52.172.5.99 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
52.172.53.254	attackspambots	Sep 26 20:15:20 jane sshd[17702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.53.254 Sep 26 20:15:22 jane sshd[17702]: Failed password for invalid user 252 from 52.172.53.254 port 23841 ssh2 ...	2020-09-27 02:27:32
52.172.53.254	attack	Sep 26 12:09:58 vps208890 sshd[72177]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.53.254	2020-09-26 18:22:30
52.172.55.105	attack	DATE:2020-08-02 17:25:17, IP:52.172.55.105, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc)	2020-08-03 01:57:42
52.172.53.254	attack	Unauthorized connection attempt detected from IP address 52.172.53.254 to port 1433	2020-07-22 02:17:12
52.172.53.254	attack	Jul 15 02:28:54 scw-focused-cartwright sshd[25778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.53.254 Jul 15 02:28:56 scw-focused-cartwright sshd[25778]: Failed password for invalid user admin from 52.172.53.254 port 45320 ssh2	2020-07-15 10:38:49
52.172.53.254	attackbotsspam	3x Failed Password	2020-07-15 03:45:35
52.172.53.254	attackbotsspam	Jul 14 19:28:23 vm1 sshd[1455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.53.254 Jul 14 19:28:25 vm1 sshd[1455]: Failed password for invalid user administrator from 52.172.53.254 port 38611 ssh2 ...	2020-07-15 01:49:37
52.172.55.105	attackbotsspam	2020-06-26 UTC: (3x) - root(3x)	2020-06-27 18:21:30
52.172.55.105	attack	Scanned 12 times in the last 24 hours on port 22	2020-06-27 08:37:44
52.172.53.254	attackbotsspam	2020-06-26T14:40:25.828740linuxbox-skyline sshd[247845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.53.254 user=root 2020-06-26T14:40:27.820034linuxbox-skyline sshd[247845]: Failed password for root from 52.172.53.254 port 54711 ssh2 ...	2020-06-27 04:56:23
52.172.53.254	attackspam	Jun 26 00:46:01 Tower sshd[40692]: Connection from 52.172.53.254 port 38684 on 192.168.10.220 port 22 rdomain "" Jun 26 00:46:02 Tower sshd[40692]: Failed password for root from 52.172.53.254 port 38684 ssh2 Jun 26 00:46:03 Tower sshd[40692]: Received disconnect from 52.172.53.254 port 38684:11: Client disconnecting normally [preauth] Jun 26 00:46:03 Tower sshd[40692]: Disconnected from authenticating user root 52.172.53.254 port 38684 [preauth]	2020-06-26 12:51:46
52.172.55.105	attackspambots	Jun 26 14:03:41 localhost sshd[741486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.172.55.105 user=root Jun 26 14:03:43 localhost sshd[741486]: Failed password for root from 52.172.55.105 port 50954 ssh2 ...	2020-06-26 12:21:14
52.172.53.254	attackspam	port scan and connect, tcp 22 (ssh)	2020-06-25 17:55:51
52.172.55.105	attack	$f2bV_matches	2020-06-25 12:03:13
52.172.52.205	attackbotsspam	Unauthorized connection attempt detected from IP address 52.172.52.205 to port 7002 [T]	2020-05-20 11:01:20

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.172.5.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22494
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;52.172.5.99.			IN	A

;; AUTHORITY SECTION:
.			402	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 18:27:02 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 99.5.172.52.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 99.5.172.52.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.65.157.194	attackspam	Feb 17 12:09:58 legacy sshd[25695]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.157.194 Feb 17 12:10:00 legacy sshd[25695]: Failed password for invalid user testftp from 159.65.157.194 port 53798 ssh2 Feb 17 12:13:36 legacy sshd[25944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.157.194 ...	2020-02-17 21:06:12
83.171.105.35	attackspambots	SSH login attempts.	2020-02-17 21:14:56
104.248.88.100	attackspam	WordPress login Brute force / Web App Attack on client site.	2020-02-17 21:13:05
41.86.105.88	attackbotsspam	SSH login attempts.	2020-02-17 20:34:50
51.161.8.152	attackspambots	Feb 17 00:27:30 plusreed sshd[18497]: Invalid user ncmdbuser from 51.161.8.152 ...	2020-02-17 21:18:28
89.161.157.138	attack	SSH login attempts.	2020-02-17 20:38:31
144.217.42.212	attackbots	Feb 17 02:53:44 web1 sshd\[6464\]: Invalid user ftpuser from 144.217.42.212 Feb 17 02:53:44 web1 sshd\[6464\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.42.212 Feb 17 02:53:46 web1 sshd\[6464\]: Failed password for invalid user ftpuser from 144.217.42.212 port 55584 ssh2 Feb 17 02:56:23 web1 sshd\[6721\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.42.212 user=postfix Feb 17 02:56:25 web1 sshd\[6721\]: Failed password for postfix from 144.217.42.212 port 44413 ssh2	2020-02-17 21:09:02
69.168.106.36	attackbotsspam	SSH login attempts.	2020-02-17 20:51:49
58.153.114.209	attackbotsspam	Portscan detected	2020-02-17 21:18:01
178.128.52.32	attackspambots	Feb 17 08:05:11 ws19vmsma01 sshd[104662]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.52.32 Feb 17 08:05:13 ws19vmsma01 sshd[104662]: Failed password for invalid user spark from 178.128.52.32 port 57630 ssh2 ...	2020-02-17 20:42:02
190.12.5.38	attackspam	Port probing on unauthorized port 23	2020-02-17 20:50:21
67.195.204.80	attackspam	SSH login attempts.	2020-02-17 21:10:55
52.172.9.176	attack	Automatic report - Windows Brute-Force Attack	2020-02-17 20:54:13
192.99.56.117	attackspambots	Invalid user ubuntu from 192.99.56.117 port 58138	2020-02-17 21:11:26
164.132.111.76	attackspam	Automatic report - Banned IP Access	2020-02-17 21:11:57

Recently Reported IPs

113.25.46.59	35.204.254.78	187.177.76.130	220.161.67.191
103.214.202.105	115.132.232.94	219.91.99.19	182.232.241.28
45.79.182.178	106.45.9.178	110.235.140.3	115.53.96.169
150.136.107.141	122.96.238.76	94.183.198.94	42.227.149.245
103.81.115.78	79.112.53.107	41.139.141.174	190.16.214.100