202.52.2.145 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: India

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
202.52.253.82	attackspambots	Sep 15 07:50:31 mail.srvfarm.net postfix/smtpd[2536035]: warning: unknown[202.52.253.82]: SASL PLAIN authentication failed: Sep 15 07:50:32 mail.srvfarm.net postfix/smtpd[2536035]: lost connection after AUTH from unknown[202.52.253.82] Sep 15 07:50:46 mail.srvfarm.net postfix/smtpd[2536029]: warning: unknown[202.52.253.82]: SASL PLAIN authentication failed: Sep 15 07:50:47 mail.srvfarm.net postfix/smtpd[2536029]: lost connection after AUTH from unknown[202.52.253.82] Sep 15 07:59:43 mail.srvfarm.net postfix/smtpd[2542126]: warning: unknown[202.52.253.82]: SASL PLAIN authentication failed:	2020-09-15 22:59:01
202.52.253.82	attackspam	Sep 15 07:50:31 mail.srvfarm.net postfix/smtpd[2536035]: warning: unknown[202.52.253.82]: SASL PLAIN authentication failed: Sep 15 07:50:32 mail.srvfarm.net postfix/smtpd[2536035]: lost connection after AUTH from unknown[202.52.253.82] Sep 15 07:50:46 mail.srvfarm.net postfix/smtpd[2536029]: warning: unknown[202.52.253.82]: SASL PLAIN authentication failed: Sep 15 07:50:47 mail.srvfarm.net postfix/smtpd[2536029]: lost connection after AUTH from unknown[202.52.253.82] Sep 15 07:59:43 mail.srvfarm.net postfix/smtpd[2542126]: warning: unknown[202.52.253.82]: SASL PLAIN authentication failed:	2020-09-15 14:52:51
202.52.253.82	attack	Sep 14 12:33:04 mailman postfix/smtpd[11015]: warning: unknown[202.52.253.82]: SASL PLAIN authentication failed: authentication failure	2020-09-15 07:00:08
202.52.226.106	attack	Aug 20 03:28:25 mail.srvfarm.net postfix/smtpd[469771]: warning: unknown[202.52.226.106]: SASL PLAIN authentication failed: Aug 20 03:28:26 mail.srvfarm.net postfix/smtpd[469771]: lost connection after AUTH from unknown[202.52.226.106] Aug 20 03:32:39 mail.srvfarm.net postfix/smtpd[472417]: warning: unknown[202.52.226.106]: SASL PLAIN authentication failed: Aug 20 03:32:39 mail.srvfarm.net postfix/smtpd[472417]: lost connection after AUTH from unknown[202.52.226.106] Aug 20 03:35:55 mail.srvfarm.net postfix/smtps/smtpd[469636]: warning: unknown[202.52.226.106]: SASL PLAIN authentication failed:	2020-08-20 15:42:15
202.52.249.171	attackspam	Aug 15 02:21:26 mail.srvfarm.net postfix/smtpd[963151]: warning: unknown[202.52.249.171]: SASL PLAIN authentication failed: Aug 15 02:21:27 mail.srvfarm.net postfix/smtpd[963151]: lost connection after AUTH from unknown[202.52.249.171] Aug 15 02:23:04 mail.srvfarm.net postfix/smtpd[965228]: warning: unknown[202.52.249.171]: SASL PLAIN authentication failed: Aug 15 02:23:05 mail.srvfarm.net postfix/smtpd[965228]: lost connection after AUTH from unknown[202.52.249.171] Aug 15 02:26:41 mail.srvfarm.net postfix/smtps/smtpd[963475]: warning: unknown[202.52.249.171]: SASL PLAIN authentication failed:	2020-08-15 12:47:21
202.52.254.75	attackbots	Aug 15 02:31:28 mail.srvfarm.net postfix/smtpd[964399]: warning: unknown[202.52.254.75]: SASL PLAIN authentication failed: Aug 15 02:31:28 mail.srvfarm.net postfix/smtpd[964399]: lost connection after AUTH from unknown[202.52.254.75] Aug 15 02:33:44 mail.srvfarm.net postfix/smtps/smtpd[963401]: warning: unknown[202.52.254.75]: SASL PLAIN authentication failed: Aug 15 02:33:44 mail.srvfarm.net postfix/smtps/smtpd[963401]: lost connection after AUTH from unknown[202.52.254.75] Aug 15 02:35:25 mail.srvfarm.net postfix/smtps/smtpd[963282]: warning: unknown[202.52.254.75]: SASL PLAIN authentication failed:	2020-08-15 12:29:43
202.52.230.206	attackspam	Aug 11 05:47:20 mail.srvfarm.net postfix/smtpd[2163992]: warning: unknown[202.52.230.206]: SASL PLAIN authentication failed: Aug 11 05:47:21 mail.srvfarm.net postfix/smtpd[2163992]: lost connection after AUTH from unknown[202.52.230.206] Aug 11 05:48:03 mail.srvfarm.net postfix/smtpd[2167341]: warning: unknown[202.52.230.206]: SASL PLAIN authentication failed: Aug 11 05:48:04 mail.srvfarm.net postfix/smtpd[2167341]: lost connection after AUTH from unknown[202.52.230.206] Aug 11 05:48:49 mail.srvfarm.net postfix/smtpd[2167887]: warning: unknown[202.52.230.206]: SASL PLAIN authentication failed:	2020-08-11 15:13:18
202.52.253.82	attackbotsspam	SASL PLAIN auth failed: ruser=...	2020-07-17 06:46:17
202.52.226.186	attackspambots	SASL PLAIN auth failed: ruser=...	2020-07-16 08:25:35
202.52.253.91	attackbotsspam	Jun 18 05:08:28 mail.srvfarm.net postfix/smtps/smtpd[1338900]: warning: unknown[202.52.253.91]: SASL PLAIN authentication failed: Jun 18 05:08:29 mail.srvfarm.net postfix/smtps/smtpd[1338900]: lost connection after AUTH from unknown[202.52.253.91] Jun 18 05:14:17 mail.srvfarm.net postfix/smtps/smtpd[1338906]: warning: unknown[202.52.253.91]: SASL PLAIN authentication failed: Jun 18 05:14:18 mail.srvfarm.net postfix/smtps/smtpd[1338906]: lost connection after AUTH from unknown[202.52.253.91] Jun 18 05:15:42 mail.srvfarm.net postfix/smtps/smtpd[1338906]: warning: unknown[202.52.253.91]: SASL PLAIN authentication failed:	2020-06-18 16:40:42
202.52.226.106	attackbotsspam	Jun 18 05:28:07 mail.srvfarm.net postfix/smtpd[1341596]: warning: unknown[202.52.226.106]: SASL PLAIN authentication failed: Jun 18 05:28:07 mail.srvfarm.net postfix/smtpd[1341596]: lost connection after AUTH from unknown[202.52.226.106] Jun 18 05:31:31 mail.srvfarm.net postfix/smtps/smtpd[1342934]: warning: unknown[202.52.226.106]: SASL PLAIN authentication failed: Jun 18 05:31:32 mail.srvfarm.net postfix/smtps/smtpd[1342934]: lost connection after AUTH from unknown[202.52.226.106] Jun 18 05:32:44 mail.srvfarm.net postfix/smtps/smtpd[1340853]: warning: unknown[202.52.226.106]: SASL PLAIN authentication failed:	2020-06-18 16:30:21
202.52.226.42	attackspambots	Brute force attempt	2020-06-05 17:26:25
202.52.240.17	attackspam	(NP/Nepal/-) SMTP Bruteforcing attempts	2020-06-05 17:23:24
202.52.252.148	attackspambots	(NP/Nepal/-) SMTP Bruteforcing attempts	2020-06-05 17:17:31
202.52.248.155	attack	Wordpress attack	2020-05-15 02:39:03

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 202.52.2.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38698
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;202.52.2.145.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021500 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 15 20:10:24 CST 2025
;; MSG SIZE  rcvd: 105

Host info

Host 145.2.52.202.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 145.2.52.202.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
149.56.96.78	attackspambots	Nov 6 00:37:16 jane sshd[21350]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.96.78 Nov 6 00:37:19 jane sshd[21350]: Failed password for invalid user Pass123!@# from 149.56.96.78 port 16882 ssh2 ...	2019-11-06 08:27:22
103.45.105.236	attackbotsspam	Nov 5 00:54:12 XXX sshd[48068]: Invalid user cache from 103.45.105.236 port 50820	2019-11-06 08:14:15
24.161.6.50	attack	Automatic report - Banned IP Access	2019-11-06 07:56:23
52.163.90.151	attackspam	Nov 6 01:23:32 server sshd\[28473\]: Invalid user discret from 52.163.90.151 Nov 6 01:23:32 server sshd\[28473\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.163.90.151 Nov 6 01:23:34 server sshd\[28473\]: Failed password for invalid user discret from 52.163.90.151 port 1984 ssh2 Nov 6 01:36:01 server sshd\[31745\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.163.90.151 user=root Nov 6 01:36:03 server sshd\[31745\]: Failed password for root from 52.163.90.151 port 1984 ssh2 ...	2019-11-06 08:30:28
59.44.201.86	attackspambots	2019-11-06T00:10:02.553173abusebot-5.cloudsearch.cf sshd\[32710\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.44.201.86 user=root	2019-11-06 08:17:19
123.234.219.226	attack	2019-11-05T22:36:45.266866abusebot-5.cloudsearch.cf sshd\[31672\]: Invalid user lee from 123.234.219.226 port 33586	2019-11-06 08:09:06
221.217.52.21	attackbots	F2B jail: sshd. Time: 2019-11-06 00:49:01, Reported by: VKReport	2019-11-06 08:11:17
41.78.201.48	attackspambots	Nov 5 14:18:53 auw2 sshd\[21162\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.78.201.48 user=root Nov 5 14:18:55 auw2 sshd\[21162\]: Failed password for root from 41.78.201.48 port 49385 ssh2 Nov 5 14:23:27 auw2 sshd\[21536\]: Invalid user frappe from 41.78.201.48 Nov 5 14:23:27 auw2 sshd\[21536\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.78.201.48 Nov 5 14:23:29 auw2 sshd\[21536\]: Failed password for invalid user frappe from 41.78.201.48 port 40146 ssh2	2019-11-06 08:30:42
187.65.248.198	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/187.65.248.198/ BR - 1H : (340) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BR NAME ASN : ASN28573 IP : 187.65.248.198 CIDR : 187.65.192.0/18 PREFIX COUNT : 1254 UNIQUE IP COUNT : 9653760 ATTACKS DETECTED ASN28573 : 1H - 3 3H - 6 6H - 15 12H - 24 24H - 33 DateTime : 2019-11-05 23:36:55 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-06 08:01:41
106.52.166.242	attack	Nov 5 23:57:39 localhost sshd\[7834\]: Invalid user qt from 106.52.166.242 port 50108 Nov 5 23:57:39 localhost sshd\[7834\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.166.242 Nov 5 23:57:40 localhost sshd\[7834\]: Failed password for invalid user qt from 106.52.166.242 port 50108 ssh2 ...	2019-11-06 08:31:29
103.76.252.6	attackspam	Nov 6 00:39:01 v22019058497090703 sshd[27679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.76.252.6 Nov 6 00:39:02 v22019058497090703 sshd[27679]: Failed password for invalid user xxx!@#$%^ from 103.76.252.6 port 30434 ssh2 Nov 6 00:43:35 v22019058497090703 sshd[28089]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.76.252.6 ...	2019-11-06 08:23:42
118.25.133.121	attackbotsspam	$f2bV_matches	2019-11-06 08:05:37
193.32.160.152	attackspam	SASL Brute Force	2019-11-06 08:06:50
152.136.141.227	attackbots	$f2bV_matches	2019-11-06 08:14:45
185.153.197.116	attackspambots	Nov 6 00:40:49 h2177944 kernel: \[5872891.425417\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.153.197.116 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=29063 PROTO=TCP SPT=47485 DPT=7899 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 6 00:45:08 h2177944 kernel: \[5873150.664894\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.153.197.116 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=54488 PROTO=TCP SPT=47485 DPT=7070 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 6 00:46:10 h2177944 kernel: \[5873212.946650\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.153.197.116 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=41189 PROTO=TCP SPT=47485 DPT=8192 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 6 00:47:59 h2177944 kernel: \[5873321.481192\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.153.197.116 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=25561 PROTO=TCP SPT=47485 DPT=6778 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 6 00:55:29 h2177944 kernel: \[5873771.817657\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.153.197.116 DST=85	2019-11-06 07:59:37

Recently Reported IPs

58.173.199.220	68.130.31.38	93.94.222.50	236.169.213.123
162.159.40.75	143.50.178.242	56.0.171.60	20.57.212.30
43.115.176.19	173.156.192.232	92.255.12.216	138.68.161.171
232.82.187.65	237.181.52.14	229.175.239.62	232.156.162.75
198.162.109.69	15.91.88.8	117.225.205.206	205.180.188.164