52.202.2.139 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Amazon Technologies Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Mar 22 09:35:49 ns392434 sshd[5139]: Invalid user fujimoto from 52.202.2.139 port 52444 Mar 22 09:35:49 ns392434 sshd[5139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.202.2.139 Mar 22 09:35:49 ns392434 sshd[5139]: Invalid user fujimoto from 52.202.2.139 port 52444 Mar 22 09:35:51 ns392434 sshd[5139]: Failed password for invalid user fujimoto from 52.202.2.139 port 52444 ssh2 Mar 22 09:50:56 ns392434 sshd[5549]: Invalid user plp from 52.202.2.139 port 34776 Mar 22 09:50:56 ns392434 sshd[5549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.202.2.139 Mar 22 09:50:56 ns392434 sshd[5549]: Invalid user plp from 52.202.2.139 port 34776 Mar 22 09:50:58 ns392434 sshd[5549]: Failed password for invalid user plp from 52.202.2.139 port 34776 ssh2 Mar 22 10:04:30 ns392434 sshd[5952]: Invalid user sheyenne from 52.202.2.139 port 42374	2020-03-22 17:50:38

Type

Details

Datetime

attackspambots

Mar 22 09:35:49 ns392434 sshd[5139]: Invalid user fujimoto from 52.202.2.139 port 52444
Mar 22 09:35:49 ns392434 sshd[5139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.202.2.139
Mar 22 09:35:49 ns392434 sshd[5139]: Invalid user fujimoto from 52.202.2.139 port 52444
Mar 22 09:35:51 ns392434 sshd[5139]: Failed password for invalid user fujimoto from 52.202.2.139 port 52444 ssh2
Mar 22 09:50:56 ns392434 sshd[5549]: Invalid user plp from 52.202.2.139 port 34776
Mar 22 09:50:56 ns392434 sshd[5549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.202.2.139
Mar 22 09:50:56 ns392434 sshd[5549]: Invalid user plp from 52.202.2.139 port 34776
Mar 22 09:50:58 ns392434 sshd[5549]: Failed password for invalid user plp from 52.202.2.139 port 34776 ssh2
Mar 22 10:04:30 ns392434 sshd[5952]: Invalid user sheyenne from 52.202.2.139 port 42374

2020-03-22 17:50:38

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.202.2.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62018
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.202.2.139.			IN	A

;; AUTHORITY SECTION:
.			561	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032200 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 22 17:50:34 CST 2020
;; MSG SIZE  rcvd: 116

Host info

139.2.202.52.in-addr.arpa domain name pointer ec2-52-202-2-139.compute-1.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
139.2.202.52.in-addr.arpa	name = ec2-52-202-2-139.compute-1.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
41.86.105.88	attackbotsspam	SSH login attempts.	2020-02-17 20:34:50
220.134.219.216	attack	Fail2Ban Ban Triggered	2020-02-17 20:20:55
104.47.21.36	attackspambots	SSH login attempts.	2020-02-17 21:06:46
216.68.201.172	attackspam	SSH login attempts.	2020-02-17 20:24:30
67.20.76.190	attackbots	SSH login attempts.	2020-02-17 20:44:40
176.100.173.50	attack	[portscan] tcp/23 [TELNET] *(RWIN=63103)(02171127)	2020-02-17 20:19:07
196.207.64.190	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-17 20:32:59
219.94.214.178	attackbotsspam	SSH login attempts.	2020-02-17 20:36:56
106.13.75.97	attack	Feb 16 20:28:38 sachi sshd\[27774\]: Invalid user denver from 106.13.75.97 Feb 16 20:28:38 sachi sshd\[27774\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.75.97 Feb 16 20:28:40 sachi sshd\[27774\]: Failed password for invalid user denver from 106.13.75.97 port 50742 ssh2 Feb 16 20:33:37 sachi sshd\[28229\]: Invalid user test2 from 106.13.75.97 Feb 16 20:33:37 sachi sshd\[28229\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.75.97	2020-02-17 20:37:40
218.102.32.188	attackspambots	SSH login attempts.	2020-02-17 20:35:14
222.236.44.84	attack	SSH login attempts.	2020-02-17 20:21:51
192.185.77.168	attackbotsspam	SSH login attempts.	2020-02-17 20:40:41
159.65.144.36	attack	Feb 16 20:55:06 hpm sshd\[26786\]: Invalid user ethereal from 159.65.144.36 Feb 16 20:55:06 hpm sshd\[26786\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.144.36 Feb 16 20:55:07 hpm sshd\[26786\]: Failed password for invalid user ethereal from 159.65.144.36 port 49916 ssh2 Feb 16 20:58:38 hpm sshd\[27181\]: Invalid user hwang from 159.65.144.36 Feb 16 20:58:38 hpm sshd\[27181\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.144.36	2020-02-17 20:28:53
52.172.9.176	attack	Automatic report - Windows Brute-Force Attack	2020-02-17 20:54:13
190.12.5.38	attackspam	Port probing on unauthorized port 23	2020-02-17 20:50:21

Recently Reported IPs

34.91.145.90	121.25.112.130	217.70.191.164	80.85.152.60
49.232.141.44	218.153.177.153	162.34.220.202	150.196.194.188
238.227.78.198	192.144.230.221	180.218.104.22	102.200.231.92
14.170.160.198	152.158.158.181	178.46.214.247	157.91.181.122
177.188.195.116	120.213.123.68	20.56.231.198	88.88.255.41