52.2.244.96 - IPInfo

Basic Info

City: Ashburn

Region: Virginia

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.2.244.96
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3471
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.2.244.96.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040201 1800 900 604800 86400

;; Query time: 169 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 03 01:18:47 CST 2020
;; MSG SIZE  rcvd: 115

Host info

96.244.2.52.in-addr.arpa domain name pointer ec2-52-2-244-96.compute-1.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
96.244.2.52.in-addr.arpa	name = ec2-52-2-244-96.compute-1.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
129.226.112.181	attack	TCP (SYN) 129.226.112.181:56223 -> port 9045, len 44	2020-10-04 18:55:20
102.165.30.37	attack	6379/tcp 49502/tcp 44818/tcp... [2020-08-20/10-03]72pkt,49pt.(tcp),5pt.(udp)	2020-10-04 18:35:07
222.186.30.76	attackbots	Oct 4 10:51:13 localhost sshd[33995]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.76 user=root Oct 4 10:51:15 localhost sshd[33995]: Failed password for root from 222.186.30.76 port 15866 ssh2 Oct 4 10:51:17 localhost sshd[33995]: Failed password for root from 222.186.30.76 port 15866 ssh2 Oct 4 10:51:13 localhost sshd[33995]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.76 user=root Oct 4 10:51:15 localhost sshd[33995]: Failed password for root from 222.186.30.76 port 15866 ssh2 Oct 4 10:51:17 localhost sshd[33995]: Failed password for root from 222.186.30.76 port 15866 ssh2 Oct 4 10:51:13 localhost sshd[33995]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.76 user=root Oct 4 10:51:15 localhost sshd[33995]: Failed password for root from 222.186.30.76 port 15866 ssh2 Oct 4 10:51:17 localhost sshd[33995]: Failed pas ...	2020-10-04 18:53:33
45.146.164.169	attackbots	TCP (SYN) 45.146.164.169:51541 -> port 58389, len 44	2020-10-04 19:03:13
37.152.165.106	attackbotsspam	TCP (SYN) 37.152.165.106:20692 -> port 8080, len 44	2020-10-04 18:57:49
123.11.6.194	attackspam	GPON Home Routers Remote Code Execution Vulnerability CVE 2018-10562, PTR: hn.kd.ny.adsl.	2020-10-04 18:24:39
190.122.112.7	attackbots	Netgear DGN Device Remote Command Execution Vulnerability , PTR: PTR record not found	2020-10-04 18:54:52
139.59.40.240	attackbots	Oct 4 10:43:02 sshd\[4818\]: Invalid user oscar from 139.59.40.240Oct 4 10:43:04 sshd\[4818\]: Failed password for invalid user oscar from 139.59.40.240 port 47054 ssh2 ...	2020-10-04 18:45:44
116.58.179.3	attack	TCP (SYN) 116.58.179.3:25509 -> port 1433, len 44	2020-10-04 18:27:56
45.227.255.204	attack	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-10-04T10:18:24Z	2020-10-04 18:30:33
164.90.185.34	attack	[H1.VM2] Blocked by UFW	2020-10-04 18:56:48
175.24.23.31	attack	fail2ban/Oct 4 05:48:27 h1962932 sshd[10410]: Invalid user louis from 175.24.23.31 port 56240 Oct 4 05:48:27 h1962932 sshd[10410]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.23.31 Oct 4 05:48:27 h1962932 sshd[10410]: Invalid user louis from 175.24.23.31 port 56240 Oct 4 05:48:29 h1962932 sshd[10410]: Failed password for invalid user louis from 175.24.23.31 port 56240 ssh2 Oct 4 05:53:06 h1962932 sshd[11795]: Invalid user isaac from 175.24.23.31 port 47826	2020-10-04 18:26:27
192.35.168.226	attackspam	Found on CINS badguys / proto=6 . srcport=16352 . dstport=9195 . (121)	2020-10-04 18:37:06
37.77.121.234	attackspambots	Brute forcing RDP port 3389	2020-10-04 18:35:57
165.227.66.224	attack	Oct 4 09:57:07 Ubuntu-1404-trusty-64-minimal sshd\[28391\]: Invalid user build from 165.227.66.224 Oct 4 09:57:07 Ubuntu-1404-trusty-64-minimal sshd\[28391\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.66.224 Oct 4 09:57:09 Ubuntu-1404-trusty-64-minimal sshd\[28391\]: Failed password for invalid user build from 165.227.66.224 port 58708 ssh2 Oct 4 10:04:03 Ubuntu-1404-trusty-64-minimal sshd\[5083\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.66.224 user=root Oct 4 10:04:06 Ubuntu-1404-trusty-64-minimal sshd\[5083\]: Failed password for root from 165.227.66.224 port 59454 ssh2	2020-10-04 18:40:45

Recently Reported IPs

202.150.91.100	64.195.146.63	217.72.116.6	206.187.24.249
88.146.176.6	207.5.167.167	151.85.153.70	114.42.104.91
126.236.125.144	137.10.240.78	14.41.72.163	125.169.228.156
109.111.20.197	14.161.43.49	185.119.78.8	208.173.255.241
14.44.202.138	179.226.234.116	193.195.238.138	25.176.245.241