

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.252.159.254
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6861
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;112.252.159.254.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040402 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Apr 05 06:44:05 +08 2019
;; MSG SIZE  rcvd: 119

Host info

Host 254.159.252.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 254.159.252.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
50.207.12.103	attackbots	Nov 26 21:41:02 server sshd\[20193\]: Invalid user admin from 50.207.12.103 Nov 26 21:41:02 server sshd\[20193\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50-207-12-103-static.hfc.comcastbusiness.net Nov 26 21:41:05 server sshd\[20193\]: Failed password for invalid user admin from 50.207.12.103 port 33760 ssh2 Nov 26 22:15:13 server sshd\[28219\]: Invalid user webadmin from 50.207.12.103 Nov 26 22:15:13 server sshd\[28219\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50-207-12-103-static.hfc.comcastbusiness.net ...	2019-11-27 05:11:27
167.114.169.17	attackbotsspam	Unauthorized SSH login attempts	2019-11-27 05:45:51
92.53.69.6	attack	Invalid user sf from 92.53.69.6 port 35880	2019-11-27 05:37:25
159.138.155.72	attackspambots	badbot	2019-11-27 05:46:23
5.188.206.18	attack	Connection by 5.188.206.18 on port: 24000 got caught by honeypot at 11/26/2019 1:38:10 PM	2019-11-27 05:11:14
77.247.109.38	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 66 - port: 5060 proto: TCP cat: Misc Attack	2019-11-27 05:14:10
14.236.100.134	attackspam	Brute force attempt	2019-11-27 05:45:25
157.245.60.56	attackspambots	IDS	2019-11-27 05:12:48
220.85.233.145	attackbots	Nov 26 15:36:54 ns381471 sshd[19111]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.85.233.145 Nov 26 15:36:57 ns381471 sshd[19111]: Failed password for invalid user roede from 220.85.233.145 port 42262 ssh2	2019-11-27 05:35:49
157.52.211.162	attackspam	157.52.211.162 - - \[26/Nov/2019:14:37:47 +0000\] "POST /wp-login.php HTTP/1.1" 200 6393 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 157.52.211.162 - - \[26/Nov/2019:14:37:49 +0000\] "POST /wp-login.php HTTP/1.1" 200 6254 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2019-11-27 05:13:34
188.166.211.194	attack	Nov 26 15:37:11 vpn01 sshd[32346]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.211.194 Nov 26 15:37:13 vpn01 sshd[32346]: Failed password for invalid user ryan from 188.166.211.194 port 49060 ssh2 ...	2019-11-27 05:27:16
41.86.34.52	attackspambots	Nov 26 07:48:38 php1 sshd\[16824\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.86.34.52 user=root Nov 26 07:48:40 php1 sshd\[16824\]: Failed password for root from 41.86.34.52 port 55496 ssh2 Nov 26 07:53:04 php1 sshd\[17181\]: Invalid user rpm from 41.86.34.52 Nov 26 07:53:04 php1 sshd\[17181\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.86.34.52 Nov 26 07:53:06 php1 sshd\[17181\]: Failed password for invalid user rpm from 41.86.34.52 port 44674 ssh2	2019-11-27 05:10:42
95.57.232.213	attack	Port scan: Attack repeated for 24 hours	2019-11-27 05:44:01
130.61.51.92	attack	Nov 27 02:02:03 gw1 sshd[30583]: Failed password for backup from 130.61.51.92 port 35199 ssh2 Nov 27 02:10:12 gw1 sshd[30858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.61.51.92 ...	2019-11-27 05:34:05
51.75.67.69	attack	Tried sshing with brute force.	2019-11-27 05:06:19

Recently Reported IPs

82.102.18.54	169.197.108.189	37.139.21.75	154.95.49.39
122.236.72.187	183.248.48.87	195.192.228.222	178.128.215.95
160.120.120.195	107.170.203.233	156.202.253.184	104.211.227.161
90.63.64.165	172.217.12.36	157.230.142.13	51.38.74.155
122.79.20.87	197.54.245.226	195.136.95.33	90.68.103.36