52.25.82.90 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.25.82.90
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12045
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;52.25.82.90.			IN	A

;; AUTHORITY SECTION:
.			484	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023052300 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 24 01:46:46 CST 2023
;; MSG SIZE  rcvd: 104

Host info

90.82.25.52.in-addr.arpa domain name pointer ec2-52-25-82-90.us-west-2.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
90.82.25.52.in-addr.arpa	name = ec2-52-25-82-90.us-west-2.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
197.47.132.73	attackspam	Chat Spam	2019-10-03 13:48:28
218.92.0.191	attack	Oct 3 07:17:29 dcd-gentoo sshd[10656]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Oct 3 07:17:32 dcd-gentoo sshd[10656]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Oct 3 07:17:29 dcd-gentoo sshd[10656]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Oct 3 07:17:32 dcd-gentoo sshd[10656]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Oct 3 07:17:29 dcd-gentoo sshd[10656]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Oct 3 07:17:32 dcd-gentoo sshd[10656]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Oct 3 07:17:32 dcd-gentoo sshd[10656]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.191 port 58032 ssh2 ...	2019-10-03 13:19:28
39.135.1.160	attackbots	[portscan] Port scan	2019-10-03 13:07:54
117.2.113.137	attackbots	445/tcp [2019-10-03]1pkt	2019-10-03 13:22:53
54.37.254.57	attackbots	Automatic report - Banned IP Access	2019-10-03 13:11:18
191.209.113.185	attackbots	Sep 30 13:18:00 uapps sshd[9312]: Address 191.209.113.185 maps to 191-209-113-185.user.vivozap.com.br, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Sep 30 13:18:03 uapps sshd[9312]: Failed password for invalid user cyril from 191.209.113.185 port 22256 ssh2 Sep 30 13:18:03 uapps sshd[9312]: Received disconnect from 191.209.113.185: 11: Bye Bye [preauth] Sep 30 13:33:09 uapps sshd[9419]: Address 191.209.113.185 maps to 191-209-113-185.user.vivozap.com.br, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Sep 30 13:33:11 uapps sshd[9419]: Failed password for invalid user dan from 191.209.113.185 port 29457 ssh2 Sep 30 13:33:11 uapps sshd[9419]: Received disconnect from 191.209.113.185: 11: Bye Bye [preauth] Sep 30 13:38:03 uapps sshd[9450]: Address 191.209.113.185 maps to 191-209-113-185.user.vivozap.com.br, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! ........ ----------------------------------------------- https://www.blocklist.de/en/v	2019-10-03 13:04:54
142.93.242.95	attack	2019-08-19 22:17:50,571 fail2ban.actions [878]: NOTICE [sshd] Ban 142.93.242.95 2019-08-20 01:21:54,020 fail2ban.actions [878]: NOTICE [sshd] Ban 142.93.242.95 2019-08-20 04:27:54,727 fail2ban.actions [878]: NOTICE [sshd] Ban 142.93.242.95 ...	2019-10-03 13:28:34
58.245.186.80	attackspambots	Unauthorised access (Oct 3) SRC=58.245.186.80 LEN=40 TTL=49 ID=16675 TCP DPT=8080 WINDOW=47803 SYN	2019-10-03 12:59:25
182.23.95.52	attackspam	Unauthorised access (Oct 3) SRC=182.23.95.52 LEN=52 TOS=0x08 PREC=0x20 TTL=113 ID=3992 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Oct 3) SRC=182.23.95.52 LEN=52 TOS=0x08 PREC=0x20 TTL=113 ID=27766 DF TCP DPT=445 WINDOW=8192 SYN	2019-10-03 13:48:57
45.55.42.17	attack	2019-10-03T10:58:56.518855enmeeting.mahidol.ac.th sshd\[7514\]: Invalid user applmgr from 45.55.42.17 port 38382 2019-10-03T10:58:56.534145enmeeting.mahidol.ac.th sshd\[7514\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.42.17 2019-10-03T10:58:58.892132enmeeting.mahidol.ac.th sshd\[7514\]: Failed password for invalid user applmgr from 45.55.42.17 port 38382 ssh2 ...	2019-10-03 13:21:54
78.128.113.116	attackbotsspam	Oct 3 05:28:17 mail postfix/smtpd\[3853\]: warning: unknown\[78.128.113.116\]: SASL PLAIN authentication failed: \ Oct 3 05:28:24 mail postfix/smtpd\[3878\]: warning: unknown\[78.128.113.116\]: SASL PLAIN authentication failed: \ Oct 3 05:59:45 mail postfix/smtpd\[3933\]: warning: unknown\[78.128.113.116\]: SASL PLAIN authentication failed: \ Oct 3 05:59:52 mail postfix/smtpd\[4648\]: warning: unknown\[78.128.113.116\]: SASL PLAIN authentication failed: \	2019-10-03 12:52:00
5.196.70.107	attack	Oct 3 05:38:29 web8 sshd\[32291\]: Invalid user sistemas from 5.196.70.107 Oct 3 05:38:29 web8 sshd\[32291\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.70.107 Oct 3 05:38:31 web8 sshd\[32291\]: Failed password for invalid user sistemas from 5.196.70.107 port 42970 ssh2 Oct 3 05:42:56 web8 sshd\[2266\]: Invalid user temp from 5.196.70.107 Oct 3 05:42:56 web8 sshd\[2266\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.70.107	2019-10-03 13:44:46
142.93.187.58	attackspambots	2019-09-01 18:18:50,942 fail2ban.actions [804]: NOTICE [sshd] Ban 142.93.187.58 2019-09-01 21:24:15,574 fail2ban.actions [804]: NOTICE [sshd] Ban 142.93.187.58 2019-09-02 00:29:44,093 fail2ban.actions [804]: NOTICE [sshd] Ban 142.93.187.58 ...	2019-10-03 13:45:35
151.80.99.35	attackspambots	Oct 3 05:07:01 web8 sshd\[17050\]: Invalid user arkserver from 151.80.99.35 Oct 3 05:07:01 web8 sshd\[17050\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.99.35 Oct 3 05:07:04 web8 sshd\[17050\]: Failed password for invalid user arkserver from 151.80.99.35 port 35938 ssh2 Oct 3 05:08:05 web8 sshd\[17515\]: Invalid user ubuntu from 151.80.99.35 Oct 3 05:08:05 web8 sshd\[17515\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.99.35	2019-10-03 13:20:12
115.61.34.71	attackspam	Unauthorised access (Oct 3) SRC=115.61.34.71 LEN=40 TTL=49 ID=25125 TCP DPT=8080 WINDOW=39830 SYN Unauthorised access (Oct 2) SRC=115.61.34.71 LEN=40 TTL=49 ID=8945 TCP DPT=8080 WINDOW=38129 SYN Unauthorised access (Oct 2) SRC=115.61.34.71 LEN=40 TTL=49 ID=8160 TCP DPT=8080 WINDOW=27414 SYN	2019-10-03 13:27:44

Recently Reported IPs

92.31.239.53	241.226.229.98	30.178.67.211	107.86.152.169
168.75.1.157	200.204.152.157	131.90.247.84	77.204.244.83
72.219.172.108	223.43.40.124	95.187.200.174	173.82.34.174
192.23.56.201	109.219.253.148	40.191.9.145	49.247.239.205
196.91.226.173	121.37.243.213	103.23.142.195	58.11.7.49