52.0.252.112 - IPInfo

Basic Info

City: Ashburn

Region: Virginia

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.0.252.112
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21023
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;52.0.252.112.			IN	A

;; AUTHORITY SECTION:
.			324	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2021122501 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 26 10:22:34 CST 2021
;; MSG SIZE  rcvd: 105

Host info

112.252.0.52.in-addr.arpa domain name pointer ec2-52-0-252-112.compute-1.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
112.252.0.52.in-addr.arpa	name = ec2-52-0-252-112.compute-1.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
171.220.241.115	attackspam	Jun 11 23:33:02 dhoomketu sshd[663302]: Failed password for root from 171.220.241.115 port 45112 ssh2 Jun 11 23:34:04 dhoomketu sshd[663318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.220.241.115 user=root Jun 11 23:34:06 dhoomketu sshd[663318]: Failed password for root from 171.220.241.115 port 57812 ssh2 Jun 11 23:35:08 dhoomketu sshd[663324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.220.241.115 user=root Jun 11 23:35:10 dhoomketu sshd[663324]: Failed password for root from 171.220.241.115 port 42280 ssh2 ...	2020-06-12 03:06:59
27.254.130.67	attackbots	2020-06-11T14:09:45.173780+02:00 sshd[28478]: Failed password for root from 27.254.130.67 port 42496 ssh2	2020-06-12 03:24:38
212.70.149.2	attack	Jun 11 11:21:36 nlmail01.srvfarm.net postfix/smtpd[827970]: warning: unknown[212.70.149.2]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 11 11:22:12 nlmail01.srvfarm.net postfix/smtpd[827970]: warning: unknown[212.70.149.2]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 11 11:22:48 nlmail01.srvfarm.net postfix/smtpd[827970]: warning: unknown[212.70.149.2]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 11 11:23:24 nlmail01.srvfarm.net postfix/smtpd[828227]: warning: unknown[212.70.149.2]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 11 11:24:00 nlmail01.srvfarm.net postfix/smtpd[828227]: warning: unknown[212.70.149.2]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-06-12 03:11:10
157.230.234.117	attackbots	IP Attempted Username Last Failed Attempt (DD/MM/YYYY) Failed Attempts Count Lockouts Count URL Attacked 157.230.234.117 admin 11/06/2020 05:03:24 1 0 https://morisc.org//wp-login.php	2020-06-12 02:48:15
196.188.104.50	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-06-12 03:11:42
183.82.101.162	attackspam	Honeypot attack, port: 445, PTR: broadband.actcorp.in.	2020-06-12 03:21:56
107.167.85.118	attackspambots	HTTP_USER_AGENT Mozilla/5.0 (Windows NT 10.0; WOW64; rv:47.0) Gecko/20100101 Firefox/47.0	2020-06-12 02:56:28
88.250.101.204	attackbotsspam	Honeypot attack, port: 445, PTR: 88.250.101.204.static.ttnet.com.tr.	2020-06-12 03:20:32
109.162.242.2	attackspambots	(imapd) Failed IMAP login from 109.162.242.2 (IR/Iran/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Jun 11 16:40:13 ir1 dovecot[2885757]: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=109.162.242.2, lip=5.63.12.44, TLS, session=	2020-06-12 03:03:23
104.237.240.117	attackspam	trying to access non-authorized port	2020-06-12 03:19:55
182.122.2.150	attack	Jun 11 02:07:53 online-web-1 sshd[2312674]: Invalid user test from 182.122.2.150 port 62496 Jun 11 02:07:53 online-web-1 sshd[2312674]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.122.2.150 Jun 11 02:07:55 online-web-1 sshd[2312674]: Failed password for invalid user test from 182.122.2.150 port 62496 ssh2 Jun 11 02:07:55 online-web-1 sshd[2312674]: Received disconnect from 182.122.2.150 port 62496:11: Bye Bye [preauth] Jun 11 02:07:55 online-web-1 sshd[2312674]: Disconnected from 182.122.2.150 port 62496 [preauth] Jun 11 02:38:55 online-web-1 sshd[2314926]: Invalid user wp from 182.122.2.150 port 3770 Jun 11 02:38:55 online-web-1 sshd[2314926]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.122.2.150 Jun 11 02:38:57 online-web-1 sshd[2314926]: Failed password for invalid user wp from 182.122.2.150 port 3770 ssh2 Jun 11 02:38:57 online-web-1 sshd[2314926]: Received disconnect fro........ -------------------------------	2020-06-12 03:18:29
64.227.70.78	attack	US_DigitalOcean,_<177>1591883906 [1:2403428:57929] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 65 [Classification: Misc Attack] [Priority: 2]: {TCP} 64.227.70.78:47770	2020-06-12 03:25:27
178.62.224.96	attackspam	Jun 12 01:30:58 itv-usvr-01 sshd[15444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.224.96 user=root Jun 12 01:31:00 itv-usvr-01 sshd[15444]: Failed password for root from 178.62.224.96 port 56293 ssh2 Jun 12 01:36:17 itv-usvr-01 sshd[15644]: Invalid user centos from 178.62.224.96	2020-06-12 03:19:00
177.87.254.113	attack	Automatic report - Banned IP Access	2020-06-12 02:49:08
36.248.107.232	attackbotsspam	(ftpd) Failed FTP login from 36.248.107.232 (CN/China/-): 10 in the last 3600 secs	2020-06-12 02:51:58

Recently Reported IPs

128.12.174.11	157.30.20.79	0.86.142.92	2600:387:3:805::3a
117.246.226.175	238.200.13.62	40.140.35.22	230.55.104.222
16.32.146.47	109.233.88.93	147.253.213.104	70.135.103.180
166.182.251.216	73.84.89.85	29.235.103.60	8.141.142.209
177.179.119.130	103.157.190.161	74.53.150.223	99.157.171.124