52.149.134.28 - IPInfo

Basic Info

City: Washington

Region: Virginia

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
52.149.134.66	attack	Invalid user localhost from 52.149.134.66 port 53251	2020-09-28 06:05:56
52.149.134.66	attack	Invalid user 162 from 52.149.134.66 port 19013	2020-09-27 22:27:47
52.149.134.66	attack	2020-09-27 00:50:32.343294-0500 localhost sshd[20428]: Failed password for invalid user 163 from 52.149.134.66 port 15876 ssh2	2020-09-27 14:19:27
52.149.134.66	attackspambots	2020-09-26T23:46:52.645890ks3355764 sshd[17249]: Invalid user rimes from 52.149.134.66 port 29563 2020-09-26T23:46:54.461242ks3355764 sshd[17249]: Failed password for invalid user rimes from 52.149.134.66 port 29563 ssh2 ...	2020-09-27 05:57:45
52.149.134.66	attack	Sep 26 16:12:01 rancher-0 sshd[314705]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.149.134.66 user=root Sep 26 16:12:03 rancher-0 sshd[314705]: Failed password for root from 52.149.134.66 port 42403 ssh2 ...	2020-09-26 22:17:21
52.149.134.66	attackspambots	Sep 26 07:08:01 hidden sshd[24325]: Invalid user admin from 52.149.134.66 port 60912 Sep 26 07:08:01 hidden sshd[24325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.149.134.66 Sep 26 07:08:03 hidden sshd[24325]: Failed password for invalid user admin from 52.149.134.66 port 60912 ssh2	2020-09-26 14:01:17
52.149.134.66	attack	2020-09-24T20:30:12.132592ks3355764 sshd[32225]: Invalid user ityx from 52.149.134.66 port 26538 2020-09-24T20:30:14.584632ks3355764 sshd[32225]: Failed password for invalid user ityx from 52.149.134.66 port 26538 ssh2 ...	2020-09-25 02:30:57
52.149.134.66	attack	Lines containing failures of 52.149.134.66 (max 1000) Sep 23 12:05:54 UTC__SANYALnet-Labs__cac12 sshd[19035]: Connection from 52.149.134.66 port 22729 on 64.137.176.96 port 22 Sep 23 12:05:54 UTC__SANYALnet-Labs__cac12 sshd[19036]: Connection from 52.149.134.66 port 22728 on 64.137.176.104 port 22 Sep 23 12:05:55 UTC__SANYALnet-Labs__cac12 sshd[19035]: User r.r from 52.149.134.66 not allowed because not listed in AllowUsers Sep 23 12:05:55 UTC__SANYALnet-Labs__cac12 sshd[19036]: User r.r from 52.149.134.66 not allowed because not listed in AllowUsers Sep 23 12:05:55 UTC__SANYALnet-Labs__cac12 sshd[19035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.149.134.66 user=r.r Sep 23 12:05:55 UTC__SANYALnet-Labs__cac12 sshd[19036]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.149.134.66 user=r.r Sep 23 12:05:57 UTC__SANYALnet-Labs__cac12 sshd[19035]: Failed password for invalid user r.r........ ------------------------------	2020-09-24 18:11:46
52.149.134.26	attack	Unauthorized connection attempt detected from IP address 52.149.134.26 to port 1433 [T]	2020-07-22 03:45:08
52.149.134.26	attackbotsspam	Jul 18 09:28:31 nextcloud sshd\[24783\]: Invalid user admin from 52.149.134.26 Jul 18 09:28:31 nextcloud sshd\[24783\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.149.134.26 Jul 18 09:28:32 nextcloud sshd\[24783\]: Failed password for invalid user admin from 52.149.134.26 port 5283 ssh2	2020-07-18 15:48:51
52.149.134.26	attackbots	Jul 18 02:43:57 rancher-0 sshd[424664]: Invalid user admin from 52.149.134.26 port 42830 ...	2020-07-18 08:49:36
52.149.134.26	attackspambots	Unauthorized SSH login attempts	2020-07-17 00:38:55
52.149.134.26	attackbotsspam	Jul 15 11:11:25 nextcloud sshd\[30208\]: Invalid user admin from 52.149.134.26 Jul 15 11:11:25 nextcloud sshd\[30208\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.149.134.26 Jul 15 11:11:27 nextcloud sshd\[30208\]: Failed password for invalid user admin from 52.149.134.26 port 20149 ssh2	2020-07-15 17:12:09
52.149.134.171	attack	Jul 15 02:05:08 fhem-rasp sshd[3277]: Disconnected from invalid user admin 52.149.134.171 port 33126 [preauth] Jul 15 04:12:48 fhem-rasp sshd[19673]: Invalid user admin from 52.149.134.171 port 17854 ...	2020-07-15 10:50:55
52.149.134.171	attack	Jul 14 20:27:51 odroid64 sshd\[25506\]: Invalid user 123 from 52.149.134.171 Jul 14 20:27:51 odroid64 sshd\[25506\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.149.134.171 ...	2020-07-15 03:49:39

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.149.134.28
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28444
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;52.149.134.28.			IN	A

;; AUTHORITY SECTION:
.			121	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024103002 1800 900 604800 86400

;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 31 12:42:57 CST 2024
;; MSG SIZE  rcvd: 106

Host info

Host 28.134.149.52.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 28.134.149.52.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
80.65.22.217	attackbots	Jan 27 03:01:32 pkdns2 sshd\[3094\]: Invalid user ubuntu from 80.65.22.217Jan 27 03:01:34 pkdns2 sshd\[3094\]: Failed password for invalid user ubuntu from 80.65.22.217 port 35776 ssh2Jan 27 03:03:57 pkdns2 sshd\[3207\]: Failed password for root from 80.65.22.217 port 58854 ssh2Jan 27 03:06:22 pkdns2 sshd\[3422\]: Invalid user ftpadmin from 80.65.22.217Jan 27 03:06:24 pkdns2 sshd\[3422\]: Failed password for invalid user ftpadmin from 80.65.22.217 port 53712 ssh2Jan 27 03:08:49 pkdns2 sshd\[3562\]: Invalid user rpc from 80.65.22.217Jan 27 03:08:51 pkdns2 sshd\[3562\]: Failed password for invalid user rpc from 80.65.22.217 port 48584 ssh2 ...	2020-01-27 09:10:28
95.48.78.58	attack	Jan 27 02:05:59 nextcloud sshd\[2250\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.48.78.58 user=root Jan 27 02:06:01 nextcloud sshd\[2250\]: Failed password for root from 95.48.78.58 port 36020 ssh2 Jan 27 02:07:48 nextcloud sshd\[4213\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.48.78.58 user=root	2020-01-27 09:10:52
184.104.204.2	attackspam	Email rejected due to spam filtering	2020-01-27 09:23:11
117.50.43.236	attackspam	Unauthorized connection attempt detected from IP address 117.50.43.236 to port 2220 [J]	2020-01-27 09:16:37
177.154.8.123	attackspambots	Email rejected due to spam filtering	2020-01-27 09:26:34
181.1.32.45	attackspam	Unauthorized connection attempt detected from IP address 181.1.32.45 to port 23 [J]	2020-01-27 09:13:44
159.203.201.155	attackspambots	Unauthorized connection attempt detected from IP address 159.203.201.155 to port 4848 [T]	2020-01-27 09:18:46
52.237.8.15	attackbots	Unauthorized connection attempt detected from IP address 52.237.8.15 to port 2220 [J]	2020-01-27 09:04:45
90.165.117.74	attack	Jan 22 11:48:19 hostnameis sshd[22710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.165.117.74 user=r.r Jan 22 11:48:20 hostnameis sshd[22710]: Failed password for r.r from 90.165.117.74 port 55028 ssh2 Jan 22 11:48:20 hostnameis sshd[22710]: Received disconnect from 90.165.117.74: 11: Bye Bye [preauth] Jan 22 12:00:16 hostnameis sshd[22955]: Invalid user m1 from 90.165.117.74 Jan 22 12:00:16 hostnameis sshd[22955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.165.117.74 Jan 22 12:00:18 hostnameis sshd[22955]: Failed password for invalid user m1 from 90.165.117.74 port 44654 ssh2 Jan 22 12:00:18 hostnameis sshd[22955]: Received disconnect from 90.165.117.74: 11: Bye Bye [preauth] Jan 22 12:04:20 hostnameis sshd[23011]: Invalid user akhan from 90.165.117.74 Jan 22 12:04:20 hostnameis sshd[23011]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= r........ ------------------------------	2020-01-27 09:06:40
106.13.55.5	attackspambots	Unauthorized connection attempt detected from IP address 106.13.55.5 to port 2220 [J]	2020-01-27 08:59:32
46.175.248.201	attackspam	TCP Port: 25 invalid blocked dnsbl-sorbs also abuseat-org and barracuda (518)	2020-01-27 08:54:32
114.124.193.166	attack	Email rejected due to spam filtering	2020-01-27 08:55:40
176.67.237.110	attack	TCP Port: 25 invalid blocked abuseat-org also barracuda and zen-spamhaus (512)	2020-01-27 09:14:10
109.102.105.162	attack	TCP Port: 25 invalid blocked abuseat-org also barracuda and zen-spamhaus (548)	2020-01-27 09:19:19
45.56.91.118	attack	scan r	2020-01-27 09:22:50

Recently Reported IPs

182.169.49.185	38.76.146.23	172.11.30.2	99.77.139.99
10.12.6.248	23.225.223.200	103.193.151.149	45.155.42.89
143.244.204.68	124.222.130.164	180.161.218.121	120.237.87.26
45.143.166.233	40.107.222.92	23.225.223.197	23.225.223.188
23.225.223.117	185.62.253.27	112.184.184.96	1.4.198.85