52.141.42.89 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Korea, Republic of

Internet Service Provider: Microsoft Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	SSH/22 MH Probe, BF, Hack -	2019-11-27 20:21:08

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.141.42.89
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2404
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.141.42.89.			IN	A

;; AUTHORITY SECTION:
.			422	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112700 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Nov 27 20:21:03 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 89.42.141.52.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 89.42.141.52.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
94.191.47.31	attack	Aug 20 16:47:11 v22019058497090703 sshd[9680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.47.31 Aug 20 16:47:13 v22019058497090703 sshd[9680]: Failed password for invalid user extrim from 94.191.47.31 port 44124 ssh2 Aug 20 16:53:50 v22019058497090703 sshd[10238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.47.31 ...	2019-08-20 23:06:55
150.117.216.66	attackspam	Aug 20 12:05:43 [host] sshd[3115]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.117.216.66 user=backup Aug 20 12:05:45 [host] sshd[3115]: Failed password for backup from 150.117.216.66 port 46532 ssh2 Aug 20 12:09:34 [host] sshd[3261]: Invalid user er from 150.117.216.66	2019-08-20 22:51:18
200.199.6.204	attackspam	Aug 20 02:12:29 plusreed sshd[5702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.199.6.204 user=root Aug 20 02:12:31 plusreed sshd[5702]: Failed password for root from 200.199.6.204 port 41968 ssh2 ...	2019-08-20 22:22:49
24.210.199.30	attackbots	ssh failed login	2019-08-20 22:56:10
167.99.66.166	attackspam	Aug 20 10:43:00 Ubuntu-1404-trusty-64-minimal sshd\[10932\]: Invalid user cacti from 167.99.66.166 Aug 20 10:43:00 Ubuntu-1404-trusty-64-minimal sshd\[10932\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.66.166 Aug 20 10:43:02 Ubuntu-1404-trusty-64-minimal sshd\[10932\]: Failed password for invalid user cacti from 167.99.66.166 port 53050 ssh2 Aug 20 16:25:37 Ubuntu-1404-trusty-64-minimal sshd\[9427\]: Invalid user zabbix from 167.99.66.166 Aug 20 16:25:37 Ubuntu-1404-trusty-64-minimal sshd\[9427\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.66.166	2019-08-20 22:28:41
182.61.176.105	attackbots	2019-08-20T14:53:55.718318abusebot-5.cloudsearch.cf sshd\[29139\]: Invalid user lost from 182.61.176.105 port 56354	2019-08-20 23:01:40
103.3.226.228	attackspambots	Aug 20 11:05:14 ny01 sshd[11674]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.3.226.228 Aug 20 11:05:16 ny01 sshd[11674]: Failed password for invalid user 123456 from 103.3.226.228 port 56904 ssh2 Aug 20 11:10:49 ny01 sshd[12203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.3.226.228	2019-08-20 23:14:27
51.255.45.20	attack	Aug 20 01:17:05 sachi sshd\[20515\]: Invalid user info3 from 51.255.45.20 Aug 20 01:17:05 sachi sshd\[20515\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.ip-51-255-45.eu Aug 20 01:17:08 sachi sshd\[20515\]: Failed password for invalid user info3 from 51.255.45.20 port 38084 ssh2 Aug 20 01:22:11 sachi sshd\[21047\]: Invalid user jboss from 51.255.45.20 Aug 20 01:22:12 sachi sshd\[21047\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.ip-51-255-45.eu	2019-08-20 22:42:07
103.15.226.14	attackbotsspam	Automatic report - Banned IP Access	2019-08-20 22:18:07
194.61.24.190	attackbotsspam	Splunk® : port scan detected: Aug 20 11:00:43 testbed kernel: Firewall: TCP_IN Blocked IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:64:c3:d6:0b:ef:f0:08:00 SRC=194.61.24.190 DST=104.248.11.191 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=2257 PROTO=TCP SPT=42055 DPT=3390 WINDOW=1024 RES=0x00 SYN URGP=0	2019-08-20 23:01:09
14.245.117.5	attackbots	Aug 20 16:14:46 shenron sshd[25216]: Invalid user admin from 14.245.117.5 Aug 20 16:14:46 shenron sshd[25216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.245.117.5 Aug 20 16:14:47 shenron sshd[25216]: Failed password for invalid user admin from 14.245.117.5 port 15352 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.245.117.5	2019-08-20 23:00:24
183.82.122.47	attack	Unauthorized connection attempt from IP address 183.82.122.47 on Port 445(SMB)	2019-08-20 22:07:47
176.122.128.217	attackbotsspam	SSH Brute-Forcing (ownc)	2019-08-20 22:26:52
111.9.116.135	attackbotsspam	Aug 20 17:24:13 dedicated sshd[11970]: Invalid user livia from 111.9.116.135 port 51342	2019-08-20 23:25:00
202.143.120.129	attackspambots	Unauthorized connection attempt from IP address 202.143.120.129 on Port 445(SMB)	2019-08-20 22:20:30

Recently Reported IPs

180.196.171.187	132.206.175.6	211.28.225.90	60.66.91.101
22.242.118.15	26.106.18.222	240.167.131.28	25.124.99.88
201.186.124.177	90.145.195.86	31.217.206.252	92.21.94.217
100.188.243.26	214.103.118.58	154.62.254.142	73.181.210.38
118.121.13.43	112.29.172.224	27.100.26.45	78.180.151.133