52.172.5.99 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
52.172.53.254	attackspambots	Sep 26 20:15:20 jane sshd[17702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.53.254 Sep 26 20:15:22 jane sshd[17702]: Failed password for invalid user 252 from 52.172.53.254 port 23841 ssh2 ...	2020-09-27 02:27:32
52.172.53.254	attack	Sep 26 12:09:58 vps208890 sshd[72177]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.53.254	2020-09-26 18:22:30
52.172.55.105	attack	DATE:2020-08-02 17:25:17, IP:52.172.55.105, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc)	2020-08-03 01:57:42
52.172.53.254	attack	Unauthorized connection attempt detected from IP address 52.172.53.254 to port 1433	2020-07-22 02:17:12
52.172.53.254	attack	Jul 15 02:28:54 scw-focused-cartwright sshd[25778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.53.254 Jul 15 02:28:56 scw-focused-cartwright sshd[25778]: Failed password for invalid user admin from 52.172.53.254 port 45320 ssh2	2020-07-15 10:38:49
52.172.53.254	attackbotsspam	3x Failed Password	2020-07-15 03:45:35
52.172.53.254	attackbotsspam	Jul 14 19:28:23 vm1 sshd[1455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.53.254 Jul 14 19:28:25 vm1 sshd[1455]: Failed password for invalid user administrator from 52.172.53.254 port 38611 ssh2 ...	2020-07-15 01:49:37
52.172.55.105	attackbotsspam	2020-06-26 UTC: (3x) - root(3x)	2020-06-27 18:21:30
52.172.55.105	attack	Scanned 12 times in the last 24 hours on port 22	2020-06-27 08:37:44
52.172.53.254	attackbotsspam	2020-06-26T14:40:25.828740linuxbox-skyline sshd[247845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.53.254 user=root 2020-06-26T14:40:27.820034linuxbox-skyline sshd[247845]: Failed password for root from 52.172.53.254 port 54711 ssh2 ...	2020-06-27 04:56:23
52.172.53.254	attackspam	Jun 26 00:46:01 Tower sshd[40692]: Connection from 52.172.53.254 port 38684 on 192.168.10.220 port 22 rdomain "" Jun 26 00:46:02 Tower sshd[40692]: Failed password for root from 52.172.53.254 port 38684 ssh2 Jun 26 00:46:03 Tower sshd[40692]: Received disconnect from 52.172.53.254 port 38684:11: Client disconnecting normally [preauth] Jun 26 00:46:03 Tower sshd[40692]: Disconnected from authenticating user root 52.172.53.254 port 38684 [preauth]	2020-06-26 12:51:46
52.172.55.105	attackspambots	Jun 26 14:03:41 localhost sshd[741486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.55.105 user=root Jun 26 14:03:43 localhost sshd[741486]: Failed password for root from 52.172.55.105 port 50954 ssh2 ...	2020-06-26 12:21:14
52.172.53.254	attackspam	port scan and connect, tcp 22 (ssh)	2020-06-25 17:55:51
52.172.55.105	attack	$f2bV_matches	2020-06-25 12:03:13
52.172.52.205	attackbotsspam	Unauthorized connection attempt detected from IP address 52.172.52.205 to port 7002 [T]	2020-05-20 11:01:20

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.172.5.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22494
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;52.172.5.99.			IN	A

;; AUTHORITY SECTION:
.			402	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 18:27:02 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 99.5.172.52.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 99.5.172.52.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
62.234.144.135	attack	Aug 28 19:50:06 vps200512 sshd\[31415\]: Invalid user pico from 62.234.144.135 Aug 28 19:50:06 vps200512 sshd\[31415\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.144.135 Aug 28 19:50:08 vps200512 sshd\[31415\]: Failed password for invalid user pico from 62.234.144.135 port 50954 ssh2 Aug 28 19:54:46 vps200512 sshd\[31595\]: Invalid user canna from 62.234.144.135 Aug 28 19:54:46 vps200512 sshd\[31595\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.144.135	2019-08-29 08:05:21
78.128.113.38	attackbots	08/28/2019-19:54:51.810502 78.128.113.38 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-08-29 08:03:02
45.80.64.246	attackbotsspam	Aug 28 14:24:26 hiderm sshd\[12835\]: Invalid user play from 45.80.64.246 Aug 28 14:24:26 hiderm sshd\[12835\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.64.246 Aug 28 14:24:27 hiderm sshd\[12835\]: Failed password for invalid user play from 45.80.64.246 port 39408 ssh2 Aug 28 14:28:43 hiderm sshd\[13250\]: Invalid user p_l_sumanth from 45.80.64.246 Aug 28 14:28:43 hiderm sshd\[13250\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.64.246	2019-08-29 08:30:07
37.187.78.170	attackbotsspam	Aug 28 14:19:38 lcdev sshd\[1387\]: Invalid user HDP from 37.187.78.170 Aug 28 14:19:38 lcdev sshd\[1387\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3366832.ovh.net Aug 28 14:19:39 lcdev sshd\[1387\]: Failed password for invalid user HDP from 37.187.78.170 port 54593 ssh2 Aug 28 14:23:20 lcdev sshd\[1752\]: Invalid user petru from 37.187.78.170 Aug 28 14:23:21 lcdev sshd\[1752\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3366832.ovh.net	2019-08-29 08:30:38
203.81.134.221	spamattack	Hacker IP	2019-08-29 08:08:54
203.81.134.221	spamattack	Hacker IP	2019-08-29 08:09:02
118.25.208.97	attack	Aug 29 01:50:01 eventyay sshd[32580]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.208.97 Aug 29 01:50:03 eventyay sshd[32580]: Failed password for invalid user wchen from 118.25.208.97 port 40684 ssh2 Aug 29 01:54:42 eventyay sshd[1142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.208.97 ...	2019-08-29 08:09:08
49.231.68.58	attackbotsspam	Aug 28 13:49:39 eddieflores sshd\[6588\]: Invalid user csgoserver2 from 49.231.68.58 Aug 28 13:49:39 eddieflores sshd\[6588\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.231.68.58 Aug 28 13:49:41 eddieflores sshd\[6588\]: Failed password for invalid user csgoserver2 from 49.231.68.58 port 59504 ssh2 Aug 28 13:54:40 eddieflores sshd\[7024\]: Invalid user shields from 49.231.68.58 Aug 28 13:54:40 eddieflores sshd\[7024\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.231.68.58	2019-08-29 08:11:03
182.252.0.188	attackspambots	Aug 29 01:50:01 legacy sshd[20535]: Failed password for root from 182.252.0.188 port 50008 ssh2 Aug 29 01:54:39 legacy sshd[20637]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.252.0.188 Aug 29 01:54:41 legacy sshd[20637]: Failed password for invalid user localhost from 182.252.0.188 port 43611 ssh2 ...	2019-08-29 08:08:43
14.63.223.226	attack	Aug 29 01:54:43 * sshd[16106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.223.226 Aug 29 01:54:45 * sshd[16106]: Failed password for invalid user toor from 14.63.223.226 port 45103 ssh2	2019-08-29 08:07:00
222.209.88.63	attack	Aug 29 06:54:54 webhost01 sshd[20806]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.209.88.63 Aug 29 06:54:55 webhost01 sshd[20806]: Failed password for invalid user position from 222.209.88.63 port 35816 ssh2 ...	2019-08-29 08:21:40
41.33.39.221	attackbotsspam	Aug 28 10:09:45 localhost kernel: [739200.805822] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=41.33.39.221 DST=[mungedIP2] LEN=48 TOS=0x00 PREC=0x00 TTL=118 ID=20118 DF PROTO=TCP SPT=3014 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 Aug 28 10:09:45 localhost kernel: [739200.805844] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=41.33.39.221 DST=[mungedIP2] LEN=48 TOS=0x00 PREC=0x00 TTL=118 ID=20118 DF PROTO=TCP SPT=3014 DPT=445 SEQ=3110771880 ACK=0 WINDOW=65535 RES=0x00 SYN URGP=0 OPT (020405B401010402) Aug 28 10:09:48 localhost kernel: [739203.922468] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=41.33.39.221 DST=[mungedIP2] LEN=48 TOS=0x00 PREC=0x00 TTL=118 ID=20307 DF PROTO=TCP SPT=3014 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 Aug 28 10:09:48 localhost kernel: [739203.922501] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=41.33.39.221 DST=[mungedIP2]	2019-08-29 07:54:58
206.189.76.64	attackbotsspam	Aug 28 13:50:25 tdfoods sshd\[21508\]: Invalid user tomcat from 206.189.76.64 Aug 28 13:50:25 tdfoods sshd\[21508\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.76.64 Aug 28 13:50:27 tdfoods sshd\[21508\]: Failed password for invalid user tomcat from 206.189.76.64 port 52756 ssh2 Aug 28 13:54:39 tdfoods sshd\[21899\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.76.64 user=lp Aug 28 13:54:41 tdfoods sshd\[21899\]: Failed password for lp from 206.189.76.64 port 42148 ssh2	2019-08-29 08:10:37
179.108.240.99	attackbotsspam	Brute force attempt	2019-08-29 08:29:23
134.175.205.46	attackbots	Aug 29 01:50:11 meumeu sshd[26216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.205.46 Aug 29 01:50:13 meumeu sshd[26216]: Failed password for invalid user ipcuser from 134.175.205.46 port 60521 ssh2 Aug 29 01:54:55 meumeu sshd[26813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.205.46 ...	2019-08-29 07:59:41

Recently Reported IPs

113.25.46.59	35.204.254.78	187.177.76.130	220.161.67.191
103.214.202.105	115.132.232.94	219.91.99.19	182.232.241.28
45.79.182.178	106.45.9.178	110.235.140.3	115.53.96.169
150.136.107.141	122.96.238.76	94.183.198.94	42.227.149.245
103.81.115.78	79.112.53.107	41.139.141.174	190.16.214.100