180.104.6.149 - IPInfo

Basic Info

City: Xuzhou

Region: Jiangsu

Country: China

Internet Service Provider: ChinaNet Jiangsu Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	[Aegis] @ 2019-11-04 14:30:54 0000 -> Sendmail rejected message.	2019-11-05 03:00:20

Comments on same subnet:

IP	Type	Details	Datetime
180.104.6.189	attackspambots	Brute force attempt	2019-11-29 05:20:17
180.104.61.246	attackspambots	badbot	2019-11-23 23:42:20
180.104.61.201	attack	2323/tcp [2019-08-11]1pkt	2019-08-11 22:30:03
180.104.6.230	attackbots	SpamReport	2019-07-11 13:42:33

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 180.104.6.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55570
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;180.104.6.149.			IN	A

;; AUTHORITY SECTION:
.			330	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110401 1800 900 604800 86400

;; Query time: 31 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Nov 05 03:00:17 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 149.6.104.180.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 149.6.104.180.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
84.163.216.234	attackbotsspam	Automatic report - Port Scan Attack	2019-10-07 06:21:20
170.80.33.29	attack	2019-10-06T21:44:48.576289abusebot-3.cloudsearch.cf sshd\[2145\]: Invalid user 1qaz!QAZ from 170.80.33.29 port 40476	2019-10-07 06:01:49
222.186.175.6	attack	Oct 6 23:41:40 vmd17057 sshd\[13784\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.6 user=root Oct 6 23:41:42 vmd17057 sshd\[13784\]: Failed password for root from 222.186.175.6 port 20696 ssh2 Oct 6 23:41:46 vmd17057 sshd\[13784\]: Failed password for root from 222.186.175.6 port 20696 ssh2 ...	2019-10-07 05:44:53
122.155.174.36	attackspam	Oct 6 23:53:16 web1 postfix/smtpd\[6602\]: warning: unknown\[122.155.174.36\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 6 23:53:22 web1 postfix/smtpd\[6602\]: warning: unknown\[122.155.174.36\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 6 23:53:33 web1 postfix/smtpd\[6602\]: warning: unknown\[122.155.174.36\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-10-07 06:20:37
218.205.182.134	attackbotsspam	3389BruteforceFW21	2019-10-07 05:56:53
112.21.191.244	attackbots	Oct 6 11:38:36 wbs sshd\[11500\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.21.191.244 user=root Oct 6 11:38:38 wbs sshd\[11500\]: Failed password for root from 112.21.191.244 port 43722 ssh2 Oct 6 11:41:44 wbs sshd\[11902\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.21.191.244 user=root Oct 6 11:41:46 wbs sshd\[11902\]: Failed password for root from 112.21.191.244 port 41482 ssh2 Oct 6 11:44:53 wbs sshd\[12187\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.21.191.244 user=root	2019-10-07 05:52:46
103.253.107.43	attack	Automatic report - SSH Brute-Force Attack	2019-10-07 05:51:21
110.77.230.193	attackbotsspam	Chat Spam	2019-10-07 06:15:08
93.79.221.112	attackbotsspam	http://emsisoft.net.ua/licensed.php	2019-10-07 06:20:50
66.249.66.159	attackspam	Automatic report - Banned IP Access	2019-10-07 06:07:34
139.59.77.168	attackbots	WordPress login Brute force / Web App Attack on client site.	2019-10-07 06:09:46
60.169.75.58	attack	2019-10-06T19:50:41.223941homeassistant sshd[25832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.169.75.58 user=root 2019-10-06T19:50:43.418366homeassistant sshd[25832]: Failed password for root from 60.169.75.58 port 58732 ssh2 ...	2019-10-07 05:55:14
209.17.96.194	attack	Port scan attempt detected by AWS-CCS, CTS, India	2019-10-07 06:03:03
14.142.94.222	attack	Oct 6 17:46:01 TORMINT sshd\[28951\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.94.222 user=root Oct 6 17:46:03 TORMINT sshd\[28951\]: Failed password for root from 14.142.94.222 port 36110 ssh2 Oct 6 17:50:18 TORMINT sshd\[29280\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.94.222 user=root ...	2019-10-07 06:04:35
129.28.30.54	attack	Oct 6 21:59:50 ip-172-31-62-245 sshd\[21655\]: Invalid user Light@123 from 129.28.30.54\ Oct 6 21:59:53 ip-172-31-62-245 sshd\[21655\]: Failed password for invalid user Light@123 from 129.28.30.54 port 36012 ssh2\ Oct 6 22:03:24 ip-172-31-62-245 sshd\[21682\]: Invalid user Energy@2017 from 129.28.30.54\ Oct 6 22:03:26 ip-172-31-62-245 sshd\[21682\]: Failed password for invalid user Energy@2017 from 129.28.30.54 port 41284 ssh2\ Oct 6 22:06:56 ip-172-31-62-245 sshd\[21738\]: Invalid user Admin!@\#456 from 129.28.30.54\	2019-10-07 06:12:54

Recently Reported IPs

95.174.30.127	123.18.27.138	90.109.108.151	77.42.121.24
2001:e68:506c:d8ab:1e5f:2bff:fe38:9078	171.4.234.93	117.85.116.203	189.13.38.244
36.81.7.174	77.68.41.126	41.218.211.127	125.227.69.46
77.42.113.97	171.6.235.193	103.40.8.179	77.42.79.3
190.215.37.50	190.79.251.71	107.161.181.194	167.250.1.33