52.170.98.148 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Microsoft Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-05-23 00:30:04

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.170.98.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10356
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.170.98.148.			IN	A

;; AUTHORITY SECTION:
.			488	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052200 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat May 23 00:29:58 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 148.98.170.52.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 148.98.170.52.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.99.38.73	attackbots	Jul 25 09:41:09 meumeu sshd[26902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.38.73 Jul 25 09:41:11 meumeu sshd[26902]: Failed password for invalid user spoj0 from 167.99.38.73 port 57726 ssh2 Jul 25 09:45:37 meumeu sshd[27539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.38.73 ...	2019-07-25 15:49:03
45.77.34.41	attackspambots	Jul 25 06:45:31 microserver sshd[37735]: Invalid user fy from 45.77.34.41 port 46700 Jul 25 06:45:31 microserver sshd[37735]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.77.34.41 Jul 25 06:45:33 microserver sshd[37735]: Failed password for invalid user fy from 45.77.34.41 port 46700 ssh2 Jul 25 06:54:08 microserver sshd[38777]: Invalid user admin from 45.77.34.41 port 38098 Jul 25 06:54:08 microserver sshd[38777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.77.34.41 Jul 25 07:10:32 microserver sshd[41531]: Invalid user tester from 45.77.34.41 port 45162 Jul 25 07:10:32 microserver sshd[41531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.77.34.41 Jul 25 07:10:35 microserver sshd[41531]: Failed password for invalid user tester from 45.77.34.41 port 45162 ssh2 Jul 25 07:19:03 microserver sshd[42479]: Invalid user oleg from 45.77.34.41 port 35786 Jul 25 07:19:03 microserver	2019-07-25 16:34:48
151.77.71.18	attackbots	firewall-block, port(s): 5555/tcp	2019-07-25 16:20:42
113.190.254.199	attackspambots	Unauthorized connection attempt from IP address 113.190.254.199 on Port 445(SMB)	2019-07-25 15:53:33
36.76.179.169	attackbots	Unauthorized connection attempt from IP address 36.76.179.169 on Port 445(SMB)	2019-07-25 16:20:09
109.245.214.49	attackspam	email spam	2019-07-25 16:36:59
80.86.93.194	attack	Jul 25 10:13:11 OPSO sshd\[5640\]: Invalid user overview from 80.86.93.194 port 45980 Jul 25 10:13:11 OPSO sshd\[5640\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.86.93.194 Jul 25 10:13:14 OPSO sshd\[5640\]: Failed password for invalid user overview from 80.86.93.194 port 45980 ssh2 Jul 25 10:17:55 OPSO sshd\[6673\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.86.93.194 user=root Jul 25 10:17:57 OPSO sshd\[6673\]: Failed password for root from 80.86.93.194 port 44382 ssh2	2019-07-25 16:33:13
141.8.188.35	attackspam	2019-07-25 09:04:02,662 fail2ban.actions [16526]: NOTICE [apache-modsecurity] Ban 141.8.188.35 ...	2019-07-25 16:03:06
65.255.219.242	attack	Unauthorized connection attempt from IP address 65.255.219.242 on Port 445(SMB)	2019-07-25 16:07:08
113.160.172.77	attackbots	Unauthorized connection attempt from IP address 113.160.172.77 on Port 445(SMB)	2019-07-25 16:23:56
85.209.0.115	attackspambots	Multiport scan : 280 ports scanned 10005 10028 10110 10147 10213 10394 10480 10555 10630 10802 10875 11018 11124 11135 11192 11238 11339 11704 11878 11920 12081 12094 12323 12372 12484 12780 12805 13078 13170 13207 13337 13380 13615 13658 13707 13819 14304 14583 15163 15301 15775 15981 16314 16392 16418 16475 16679 16722 17498 17683 18707 18943 19295 19399 19689 19775 19879 20092 20169 20240 21533 21855 21898 22349 22392 22463 22961 .....	2019-07-25 16:14:55
189.131.9.218	attackspam	firewall-block, port(s): 8080/tcp	2019-07-25 16:06:02
77.40.35.106	attackbots	Brute force attempt	2019-07-25 16:24:18
189.206.136.130	attack	Trying to (more than 3 packets) bruteforce (not open) Samba/Microsoft-DS port 445	2019-07-25 16:27:59
180.250.18.71	attack	Invalid user teste from 180.250.18.71 port 56500	2019-07-25 15:56:36

Recently Reported IPs

117.212.142.197	37.49.226.202	72.58.157.236	37.49.226.182
116.252.36.253	180.87.212.7	124.218.18.236	241.113.229.224
66.227.51.27	57.198.150.243	148.72.165.197	92.150.0.31
253.90.212.174	190.207.204.65	36.32.207.87	37.49.226.103
138.3.162.41	60.227.110.233	36.236.8.88	179.43.167.228