52.248.85.65 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.248.85.65
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36853
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.248.85.65.			IN	A

;; AUTHORITY SECTION:
.			112	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111300 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Nov 13 20:43:40 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 65.85.248.52.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 65.85.248.52.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
139.212.172.170	attack	Mar 24 01:08:55 debian-2gb-nbg1-2 kernel: \[7267622.334109\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=139.212.172.170 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=232 ID=45725 PROTO=TCP SPT=46370 DPT=1433 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-24 08:30:17
49.234.51.56	attack	Mar 24 01:08:46 localhost sshd\[22770\]: Invalid user ri from 49.234.51.56 port 40052 Mar 24 01:08:46 localhost sshd\[22770\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.51.56 Mar 24 01:08:49 localhost sshd\[22770\]: Failed password for invalid user ri from 49.234.51.56 port 40052 ssh2	2020-03-24 08:36:05
191.177.127.172	attackspam	1585008550 - 03/24/2020 01:09:10 Host: 191.177.127.172/191.177.127.172 Port: 23 TCP Blocked	2020-03-24 08:19:01
92.63.194.104	attackbotsspam	Mar 24 01:08:43 vps691689 sshd[12919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.63.194.104 Mar 24 01:08:45 vps691689 sshd[12919]: Failed password for invalid user admin from 92.63.194.104 port 43521 ssh2 ...	2020-03-24 08:29:34
120.92.35.5	attackspambots	Mar 24 01:09:09 [host] sshd[17207]: Invalid user v Mar 24 01:09:09 [host] sshd[17207]: pam_unix(sshd: Mar 24 01:09:11 [host] sshd[17207]: Failed passwor	2020-03-24 08:16:55
192.200.215.196	attackbots	[portscan] Port scan	2020-03-24 08:37:16
178.62.0.215	attack	Mar 24 01:26:25 vps691689 sshd[13416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.0.215 Mar 24 01:26:27 vps691689 sshd[13416]: Failed password for invalid user cdoran from 178.62.0.215 port 54146 ssh2 Mar 24 01:30:55 vps691689 sshd[13532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.0.215 ...	2020-03-24 08:35:41
71.6.233.96	attack	44443/tcp 7100/tcp 65535/tcp... [2020-01-28/03-23]5pkt,5pt.(tcp)	2020-03-24 08:09:27
150.109.4.109	attack	Mar 24 00:03:41 combo sshd[15504]: Invalid user ftp01 from 150.109.4.109 port 46470 Mar 24 00:03:43 combo sshd[15504]: Failed password for invalid user ftp01 from 150.109.4.109 port 46470 ssh2 Mar 24 00:09:16 combo sshd[15982]: Invalid user zhengpinwen from 150.109.4.109 port 60646 ...	2020-03-24 08:14:14
124.156.55.222	attackbots	1099/tcp 14000/tcp 1022/tcp... [2020-02-28/03-23]5pkt,5pt.(tcp)	2020-03-24 08:07:38
69.116.15.190	attackspambots	Wordpress login attempts	2020-03-24 08:37:56
5.196.67.41	attackspambots	Mar 23 20:08:44 Tower sshd[37049]: Connection from 5.196.67.41 port 35102 on 192.168.10.220 port 22 rdomain "" Mar 23 20:08:47 Tower sshd[37049]: Invalid user riana from 5.196.67.41 port 35102 Mar 23 20:08:47 Tower sshd[37049]: error: Could not get shadow information for NOUSER Mar 23 20:08:47 Tower sshd[37049]: Failed password for invalid user riana from 5.196.67.41 port 35102 ssh2 Mar 23 20:08:47 Tower sshd[37049]: Received disconnect from 5.196.67.41 port 35102:11: Bye Bye [preauth] Mar 23 20:08:47 Tower sshd[37049]: Disconnected from invalid user riana 5.196.67.41 port 35102 [preauth]	2020-03-24 08:14:44
167.114.226.137	attackspam	Mar 24 01:25:57 mout sshd[18223]: Invalid user www from 167.114.226.137 port 41431	2020-03-24 08:30:03
185.175.208.73	attackspam	SSH brute force	2020-03-24 08:09:10
51.161.12.231	attackbots	Mar 24 01:08:51 debian-2gb-nbg1-2 kernel: \[7267617.615737\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=51.161.12.231 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=238 ID=10978 PROTO=TCP SPT=32767 DPT=8545 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-24 08:34:34

Recently Reported IPs

106.51.230.190	63.149.40.147	204.45.236.26	71.56.239.116
208.83.227.236	198.221.178.165	61.247.26.27	59.111.138.215
74.188.233.60	11.114.171.64	128.199.44.102	63.88.23.161
170.254.152.133	45.224.248.167	36.71.238.234	68.215.236.43
27.170.245.90	236.146.11.163	43.253.1.33	30.252.151.51