113.252.1.20 - IPInfo

Basic Info

City: Wanchai

Region: Wan Chai

Country: Hong Kong

Internet Service Provider: HGC Global Communications Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	" "	2019-11-05 05:22:23

Comments on same subnet:

IP	Type	Details	Datetime
113.252.119.144	attack	Sep 23 17:00:16 scw-focused-cartwright sshd[30822]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.252.119.144 Sep 23 17:00:18 scw-focused-cartwright sshd[30822]: Failed password for invalid user cablecom from 113.252.119.144 port 36184 ssh2	2020-09-25 03:12:51
113.252.119.144	attack	Sep 23 17:00:16 scw-focused-cartwright sshd[30822]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.252.119.144 Sep 23 17:00:18 scw-focused-cartwright sshd[30822]: Failed password for invalid user cablecom from 113.252.119.144 port 36184 ssh2	2020-09-24 18:56:47
113.252.189.174	attack	Sep 16 14:02:16 logopedia-1vcpu-1gb-nyc1-01 sshd[353529]: Failed password for root from 113.252.189.174 port 53225 ssh2 ...	2020-09-17 20:07:29
113.252.189.174	attackbotsspam	Sep 16 14:02:16 logopedia-1vcpu-1gb-nyc1-01 sshd[353529]: Failed password for root from 113.252.189.174 port 53225 ssh2 ...	2020-09-17 12:18:28
113.252.186.104	attackspam	Sep 10 18:56:29 mail sshd[11565]: Failed password for root from 113.252.186.104 port 42170 ssh2	2020-09-11 22:40:09
113.252.186.104	attackbots	Sep 10 18:56:29 mail sshd[11565]: Failed password for root from 113.252.186.104 port 42170 ssh2	2020-09-11 14:47:30
113.252.186.104	attackspam	Sep 10 18:56:29 mail sshd[11565]: Failed password for root from 113.252.186.104 port 42170 ssh2	2020-09-11 06:57:46
113.252.191.213	attack	Sep 2 21:04:08 iago sshd[31878]: Address 113.252.191.213 maps to 213-191-252-113-on-nets.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Sep 2 21:04:08 iago sshd[31878]: Invalid user Adminixxxr from 113.252.191.213 Sep 2 21:04:08 iago sshd[31878]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.252.191.213 Sep 2 21:04:10 iago sshd[31878]: Failed password for invalid user Adminixxxr from 113.252.191.213 port 60458 ssh2 Sep 2 21:04:10 iago sshd[31879]: Connection closed by 113.252.191.213 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=113.252.191.213	2020-09-03 22:20:31
113.252.191.213	attack	Sep 2 17:03:57 logopedia-1vcpu-1gb-nyc1-01 sshd[193911]: Failed password for root from 113.252.191.213 port 60712 ssh2 ...	2020-09-03 14:01:29
113.252.191.213	attackspam	Sep 2 17:03:57 logopedia-1vcpu-1gb-nyc1-01 sshd[193911]: Failed password for root from 113.252.191.213 port 60712 ssh2 ...	2020-09-03 06:14:26
113.252.123.182	attackbots	Honeypot attack, port: 445, PTR: 182-123-252-113-on-nets.com.	2020-07-09 16:26:40
113.252.113.191	attackbotsspam	Unauthorized connection attempt from IP address 113.252.113.191 on Port 445(SMB)	2020-06-17 23:38:20
113.252.163.157	attackspam	May 28 14:01:16 fhem-rasp sshd[8948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.252.163.157 May 28 14:01:19 fhem-rasp sshd[8948]: Failed password for invalid user Administrator from 113.252.163.157 port 55100 ssh2 ...	2020-05-28 23:18:15
113.252.163.157	attackspam	Honeypot attack, port: 5555, PTR: 157-163-252-113-on-nets.com.	2020-05-21 05:01:12
113.252.117.152	attackspam	Honeypot attack, port: 5555, PTR: 152-117-252-113-on-nets.com.	2020-04-18 00:26:08

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.252.1.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16465
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.252.1.20.			IN	A

;; AUTHORITY SECTION:
.			470	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110401 1800 900 604800 86400

;; Query time: 117 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Nov 05 05:22:17 CST 2019
;; MSG SIZE  rcvd: 116

Host info

20.1.252.113.in-addr.arpa domain name pointer 20-1-252-113-on-nets.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.1.252.113.in-addr.arpa	name = 20-1-252-113-on-nets.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.136.108.66	attackbotsspam	Connection by 45.136.108.66 on port: 7890 got caught by honeypot at 11/15/2019 5:31:11 AM	2019-11-15 15:02:18
58.210.85.22	attack	Automatic report - Banned IP Access	2019-11-15 15:07:55
111.231.121.62	attackspam	Automatic report - Banned IP Access	2019-11-15 15:07:05
106.52.50.225	attack	Nov 15 07:24:33 zeus sshd[17287]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.50.225 Nov 15 07:24:35 zeus sshd[17287]: Failed password for invalid user bung from 106.52.50.225 port 37468 ssh2 Nov 15 07:29:29 zeus sshd[17376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.50.225 Nov 15 07:29:31 zeus sshd[17376]: Failed password for invalid user geng from 106.52.50.225 port 44906 ssh2	2019-11-15 15:32:30
183.15.122.175	attackbotsspam	Nov 15 06:30:36 work-partkepr sshd\[28027\]: Invalid user gh from 183.15.122.175 port 47042 Nov 15 06:30:36 work-partkepr sshd\[28027\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.15.122.175 ...	2019-11-15 15:12:42
106.52.59.96	attack	Nov 15 07:56:08 localhost sshd\[16041\]: Invalid user or from 106.52.59.96 port 60962 Nov 15 07:56:08 localhost sshd\[16041\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.59.96 Nov 15 07:56:10 localhost sshd\[16041\]: Failed password for invalid user or from 106.52.59.96 port 60962 ssh2	2019-11-15 14:59:20
94.191.99.114	attackbotsspam	Nov 15 09:23:03 server sshd\[2590\]: Invalid user adria from 94.191.99.114 Nov 15 09:23:03 server sshd\[2590\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.99.114 Nov 15 09:23:06 server sshd\[2590\]: Failed password for invalid user adria from 94.191.99.114 port 52346 ssh2 Nov 15 09:30:43 server sshd\[4747\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.99.114 user=root Nov 15 09:30:45 server sshd\[4747\]: Failed password for root from 94.191.99.114 port 42098 ssh2 ...	2019-11-15 15:21:23
180.68.177.15	attackspambots	Nov 15 08:21:56 DAAP sshd[19698]: Invalid user fucker from 180.68.177.15 port 57766 Nov 15 08:21:56 DAAP sshd[19698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.68.177.15 Nov 15 08:21:56 DAAP sshd[19698]: Invalid user fucker from 180.68.177.15 port 57766 Nov 15 08:21:59 DAAP sshd[19698]: Failed password for invalid user fucker from 180.68.177.15 port 57766 ssh2 ...	2019-11-15 15:31:29
185.176.27.254	attackbotsspam	11/15/2019-02:00:37.624128 185.176.27.254 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-11-15 15:11:55
49.235.216.174	attackbots	Nov 15 08:03:10 sd-53420 sshd\[11253\]: Invalid user leandros from 49.235.216.174 Nov 15 08:03:10 sd-53420 sshd\[11253\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.216.174 Nov 15 08:03:13 sd-53420 sshd\[11253\]: Failed password for invalid user leandros from 49.235.216.174 port 59020 ssh2 Nov 15 08:07:55 sd-53420 sshd\[12556\]: Invalid user wisconsi from 49.235.216.174 Nov 15 08:07:55 sd-53420 sshd\[12556\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.216.174 ...	2019-11-15 15:23:44
148.70.4.242	attackspam	2019-11-15T07:19:19.198306tmaserv sshd\[27303\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.4.242 2019-11-15T07:19:21.591567tmaserv sshd\[27303\]: Failed password for invalid user francisc from 148.70.4.242 port 39426 ssh2 2019-11-15T08:23:43.399129tmaserv sshd\[30650\]: Invalid user backup from 148.70.4.242 port 34052 2019-11-15T08:23:43.404276tmaserv sshd\[30650\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.4.242 2019-11-15T08:23:45.254677tmaserv sshd\[30650\]: Failed password for invalid user backup from 148.70.4.242 port 34052 ssh2 2019-11-15T08:28:45.402648tmaserv sshd\[30887\]: Invalid user inessa from 148.70.4.242 port 42324 ...	2019-11-15 15:16:05
148.70.22.185	attack	Nov 15 08:20:51 pkdns2 sshd\[34383\]: Invalid user runge from 148.70.22.185Nov 15 08:20:52 pkdns2 sshd\[34383\]: Failed password for invalid user runge from 148.70.22.185 port 25165 ssh2Nov 15 08:25:33 pkdns2 sshd\[34603\]: Invalid user yoder from 148.70.22.185Nov 15 08:25:35 pkdns2 sshd\[34603\]: Failed password for invalid user yoder from 148.70.22.185 port 62373 ssh2Nov 15 08:30:23 pkdns2 sshd\[34822\]: Invalid user martire from 148.70.22.185Nov 15 08:30:26 pkdns2 sshd\[34822\]: Failed password for invalid user martire from 148.70.22.185 port 35616 ssh2 ...	2019-11-15 15:15:41
36.56.147.204	attack	2019-11-15 00:30:44 dovecot_login authenticator failed for (nseazdgy.com) [36.56.147.204]:53810 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=ler@lerctr.org) 2019-11-15 00:30:56 dovecot_login authenticator failed for (nseazdgy.com) [36.56.147.204]:54129 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=ler@lerctr.org) 2019-11-15 00:31:10 dovecot_login authenticator failed for (nseazdgy.com) [36.56.147.204]:54632 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=ler@lerctr.org) ...	2019-11-15 15:03:40
217.182.15.176	attackspam	SpamReport	2019-11-15 15:10:18
41.182.253.204	attackspambots	Nov 15 07:49:42 vps666546 sshd\[2630\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.182.253.204 user=sync Nov 15 07:49:44 vps666546 sshd\[2630\]: Failed password for sync from 41.182.253.204 port 38094 ssh2 Nov 15 07:59:32 vps666546 sshd\[3086\]: Invalid user lano from 41.182.253.204 port 54764 Nov 15 07:59:32 vps666546 sshd\[3086\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.182.253.204 Nov 15 07:59:34 vps666546 sshd\[3086\]: Failed password for invalid user lano from 41.182.253.204 port 54764 ssh2 ...	2019-11-15 15:33:24

Recently Reported IPs

107.172.191.146	201.189.72.58	185.61.154.51	82.196.123.154
195.154.168.115	47.59.161.19	68.229.238.13	216.45.141.194
98.126.200.242	206.189.148.15	194.165.149.18	188.215.167.96
79.103.12.123	103.118.157.154	86.57.155.110	187.214.252.188
178.33.168.128	95.238.34.84	104.24.125.146	84.17.47.157