52.164.211.22 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Microsoft Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Nov 23 08:47:34 server sshd\[2823\]: Invalid user miro from 52.164.211.22 port 52156 Nov 23 08:47:34 server sshd\[2823\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.164.211.22 Nov 23 08:47:37 server sshd\[2823\]: Failed password for invalid user miro from 52.164.211.22 port 52156 ssh2 Nov 23 08:52:02 server sshd\[25011\]: User root from 52.164.211.22 not allowed because listed in DenyUsers Nov 23 08:52:02 server sshd\[25011\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.164.211.22 user=root	2019-11-23 15:09:59
attackspambots	SSH Brute Force, server-1 sshd[24127]: Failed password for root from 52.164.211.22 port 40352 ssh2	2019-11-01 03:50:31
attack	2019-10-04T05:57:48.243777abusebot-2.cloudsearch.cf sshd\[8283\]: Invalid user Germany@123 from 52.164.211.22 port 58086	2019-10-04 14:08:03
attack	Sep 28 14:24:44 plusreed sshd[6879]: Invalid user gnuhealth from 52.164.211.22 ...	2019-09-29 02:29:12
attackbotsspam	Sep 20 03:46:49 srv206 sshd[27822]: Invalid user test from 52.164.211.22 Sep 20 03:46:49 srv206 sshd[27822]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.164.211.22 Sep 20 03:46:49 srv206 sshd[27822]: Invalid user test from 52.164.211.22 Sep 20 03:46:51 srv206 sshd[27822]: Failed password for invalid user test from 52.164.211.22 port 60188 ssh2 ...	2019-09-20 10:26:06
attackbotsspam	Sep 19 16:36:03 vps200512 sshd\[3300\]: Invalid user webadmin from 52.164.211.22 Sep 19 16:36:03 vps200512 sshd\[3300\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.164.211.22 Sep 19 16:36:05 vps200512 sshd\[3300\]: Failed password for invalid user webadmin from 52.164.211.22 port 47572 ssh2 Sep 19 16:41:41 vps200512 sshd\[3483\]: Invalid user srvtalas from 52.164.211.22 Sep 19 16:41:41 vps200512 sshd\[3483\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.164.211.22	2019-09-20 04:56:40
attackspam	ssh failed login	2019-09-08 09:00:15
attackspambots	Sep 2 03:58:53 lcprod sshd\[20091\]: Invalid user csc from 52.164.211.22 Sep 2 03:58:53 lcprod sshd\[20091\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.164.211.22 Sep 2 03:58:54 lcprod sshd\[20091\]: Failed password for invalid user csc from 52.164.211.22 port 58492 ssh2 Sep 2 04:04:15 lcprod sshd\[20967\]: Invalid user administrator from 52.164.211.22 Sep 2 04:04:15 lcprod sshd\[20967\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.164.211.22	2019-09-02 22:11:23
attackspambots	2019-09-01T07:43:02.990431abusebot-3.cloudsearch.cf sshd\[21347\]: Invalid user areknet from 52.164.211.22 port 33732	2019-09-01 20:12:20
attackbotsspam	Aug 30 16:16:41 hcbbdb sshd\[4263\]: Invalid user ronald from 52.164.211.22 Aug 30 16:16:41 hcbbdb sshd\[4263\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.164.211.22 Aug 30 16:16:43 hcbbdb sshd\[4263\]: Failed password for invalid user ronald from 52.164.211.22 port 36920 ssh2 Aug 30 16:22:16 hcbbdb sshd\[4881\]: Invalid user anto from 52.164.211.22 Aug 30 16:22:16 hcbbdb sshd\[4881\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.164.211.22	2019-08-31 06:19:00
attackspam	Aug 29 09:31:44 unicornsoft sshd\[16818\]: Invalid user qtss from 52.164.211.22 Aug 29 09:31:44 unicornsoft sshd\[16818\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.164.211.22 Aug 29 09:31:46 unicornsoft sshd\[16818\]: Failed password for invalid user qtss from 52.164.211.22 port 54504 ssh2	2019-08-29 21:40:09
attack	$f2bV_matches	2019-08-29 14:19:55
attack	Aug 27 00:03:38 web1 sshd\[5891\]: Invalid user mel from 52.164.211.22 Aug 27 00:03:38 web1 sshd\[5891\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.164.211.22 Aug 27 00:03:40 web1 sshd\[5891\]: Failed password for invalid user mel from 52.164.211.22 port 49518 ssh2 Aug 27 00:08:28 web1 sshd\[6435\]: Invalid user peggie from 52.164.211.22 Aug 27 00:08:28 web1 sshd\[6435\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.164.211.22	2019-08-27 18:16:51
attack	Aug 25 23:24:55 vtv3 sshd\[10056\]: Invalid user vlado from 52.164.211.22 port 50802 Aug 25 23:24:55 vtv3 sshd\[10056\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.164.211.22 Aug 25 23:24:56 vtv3 sshd\[10056\]: Failed password for invalid user vlado from 52.164.211.22 port 50802 ssh2 Aug 25 23:31:14 vtv3 sshd\[13509\]: Invalid user craven from 52.164.211.22 port 41984 Aug 25 23:31:14 vtv3 sshd\[13509\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.164.211.22 Aug 25 23:43:19 vtv3 sshd\[19417\]: Invalid user thunder from 52.164.211.22 port 52448 Aug 25 23:43:19 vtv3 sshd\[19417\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.164.211.22 Aug 25 23:43:21 vtv3 sshd\[19417\]: Failed password for invalid user thunder from 52.164.211.22 port 52448 ssh2 Aug 25 23:49:25 vtv3 sshd\[22367\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser=	2019-08-26 13:04:24

Comments on same subnet:

IP	Type	Details	Datetime
52.164.211.28	attackbotsspam	Sep 27 00:54:42 fhem-rasp sshd[11408]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.164.211.28 Sep 27 00:54:45 fhem-rasp sshd[11408]: Failed password for invalid user admin from 52.164.211.28 port 43704 ssh2 ...	2020-09-27 07:00:28
52.164.211.28	attack	Sep 26 16:15:43 cdc sshd[18868]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.164.211.28 Sep 26 16:15:45 cdc sshd[18868]: Failed password for invalid user admin from 52.164.211.28 port 13056 ssh2	2020-09-26 23:26:21
52.164.211.28	attackspam	<6 unauthorized SSH connections	2020-09-26 15:15:50
52.164.211.28	attackbots	Tried sshing with brute force.	2020-09-26 03:09:48
52.164.211.28	attackbots	Invalid user video from 52.164.211.28 port 56036	2020-09-25 18:57:58

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.164.211.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19710
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.164.211.22.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082501 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Aug 26 13:04:02 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 22.211.164.52.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 22.211.164.52.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
176.118.128.73	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-16 18:24:50
220.77.136.120	attackspambots	firewall-block, port(s): 23/tcp	2020-02-16 18:22:22
187.207.160.147	attackbotsspam	unauthorized connection attempt	2020-02-16 18:08:54
90.188.115.251	attackbotsspam	unauthorized connection attempt	2020-02-16 17:56:33
198.108.67.59	attack	Portscan or hack attempt detected by psad/fwsnort	2020-02-16 18:05:26
109.76.58.7	attackspam	Feb 16 07:21:35 work-partkepr sshd\[29169\]: Invalid user wangchen from 109.76.58.7 port 42776 Feb 16 07:21:35 work-partkepr sshd\[29169\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.76.58.7 ...	2020-02-16 18:27:17
61.140.27.151	attack	1581828956 - 02/16/2020 05:55:56 Host: 61.140.27.151/61.140.27.151 Port: 445 TCP Blocked	2020-02-16 18:24:11
113.189.194.3	attackbots	unauthorized connection attempt	2020-02-16 18:12:55
183.82.125.172	attack	unauthorized connection attempt	2020-02-16 18:05:46
114.142.140.30	attackspam	unauthorized connection attempt	2020-02-16 18:18:05
35.199.154.128	attackbots	Brute-force attempt banned	2020-02-16 18:27:50
37.72.7.166	attackspam	unauthorized connection attempt	2020-02-16 17:58:44
104.236.63.99	attackspambots	Feb 16 07:31:12 game-panel sshd[16760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.63.99 Feb 16 07:31:15 game-panel sshd[16760]: Failed password for invalid user mmis from 104.236.63.99 port 56900 ssh2 Feb 16 07:33:12 game-panel sshd[16829]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.63.99	2020-02-16 18:37:21
118.114.196.68	attackbotsspam	unauthorized connection attempt	2020-02-16 18:11:11
42.115.14.169	attackspambots	1581828954 - 02/16/2020 05:55:54 Host: 42.115.14.169/42.115.14.169 Port: 445 TCP Blocked	2020-02-16 18:27:37

Recently Reported IPs

122.114.132.106	88.240.111.114	58.144.151.10	206.189.93.149
179.187.1.224	216.170.119.175	128.106.122.55	95.12.101.66
210.86.175.222	106.12.178.63	95.179.249.76	144.76.32.91
172.104.120.202	14.231.248.24	87.229.115.140	160.20.253.6
148.70.186.70	144.76.83.113	109.252.23.235	45.95.33.149