103.52.2.5 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
103.52.217.157	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 100	2020-10-14 00:18:26
103.52.217.157	attackbotsspam	ET CINS Active Threat Intelligence Poor Reputation IP group 100	2020-10-13 15:30:30
103.52.217.157	attackspambots	IP 103.52.217.157 attacked honeypot on port: 1212 at 10/12/2020 1:46:16 PM	2020-10-13 08:06:21
103.52.216.216	attack	TCP ports : 139 / 8388	2020-10-04 09:02:51
103.52.216.216	attackspambots	TCP ports : 139 / 8388	2020-10-04 01:38:16
103.52.216.216	attackbots	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-10-03 17:24:01
103.52.216.40	attackspambots	Automatic report - Banned IP Access	2020-09-29 00:23:35
103.52.216.40	attack	20000/tcp 137/udp 32773/udp... [2020-08-25/09-27]5pkt,3pt.(tcp),2pt.(udp)	2020-09-28 16:25:28
103.52.217.227	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 98 - port: 10443 proto: tcp cat: Misc Attackbytes: 60	2020-07-30 22:13:35
103.52.217.65	attackspam	Jul 25 15:52:29 debian-2gb-nbg1-2 kernel: \[17943664.226040\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=103.52.217.65 DST=195.201.40.59 LEN=68 TOS=0x08 PREC=0x00 TTL=232 ID=54321 PROTO=UDP SPT=47028 DPT=787 LEN=48	2020-07-25 23:00:20
103.52.217.89	attack	Unauthorized connection attempt detected from IP address 103.52.217.89 to port 9600	2020-07-22 18:18:16
103.52.216.52	attack	Unauthorized connection attempt detected from IP address 103.52.216.52 to port 79	2020-07-22 17:31:08
103.52.217.57	attackspambots	Honeypot attack, port: 135, PTR: PTR record not found	2020-07-22 15:06:31
103.52.217.65	attackspam	Unauthorized connection attempt detected from IP address 103.52.217.65 to port 873	2020-07-22 14:46:11
103.52.255.2	attack	1594732355 - 07/14/2020 15:12:35 Host: 103.52.255.2/103.52.255.2 Port: 445 TCP Blocked	2020-07-15 01:56:57

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.52.2.5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49763
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;103.52.2.5.			IN	A

;; AUTHORITY SECTION:
.			205	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 23:59:47 CST 2022
;; MSG SIZE  rcvd: 103

Host info

Host 5.2.52.103.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 5.2.52.103.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
95.143.218.78	attackbotsspam	Unauthorized access detected from black listed ip!	2020-04-10 14:36:06
222.186.180.223	attackspam	Apr 10 08:44:34 mail sshd\[4704\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.223 user=root Apr 10 08:44:35 mail sshd\[4704\]: Failed password for root from 222.186.180.223 port 8220 ssh2 Apr 10 08:44:46 mail sshd\[4704\]: Failed password for root from 222.186.180.223 port 8220 ssh2 ...	2020-04-10 14:45:13
171.227.164.106	attackbots	Apr 10 07:19:12 mailserver sshd\[22641\]: Address 171.227.164.106 maps to dynamic-ip-adsl.viettel.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Apr 10 07:19:12 mailserver sshd\[22641\]: Invalid user user from 171.227.164.106 ...	2020-04-10 14:49:22
13.67.51.182	attackbotsspam	Apr 10 01:41:11 vps46666688 sshd[9598]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.67.51.182 Apr 10 01:41:12 vps46666688 sshd[9598]: Failed password for invalid user user from 13.67.51.182 port 43850 ssh2 ...	2020-04-10 14:27:29
158.69.195.175	attack	Brute-force attempt banned	2020-04-10 14:54:56
159.203.176.82	attack	CMS (WordPress or Joomla) login attempt.	2020-04-10 14:47:58
49.235.33.73	attackbotsspam	$f2bV_matches	2020-04-10 14:42:16
98.157.210.246	attackspambots	Apr 10 06:15:28 ns3164893 sshd[9949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.157.210.246 Apr 10 06:15:30 ns3164893 sshd[9949]: Failed password for invalid user guest from 98.157.210.246 port 57848 ssh2 ...	2020-04-10 14:35:48
172.105.210.107	attackbotsspam	Port 8009 scan denied	2020-04-10 14:57:12
218.92.0.145	attackbotsspam	Apr 10 08:34:07 server sshd[53337]: Failed none for root from 218.92.0.145 port 56839 ssh2 Apr 10 08:34:09 server sshd[53337]: Failed password for root from 218.92.0.145 port 56839 ssh2 Apr 10 08:34:13 server sshd[53337]: Failed password for root from 218.92.0.145 port 56839 ssh2	2020-04-10 14:51:57
67.231.22.54	attackspam	Apr 10 08:01:42 ks10 sshd[3565744]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.231.22.54 Apr 10 08:01:44 ks10 sshd[3565744]: Failed password for invalid user test from 67.231.22.54 port 59936 ssh2 ...	2020-04-10 14:59:24
80.38.165.87	attack	Apr 10 05:23:48 server sshd[29685]: Failed password for invalid user hadoop from 80.38.165.87 port 47502 ssh2 Apr 10 05:48:15 server sshd[2732]: Failed password for root from 80.38.165.87 port 48905 ssh2 Apr 10 05:56:29 server sshd[4861]: Failed password for invalid user deploy from 80.38.165.87 port 49387 ssh2	2020-04-10 14:31:01
149.56.180.252	attackbots	Brute force attack against VPN service	2020-04-10 14:16:46
51.83.68.213	attack	Apr 10 07:34:45 roki sshd[2672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.68.213 user=ubuntu Apr 10 07:34:47 roki sshd[2672]: Failed password for ubuntu from 51.83.68.213 port 33672 ssh2 Apr 10 07:47:21 roki sshd[3778]: Invalid user aman from 51.83.68.213 Apr 10 07:47:21 roki sshd[3778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.68.213 Apr 10 07:47:23 roki sshd[3778]: Failed password for invalid user aman from 51.83.68.213 port 57344 ssh2 ...	2020-04-10 14:32:12
138.197.36.189	attackbotsspam	2020-04-10T03:52:42.412807abusebot-6.cloudsearch.cf sshd[10848]: Invalid user postgres from 138.197.36.189 port 54166 2020-04-10T03:52:42.419624abusebot-6.cloudsearch.cf sshd[10848]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.36.189 2020-04-10T03:52:42.412807abusebot-6.cloudsearch.cf sshd[10848]: Invalid user postgres from 138.197.36.189 port 54166 2020-04-10T03:52:44.988188abusebot-6.cloudsearch.cf sshd[10848]: Failed password for invalid user postgres from 138.197.36.189 port 54166 ssh2 2020-04-10T03:56:04.547502abusebot-6.cloudsearch.cf sshd[11057]: Invalid user deploy from 138.197.36.189 port 34606 2020-04-10T03:56:04.555983abusebot-6.cloudsearch.cf sshd[11057]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.36.189 2020-04-10T03:56:04.547502abusebot-6.cloudsearch.cf sshd[11057]: Invalid user deploy from 138.197.36.189 port 34606 2020-04-10T03:56:06.522231abusebot-6.cloudsearch.cf s ...	2020-04-10 14:53:21

Recently Reported IPs

103.51.2.157	103.52.2.9	103.157.4.1	103.52.208.1
103.51.19.95	103.51.2.238	103.52.209.81	103.52.209.97
103.52.210.237	103.52.209.86	103.52.210.233	103.52.211.1
103.52.211.102	103.52.210.193	103.52.210.150	103.52.211.114
103.52.211.106	103.157.48.120	103.52.211.118	103.52.211.126