52.4.240.148 - IPInfo

Basic Info

City: Ashburn

Region: Virginia

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: Amazon.com, Inc.

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.4.240.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59311
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.4.240.148.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051900 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun May 19 19:03:01 CST 2019
;; MSG SIZE  rcvd: 116

Host info

148.240.4.52.in-addr.arpa domain name pointer ec2-52-4-240-148.compute-1.amazonaws.com.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
148.240.4.52.in-addr.arpa	name = ec2-52-4-240-148.compute-1.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
37.187.60.182	attackspam	Jul 20 03:41:38 srv-4 sshd\[20775\]: Invalid user ark from 37.187.60.182 Jul 20 03:41:38 srv-4 sshd\[20775\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.60.182 Jul 20 03:41:39 srv-4 sshd\[20775\]: Failed password for invalid user ark from 37.187.60.182 port 45986 ssh2 ...	2019-07-20 08:57:59
178.128.217.47	attackbotsspam	WordPress XMLRPC scan :: 178.128.217.47 0.120 BYPASS [20/Jul/2019:07:39:33 1000] [censored_1] "POST /xmlrpc.php HTTP/1.1" 200 413 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-07-20 09:08:01
92.38.224.242	attack	[portscan] Port scan	2019-07-20 08:38:37
121.157.82.194	attackbotsspam	Jul 20 02:05:43 [munged] sshd[32480]: Invalid user oracle from 121.157.82.194 port 58320 Jul 20 02:05:43 [munged] sshd[32480]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.157.82.194	2019-07-20 08:34:47
121.159.114.29	attackbotsspam	Invalid user chris from 121.159.114.29 port 60286	2019-07-20 09:01:35
104.140.188.22	attackbots	port scan and connect, tcp 1433 (ms-sql-s)	2019-07-20 09:02:34
223.202.201.220	attackbots	Jul 20 02:18:47 debian64 sshd\[4927\]: Invalid user misha from 223.202.201.220 port 39292 Jul 20 02:18:47 debian64 sshd\[4927\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.202.201.220 Jul 20 02:18:49 debian64 sshd\[4927\]: Failed password for invalid user misha from 223.202.201.220 port 39292 ssh2 ...	2019-07-20 08:32:51
183.82.112.85	attackbots	Jul 20 02:35:20 eventyay sshd[9269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.82.112.85 Jul 20 02:35:22 eventyay sshd[9269]: Failed password for invalid user dstserver from 183.82.112.85 port 61600 ssh2 Jul 20 02:40:40 eventyay sshd[10564]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.82.112.85 ...	2019-07-20 08:54:00
157.230.190.1	attackbotsspam	Jul 20 02:00:45 bouncer sshd\[6097\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.190.1 user=root Jul 20 02:00:46 bouncer sshd\[6097\]: Failed password for root from 157.230.190.1 port 57644 ssh2 Jul 20 02:07:57 bouncer sshd\[6126\]: Invalid user hive from 157.230.190.1 port 55026 ...	2019-07-20 08:40:55
217.146.88.2	attackspambots	2019-07-19 dovecot_login authenticator failed for $H5G0bB$ \[217.146.88.2\]: 535 Incorrect authentication data $set_id=REMOVEDREMOVEDREMOVED_perl@REMOVED.de$ 2019-07-19 dovecot_login authenticator failed for $nvaymBLdZ$ \[217.146.88.2\]: 535 Incorrect authentication data $set_id=REMOVEDREMOVEDREMOVED_perl@REMOVED.de$ 2019-07-19 dovecot_login authenticator failed for $jld7WC9Mfb$ \[217.146.88.2\]: 535 Incorrect authentication data $set_id=REMOVEDREMOVEDREMOVED_perl@REMOVED.de$	2019-07-20 08:42:26
158.69.194.115	attackbots	Jul 20 02:35:38 SilenceServices sshd[26621]: Failed password for root from 158.69.194.115 port 54510 ssh2 Jul 20 02:41:59 SilenceServices sshd[31089]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.194.115 Jul 20 02:42:01 SilenceServices sshd[31089]: Failed password for invalid user webler from 158.69.194.115 port 53641 ssh2	2019-07-20 08:49:08
139.59.180.53	attackbots	SSH authentication failure x 6 reported by Fail2Ban ...	2019-07-20 08:26:03
92.118.160.17	attack	19.07.2019 16:33:14 Connection to port 5905 blocked by firewall	2019-07-20 08:59:18
187.120.132.164	attack	$f2bV_matches	2019-07-20 08:28:56
2.185.215.6	attackbotsspam	2019-07-19 11:33:23 H=(luxuryclass.it) [2.185.215.6]:53928 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.11, 127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-07-19 11:33:24 H=(luxuryclass.it) [2.185.215.6]:53928 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3, 127.0.0.11) (https://www.spamhaus.org/query/ip/2.185.215.6) 2019-07-19 11:33:26 H=(luxuryclass.it) [2.185.215.6]:53928 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.11, 127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/query/ip/2.185.215.6) ...	2019-07-20 08:55:08

Recently Reported IPs

42.236.163.241	95.85.28.255	196.73.179.210	63.121.86.36
114.94.65.162	52.100.231.58	120.70.44.44	200.105.146.201
84.185.94.50	177.79.68.70	67.101.33.14	71.252.35.123
46.98.240.37	1.123.17.58	106.30.227.215	173.179.204.207
106.51.54.32	81.89.109.68	27.121.64.67	185.199.133.90