89.238.52.252 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Poland

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 89.238.52.252
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34970
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;89.238.52.252.			IN	A

;; AUTHORITY SECTION:
.			496	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024052401 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat May 25 06:40:49 CST 2024
;; MSG SIZE  rcvd: 106

Host info

252.52.238.89.in-addr.arpa domain name pointer 252.52.238.89.static.smgr.pl.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
252.52.238.89.in-addr.arpa	name = 252.52.238.89.static.smgr.pl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.9.227.174	attack	unauthorized connection attempt	2020-01-08 17:29:41
192.0.103.4	attackspambots	Automatic report generated by Wazuh	2020-01-08 17:27:00
45.171.124.30	attackbotsspam	firewall-block, port(s): 23/tcp	2020-01-08 17:22:01
45.55.182.232	attackspambots	Jan 7 18:46:07 wbs sshd\[11686\]: Invalid user oa from 45.55.182.232 Jan 7 18:46:07 wbs sshd\[11686\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=www.koan.co.nz Jan 7 18:46:10 wbs sshd\[11686\]: Failed password for invalid user oa from 45.55.182.232 port 60018 ssh2 Jan 7 18:48:49 wbs sshd\[11944\]: Invalid user aili from 45.55.182.232 Jan 7 18:48:49 wbs sshd\[11944\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=www.koan.co.nz	2020-01-08 17:49:55
157.245.98.160	attack	Unauthorized connection attempt detected from IP address 157.245.98.160 to port 2220 [J]	2020-01-08 17:48:27
62.210.185.4	attackbots	[WedJan0808:25:09.1048812020][:error][pid25699:tid47483113277184][client62.210.185.4:50644][client62.210.185.4]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"[a-z0-9]~\$"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"1257"][id"390581"][rev"1"][msg"Atomicorp.comWAFRules:AttackBlocked-DataLeakage-attempttoaccessbackupfile$disablethisruleifyourequireaccesstofilesthatendwithatilde$"][severity"CRITICAL"][hostname"sportticino.ch"][uri"/wp-config.php~"][unique_id"XhWD1Xwv1uWqLMKdryRthAAAAE0"][WedJan0808:25:37.6116262020][:error][pid25892:tid47483104872192][client62.210.185.4:51940][client62.210.185.4]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$wp-$\?config\\\\\\\\.$php\\\\\\\\.$\?$\?:bac\?k\\|o\(\?:ld\\|rig$\\|copy\\|s$\?:ave\\|wp$\\|vim\?\\\\\\\\.\\|~\)"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"1254"][id"390597"][rev"1"][msg"Atomicorp.comWAFRules:AttackBlocked-DataLeakage-attemp	2020-01-08 17:41:22
145.239.78.59	attack	Jan 8 08:04:56 debian64 sshd\[12200\]: Invalid user ajc from 145.239.78.59 port 43834 Jan 8 08:04:56 debian64 sshd\[12200\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.78.59 Jan 8 08:04:59 debian64 sshd\[12200\]: Failed password for invalid user ajc from 145.239.78.59 port 43834 ssh2 ...	2020-01-08 17:50:38
195.68.206.250	attack	01/08/2020-07:43:32.704291 195.68.206.250 Protocol: 6 ET CHAT IRC PING command	2020-01-08 17:23:31
122.152.197.6	attackbots	Unauthorized connection attempt detected from IP address 122.152.197.6 to port 2220 [J]	2020-01-08 17:45:48
63.81.87.158	attack	Jan 8 06:41:52 grey postfix/smtpd\[6667\]: NOQUEUE: reject: RCPT from glossy.jcnovel.com\[63.81.87.158\]: 554 5.7.1 Service unavailable\; Client host \[63.81.87.158\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[63.81.87.158\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-01-08 17:43:58
89.218.78.226	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-08 17:59:30
94.191.28.212	attackspam	Unauthorized connection attempt detected from IP address 94.191.28.212 to port 2220 [J]	2020-01-08 17:51:34
196.34.35.180	attack	Jan 8 02:51:12 firewall sshd[28343]: Invalid user bettyc from 196.34.35.180 Jan 8 02:51:14 firewall sshd[28343]: Failed password for invalid user bettyc from 196.34.35.180 port 55024 ssh2 Jan 8 02:54:20 firewall sshd[28423]: Invalid user Password from 196.34.35.180 ...	2020-01-08 17:46:58
187.35.91.198	attackspambots	Jan 7 21:11:01 server sshd\[330\]: Invalid user ts6 from 187.35.91.198 Jan 7 21:11:01 server sshd\[330\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.35.91.198 Jan 7 21:11:03 server sshd\[330\]: Failed password for invalid user ts6 from 187.35.91.198 port 41985 ssh2 Jan 8 09:40:20 server sshd\[17851\]: Invalid user ccv from 187.35.91.198 Jan 8 09:40:20 server sshd\[17851\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.35.91.198 ...	2020-01-08 17:47:58
87.184.158.127	attack	Jan 8 06:00:12 legacy sshd[27540]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.184.158.127 Jan 8 06:00:14 legacy sshd[27540]: Failed password for invalid user webadmin from 87.184.158.127 port 57704 ssh2 Jan 8 06:05:52 legacy sshd[27888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.184.158.127 ...	2020-01-08 17:51:01

Recently Reported IPs

159.199.212.147	231.254.103.49	203.91.150.111	231.36.34.201
227.229.93.80	127.37.247.46	140.243.192.118	130.190.94.160
35.53.77.127	247.75.0.194	59.215.11.166	9.63.224.236
207.235.181.255	197.243.95.88	149.18.210.203	61.44.219.70
19.226.91.116	52.38.252.242	200.14.186.91	17.55.129.220