52.0.252.112 - IPInfo

Basic Info

City: Ashburn

Region: Virginia

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.0.252.112
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21023
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;52.0.252.112.			IN	A

;; AUTHORITY SECTION:
.			324	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2021122501 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 26 10:22:34 CST 2021
;; MSG SIZE  rcvd: 105

Host info

112.252.0.52.in-addr.arpa domain name pointer ec2-52-0-252-112.compute-1.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
112.252.0.52.in-addr.arpa	name = ec2-52-0-252-112.compute-1.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.175.182	attackspambots	2020-04-29T21:52:24.382277abusebot-8.cloudsearch.cf sshd[24742]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root 2020-04-29T21:52:26.480677abusebot-8.cloudsearch.cf sshd[24742]: Failed password for root from 222.186.175.182 port 35110 ssh2 2020-04-29T21:52:30.654146abusebot-8.cloudsearch.cf sshd[24742]: Failed password for root from 222.186.175.182 port 35110 ssh2 2020-04-29T21:52:24.382277abusebot-8.cloudsearch.cf sshd[24742]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root 2020-04-29T21:52:26.480677abusebot-8.cloudsearch.cf sshd[24742]: Failed password for root from 222.186.175.182 port 35110 ssh2 2020-04-29T21:52:30.654146abusebot-8.cloudsearch.cf sshd[24742]: Failed password for root from 222.186.175.182 port 35110 ssh2 2020-04-29T21:52:24.382277abusebot-8.cloudsearch.cf sshd[24742]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 ...	2020-04-30 05:53:30
209.141.55.11	attackspambots	Apr 30 00:10:10 s1 sshd\[16154\]: Invalid user test from 209.141.55.11 port 37520 Apr 30 00:10:10 s1 sshd\[16152\]: Invalid user ec2-user from 209.141.55.11 port 37506 Apr 30 00:10:10 s1 sshd\[16146\]: Invalid user java from 209.141.55.11 port 37516 Apr 30 00:10:10 s1 sshd\[16149\]: User root from 209.141.55.11 not allowed because not listed in AllowUsers Apr 30 00:10:10 s1 sshd\[16143\]: Invalid user devops from 209.141.55.11 port 37508 Apr 30 00:10:10 s1 sshd\[16148\]: User root from 209.141.55.11 not allowed because not listed in AllowUsers Apr 30 00:10:10 s1 sshd\[16144\]: Invalid user guest from 209.141.55.11 port 37510 Apr 30 00:10:10 s1 sshd\[16145\]: Invalid user postgres from 209.141.55.11 port 37524 Apr 30 00:10:10 s1 sshd\[16142\]: Invalid user oracle from 209.141.55.11 port 37518 Apr 30 00:10:10 s1 sshd\[16147\]: Invalid user user from 209.141.55.11 port 37528 Apr 30 00:10:10 s1 sshd\[16150\]: Invalid user ubuntu from 209.141.55.11 port 37530 Apr 30 00:10:10 s1 sshd\[16153\]: Invalid user openvpn	2020-04-30 06:13:28
206.189.145.251	attackbotsspam	Apr 30 01:10:33 gw1 sshd[26928]: Failed password for root from 206.189.145.251 port 33608 ssh2 ...	2020-04-30 05:49:09
95.161.10.75	attackbotsspam	Telnet Server BruteForce Attack	2020-04-30 05:42:59
92.255.174.56	attack	Spam detected 2020.04.29 22:14:17 blocked until 2020.05.24 18:45:40	2020-04-30 06:10:32
182.254.153.90	attackspam	Fail2Ban - SSH Bruteforce Attempt	2020-04-30 05:57:19
79.142.76.203	attack	Automatic report - Banned IP Access	2020-04-30 06:19:23
77.79.237.102	attack	SpamScore above: 10.0	2020-04-30 05:44:50
139.59.67.82	attackbots	Apr 29 23:34:33 legacy sshd[22567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.67.82 Apr 29 23:34:35 legacy sshd[22567]: Failed password for invalid user crichard from 139.59.67.82 port 39786 ssh2 Apr 29 23:38:49 legacy sshd[22748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.67.82 ...	2020-04-30 05:44:05
196.1.97.216	attackspambots	Apr 30 04:19:23 webhost01 sshd[27360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.1.97.216 Apr 30 04:19:25 webhost01 sshd[27360]: Failed password for invalid user lydie from 196.1.97.216 port 36322 ssh2 ...	2020-04-30 05:55:35
189.135.77.202	attack	Apr 29 23:32:04 server sshd[14641]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.135.77.202 Apr 29 23:32:07 server sshd[14641]: Failed password for invalid user richard from 189.135.77.202 port 51926 ssh2 Apr 29 23:36:28 server sshd[15053]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.135.77.202 ...	2020-04-30 05:50:46
162.204.50.21	attack	Apr 29 23:08:11 mout sshd[3458]: Invalid user paul from 162.204.50.21 port 23363	2020-04-30 05:49:41
187.188.86.81	attack	Unauthorised access (Apr 29) SRC=187.188.86.81 LEN=52 TTL=112 ID=4929 DF TCP DPT=445 WINDOW=8192 SYN	2020-04-30 06:17:01
106.12.200.160	attack	ZmEu vulnerability scanner used to probe for vulnerable PHPMyAdmin installations and guess SSH passwords. 106.12.200.160 - - [29/Apr/2020:22:00:16 +0000] "GET /w00tw00t.at.blackhats.romanian.anti-sec:) HTTP/1.1" 403 154 "-" "ZmEu"	2020-04-30 06:03:11
114.237.109.105	attackspam	SpamScore above: 10.0	2020-04-30 05:44:28

Recently Reported IPs

128.12.174.11	157.30.20.79	0.86.142.92	2600:387:3:805::3a
117.246.226.175	238.200.13.62	40.140.35.22	230.55.104.222
16.32.146.47	109.233.88.93	147.253.213.104	70.135.103.180
166.182.251.216	73.84.89.85	29.235.103.60	8.141.142.209
177.179.119.130	103.157.190.161	74.53.150.223	99.157.171.124