Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Microsoft Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:
Type Details Datetime
attackbotsspam
Unauthorized connection attempt detected from IP address 52.138.86.80 to port 1433
2020-07-22 19:24:46
attack
Unauthorized connection attempt detected from IP address 52.138.86.80 to port 1433
2020-07-21 23:52:37
attackspambots
Jul 15 05:15:25 fhem-rasp sshd[12046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.138.86.80
Jul 15 05:15:27 fhem-rasp sshd[12046]: Failed password for invalid user admin from 52.138.86.80 port 32685 ssh2
...
2020-07-15 11:23:20
attack
Jul 14 16:51:21 site3 sshd\[239275\]: Invalid user palvelukanava from 52.138.86.80
Jul 14 16:51:21 site3 sshd\[239275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.138.86.80
Jul 14 16:51:21 site3 sshd\[239276\]: Invalid user palvelukanava.fi from 52.138.86.80
Jul 14 16:51:21 site3 sshd\[239276\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.138.86.80
Jul 14 16:51:24 site3 sshd\[239275\]: Failed password for invalid user palvelukanava from 52.138.86.80 port 18785 ssh2
...
2020-07-14 22:18:07
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.138.86.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14485
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.138.86.80.			IN	A

;; AUTHORITY SECTION:
.			474	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020071400 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jul 14 22:18:02 CST 2020
;; MSG SIZE  rcvd: 116
Host info
Host 80.86.138.52.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 80.86.138.52.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
180.69.95.125 attackspam
2222/tcp
[2019-08-03]1pkt
2019-08-03 12:34:27
68.183.188.180 attack
WordPress login Brute force / Web App Attack on client site.
2019-08-03 13:12:13
41.57.74.63 attackspam
8080/tcp
[2019-08-02]1pkt
2019-08-03 12:32:46
95.47.180.188 attackspam
Automatic report - Port Scan Attack
2019-08-03 12:57:03
196.54.65.63 attackspam
A spam received from this SMTP server at 2019/06/23 (JST). The spammer used NS1.PROPORTION-ADMINISTER.NET and NS2 as the name servers for URLs, and NS1.S-P-F2.JP and NS2 as the name servers for mail addresses.
2019-08-03 12:56:10
209.97.128.177 attackspambots
Aug  3 07:49:02 www sshd\[53725\]: Invalid user colorado from 209.97.128.177Aug  3 07:49:04 www sshd\[53725\]: Failed password for invalid user colorado from 209.97.128.177 port 47948 ssh2Aug  3 07:53:15 www sshd\[53740\]: Invalid user jenkins from 209.97.128.177
...
2019-08-03 13:18:10
103.88.176.137 attackbotsspam
Invalid user guest from 103.88.176.137 port 39526
2019-08-03 12:33:05
92.222.79.7 attackbotsspam
Aug  3 07:53:36 hosting sshd[26613]: Invalid user ass from 92.222.79.7 port 57330
...
2019-08-03 12:58:53
217.160.15.228 attack
Aug  2 23:41:20 debian sshd\[2355\]: Invalid user postfix from 217.160.15.228 port 34718
Aug  2 23:41:20 debian sshd\[2355\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.160.15.228
...
2019-08-03 12:48:39
23.129.64.157 attackspam
1,45-01/03 [bc01/m22] concatform PostRequest-Spammer scoring: maputo01_x2b
2019-08-03 13:02:44
103.60.13.162 attackspambots
\[2019-08-02 17:42:23\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-02T17:42:23.068-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="500011442394200441",SessionID="0x7ff4d07e79a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103.60.13.162/60535",ACLName="no_extension_match"
\[2019-08-02 17:49:10\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-02T17:49:10.393-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="333333011441613941205",SessionID="0x7ff4d06383c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103.60.13.162/59191",ACLName="no_extension_match"
\[2019-08-02 17:51:04\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-02T17:51:04.535-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="90011441902933953",SessionID="0x7ff4d07e79a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103.60.13.162/54830",ACLN
2019-08-03 12:49:12
62.234.55.241 attackbots
blacklist username jester
Invalid user jester from 62.234.55.241 port 47684
2019-08-03 12:49:39
114.67.96.90 attackspam
Aug  3 06:53:23 localhost sshd\[24349\]: Invalid user zaky from 114.67.96.90 port 59506
Aug  3 06:53:23 localhost sshd\[24349\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.96.90
Aug  3 06:53:25 localhost sshd\[24349\]: Failed password for invalid user zaky from 114.67.96.90 port 59506 ssh2
2019-08-03 13:08:57
141.105.173.196 attackspambots
1433/tcp 445/tcp
[2019-08-02]2pkt
2019-08-03 12:43:15
103.255.5.93 attackspambots
PHI,WP GET /wp-login.php
2019-08-03 12:56:33

Recently Reported IPs

68.190.118.137 109.167.240.147 206.189.177.101 103.6.207.147
40.114.214.239 110.77.146.113 104.208.223.13 52.228.31.194
52.152.171.30 43.84.56.45 70.37.92.56 191.7.85.173
152.38.148.128 45.69.213.43 60.164.168.68 141.34.107.160
14.1.126.143 176.6.147.43 86.114.72.199 227.249.33.227