52.200.148.236

Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.200.148.236
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5504
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;52.200.148.236.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025011001 1800 900 604800 86400

;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 11 12:08:28 CST 2025
;; MSG SIZE  rcvd: 107

Host info

236.148.200.52.in-addr.arpa domain name pointer ec2-52-200-148-236.compute-1.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
236.148.200.52.in-addr.arpa	name = ec2-52-200-148-236.compute-1.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
37.187.129.23	attack	37.187.129.23 - - [29/Sep/2020:13:40:52 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 37.187.129.23 - - [29/Sep/2020:13:40:53 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 37.187.129.23 - - [29/Sep/2020:13:40:53 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-30 01:12:34
185.234.219.11	attack	24 times SMTP brute-force	2020-09-30 00:39:34
59.8.91.185	attackbots	Sep 29 19:14:41 ns382633 sshd\[1128\]: Invalid user test from 59.8.91.185 port 49302 Sep 29 19:14:41 ns382633 sshd\[1128\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.8.91.185 Sep 29 19:14:43 ns382633 sshd\[1128\]: Failed password for invalid user test from 59.8.91.185 port 49302 ssh2 Sep 29 19:20:15 ns382633 sshd\[2643\]: Invalid user marketing1 from 59.8.91.185 port 57829 Sep 29 19:20:15 ns382633 sshd\[2643\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.8.91.185	2020-09-30 01:21:43
62.234.80.115	attackbotsspam	$f2bV_matches	2020-09-30 00:57:36
171.243.127.144	attack	Invalid user postgres2 from 171.243.127.144 port 58302	2020-09-30 00:52:32
51.210.107.40	attackbots	Invalid user tester from 51.210.107.40 port 45000	2020-09-30 01:03:22
190.205.252.39	attack	ang 190.205.252.39 [29/Sep/2020:03:34:19 "-" "POST /wp-login.php 404 10856 190.205.252.39 [29/Sep/2020:03:34:55 "-" "GET /wp-login.php 301 384 190.205.252.39 [29/Sep/2020:03:34:59 "http://eksgon.com/wp-login.php" "GET /-/-/-/-/-/-/-/-/-/-/ 301 408	2020-09-30 01:01:40
98.128.181.211	attack	trying to access non-authorized port	2020-09-30 01:03:41
45.55.237.182	attackbotsspam	Sep 29 16:38:19 localhost sshd[7046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.237.182 user=ftp Sep 29 16:38:22 localhost sshd[7046]: Failed password for ftp from 45.55.237.182 port 43386 ssh2 Sep 29 16:43:08 localhost sshd[7385]: Invalid user tester from 45.55.237.182 port 35260 Sep 29 16:43:08 localhost sshd[7385]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.237.182 Sep 29 16:43:08 localhost sshd[7385]: Invalid user tester from 45.55.237.182 port 35260 Sep 29 16:43:11 localhost sshd[7385]: Failed password for invalid user tester from 45.55.237.182 port 35260 ssh2 ...	2020-09-30 00:46:11
223.197.151.55	attackbotsspam	2020-09-29T11:19:31.4373511495-001 sshd[6376]: Invalid user download from 223.197.151.55 port 33534 2020-09-29T11:19:33.9694991495-001 sshd[6376]: Failed password for invalid user download from 223.197.151.55 port 33534 ssh2 2020-09-29T11:21:01.9663041495-001 sshd[6405]: Invalid user jobs from 223.197.151.55 port 45043 2020-09-29T11:21:01.9699851495-001 sshd[6405]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.197.151.55 2020-09-29T11:21:01.9663041495-001 sshd[6405]: Invalid user jobs from 223.197.151.55 port 45043 2020-09-29T11:21:04.1872641495-001 sshd[6405]: Failed password for invalid user jobs from 223.197.151.55 port 45043 ssh2 ...	2020-09-30 01:09:28
165.232.36.54	attack	none	2020-09-30 01:06:14
167.172.192.180	attackbots	Automatic report - XMLRPC Attack	2020-09-30 00:57:18
189.112.228.153	attack	Sep 29 10:31:21 melroy-server sshd[22452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.112.228.153 Sep 29 10:31:23 melroy-server sshd[22452]: Failed password for invalid user contact from 189.112.228.153 port 59565 ssh2 ...	2020-09-30 01:21:12
61.133.232.254	attackspam	Sep 29 11:23:18 roki-contabo sshd\[12353\]: Invalid user hadoop5 from 61.133.232.254 Sep 29 11:23:18 roki-contabo sshd\[12353\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.133.232.254 Sep 29 11:23:20 roki-contabo sshd\[12353\]: Failed password for invalid user hadoop5 from 61.133.232.254 port 64841 ssh2 Sep 29 12:30:26 roki-contabo sshd\[13975\]: Invalid user mysql from 61.133.232.254 Sep 29 12:30:26 roki-contabo sshd\[13975\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.133.232.254 ...	2020-09-30 01:20:07
139.199.94.100	attack	Sep 29 14:59:16 localhost sshd[2613784]: Invalid user phil from 139.199.94.100 port 36000 ...	2020-09-30 00:48:12

Recently Reported IPs

48.31.211.205	204.251.4.249	63.7.121.125	234.177.194.39
179.104.225.254	29.221.146.17	132.132.240.132	189.15.122.11
252.131.165.222	120.13.120.136	212.83.119.95	229.46.172.49
223.79.166.81	25.5.254.223	13.53.186.36	136.110.153.244
39.219.1.23	74.226.3.117	56.17.168.54	187.157.168.64