Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: Washington

Region: Virginia

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
No discussion about this IP yet. Click above link to make one.
Comments on same subnet:
IP Type Details Datetime
52.149.134.66 attack
Invalid user localhost from 52.149.134.66 port 53251
2020-09-28 06:05:56
52.149.134.66 attack
Invalid user 162 from 52.149.134.66 port 19013
2020-09-27 22:27:47
52.149.134.66 attack
2020-09-27 00:50:32.343294-0500  localhost sshd[20428]: Failed password for invalid user 163 from 52.149.134.66 port 15876 ssh2
2020-09-27 14:19:27
52.149.134.66 attackspambots
2020-09-26T23:46:52.645890ks3355764 sshd[17249]: Invalid user rimes from 52.149.134.66 port 29563
2020-09-26T23:46:54.461242ks3355764 sshd[17249]: Failed password for invalid user rimes from 52.149.134.66 port 29563 ssh2
...
2020-09-27 05:57:45
52.149.134.66 attack
Sep 26 16:12:01 rancher-0 sshd[314705]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.149.134.66  user=root
Sep 26 16:12:03 rancher-0 sshd[314705]: Failed password for root from 52.149.134.66 port 42403 ssh2
...
2020-09-26 22:17:21
52.149.134.66 attackspambots
Sep 26 07:08:01 *hidden* sshd[24325]: Invalid user admin from 52.149.134.66 port 60912 Sep 26 07:08:01 *hidden* sshd[24325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.149.134.66 Sep 26 07:08:03 *hidden* sshd[24325]: Failed password for invalid user admin from 52.149.134.66 port 60912 ssh2
2020-09-26 14:01:17
52.149.134.66 attack
2020-09-24T20:30:12.132592ks3355764 sshd[32225]: Invalid user ityx from 52.149.134.66 port 26538
2020-09-24T20:30:14.584632ks3355764 sshd[32225]: Failed password for invalid user ityx from 52.149.134.66 port 26538 ssh2
...
2020-09-25 02:30:57
52.149.134.66 attack
Lines containing failures of 52.149.134.66 (max 1000)
Sep 23 12:05:54 UTC__SANYALnet-Labs__cac12 sshd[19035]: Connection from 52.149.134.66 port 22729 on 64.137.176.96 port 22
Sep 23 12:05:54 UTC__SANYALnet-Labs__cac12 sshd[19036]: Connection from 52.149.134.66 port 22728 on 64.137.176.104 port 22
Sep 23 12:05:55 UTC__SANYALnet-Labs__cac12 sshd[19035]: User r.r from 52.149.134.66 not allowed because not listed in AllowUsers
Sep 23 12:05:55 UTC__SANYALnet-Labs__cac12 sshd[19036]: User r.r from 52.149.134.66 not allowed because not listed in AllowUsers
Sep 23 12:05:55 UTC__SANYALnet-Labs__cac12 sshd[19035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.149.134.66  user=r.r
Sep 23 12:05:55 UTC__SANYALnet-Labs__cac12 sshd[19036]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.149.134.66  user=r.r
Sep 23 12:05:57 UTC__SANYALnet-Labs__cac12 sshd[19035]: Failed password for invalid user r.r........
------------------------------
2020-09-24 18:11:46
52.149.134.26 attack
Unauthorized connection attempt detected from IP address 52.149.134.26 to port 1433 [T]
2020-07-22 03:45:08
52.149.134.26 attackbotsspam
Jul 18 09:28:31 nextcloud sshd\[24783\]: Invalid user admin from 52.149.134.26
Jul 18 09:28:31 nextcloud sshd\[24783\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.149.134.26
Jul 18 09:28:32 nextcloud sshd\[24783\]: Failed password for invalid user admin from 52.149.134.26 port 5283 ssh2
2020-07-18 15:48:51
52.149.134.26 attackbots
Jul 18 02:43:57 rancher-0 sshd[424664]: Invalid user admin from 52.149.134.26 port 42830
...
2020-07-18 08:49:36
52.149.134.26 attackspambots
Unauthorized SSH login attempts
2020-07-17 00:38:55
52.149.134.26 attackbotsspam
Jul 15 11:11:25 nextcloud sshd\[30208\]: Invalid user admin from 52.149.134.26
Jul 15 11:11:25 nextcloud sshd\[30208\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.149.134.26
Jul 15 11:11:27 nextcloud sshd\[30208\]: Failed password for invalid user admin from 52.149.134.26 port 20149 ssh2
2020-07-15 17:12:09
52.149.134.171 attack
Jul 15 02:05:08 fhem-rasp sshd[3277]: Disconnected from invalid user admin 52.149.134.171 port 33126 [preauth]
Jul 15 04:12:48 fhem-rasp sshd[19673]: Invalid user admin from 52.149.134.171 port 17854
...
2020-07-15 10:50:55
52.149.134.171 attack
Jul 14 20:27:51 odroid64 sshd\[25506\]: Invalid user 123 from 52.149.134.171
Jul 14 20:27:51 odroid64 sshd\[25506\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.149.134.171
...
2020-07-15 03:49:39
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.149.134.28
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28444
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;52.149.134.28.			IN	A

;; AUTHORITY SECTION:
.			121	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024103002 1800 900 604800 86400

;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 31 12:42:57 CST 2024
;; MSG SIZE  rcvd: 106
Host info
Host 28.134.149.52.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 28.134.149.52.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
79.137.72.171 attack
May 24 19:51:28 nas sshd[31351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.72.171 
May 24 19:51:31 nas sshd[31351]: Failed password for invalid user ami_user from 79.137.72.171 port 34828 ssh2
May 24 20:10:44 nas sshd[32124]: Failed password for root from 79.137.72.171 port 47936 ssh2
...
2020-05-25 04:02:27
180.166.229.4 attackspam
May 24 18:50:39 edebian sshd[4429]: Failed password for root from 180.166.229.4 port 60012 ssh2
...
2020-05-25 03:54:58
114.67.77.148 attackspambots
May 24 14:07:20 plex sshd[14830]: Invalid user ldl from 114.67.77.148 port 33736
2020-05-25 03:57:45
103.7.37.147 attack
Honeypot hit.
2020-05-25 04:01:59
212.56.95.97 attack
Invalid user inl from 212.56.95.97 port 55274
2020-05-25 03:45:57
51.83.42.66 attackbots
2020-05-24T21:05:55.622587ollin.zadara.org sshd[30482]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.42.66  user=root
2020-05-24T21:05:57.233476ollin.zadara.org sshd[30482]: Failed password for root from 51.83.42.66 port 45021 ssh2
...
2020-05-25 03:34:42
63.83.75.202 attackspambots
May 22 12:33:07 web01 postfix/smtpd[14806]: connect from puny.alnawwar.com[63.83.75.202]
May 22 12:33:08 web01 policyd-spf[15017]: None; identhostnamey=helo; client-ip=63.83.75.202; helo=puny.alnawwar.com; envelope-from=x@x
May 22 12:33:08 web01 policyd-spf[15017]: Pass; identhostnamey=mailfrom; client-ip=63.83.75.202; helo=puny.alnawwar.com; envelope-from=x@x
May x@x
May 22 12:33:08 web01 postfix/smtpd[14806]: disconnect from puny.alnawwar.com[63.83.75.202]
May 22 12:43:16 web01 postfix/smtpd[15450]: connect from puny.alnawwar.com[63.83.75.202]
May 22 12:43:16 web01 policyd-spf[15520]: None; identhostnamey=helo; client-ip=63.83.75.202; helo=puny.alnawwar.com; envelope-from=x@x
May 22 12:43:16 web01 policyd-spf[15520]: Pass; identhostnamey=mailfrom; client-ip=63.83.75.202; helo=puny.alnawwar.com; envelope-from=x@x
May x@x
May 22 12:43:17 web01 postfix/smtpd[15450]: disconnect from puny.alnawwar.com[63.83.75.202]
May 22 12:44:15 web01 postfix/smtpd[15451]: connect from p........
-------------------------------
2020-05-25 03:33:53
218.92.0.204 attackbots
2020-05-24T15:12:43.949320xentho-1 sshd[702582]: Failed password for root from 218.92.0.204 port 57235 ssh2
2020-05-24T15:12:41.716121xentho-1 sshd[702582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.204  user=root
2020-05-24T15:12:43.949320xentho-1 sshd[702582]: Failed password for root from 218.92.0.204 port 57235 ssh2
2020-05-24T15:12:47.259149xentho-1 sshd[702582]: Failed password for root from 218.92.0.204 port 57235 ssh2
2020-05-24T15:12:41.716121xentho-1 sshd[702582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.204  user=root
2020-05-24T15:12:43.949320xentho-1 sshd[702582]: Failed password for root from 218.92.0.204 port 57235 ssh2
2020-05-24T15:12:47.259149xentho-1 sshd[702582]: Failed password for root from 218.92.0.204 port 57235 ssh2
2020-05-24T15:12:50.440776xentho-1 sshd[702582]: Failed password for root from 218.92.0.204 port 57235 ssh2
2020-05-24T15:14:55.418544xent
...
2020-05-25 03:36:22
54.172.117.167 attack
 UDP 54.172.117.167:45102 -> port 53, len 61
2020-05-25 03:31:28
113.179.80.254 attackbots
Email rejected due to spam filtering
2020-05-25 03:28:47
193.53.163.208 attackspambots
Automatic report - Port Scan Attack
2020-05-25 03:46:30
89.47.62.124 attackbots
Brute forcing email accounts
2020-05-25 03:44:11
206.53.231.148 attackspambots
Spam
2020-05-25 03:26:56
218.234.23.47 attackbotsspam
Spam
2020-05-25 03:24:52
190.147.33.171 attackspam
May 24 14:07:22  sshd\[18898\]: Invalid user courtney from 190.147.33.171May 24 14:07:24  sshd\[18898\]: Failed password for invalid user courtney from 190.147.33.171 port 55560 ssh2
...
2020-05-25 03:52:34

Recently Reported IPs

182.169.49.185 38.76.146.23 172.11.30.2 99.77.139.99
10.12.6.248 23.225.223.200 103.193.151.149 45.155.42.89
143.244.204.68 124.222.130.164 180.161.218.121 120.237.87.26
45.143.166.233 40.107.222.92 23.225.223.197 23.225.223.188
23.225.223.117 185.62.253.27 112.184.184.96 1.4.198.85