52.138.48.74 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: Microsoft Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	tcp 5903	2020-08-28 21:29:14

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.138.48.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1671
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.138.48.74.			IN	A

;; AUTHORITY SECTION:
.			305	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082800 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Aug 28 21:29:08 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 74.48.138.52.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 74.48.138.52.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
209.97.174.145	attack	Aug 11 00:43:55 localhost sshd\[12506\]: Invalid user scan from 209.97.174.145 Aug 11 00:43:55 localhost sshd\[12506\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.174.145 Aug 11 00:43:58 localhost sshd\[12506\]: Failed password for invalid user scan from 209.97.174.145 port 35060 ssh2 Aug 11 00:48:47 localhost sshd\[12679\]: Invalid user fit from 209.97.174.145 Aug 11 00:48:47 localhost sshd\[12679\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.174.145 ...	2019-08-11 09:47:08
203.128.242.166	attackspambots	Aug 11 03:55:24 hosting sshd[3764]: Invalid user bayonne from 203.128.242.166 port 34154 Aug 11 03:55:24 hosting sshd[3764]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.128.242.166 Aug 11 03:55:24 hosting sshd[3764]: Invalid user bayonne from 203.128.242.166 port 34154 Aug 11 03:55:25 hosting sshd[3764]: Failed password for invalid user bayonne from 203.128.242.166 port 34154 ssh2 Aug 11 04:03:30 hosting sshd[4118]: Invalid user ji from 203.128.242.166 port 45578 ...	2019-08-11 09:47:27
46.219.3.139	attackspambots	Aug 11 02:27:13 debian sshd\[14318\]: Invalid user klaus from 46.219.3.139 port 54814 Aug 11 02:27:13 debian sshd\[14318\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.219.3.139 ...	2019-08-11 09:36:32
86.122.129.47	attack	port scan and connect, tcp 23 (telnet)	2019-08-11 09:53:51
80.251.139.2	attack	[portscan] Port scan	2019-08-11 09:07:06
190.129.162.75	attackspam	Unauthorized connection attempt from IP address 190.129.162.75 on Port 445(SMB)	2019-08-11 09:20:06
222.186.192.219	attack	Mar 2 23:21:48 motanud sshd\[10799\]: Invalid user yao from 222.186.192.219 port 44100 Mar 2 23:21:49 motanud sshd\[10799\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.192.219 Mar 2 23:21:50 motanud sshd\[10799\]: Failed password for invalid user yao from 222.186.192.219 port 44100 ssh2	2019-08-11 09:08:04
43.247.156.168	attackbotsspam	Aug 11 02:32:36 debian sshd\[14383\]: Invalid user efsuser from 43.247.156.168 port 50434 Aug 11 02:32:36 debian sshd\[14383\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.247.156.168 ...	2019-08-11 09:38:59
106.13.38.227	attackbots	Aug 11 02:24:54 icinga sshd[6360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.38.227 Aug 11 02:24:56 icinga sshd[6360]: Failed password for invalid user webserver from 106.13.38.227 port 57034 ssh2 ...	2019-08-11 09:28:20
69.162.99.102	attack	SIPVicious Scanner Detection	2019-08-11 09:11:44
119.29.170.170	attackbotsspam	SSH-BruteForce	2019-08-11 09:09:04
77.87.77.55	attackspam	port scan and connect, tcp 1433 (ms-sql-s)	2019-08-11 09:32:29
89.248.172.85	attackbotsspam	08/10/2019-20:20:46.691913 89.248.172.85 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-08-11 09:30:45
108.190.172.8	attackbotsspam	" "	2019-08-11 09:27:49
176.121.209.111	attack	[portscan] Port scan	2019-08-11 09:38:15

Recently Reported IPs

45.236.75.22	217.12.213.64	170.238.58.49	93.178.247.62
40.84.236.59	120.237.118.139	187.228.156.174	104.131.13.17
83.212.84.67	93.85.14.174	204.145.4.205	165.227.5.140
177.139.10.167	106.51.98.190	59.63.98.178	171.34.78.119
51.210.243.85	123.231.137.234	69.174.91.39	177.149.26.52