52.148.240.217

Basic Info

City: unknown

Region: unknown

Country: Netherlands

Internet Service Provider: Microsoft Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt detected from IP address 52.148.240.217 to port 1433	2020-07-22 20:09:35

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.148.240.217
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55173
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.148.240.217.			IN	A

;; AUTHORITY SECTION:
.			374	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072200 1800 900 604800 86400

;; Query time: 46 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jul 22 20:09:30 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 217.240.148.52.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 217.240.148.52.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
101.231.124.6	attackspam	k+ssh-bruteforce	2020-05-03 18:21:09
54.36.150.105	attackspambots	Forbidden directory scan :: 2020/05/03 03:49:19 [error] 33379#33379: *1211814 access forbidden by rule, client: 54.36.150.105, server: [censored_1], request: "GET /crystal-reports/crystal-reports-run-and-email-report-using-crexport-and-blat/ HTTP/1.1", host: "www.[censored_1]"	2020-05-03 18:16:22
200.46.28.251	attack	Invalid user curly from 200.46.28.251 port 44512	2020-05-03 18:12:57
183.83.144.95	attack	1588477773 - 05/03/2020 05:49:33 Host: 183.83.144.95/183.83.144.95 Port: 445 TCP Blocked	2020-05-03 18:05:31
162.243.140.224	attackspam	2525/tcp 1583/tcp 445/tcp... [2020-04-29/05-02]7pkt,7pt.(tcp)	2020-05-03 18:09:05
116.110.110.15	attackbotsspam	May 3 05:48:29 prod4 vsftpd\[6743\]: \[anonymous\] FAIL LOGIN: Client "116.110.110.15" May 3 05:48:32 prod4 vsftpd\[6758\]: \[www\] FAIL LOGIN: Client "116.110.110.15" May 3 05:48:35 prod4 vsftpd\[6774\]: \[www\] FAIL LOGIN: Client "116.110.110.15" May 3 05:48:37 prod4 vsftpd\[6782\]: \[www\] FAIL LOGIN: Client "116.110.110.15" May 3 05:48:40 prod4 vsftpd\[6797\]: \[www\] FAIL LOGIN: Client "116.110.110.15" ...	2020-05-03 18:42:11
120.25.70.134	attackspam	May 2 22:53:15 server1 sshd\[11300\]: Failed password for root from 120.25.70.134 port 39228 ssh2 May 2 22:54:41 server1 sshd\[11711\]: Invalid user insight from 120.25.70.134 May 2 22:54:41 server1 sshd\[11711\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.25.70.134 May 2 22:54:43 server1 sshd\[11711\]: Failed password for invalid user insight from 120.25.70.134 port 42615 ssh2 May 2 22:55:54 server1 sshd\[12111\]: Invalid user webmaster from 120.25.70.134 ...	2020-05-03 18:13:46
193.118.53.194	attackbotsspam	193.118.53.194 - - - [03/May/2020:09:26:46 +0200] "GET /cgi-bin/config.exp HTTP/1.1" 404 564 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36" "-" "-"	2020-05-03 18:38:25
77.247.108.77	attackbotsspam	Unauthorized connection attempt detected from IP address 77.247.108.77 to port 8443 [T]	2020-05-03 18:30:55
218.4.163.146	attackbots	Invalid user ivr from 218.4.163.146 port 34938	2020-05-03 18:28:23
123.206.30.76	attackspambots	May 3 10:29:32 server sshd[20628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.30.76 May 3 10:29:34 server sshd[20628]: Failed password for invalid user fer from 123.206.30.76 port 38946 ssh2 May 3 10:31:02 server sshd[20785]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.30.76 ...	2020-05-03 18:03:35
212.85.69.14	attackspambots	C1,WP GET /suche/wp-login.php	2020-05-03 17:58:28
119.4.225.31	attackspam	Invalid user resolve from 119.4.225.31 port 37354	2020-05-03 18:28:42
212.119.206.74	attack	May 3 07:47:22 sip sshd[90338]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.119.206.74 May 3 07:47:22 sip sshd[90338]: Invalid user mc from 212.119.206.74 port 46849 May 3 07:47:24 sip sshd[90338]: Failed password for invalid user mc from 212.119.206.74 port 46849 ssh2 ...	2020-05-03 18:04:40
85.190.157.149	attackspam	Trying ports that it shouldn't be.	2020-05-03 18:29:15

Recently Reported IPs

123.174.189.235	122.115.228.12	121.146.250.80	120.204.85.38
118.34.4.72	114.93.26.83	151.231.186.185	109.169.147.77
95.81.80.182	94.182.8.183	92.242.199.55	92.64.194.67
80.14.138.16	78.171.137.198	46.99.199.95	37.235.196.62
144.167.198.134	36.73.17.214	14.155.220.117	8.71.59.231