49.170.52.54 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Korea (Republic of)

Internet Service Provider: LG Powercomm

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Honeypot attack, port: 5555, PTR: PTR record not found	2020-02-09 06:34:51

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 49.170.52.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20787
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;49.170.52.54.			IN	A

;; AUTHORITY SECTION:
.			587	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020801 1800 900 604800 86400

;; Query time: 192 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 09 06:34:45 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 54.52.170.49.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 54.52.170.49.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
223.111.200.246	attackbots	port scan and connect, tcp 111 (rpcbind)	2019-08-19 14:18:52
35.198.160.68	attack	Aug 19 05:05:57 mail sshd\[30676\]: Invalid user laury from 35.198.160.68 Aug 19 05:05:57 mail sshd\[30676\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.198.160.68 Aug 19 05:05:59 mail sshd\[30676\]: Failed password for invalid user laury from 35.198.160.68 port 33892 ssh2 ...	2019-08-19 14:21:20
178.239.176.73	attack	port scan and connect, tcp 22 (ssh)	2019-08-19 14:10:47
209.97.128.177	attackspambots	"Fail2Ban detected SSH brute force attempt"	2019-08-19 13:55:11
139.99.219.208	attack	Automatic report	2019-08-19 14:13:41
177.11.17.19	attackbots	SASL PLAIN auth failed: ruser=...	2019-08-19 13:25:28
51.77.148.77	attackspam	Aug 19 06:00:27 MK-Soft-VM6 sshd\[7887\]: Invalid user mh from 51.77.148.77 port 51930 Aug 19 06:00:27 MK-Soft-VM6 sshd\[7887\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.148.77 Aug 19 06:00:29 MK-Soft-VM6 sshd\[7887\]: Failed password for invalid user mh from 51.77.148.77 port 51930 ssh2 ...	2019-08-19 14:01:32
45.40.244.197	attackbots	Aug 18 16:36:44 hiderm sshd\[20496\]: Invalid user signalhill from 45.40.244.197 Aug 18 16:36:44 hiderm sshd\[20496\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.40.244.197 Aug 18 16:36:45 hiderm sshd\[20496\]: Failed password for invalid user signalhill from 45.40.244.197 port 40864 ssh2 Aug 18 16:40:21 hiderm sshd\[20910\]: Invalid user marcio from 45.40.244.197 Aug 18 16:40:21 hiderm sshd\[20910\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.40.244.197	2019-08-19 14:15:29
46.101.243.230	attack	Aug 19 05:54:54 web8 sshd\[28965\]: Invalid user ms from 46.101.243.230 Aug 19 05:54:54 web8 sshd\[28965\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.243.230 Aug 19 05:54:56 web8 sshd\[28965\]: Failed password for invalid user ms from 46.101.243.230 port 44256 ssh2 Aug 19 05:59:01 web8 sshd\[30950\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.243.230 user=root Aug 19 05:59:03 web8 sshd\[30950\]: Failed password for root from 46.101.243.230 port 34512 ssh2	2019-08-19 14:12:13
134.175.62.14	attackbots	Aug 19 07:49:34 [host] sshd[1473]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.62.14 user=root Aug 19 07:49:35 [host] sshd[1473]: Failed password for root from 134.175.62.14 port 45790 ssh2 Aug 19 07:59:33 [host] sshd[1658]: Invalid user infa from 134.175.62.14	2019-08-19 14:04:00
41.39.149.242	attackbotsspam	Unauthorized connection attempt from IP address 41.39.149.242 on Port 445(SMB)	2019-08-19 13:52:26
180.168.223.66	attackbotsspam	Automatic report - Banned IP Access	2019-08-19 13:45:38
140.143.230.161	attackbots	(sshd) Failed SSH login from 140.143.230.161 (-): 5 in the last 3600 secs	2019-08-19 14:17:22
138.219.222.165	attackspambots	SASL PLAIN auth failed: ruser=...	2019-08-19 13:29:33
139.217.207.78	attackspambots	Aug 19 06:30:18 [snip] sshd[16048]: Invalid user neo from 139.217.207.78 port 54302 Aug 19 06:30:18 [snip] sshd[16048]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.207.78 Aug 19 06:30:20 [snip] sshd[16048]: Failed password for invalid user neo from 139.217.207.78 port 54302 ssh2[...]	2019-08-19 14:07:11

Recently Reported IPs

123.195.46.98	201.243.247.249	49.246.52.33	160.91.41.207
45.232.73.83	168.8.158.12	138.68.83.7	182.153.238.191
244.53.179.99	114.40.115.92	106.212.146.255	181.107.53.129
35.194.155.97	187.167.193.75	1.53.172.239	117.3.229.231
181.122.132.102	5.111.156.209	93.158.239.42	110.138.15.189