143.160.52.229

Basic Info

City: unknown

Region: North West

Country: South Africa

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 143.160.52.229
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10711
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;143.160.52.229.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020800 1800 900 604800 86400

;; Query time: 107 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 09 06:23:17 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 229.52.160.143.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 229.52.160.143.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
91.184.87.105	attackspam	37215/tcp [2020-09-27]1pkt	2020-09-28 18:22:40
36.22.223.26	attackspambots	Sep 27 23:31:23 srv01 postfix/smtpd\[7140\]: warning: unknown\[36.22.223.26\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 27 23:34:51 srv01 postfix/smtpd\[7140\]: warning: unknown\[36.22.223.26\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 27 23:38:19 srv01 postfix/smtpd\[20915\]: warning: unknown\[36.22.223.26\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 27 23:41:47 srv01 postfix/smtpd\[20915\]: warning: unknown\[36.22.223.26\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 27 23:45:14 srv01 postfix/smtpd\[7140\]: warning: unknown\[36.22.223.26\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-28 18:04:03
167.172.192.180	attackbotsspam	167.172.192.180 - - [28/Sep/2020:10:57:47 +0200] "GET /wp-login.php HTTP/1.1" 200 8712 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.172.192.180 - - [28/Sep/2020:10:57:49 +0200] "POST /wp-login.php HTTP/1.1" 200 8942 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.172.192.180 - - [28/Sep/2020:10:57:50 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-28 18:12:23
197.50.3.127	attackbotsspam	TCP (SYN) 197.50.3.127:36715 -> port 23, len 44	2020-09-28 18:30:07
151.236.63.148	attackspam	2020-09-28T16:34:49.907054billing sshd[2240]: Invalid user runner from 151.236.63.148 port 43610 2020-09-28T16:34:51.289936billing sshd[2240]: Failed password for invalid user runner from 151.236.63.148 port 43610 ssh2 2020-09-28T16:37:53.829804billing sshd[9093]: Invalid user zhao from 151.236.63.148 port 56836 ...	2020-09-28 18:28:16
178.150.98.11	attackbotsspam	TCP (SYN) 178.150.98.11:52969 -> port 445, len 52	2020-09-28 18:19:45
77.222.132.189	attackspambots	5x Failed Password	2020-09-28 18:12:01
193.70.0.42	attack	Sep 28 10:48:30 santamaria sshd\[7514\]: Invalid user ali from 193.70.0.42 Sep 28 10:48:30 santamaria sshd\[7514\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.0.42 Sep 28 10:48:31 santamaria sshd\[7514\]: Failed password for invalid user ali from 193.70.0.42 port 35792 ssh2 ...	2020-09-28 18:17:46
133.130.119.178	attack	(sshd) Failed SSH login from 133.130.119.178 (JP/Japan/v133-130-119-178.a04a.g.tyo1.static.cnode.io): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 28 03:00:47 optimus sshd[26675]: Invalid user tester from 133.130.119.178 Sep 28 03:00:49 optimus sshd[26675]: Failed password for invalid user tester from 133.130.119.178 port 52131 ssh2 Sep 28 03:08:38 optimus sshd[29415]: Failed password for root from 133.130.119.178 port 41683 ssh2 Sep 28 03:12:25 optimus sshd[30573]: Invalid user centos from 133.130.119.178 Sep 28 03:12:28 optimus sshd[30573]: Failed password for invalid user centos from 133.130.119.178 port 48920 ssh2	2020-09-28 18:29:07
46.101.146.6	attackspam	46.101.146.6 - - \[28/Sep/2020:11:47:06 +0200\] "POST /wp-login.php HTTP/1.1" 200 12843 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 46.101.146.6 - - \[28/Sep/2020:11:47:06 +0200\] "POST /wp-login.php HTTP/1.1" 200 12712 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" ...	2020-09-28 17:57:21
119.200.113.45	attackbots	5060/udp [2020-09-27]1pkt	2020-09-28 17:53:51
103.41.146.203	attack	srvr3: (mod_security) mod_security (id:920350) triggered by 103.41.146.203 (IN/-/-): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/27 22:35:25 [error] 387871#0: 1717 [client 103.41.146.203] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "16012389257.323956"] [ref "o0,14v21,14"], client: 103.41.146.203, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-09-28 18:31:38
42.194.158.24	attack	Invalid user git from 42.194.158.24 port 36622	2020-09-28 18:31:22
118.89.102.242	attackbots	$f2bV_matches	2020-09-28 18:20:53
201.242.57.14	attack	445/tcp [2020-09-27]1pkt	2020-09-28 18:05:37

Recently Reported IPs

117.203.98.190	94.102.9.68	49.170.52.54	39.50.79.32
196.207.153.24	193.228.161.18	186.233.93.178	183.83.161.7
182.232.29.193	181.118.157.161	179.42.241.108	177.71.59.50
180.97.30.155	177.223.1.194	176.49.165.199	108.222.38.136
138.122.31.76	116.107.191.240	69.66.204.77	14.187.89.101