52.172.199.45 - IPInfo

Basic Info

City: Pune

Region: Maharashtra

Country: India

Internet Service Provider: Microsoft Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
52.172.199.83	attack	Sep 30 22:52:15 gw1 sshd[7649]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.199.83 Sep 30 22:52:17 gw1 sshd[7649]: Failed password for invalid user vyos from 52.172.199.83 port 41792 ssh2 ...	2020-10-01 04:01:12
52.172.199.83	attackbots	Scanned 3 times in the last 24 hours on port 22	2020-09-30 12:37:13
52.172.199.83	attackbotsspam	DATE:2020-09-29 22:41:18, IP:52.172.199.83, PORT:ssh SSH brute force auth (docker-dc)	2020-09-30 05:36:54
52.172.199.83	attack	Sep 29 14:18:36 serwer sshd\[12254\]: Invalid user webmaster from 52.172.199.83 port 39686 Sep 29 14:18:36 serwer sshd\[12254\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.199.83 Sep 29 14:18:38 serwer sshd\[12254\]: Failed password for invalid user webmaster from 52.172.199.83 port 39686 ssh2 ...	2020-09-29 21:46:58
52.172.199.83	attackspam	Sep 29 07:53:10 abendstille sshd\[13593\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.199.83 user=root Sep 29 07:53:12 abendstille sshd\[13593\]: Failed password for root from 52.172.199.83 port 53956 ssh2 Sep 29 07:57:15 abendstille sshd\[18115\]: Invalid user f from 52.172.199.83 Sep 29 07:57:15 abendstille sshd\[18115\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.199.83 Sep 29 07:57:17 abendstille sshd\[18115\]: Failed password for invalid user f from 52.172.199.83 port 58182 ssh2 ...	2020-09-29 14:03:21
52.172.199.166	attackspambots	Aug 23 01:56:18 areeb-Workstation sshd\[18282\]: Invalid user maffiaw from 52.172.199.166 Aug 23 01:56:18 areeb-Workstation sshd\[18282\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.199.166 Aug 23 01:56:19 areeb-Workstation sshd\[18282\]: Failed password for invalid user maffiaw from 52.172.199.166 port 45454 ssh2 ...	2019-08-23 04:39:06
52.172.199.166	attackspam	Aug 17 19:16:34 hb sshd\[29444\]: Invalid user temp1 from 52.172.199.166 Aug 17 19:16:34 hb sshd\[29444\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.199.166 Aug 17 19:16:36 hb sshd\[29444\]: Failed password for invalid user temp1 from 52.172.199.166 port 45498 ssh2 Aug 17 19:21:40 hb sshd\[29948\]: Invalid user ly from 52.172.199.166 Aug 17 19:21:40 hb sshd\[29948\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.199.166	2019-08-18 03:23:41

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.172.199.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31432
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.172.199.45.			IN	A

;; AUTHORITY SECTION:
.			553	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092401 1800 900 604800 86400

;; Query time: 77 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Sep 25 02:40:28 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 45.199.172.52.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 45.199.172.52.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.218.3.2	attack	Oct 8 01:04:18 sticky sshd\[11208\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.218.3.2 user=root Oct 8 01:04:20 sticky sshd\[11208\]: Failed password for root from 103.218.3.2 port 60158 ssh2 Oct 8 01:08:05 sticky sshd\[11236\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.218.3.2 user=root Oct 8 01:08:07 sticky sshd\[11236\]: Failed password for root from 103.218.3.2 port 38002 ssh2 Oct 8 01:11:58 sticky sshd\[11317\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.218.3.2 user=root	2020-10-09 01:14:54
49.232.132.144	attack	bruteforce detected	2020-10-09 01:23:07
110.164.163.54	attack	Oct 8 14:02:55 PorscheCustomer sshd[3376]: Failed password for root from 110.164.163.54 port 60090 ssh2 Oct 8 14:07:05 PorscheCustomer sshd[3481]: Failed password for root from 110.164.163.54 port 47714 ssh2 ...	2020-10-09 01:03:24
159.203.78.201	attack	Port Scan ...	2020-10-09 01:10:08
112.85.42.174	attackspam	Oct 8 18:45:27 melroy-server sshd[25568]: Failed password for root from 112.85.42.174 port 1688 ssh2 Oct 8 18:45:32 melroy-server sshd[25568]: Failed password for root from 112.85.42.174 port 1688 ssh2 ...	2020-10-09 01:04:50
119.65.95.181	attack	Automatic report - Banned IP Access	2020-10-09 00:44:40
189.178.192.40	attackspambots	Oct 8 18:11:57 prod4 sshd\[31697\]: Failed password for root from 189.178.192.40 port 44336 ssh2 Oct 8 18:15:59 prod4 sshd\[702\]: Failed password for root from 189.178.192.40 port 49962 ssh2 Oct 8 18:20:02 prod4 sshd\[2145\]: Failed password for root from 189.178.192.40 port 55580 ssh2 ...	2020-10-09 00:46:35
150.143.244.63	attack	Automated report (2020-10-07T13:43:03-07:00). Caught masquerading as Facebook external hit. Caught masquerading as Twitterbot.	2020-10-09 01:11:55
49.233.108.195	attack	prod6 ...	2020-10-09 01:07:48
212.64.78.151	attackbots	Oct 8 16:19:59 localhost sshd[109180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.78.151 user=root Oct 8 16:20:01 localhost sshd[109180]: Failed password for root from 212.64.78.151 port 45172 ssh2 Oct 8 16:24:30 localhost sshd[109670]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.78.151 user=root Oct 8 16:24:33 localhost sshd[109670]: Failed password for root from 212.64.78.151 port 38044 ssh2 Oct 8 16:29:01 localhost sshd[110110]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.78.151 user=root Oct 8 16:29:04 localhost sshd[110110]: Failed password for root from 212.64.78.151 port 59140 ssh2 ...	2020-10-09 00:49:56
82.65.1.45	attackspam	DATE:2020-10-08 10:22:17, IP:82.65.1.45, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-10-09 01:09:40
122.51.238.227	attackspambots	Lines containing failures of 122.51.238.227 Oct 6 08:38:12 shared06 sshd[10844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.238.227 user=r.r Oct 6 08:38:14 shared06 sshd[10844]: Failed password for r.r from 122.51.238.227 port 43708 ssh2 Oct 6 08:38:14 shared06 sshd[10844]: Received disconnect from 122.51.238.227 port 43708:11: Bye Bye [preauth] Oct 6 08:38:14 shared06 sshd[10844]: Disconnected from authenticating user r.r 122.51.238.227 port 43708 [preauth] Oct 6 08:51:15 shared06 sshd[15400]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.238.227 user=r.r Oct 6 08:51:17 shared06 sshd[15400]: Failed password for r.r from 122.51.238.227 port 58660 ssh2 Oct 6 08:51:18 shared06 sshd[15400]: Received disconnect from 122.51.238.227 port 58660:11: Bye Bye [preauth] Oct 6 08:51:18 shared06 sshd[15400]: Disconnected from authenticating user r.r 122.51.238.227 port 58660........ ------------------------------	2020-10-09 00:57:50
195.34.243.122	attackspambots	(sshd) Failed SSH login from 195.34.243.122 (RU/Russia/X122.DSL07.lipetsk.ru): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 8 06:33:26 optimus sshd[7676]: Failed password for root from 195.34.243.122 port 47706 ssh2 Oct 8 06:37:57 optimus sshd[9194]: Failed password for root from 195.34.243.122 port 54516 ssh2 Oct 8 06:42:24 optimus sshd[10860]: Failed password for root from 195.34.243.122 port 33094 ssh2 Oct 8 06:46:53 optimus sshd[12280]: Failed password for root from 195.34.243.122 port 39902 ssh2 Oct 8 06:51:16 optimus sshd[13733]: Failed password for root from 195.34.243.122 port 46714 ssh2	2020-10-09 01:22:01
86.161.9.225	attackbots	Port Scan: TCP/443	2020-10-09 01:23:50
212.70.149.5	attackspam	Oct 8 18:46:04 galaxy event: galaxy/lswi: smtp: caryl@uni-potsdam.de [212.70.149.5] authentication failure using internet password Oct 8 18:46:25 galaxy event: galaxy/lswi: smtp: caryn@uni-potsdam.de [212.70.149.5] authentication failure using internet password Oct 8 18:46:46 galaxy event: galaxy/lswi: smtp: carys@uni-potsdam.de [212.70.149.5] authentication failure using internet password Oct 8 18:47:07 galaxy event: galaxy/lswi: smtp: casandra@uni-potsdam.de [212.70.149.5] authentication failure using internet password Oct 8 18:47:28 galaxy event: galaxy/lswi: smtp: casey@uni-potsdam.de [212.70.149.5] authentication failure using internet password ...	2020-10-09 00:56:49

Recently Reported IPs

185.224.130.124	201.33.254.229	42.196.114.250	32.54.82.255
72.217.125.213	178.3.63.34	121.232.120.185	68.217.68.46
186.201.9.163	27.145.131.97	66.190.148.172	174.154.121.68
69.111.212.185	150.222.157.98	49.141.111.10	86.216.58.86
45.224.106.171	175.67.51.74	58.63.56.180	178.242.26.40