52.4.240.148 - IPInfo

Basic Info

City: Ashburn

Region: Virginia

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: Amazon.com, Inc.

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.4.240.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59311
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.4.240.148.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051900 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun May 19 19:03:01 CST 2019
;; MSG SIZE  rcvd: 116

Host info

148.240.4.52.in-addr.arpa domain name pointer ec2-52-4-240-148.compute-1.amazonaws.com.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
148.240.4.52.in-addr.arpa	name = ec2-52-4-240-148.compute-1.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
72.167.222.102	attackspam	72.167.222.102 - - [11/Jul/2020:11:56:21 +0200] "GET /wp-login.php HTTP/1.1" 200 6060 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 72.167.222.102 - - [11/Jul/2020:11:56:22 +0200] "POST /wp-login.php HTTP/1.1" 200 6311 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 72.167.222.102 - - [11/Jul/2020:11:56:23 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-07-11 18:44:11
51.38.36.9	attackspambots	Invalid user exome from 51.38.36.9 port 51394	2020-07-11 18:33:16
54.38.81.231	attackbots	$f2bV_matches	2020-07-11 18:25:51
103.132.98.108	attack	Jul 11 09:58:20 ip-172-31-62-245 sshd\[25047\]: Invalid user udo from 103.132.98.108\ Jul 11 09:58:22 ip-172-31-62-245 sshd\[25047\]: Failed password for invalid user udo from 103.132.98.108 port 38238 ssh2\ Jul 11 10:00:11 ip-172-31-62-245 sshd\[25071\]: Invalid user lazar from 103.132.98.108\ Jul 11 10:00:12 ip-172-31-62-245 sshd\[25071\]: Failed password for invalid user lazar from 103.132.98.108 port 34984 ssh2\ Jul 11 10:01:56 ip-172-31-62-245 sshd\[25084\]: Invalid user bryon from 103.132.98.108\	2020-07-11 18:19:35
92.62.136.213	attackbotsspam	TCP ports : 6383 / 31327	2020-07-11 18:51:49
123.16.84.109	attack	1594439414 - 07/11/2020 05:50:14 Host: 123.16.84.109/123.16.84.109 Port: 445 TCP Blocked	2020-07-11 18:21:31
167.99.77.94	attack	Jul 11 10:05:35 dhoomketu sshd[1428312]: Invalid user admin from 167.99.77.94 port 46826 Jul 11 10:05:35 dhoomketu sshd[1428312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.77.94 Jul 11 10:05:35 dhoomketu sshd[1428312]: Invalid user admin from 167.99.77.94 port 46826 Jul 11 10:05:37 dhoomketu sshd[1428312]: Failed password for invalid user admin from 167.99.77.94 port 46826 ssh2 Jul 11 10:09:05 dhoomketu sshd[1428332]: Invalid user ni from 167.99.77.94 port 43964 ...	2020-07-11 18:42:50
5.200.95.107	attackbots	SSH invalid-user multiple login try	2020-07-11 18:31:48
195.54.160.135	attackspambots	TCP ports : 8081 / 8983	2020-07-11 18:17:49
51.178.78.152	attack	TCP port : 6443	2020-07-11 18:29:45
218.92.0.250	attackbots	Fail2Ban Ban Triggered (2)	2020-07-11 18:46:11
89.248.168.157	attackspambots	07/11/2020-04:58:39.276720 89.248.168.157 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-07-11 18:40:09
106.54.205.236	attackspam	Jul 11 12:16:16 server sshd[8241]: Failed password for invalid user web from 106.54.205.236 port 40766 ssh2 Jul 11 12:18:16 server sshd[10321]: Failed password for invalid user eleanor from 106.54.205.236 port 36508 ssh2 Jul 11 12:20:27 server sshd[12855]: Failed password for invalid user feng from 106.54.205.236 port 60502 ssh2	2020-07-11 18:41:33
59.46.70.107	attackbots	Jul 11 07:54:46 sso sshd[5125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.46.70.107 Jul 11 07:54:48 sso sshd[5125]: Failed password for invalid user lhl from 59.46.70.107 port 56038 ssh2 ...	2020-07-11 18:55:36
184.70.244.67	attackbotsspam	...	2020-07-11 18:15:47

Recently Reported IPs

42.236.163.241	95.85.28.255	196.73.179.210	63.121.86.36
114.94.65.162	52.100.231.58	120.70.44.44	200.105.146.201
84.185.94.50	177.79.68.70	67.101.33.14	71.252.35.123
46.98.240.37	1.123.17.58	106.30.227.215	173.179.204.207
106.51.54.32	81.89.109.68	27.121.64.67	185.199.133.90