152.149.54.72 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Korea (the Republic of)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 152.149.54.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21522
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;152.149.54.72.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022500 1800 900 604800 86400

;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 25 19:25:58 CST 2025
;; MSG SIZE  rcvd: 106

Host info

Host 72.54.149.152.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 72.54.149.152.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
2001:470:dfa9:10ff:0:242:ac11:2a	attackspambots	Port scan	2020-02-29 15:10:39
192.254.194.32	attack	192.254.194.32 - - \[29/Feb/2020:07:04:58 +0100\] "POST /wp-login.php HTTP/1.0" 200 6509 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 192.254.194.32 - - \[29/Feb/2020:07:05:00 +0100\] "POST /wp-login.php HTTP/1.0" 200 6322 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 192.254.194.32 - - \[29/Feb/2020:07:05:02 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-02-29 15:36:19
113.182.151.185	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 15:43:44
190.72.173.111	attackspambots	20/2/29@00:43:52: FAIL: Alarm-Network address from=190.72.173.111 20/2/29@00:43:52: FAIL: Alarm-Network address from=190.72.173.111 ...	2020-02-29 15:51:39
45.143.220.164	attack	[2020-02-29 02:14:43] NOTICE[1148] chan_sip.c: Registration from '"100501" ' failed for '45.143.220.164:5702' - Wrong password [2020-02-29 02:14:43] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-02-29T02:14:43.872-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="100501",SessionID="0x7fd82c81c298",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.220.164/5702",Challenge="0cb31305",ReceivedChallenge="0cb31305",ReceivedHash="188888e132c3469d0214a98807317db4" [2020-02-29 02:14:43] NOTICE[1148] chan_sip.c: Registration from '"100501" ' failed for '45.143.220.164:5702' - Wrong password [2020-02-29 02:14:43] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-02-29T02:14:43.978-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="100501",SessionID="0x7fd82c39c1e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddre ...	2020-02-29 15:33:30
185.211.245.170	attack	Feb 29 07:34:59 mail postfix/smtpd\[9199\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Feb 29 07:35:06 mail postfix/smtpd\[9199\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Feb 29 08:09:07 mail postfix/smtpd\[10041\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Feb 29 08:09:14 mail postfix/smtpd\[10004\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2020-02-29 15:13:25
189.236.163.217	attack	1582955062 - 02/29/2020 12:44:22 Host: dsl-189-236-163-217-dyn.prod-infinitum.com.mx/189.236.163.217 Port: 23 TCP Blocked ...	2020-02-29 15:24:19
34.232.168.126	attackspam	Feb 28 01:29:05 ahost sshd[28889]: Invalid user speech from 34.232.168.126 Feb 28 01:29:05 ahost sshd[28889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-34-232-168-126.compute-1.amazonaws.com Feb 28 01:29:07 ahost sshd[28889]: Failed password for invalid user speech from 34.232.168.126 port 52294 ssh2 Feb 28 01:29:07 ahost sshd[28889]: Received disconnect from 34.232.168.126: 11: Bye Bye [preauth] Feb 28 01:40:06 ahost sshd[29157]: Invalid user student2 from 34.232.168.126 Feb 28 01:40:06 ahost sshd[29157]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-34-232-168-126.compute-1.amazonaws.com Feb 28 01:40:08 ahost sshd[29157]: Failed password for invalid user student2 from 34.232.168.126 port 60244 ssh2 Feb 28 01:40:08 ahost sshd[29157]: Received disconnect from 34.232.168.126: 11: Bye Bye [preauth] Feb 28 01:48:23 ahost sshd[30996]: Invalid user renjiawei from 34.232.168.126 F........ ------------------------------	2020-02-29 15:38:37
157.230.2.208	attackspambots	Feb 29 12:33:18 gw1 sshd[918]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.2.208 Feb 29 12:33:20 gw1 sshd[918]: Failed password for invalid user sundapeng from 157.230.2.208 port 39342 ssh2 ...	2020-02-29 15:47:46
45.120.69.82	attackbotsspam	$f2bV_matches	2020-02-29 15:42:03
149.56.96.78	attackbotsspam	2020-02-29T06:52:26.510109shield sshd\[23463\]: Invalid user jiaxing from 149.56.96.78 port 58186 2020-02-29T06:52:26.514248shield sshd\[23463\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.ip-149-56-96.net 2020-02-29T06:52:28.052861shield sshd\[23463\]: Failed password for invalid user jiaxing from 149.56.96.78 port 58186 ssh2 2020-02-29T07:01:08.151675shield sshd\[26210\]: Invalid user joomla from 149.56.96.78 port 16450 2020-02-29T07:01:08.156682shield sshd\[26210\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.ip-149-56-96.net	2020-02-29 15:20:11
106.13.37.147	attackbots	Feb 28 20:42:21 web1 sshd\[319\]: Invalid user appimgr from 106.13.37.147 Feb 28 20:42:21 web1 sshd\[319\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.37.147 Feb 28 20:42:23 web1 sshd\[319\]: Failed password for invalid user appimgr from 106.13.37.147 port 38332 ssh2 Feb 28 20:47:49 web1 sshd\[871\]: Invalid user cc from 106.13.37.147 Feb 28 20:47:49 web1 sshd\[871\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.37.147	2020-02-29 15:37:43
113.182.180.87	attack	Unauthorized connection attempt detected from IP address 113.182.180.87 to port 23 [J]	2020-02-29 15:41:39
104.131.97.47	attackspambots	Feb 29 12:49:21 gw1 sshd[1736]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.97.47 Feb 29 12:49:23 gw1 sshd[1736]: Failed password for invalid user rustserver from 104.131.97.47 port 39940 ssh2 ...	2020-02-29 15:51:52
113.187.57.150	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 15:14:06

Recently Reported IPs

225.93.166.110	235.197.157.15	212.72.33.22	101.37.78.119
243.215.188.160	171.24.97.59	154.234.248.215	251.130.143.62
118.19.94.190	141.251.253.26	69.145.3.62	57.144.32.100
4.134.248.91	12.7.230.62	187.106.12.183	5.44.122.10
98.0.46.27	249.20.41.194	129.199.93.176	145.250.151.200