Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Microsoft Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:
Type Details Datetime
attackbotsspam
Unauthorized connection attempt detected from IP address 52.138.86.80 to port 1433
2020-07-22 19:24:46
attack
Unauthorized connection attempt detected from IP address 52.138.86.80 to port 1433
2020-07-21 23:52:37
attackspambots
Jul 15 05:15:25 fhem-rasp sshd[12046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.138.86.80
Jul 15 05:15:27 fhem-rasp sshd[12046]: Failed password for invalid user admin from 52.138.86.80 port 32685 ssh2
...
2020-07-15 11:23:20
attack
Jul 14 16:51:21 site3 sshd\[239275\]: Invalid user palvelukanava from 52.138.86.80
Jul 14 16:51:21 site3 sshd\[239275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.138.86.80
Jul 14 16:51:21 site3 sshd\[239276\]: Invalid user palvelukanava.fi from 52.138.86.80
Jul 14 16:51:21 site3 sshd\[239276\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.138.86.80
Jul 14 16:51:24 site3 sshd\[239275\]: Failed password for invalid user palvelukanava from 52.138.86.80 port 18785 ssh2
...
2020-07-14 22:18:07
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.138.86.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14485
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.138.86.80.			IN	A

;; AUTHORITY SECTION:
.			474	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020071400 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jul 14 22:18:02 CST 2020
;; MSG SIZE  rcvd: 116
Host info
Host 80.86.138.52.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 80.86.138.52.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
114.67.225.36 attackbots
Dec  4 15:20:56 nextcloud sshd\[21614\]: Invalid user horacio from 114.67.225.36
Dec  4 15:20:56 nextcloud sshd\[21614\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.225.36
Dec  4 15:20:57 nextcloud sshd\[21614\]: Failed password for invalid user horacio from 114.67.225.36 port 52902 ssh2
...
2019-12-04 23:26:51
164.132.100.28 attack
Dec  4 13:22:13 minden010 sshd[6321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.100.28
Dec  4 13:22:15 minden010 sshd[6321]: Failed password for invalid user Browns from 164.132.100.28 port 42380 ssh2
Dec  4 13:27:43 minden010 sshd[8064]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.100.28
...
2019-12-04 23:12:38
111.93.200.50 attackbotsspam
detected by Fail2Ban
2019-12-04 23:31:47
138.68.99.46 attackspam
Dec  4 15:30:05 cvbnet sshd[13642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.99.46 
Dec  4 15:30:07 cvbnet sshd[13642]: Failed password for invalid user catering from 138.68.99.46 port 36090 ssh2
...
2019-12-04 23:23:01
120.92.33.13 attackspambots
Dec  4 04:46:05 wbs sshd\[12083\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.33.13  user=root
Dec  4 04:46:07 wbs sshd\[12083\]: Failed password for root from 120.92.33.13 port 36072 ssh2
Dec  4 04:53:25 wbs sshd\[12744\]: Invalid user nativel from 120.92.33.13
Dec  4 04:53:25 wbs sshd\[12744\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.33.13
Dec  4 04:53:27 wbs sshd\[12744\]: Failed password for invalid user nativel from 120.92.33.13 port 10684 ssh2
2019-12-04 23:31:29
195.31.160.73 attackbots
Dec  4 04:51:17 hpm sshd\[17252\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host73-160-static.31-195-b.business.telecomitalia.it  user=root
Dec  4 04:51:19 hpm sshd\[17252\]: Failed password for root from 195.31.160.73 port 35826 ssh2
Dec  4 04:57:51 hpm sshd\[17886\]: Invalid user nfs from 195.31.160.73
Dec  4 04:57:51 hpm sshd\[17886\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host73-160-static.31-195-b.business.telecomitalia.it
Dec  4 04:57:53 hpm sshd\[17886\]: Failed password for invalid user nfs from 195.31.160.73 port 50390 ssh2
2019-12-04 22:58:48
85.195.52.41 attackbotsspam
Dec  4 11:39:35 firewall sshd[11676]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.195.52.41
Dec  4 11:39:34 firewall sshd[11676]: Invalid user pi from 85.195.52.41
Dec  4 11:39:36 firewall sshd[11676]: Failed password for invalid user pi from 85.195.52.41 port 39374 ssh2
...
2019-12-04 23:19:56
150.95.52.74 attackspambots
WordPress wp-login brute force :: 150.95.52.74 0.084 BYPASS [04/Dec/2019:13:03:05  0000] [censored_4] "POST /wp-login.php HTTP/1.1" 200 2134 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2019-12-04 23:17:31
159.89.169.137 attackspambots
Dec  4 14:23:21 MK-Soft-Root2 sshd[21239]: Failed password for root from 159.89.169.137 port 37004 ssh2
Dec  4 14:29:44 MK-Soft-Root2 sshd[22393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.169.137 
...
2019-12-04 23:09:07
128.199.244.150 attackbots
xmlrpc attack
2019-12-04 22:50:39
62.234.146.45 attackspambots
Dec  4 15:16:39 hcbbdb sshd\[31760\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.146.45  user=backup
Dec  4 15:16:41 hcbbdb sshd\[31760\]: Failed password for backup from 62.234.146.45 port 60858 ssh2
Dec  4 15:24:44 hcbbdb sshd\[32707\]: Invalid user litfin from 62.234.146.45
Dec  4 15:24:44 hcbbdb sshd\[32707\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.146.45
Dec  4 15:24:46 hcbbdb sshd\[32707\]: Failed password for invalid user litfin from 62.234.146.45 port 59834 ssh2
2019-12-04 23:28:13
5.172.14.241 attack
Dec  4 17:51:19 server sshd\[6180\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.172.14.241  user=root
Dec  4 17:51:21 server sshd\[6180\]: Failed password for root from 5.172.14.241 port 5847 ssh2
Dec  4 18:05:09 server sshd\[10080\]: Invalid user guest from 5.172.14.241
Dec  4 18:05:09 server sshd\[10080\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.172.14.241 
Dec  4 18:05:10 server sshd\[10080\]: Failed password for invalid user guest from 5.172.14.241 port 5610 ssh2
...
2019-12-04 23:08:20
188.131.189.12 attackbotsspam
Dec  4 06:55:07 ny01 sshd[26621]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.189.12
Dec  4 06:55:09 ny01 sshd[26621]: Failed password for invalid user test from 188.131.189.12 port 47274 ssh2
Dec  4 07:01:41 ny01 sshd[27488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.189.12
2019-12-04 23:11:28
115.79.174.229 attack
Automatic report - Port Scan Attack
2019-12-04 23:01:17
37.252.190.224 attackspambots
Dec  4 13:19:13 MK-Soft-VM3 sshd[21189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.252.190.224 
Dec  4 13:19:15 MK-Soft-VM3 sshd[21189]: Failed password for invalid user christelle from 37.252.190.224 port 41904 ssh2
...
2019-12-04 23:22:04

Recently Reported IPs

68.190.118.137 109.167.240.147 206.189.177.101 103.6.207.147
40.114.214.239 110.77.146.113 104.208.223.13 52.228.31.194
52.152.171.30 43.84.56.45 70.37.92.56 191.7.85.173
152.38.148.128 45.69.213.43 60.164.168.68 141.34.107.160
14.1.126.143 176.6.147.43 86.114.72.199 227.249.33.227