29.185.0.52 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 29.185.0.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13669
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;29.185.0.52.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020300 1800 900 604800 86400

;; Query time: 35 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 03 23:30:07 CST 2025
;; MSG SIZE  rcvd: 104

Host info

Host 52.0.185.29.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 52.0.185.29.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.127.28.144	attackspam	Jul 1 08:18:08 nginx sshd[4603]: Invalid user hadoop from 103.127.28.144 Jul 1 08:18:08 nginx sshd[4603]: Received disconnect from 103.127.28.144 port 59222:11: Normal Shutdown, Thank you for playing [preauth]	2019-07-01 14:57:41
129.144.180.112	attackspam	Invalid user freyna from 129.144.180.112 port 56973 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.144.180.112 Failed password for invalid user freyna from 129.144.180.112 port 56973 ssh2 Invalid user test from 129.144.180.112 port 14531 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.144.180.112	2019-07-01 14:39:54
173.230.178.155	attackbots	Invalid user ranjit from 173.230.178.155 port 30784	2019-07-01 15:02:17
81.161.61.110	attackspam	NAME : LIFEPC CIDR : 81.161.60.0/23 DDoS attack Slovakia (Slovak Republic) - block certain countries :) IP: 81.161.61.110 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-07-01 15:13:09
185.156.177.24	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-01 03:48:54,157 INFO [amun_request_handler] PortScan Detected on Port: 3389 (185.156.177.24)	2019-07-01 15:02:01
103.68.10.188	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-01 03:24:55,611 INFO [amun_request_handler] PortScan Detected on Port: 445 (103.68.10.188)	2019-07-01 14:45:32
183.82.126.61	attackspambots	SMB Server BruteForce Attack	2019-07-01 14:47:03
54.37.205.162	attack	Jul 1 07:47:53 [munged] sshd[14758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.205.162 user=support Jul 1 07:47:54 [munged] sshd[14758]: Failed password for support from 54.37.205.162 port 35416 ssh2	2019-07-01 15:02:49
89.248.162.168	attackspam	01.07.2019 06:17:08 Connection to port 15009 blocked by firewall	2019-07-01 14:26:28
37.59.104.76	attackspambots	Jul 1 06:40:59 marvibiene sshd[63024]: Invalid user cron from 37.59.104.76 port 41944 Jul 1 06:40:59 marvibiene sshd[63024]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.104.76 Jul 1 06:40:59 marvibiene sshd[63024]: Invalid user cron from 37.59.104.76 port 41944 Jul 1 06:41:01 marvibiene sshd[63024]: Failed password for invalid user cron from 37.59.104.76 port 41944 ssh2 ...	2019-07-01 14:46:41
35.232.147.191	attackbots	Message: Access denied with code 403 (phase 2). Matched phrase "paros" at REQUEST_HEADERS:User-Agent. [file "/etc/httpd/modsecurity.d/activated_rules/modsecurity_crs_35_bad_robots.conf"] [line "20"] [id "990002"] [rev "2"] [msg "Request Indicates a Security Scanner Scanned the Site"] [data "mozilla/5.0 (windows nt 5.1; rv:22.0) gecko/20100101 firefox/22.0 paros/3.2.13"] [severity "CRITICAL"] [ver "OWASP_CRS/2.2.6"] [maturity "9"] [accuracy "9"] [tag "OWASP_CRS/AUTOMATION/SECURITY_SCANNER"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"]	2019-07-01 14:38:40
159.65.236.58	attack	SSH Bruteforce	2019-07-01 14:35:05
146.88.240.4	attack	Scanning (more than 2 packets) random ports - tries to find possible vulnerable services	2019-07-01 14:58:54
128.134.25.85	attack	Jul 1 08:23:49 lnxweb62 sshd[1833]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.134.25.85 Jul 1 08:23:49 lnxweb62 sshd[1833]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.134.25.85	2019-07-01 14:42:48
188.131.235.77	attack	Repeated brute force against a port	2019-07-01 15:15:06

Recently Reported IPs

165.208.6.231	38.100.78.129	67.50.195.255	91.183.140.196
184.169.52.22	116.246.171.20	70.23.227.239	81.77.55.71
138.102.22.35	220.92.252.193	104.139.157.29	73.131.23.232
209.189.60.56	233.10.52.149	229.81.146.155	238.247.189.19
246.151.69.250	15.7.0.123	204.178.94.66	225.111.176.101