52.2.148.139 - IPInfo

Basic Info

City: Ashburn

Region: Virginia

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.2.148.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45902
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.2.148.139.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071401 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 15 11:20:19 CST 2019
;; MSG SIZE  rcvd: 116

Host info

139.148.2.52.in-addr.arpa domain name pointer ec2-52-2-148-139.compute-1.amazonaws.com.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
139.148.2.52.in-addr.arpa	name = ec2-52-2-148-139.compute-1.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
223.113.74.54	attackbots	Jul 19 07:31:00 vps639187 sshd\[15303\]: Invalid user testing1 from 223.113.74.54 port 52552 Jul 19 07:31:00 vps639187 sshd\[15303\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.113.74.54 Jul 19 07:31:02 vps639187 sshd\[15303\]: Failed password for invalid user testing1 from 223.113.74.54 port 52552 ssh2 ...	2020-07-19 13:50:38
152.136.50.26	attack	2020-07-19T05:57:14.239945ks3355764 sshd[24478]: Invalid user zzb from 152.136.50.26 port 51420 2020-07-19T05:57:16.352539ks3355764 sshd[24478]: Failed password for invalid user zzb from 152.136.50.26 port 51420 ssh2 ...	2020-07-19 13:53:38
139.59.243.224	attackbotsspam	2020-07-19T05:44:53.839937shield sshd\[20006\]: Invalid user zouying from 139.59.243.224 port 53308 2020-07-19T05:44:53.848619shield sshd\[20006\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.243.224 2020-07-19T05:44:55.985057shield sshd\[20006\]: Failed password for invalid user zouying from 139.59.243.224 port 53308 ssh2 2020-07-19T05:49:37.110384shield sshd\[21517\]: Invalid user user from 139.59.243.224 port 40156 2020-07-19T05:49:37.118926shield sshd\[21517\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.243.224	2020-07-19 14:30:28
159.89.53.210	attack	Jul 19 05:57:14 debian-2gb-nbg1-2 kernel: \[17389581.159362\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=159.89.53.210 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=38381 PROTO=TCP SPT=43176 DPT=30160 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-19 13:54:45
132.232.11.218	attackbots	(sshd) Failed SSH login from 132.232.11.218 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 19 05:49:14 grace sshd[29622]: Invalid user jboss from 132.232.11.218 port 46414 Jul 19 05:49:17 grace sshd[29622]: Failed password for invalid user jboss from 132.232.11.218 port 46414 ssh2 Jul 19 05:54:07 grace sshd[30283]: Invalid user amar from 132.232.11.218 port 41552 Jul 19 05:54:09 grace sshd[30283]: Failed password for invalid user amar from 132.232.11.218 port 41552 ssh2 Jul 19 05:56:47 grace sshd[30827]: Invalid user lyx from 132.232.11.218 port 40168	2020-07-19 14:16:43
175.24.36.114	attackspam	Invalid user hjb from 175.24.36.114 port 40266	2020-07-19 14:16:16
1.6.103.18	attack	Invalid user jim from 1.6.103.18 port 16720	2020-07-19 14:32:06
154.117.64.241	attackbotsspam	Jul 19 06:45:44 OPSO sshd\[20925\]: Invalid user enzo from 154.117.64.241 port 28028 Jul 19 06:45:44 OPSO sshd\[20925\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.117.64.241 Jul 19 06:45:46 OPSO sshd\[20925\]: Failed password for invalid user enzo from 154.117.64.241 port 28028 ssh2 Jul 19 06:48:22 OPSO sshd\[21710\]: Invalid user rim from 154.117.64.241 port 37266 Jul 19 06:48:22 OPSO sshd\[21710\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.117.64.241	2020-07-19 14:06:45
129.204.203.218	attackspambots	Jul 18 20:50:52 dignus sshd[31484]: Failed password for invalid user dsl from 129.204.203.218 port 44864 ssh2 Jul 18 20:54:06 dignus sshd[31863]: Invalid user ora from 129.204.203.218 port 56870 Jul 18 20:54:06 dignus sshd[31863]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.203.218 Jul 18 20:54:09 dignus sshd[31863]: Failed password for invalid user ora from 129.204.203.218 port 56870 ssh2 Jul 18 20:57:19 dignus sshd[32285]: Invalid user bserver from 129.204.203.218 port 40644 ...	2020-07-19 13:49:49
141.98.80.53	attackbots	Jul 19 06:56:04 l03 postfix/smtps/smtpd[25755]: warning: unknown[141.98.80.53]: SASL LOGIN authentication failed: authentication failure Jul 19 06:56:09 l03 postfix/smtps/smtpd[25755]: warning: unknown[141.98.80.53]: SASL LOGIN authentication failed: authentication failure Jul 19 07:02:13 l03 postfix/smtps/smtpd[28319]: warning: unknown[141.98.80.53]: SASL LOGIN authentication failed: authentication failure Jul 19 07:02:18 l03 postfix/smtps/smtpd[28319]: warning: unknown[141.98.80.53]: SASL LOGIN authentication failed: authentication failure ...	2020-07-19 14:05:11
223.112.124.226	attackbotsspam	DATE:2020-07-19 05:56:27, IP:223.112.124.226, PORT:1433 MSSQL brute force auth on honeypot server (epe-honey1-hq)	2020-07-19 14:28:18
46.38.145.254	attackbots	Jul 19 07:51:21 srv01 postfix/smtpd\[9330\]: warning: unknown\[46.38.145.254\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 19 07:52:05 srv01 postfix/smtpd\[7941\]: warning: unknown\[46.38.145.254\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 19 07:52:46 srv01 postfix/smtpd\[9320\]: warning: unknown\[46.38.145.254\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 19 07:53:27 srv01 postfix/smtpd\[9320\]: warning: unknown\[46.38.145.254\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 19 07:54:07 srv01 postfix/smtpd\[13634\]: warning: unknown\[46.38.145.254\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-19 13:55:57
222.186.180.130	attackbotsspam	Unauthorized connection attempt detected from IP address 222.186.180.130 to port 22	2020-07-19 14:24:39
104.248.158.68	attackspam	Automatically reported by fail2ban report script (mx1)	2020-07-19 14:20:53
51.145.152.217	attackspam	51.145.152.217 - - [19/Jul/2020:05:48:10 +0100] "POST /wp-login.php HTTP/1.1" 200 2435 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.145.152.217 - - [19/Jul/2020:05:48:10 +0100] "POST /wp-login.php HTTP/1.1" 200 2415 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 51.145.152.217 - - [19/Jul/2020:05:48:11 +0100] "POST /wp-login.php HTTP/1.1" 200 2415 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-19 14:32:19

Recently Reported IPs

78.178.206.159	68.201.167.201	179.95.247.90	66.188.137.189
47.204.164.27	193.174.233.203	78.110.212.48	119.113.84.245
86.101.35.186	49.117.142.127	125.76.192.143	166.111.228.33
162.0.12.139	107.204.30.136	222.84.169.59	212.252.82.152
219.202.220.143	177.92.245.226	187.114.14.104	98.201.189.16