116.52.144.30 - IPInfo

Basic Info

City: Kunming

Region: Yunnan

Country: China

Internet Service Provider: ChinaNet Yunnan Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Invalid user ubnt from 116.52.144.30 port 49213	2020-01-19 03:57:20

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.52.144.30
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43566
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.52.144.30.			IN	A

;; AUTHORITY SECTION:
.			404	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011800 1800 900 604800 86400

;; Query time: 123 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 19 03:57:16 CST 2020
;; MSG SIZE  rcvd: 117

Host info

30.144.52.116.in-addr.arpa domain name pointer 30.144.52.116.broad.km.yn.dynamic.163data.com.cn.

Nslookup info:

Server:		100.100.2.136
Address:	100.100.2.136#53

Non-authoritative answer:
30.144.52.116.IN-ADDR.ARPA	name = 30.144.52.116.broad.km.yn.dynamic.163data.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.185.54	attackspam	Apr 21 21:50:48 cloud sshd[7422]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.185.54 Apr 21 21:50:49 cloud sshd[7422]: Failed password for invalid user test from 106.12.185.54 port 57296 ssh2	2020-04-22 04:19:49
106.13.35.176	attack	Apr 22 01:14:51 gw1 sshd[31059]: Failed password for root from 106.13.35.176 port 59130 ssh2 ...	2020-04-22 04:29:19
176.31.255.223	attackbotsspam	Apr 21 21:51:00 pve1 sshd[30444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.255.223 Apr 21 21:51:01 pve1 sshd[30444]: Failed password for invalid user ap from 176.31.255.223 port 55626 ssh2 ...	2020-04-22 04:06:52
220.76.205.35	attackspambots	20 attempts against mh-ssh on echoip	2020-04-22 04:03:43
118.26.66.131	attackspambots	Apr 21 14:10:58 server1 sshd\[8942\]: Failed password for root from 118.26.66.131 port 2224 ssh2 Apr 21 14:12:55 server1 sshd\[9489\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.26.66.131 user=ubuntu Apr 21 14:12:57 server1 sshd\[9489\]: Failed password for ubuntu from 118.26.66.131 port 2225 ssh2 Apr 21 14:14:50 server1 sshd\[10277\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.26.66.131 user=ubuntu Apr 21 14:14:52 server1 sshd\[10277\]: Failed password for ubuntu from 118.26.66.131 port 2226 ssh2 ...	2020-04-22 04:22:04
175.136.83.84	attackbotsspam	" "	2020-04-22 03:57:56
217.33.76.158	attackspambots	Apr 21 21:50:56 163-172-32-151 sshd[2605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.33.76.158 user=root Apr 21 21:50:57 163-172-32-151 sshd[2605]: Failed password for root from 217.33.76.158 port 37976 ssh2 ...	2020-04-22 04:11:33
81.170.156.164	attackbots	AbusiveCrawling	2020-04-22 04:12:40
106.13.207.159	attack	SSH auth scanning - multiple failed logins	2020-04-22 04:02:10
49.67.13.95	attackbotsspam	Apr 21 21:50:51 debian-2gb-nbg1-2 kernel: \[9757608.434242\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=49.67.13.95 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=47 ID=27749 PROTO=TCP SPT=44665 DPT=23 WINDOW=38525 RES=0x00 SYN URGP=0	2020-04-22 04:18:24
43.243.37.227	attackbots	2020-04-21T20:02:38.127215shield sshd\[10805\]: Invalid user ri from 43.243.37.227 port 46294 2020-04-21T20:02:38.131446shield sshd\[10805\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.243.37.227 2020-04-21T20:02:40.365377shield sshd\[10805\]: Failed password for invalid user ri from 43.243.37.227 port 46294 ssh2 2020-04-21T20:06:40.095199shield sshd\[11227\]: Invalid user ly from 43.243.37.227 port 52946 2020-04-21T20:06:40.099178shield sshd\[11227\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.243.37.227	2020-04-22 04:20:42
152.136.87.219	attack	Apr 21 19:44:17 ip-172-31-61-156 sshd[23141]: Failed password for root from 152.136.87.219 port 55586 ssh2 Apr 21 19:50:41 ip-172-31-61-156 sshd[23314]: Invalid user em from 152.136.87.219 Apr 21 19:50:41 ip-172-31-61-156 sshd[23314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.87.219 Apr 21 19:50:41 ip-172-31-61-156 sshd[23314]: Invalid user em from 152.136.87.219 Apr 21 19:50:43 ip-172-31-61-156 sshd[23314]: Failed password for invalid user em from 152.136.87.219 port 42792 ssh2 ...	2020-04-22 04:25:14
45.151.255.178	attackbots	[2020-04-21 15:49:06] NOTICE[1170][C-000033fa] chan_sip.c: Call from '' (45.151.255.178:59526) to extension '46842002317' rejected because extension not found in context 'public'. [2020-04-21 15:49:06] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-21T15:49:06.112-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="46842002317",SessionID="0x7f6c0825cda8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.151.255.178/59526",ACLName="no_extension_match" [2020-04-21 15:51:10] NOTICE[1170][C-000033fb] chan_sip.c: Call from '' (45.151.255.178:55257) to extension '01146842002317' rejected because extension not found in context 'public'. [2020-04-21 15:51:10] SECURITY[1184] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-21T15:51:10.743-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146842002317",SessionID="0x7f6c0817f3c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.151. ...	2020-04-22 04:00:15
113.54.156.94	attackspam	Apr 21 19:41:07 ip-172-31-62-245 sshd\[21006\]: Invalid user je from 113.54.156.94\ Apr 21 19:41:09 ip-172-31-62-245 sshd\[21006\]: Failed password for invalid user je from 113.54.156.94 port 59596 ssh2\ Apr 21 19:45:53 ip-172-31-62-245 sshd\[21036\]: Invalid user test from 113.54.156.94\ Apr 21 19:45:56 ip-172-31-62-245 sshd\[21036\]: Failed password for invalid user test from 113.54.156.94 port 35166 ssh2\ Apr 21 19:50:44 ip-172-31-62-245 sshd\[21076\]: Failed password for root from 113.54.156.94 port 38958 ssh2\	2020-04-22 04:24:27
106.51.98.159	attackbotsspam	Apr 21 21:50:56 vps647732 sshd[20321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.98.159 Apr 21 21:50:58 vps647732 sshd[20321]: Failed password for invalid user zw from 106.51.98.159 port 60780 ssh2 ...	2020-04-22 04:10:36

Recently Reported IPs

200.126.120.146	200.230.16.228	194.17.129.174	61.215.129.48
49.66.221.215	1.223.1.109	106.13.144.102	193.122.223.54
54.158.247.253	85.138.3.119	32.11.2.177	49.77.70.107
106.12.49.158	62.117.231.57	1.198.171.95	122.139.186.45
104.244.229.223	156.56.65.123	64.148.113.120	181.66.86.214