49.158.3.52 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Republic of China (ROC)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
49.158.39.231	attack	Unauthorized connection attempt detected from IP address 49.158.39.231 to port 4567 [J]	2020-01-29 19:13:56
49.158.39.231	attackspam	Unauthorized connection attempt detected from IP address 49.158.39.231 to port 4567	2019-12-31 21:21:22

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.158.3.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45240
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;49.158.3.52.			IN	A

;; AUTHORITY SECTION:
.			585	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 09:08:22 CST 2022
;; MSG SIZE  rcvd: 104

Host info

52.3.158.49.in-addr.arpa domain name pointer 49-158-3-52.dynamic.elinx.com.tw.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
52.3.158.49.in-addr.arpa	name = 49-158-3-52.dynamic.elinx.com.tw.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.53.249.204	attackspam	Aug 10 12:00:01 rush sshd[29432]: Failed password for root from 106.53.249.204 port 9986 ssh2 Aug 10 12:06:20 rush sshd[29629]: Failed password for root from 106.53.249.204 port 19345 ssh2 ...	2020-08-10 20:29:04
223.4.66.222	attackspam	Icarus honeypot on github	2020-08-10 19:49:29
54.249.53.213	attack	Unauthorized connection attempt detected from IP address 54.249.53.213 to port 666 [T]	2020-08-10 20:07:35
95.59.161.214	attack	Unauthorized connection attempt detected from IP address 95.59.161.214 to port 445 [T]	2020-08-10 19:46:21
222.186.180.130	attackspambots	Aug 10 14:09:42 vmanager6029 sshd\[14706\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.130 user=root Aug 10 14:09:45 vmanager6029 sshd\[14704\]: error: PAM: Authentication failure for root from 222.186.180.130 Aug 10 14:09:45 vmanager6029 sshd\[14707\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.130 user=root	2020-08-10 20:11:23
59.42.192.195	attackspambots	TCP (SYN) 59.42.192.195:56741 -> port 1433, len 44	2020-08-10 20:06:57
49.233.80.89	attack	Unauthorized connection attempt detected from IP address 49.233.80.89 to port 6379 [T]	2020-08-10 20:08:29
222.186.173.154	attack	Aug 10 06:55:17 HPCompaq6200-Xubuntu sshd[12324]: Unable to negotiate with 222.186.173.154 port 54788: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] Aug 10 07:01:32 HPCompaq6200-Xubuntu sshd[13134]: Unable to negotiate with 222.186.173.154 port 64522: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] Aug 10 07:21:49 HPCompaq6200-Xubuntu sshd[15801]: Unable to negotiate with 222.186.173.154 port 29342: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] ...	2020-08-10 20:23:18
132.232.14.159	attackspambots	Lines containing failures of 132.232.14.159 Aug 10 07:27:16 penfold sshd[4243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.14.159 user=r.r Aug 10 07:27:18 penfold sshd[4243]: Failed password for r.r from 132.232.14.159 port 34016 ssh2 Aug 10 07:27:21 penfold sshd[4243]: Received disconnect from 132.232.14.159 port 34016:11: Bye Bye [preauth] Aug 10 07:27:21 penfold sshd[4243]: Disconnected from authenticating user r.r 132.232.14.159 port 34016 [preauth] Aug 10 07:36:54 penfold sshd[5336]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.14.159 user=r.r Aug 10 07:36:56 penfold sshd[5336]: Failed password for r.r from 132.232.14.159 port 35542 ssh2 Aug 10 07:36:57 penfold sshd[5336]: Received disconnect from 132.232.14.159 port 35542:11: Bye Bye [preauth] Aug 10 07:36:57 penfold sshd[5336]: Disconnected from authenticating user r.r 132.232.14.159 port 35542 [preauth] Aug 1........ ------------------------------	2020-08-10 20:15:21
213.157.50.108	attack	Unauthorized connection attempt detected from IP address 213.157.50.108 to port 445 [T]	2020-08-10 19:50:16
180.211.162.198	attackbotsspam	Unauthorized connection attempt detected from IP address 180.211.162.198 to port 1433 [T]	2020-08-10 19:54:59
222.186.175.216	attackspambots	Aug 10 14:16:22 server sshd[15702]: Failed none for root from 222.186.175.216 port 54182 ssh2 Aug 10 14:16:24 server sshd[15702]: Failed password for root from 222.186.175.216 port 54182 ssh2 Aug 10 14:16:29 server sshd[15702]: Failed password for root from 222.186.175.216 port 54182 ssh2	2020-08-10 20:18:50
114.67.74.50	attackspambots	TCP (SYN) 114.67.74.50:56072 -> port 22, len 48	2020-08-10 19:59:29
106.222.176.121	attack	Unauthorized connection attempt detected from IP address 106.222.176.121 to port 445 [T]	2020-08-10 20:00:58
60.29.31.98	attackbotsspam	Aug 10 14:02:28 server sshd[32004]: Failed password for root from 60.29.31.98 port 51326 ssh2 Aug 10 14:06:01 server sshd[33016]: Failed password for root from 60.29.31.98 port 37138 ssh2 Aug 10 14:09:42 server sshd[34186]: Failed password for root from 60.29.31.98 port 56452 ssh2	2020-08-10 20:15:48

Recently Reported IPs

193.56.29.44	175.107.4.14	34.147.24.210	185.46.218.67
120.57.223.65	60.242.5.138	31.24.131.137	196.70.92.113
41.221.90.114	111.203.12.36	116.74.17.60	59.99.131.189
31.40.252.91	112.94.252.81	189.213.164.188	2.32.29.123
172.104.218.126	187.163.112.148	189.213.46.23	115.150.208.41