197.210.52.85 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Nigeria

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
197.210.52.141	attackspambots	1596888980 - 08/08/2020 14:16:20 Host: 197.210.52.141/197.210.52.141 Port: 445 TCP Blocked	2020-08-08 21:55:40
197.210.52.101	attackbotsspam	1594732502 - 07/14/2020 15:15:02 Host: 197.210.52.101/197.210.52.101 Port: 445 TCP Blocked	2020-07-14 22:19:13
197.210.52.28	attackbotsspam	Unauthorized connection attempt from IP address 197.210.52.28 on Port 445(SMB)	2020-07-14 21:16:07
197.210.52.181	attack	Cancel my accont plz	2020-05-19 03:55:58
197.210.52.101	attack	This ISP (Scammer IP Block) is being used to SEND Advanced Fee Scams scammer's email address: mapfreesegurospain@europe.com https://www.scamalot.com/ScamTipReports/98565	2020-03-25 03:19:14
197.210.52.164	attackbotsspam	Unauthorized connection attempt detected from IP address 197.210.52.164 to port 445	2020-01-14 08:00:47
197.210.52.173	attackbots	Unauthorized connection attempt from IP address 197.210.52.173 on Port 445(SMB)	2020-01-08 00:12:08
197.210.52.82	attackspam	Unauthorized connection attempt from IP address 197.210.52.82 on Port 445(SMB)	2019-09-24 05:05:44
197.210.52.84	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-16 18:17:34,529 INFO [amun_request_handler] PortScan Detected on Port: 445 (197.210.52.84)	2019-09-17 07:18:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 197.210.52.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28073
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;197.210.52.85.			IN	A

;; AUTHORITY SECTION:
.			592	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 10:49:07 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 85.52.210.197.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 85.52.210.197.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
37.187.122.195	attack	Aug 1 19:03:05 SilenceServices sshd[23179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.122.195 Aug 1 19:03:06 SilenceServices sshd[23179]: Failed password for invalid user amjad from 37.187.122.195 port 44140 ssh2 Aug 1 19:07:51 SilenceServices sshd[27225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.122.195	2019-08-02 01:35:16
35.224.59.213	attackspambots	Telnet brute force and port scan	2019-08-02 00:18:33
73.34.229.17	attack	2019-08-01T17:06:12.534384abusebot-2.cloudsearch.cf sshd\[19438\]: Invalid user deploy from 73.34.229.17 port 45326	2019-08-02 01:34:14
182.73.47.154	attackspam	Apr 21 04:08:02 vtv3 sshd\[31762\]: Invalid user sftp from 182.73.47.154 port 59442 Apr 21 04:08:02 vtv3 sshd\[31762\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.73.47.154 Apr 21 04:08:04 vtv3 sshd\[31762\]: Failed password for invalid user sftp from 182.73.47.154 port 59442 ssh2 Apr 21 04:15:55 vtv3 sshd\[3429\]: Invalid user aleo from 182.73.47.154 port 53360 Apr 21 04:15:55 vtv3 sshd\[3429\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.73.47.154 Jul 7 20:40:02 vtv3 sshd\[27072\]: Invalid user nx from 182.73.47.154 port 39316 Jul 7 20:40:02 vtv3 sshd\[27072\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.73.47.154 Jul 7 20:40:04 vtv3 sshd\[27072\]: Failed password for invalid user nx from 182.73.47.154 port 39316 ssh2 Jul 7 20:42:19 vtv3 sshd\[28377\]: Invalid user farmacia from 182.73.47.154 port 57934 Jul 7 20:42:19 vtv3 sshd\[28377\]: pam_unix\(ssh	2019-08-02 00:12:16
106.111.160.97	attack	Aug 1 17:04:01 www1 sshd\[13785\]: Invalid user pi from 106.111.160.97Aug 1 17:04:05 www1 sshd\[13785\]: Failed password for invalid user pi from 106.111.160.97 port 44306 ssh2Aug 1 17:04:16 www1 sshd\[13807\]: Invalid user pi from 106.111.160.97Aug 1 17:04:18 www1 sshd\[13807\]: Failed password for invalid user pi from 106.111.160.97 port 46059 ssh2Aug 1 17:04:23 www1 sshd\[13809\]: Invalid user pi from 106.111.160.97Aug 1 17:04:27 www1 sshd\[13809\]: Failed password for invalid user pi from 106.111.160.97 port 48265 ssh2 ...	2019-08-02 00:45:40
190.109.164.105	attack	proto=tcp . spt=46782 . dpt=25 . (listed on Blocklist de Jul 31) (503)	2019-08-01 23:57:10
80.227.12.38	attack	Automatic report - Banned IP Access	2019-08-02 01:39:51
59.175.144.11	attack	08/01/2019-12:56:04.993459 59.175.144.11 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 52	2019-08-02 01:49:42
134.209.237.152	attack	Aug 1 18:34:58 hosting sshd[27933]: Invalid user user from 134.209.237.152 port 42888 ...	2019-08-02 00:52:29
145.239.88.184	attackspambots	Aug 1 12:28:55 vps200512 sshd\[21174\]: Invalid user admin from 145.239.88.184 Aug 1 12:28:55 vps200512 sshd\[21174\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.88.184 Aug 1 12:28:57 vps200512 sshd\[21174\]: Failed password for invalid user admin from 145.239.88.184 port 35500 ssh2 Aug 1 12:32:54 vps200512 sshd\[21233\]: Invalid user binh from 145.239.88.184 Aug 1 12:32:54 vps200512 sshd\[21233\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.88.184	2019-08-02 01:36:50
185.224.130.150	attack	C1,WP GET /suche/wp-login.php	2019-08-02 00:43:13
78.31.71.113	attackspambots	rdp	2019-08-02 00:34:05
5.39.67.154	attackbots	Aug 1 19:30:48 dev0-dcde-rnet sshd[3823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.39.67.154 Aug 1 19:30:50 dev0-dcde-rnet sshd[3823]: Failed password for invalid user hhxie from 5.39.67.154 port 47644 ssh2 Aug 1 19:35:02 dev0-dcde-rnet sshd[3838]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.39.67.154	2019-08-02 01:43:27
168.255.251.126	attack	Aug 1 18:06:11 v22019058497090703 sshd[22230]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.255.251.126 Aug 1 18:06:12 v22019058497090703 sshd[22230]: Failed password for invalid user fieu from 168.255.251.126 port 37370 ssh2 Aug 1 18:09:39 v22019058497090703 sshd[22541]: Failed password for root from 168.255.251.126 port 49358 ssh2 ...	2019-08-02 01:44:41
165.22.58.247	attackspam	Aug 1 19:36:59 MK-Soft-Root1 sshd\[1217\]: Invalid user sympa from 165.22.58.247 port 54050 Aug 1 19:36:59 MK-Soft-Root1 sshd\[1217\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.58.247 Aug 1 19:37:01 MK-Soft-Root1 sshd\[1217\]: Failed password for invalid user sympa from 165.22.58.247 port 54050 ssh2 ...	2019-08-02 01:55:44

Recently Reported IPs

197.210.53.124	197.210.54.121	197.210.70.225	197.210.64.79
197.210.70.80	197.210.77.248	197.210.78.197	197.210.78.57
197.210.84.233	197.210.84.78	197.210.84.134	197.210.84.85
197.211.61.36	197.210.85.223	197.211.63.31	197.211.53.28
197.214.218.147	197.217.70.175	197.214.218.216	197.219.36.10