52.47.85.245 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
52.47.85.228	attackbots	Invalid user temporal from 52.47.85.228 port 34716	2020-03-30 09:45:29

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.47.85.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45219
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;52.47.85.245.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091401 1800 900 604800 86400

;; Query time: 43 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 15 03:21:08 CST 2022
;; MSG SIZE  rcvd: 105

Host info

245.85.47.52.in-addr.arpa domain name pointer ec2-52-47-85-245.eu-west-3.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
245.85.47.52.in-addr.arpa	name = ec2-52-47-85-245.eu-west-3.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
221.162.255.78	attackspam	Aug 30 16:29:08 MK-Soft-VM6 sshd\[27785\]: Invalid user pl from 221.162.255.78 port 36456 Aug 30 16:29:08 MK-Soft-VM6 sshd\[27785\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.162.255.78 Aug 30 16:29:10 MK-Soft-VM6 sshd\[27785\]: Failed password for invalid user pl from 221.162.255.78 port 36456 ssh2 ...	2019-08-31 01:22:52
108.167.189.72	attackbotsspam	Probing for vulnerable PHP code /qsfoaecg.php	2019-08-31 00:59:36
156.202.7.160	attack	Aug 30 18:29:13 andromeda sshd\[49382\]: Invalid user admin from 156.202.7.160 port 55628 Aug 30 18:29:13 andromeda sshd\[49382\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.202.7.160 Aug 30 18:29:15 andromeda sshd\[49382\]: Failed password for invalid user admin from 156.202.7.160 port 55628 ssh2	2019-08-31 01:18:47
193.188.22.12	attack	Aug 30 18:29:18 ncomp sshd[14124]: Invalid user user from 193.188.22.12 Aug 30 18:29:18 ncomp sshd[14124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.188.22.12 Aug 30 18:29:18 ncomp sshd[14124]: Invalid user user from 193.188.22.12 Aug 30 18:29:20 ncomp sshd[14124]: Failed password for invalid user user from 193.188.22.12 port 37873 ssh2	2019-08-31 01:17:35
138.68.94.173	attackspam	Aug 30 18:02:35 mail sshd\[7479\]: Failed password for invalid user don from 138.68.94.173 port 42188 ssh2 Aug 30 18:19:11 mail sshd\[7714\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.94.173 user=root ...	2019-08-31 01:25:40
49.156.53.19	attackspambots	$f2bV_matches	2019-08-31 00:47:30
140.237.244.14	attackbotsspam	Caught in portsentry honeypot	2019-08-31 01:25:04
115.88.201.58	attackbots	Aug 30 07:01:28 aiointranet sshd\[24812\]: Invalid user cgbae from 115.88.201.58 Aug 30 07:01:28 aiointranet sshd\[24812\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.88.201.58 Aug 30 07:01:30 aiointranet sshd\[24812\]: Failed password for invalid user cgbae from 115.88.201.58 port 45182 ssh2 Aug 30 07:06:20 aiointranet sshd\[25209\]: Invalid user inc0metax from 115.88.201.58 Aug 30 07:06:20 aiointranet sshd\[25209\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.88.201.58	2019-08-31 01:06:38
104.236.246.16	attackbotsspam	Aug 30 18:21:43 mail sshd\[12486\]: Invalid user test from 104.236.246.16 port 52084 Aug 30 18:21:43 mail sshd\[12486\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.246.16 Aug 30 18:21:45 mail sshd\[12486\]: Failed password for invalid user test from 104.236.246.16 port 52084 ssh2 Aug 30 18:26:40 mail sshd\[12996\]: Invalid user hduser from 104.236.246.16 port 39250 Aug 30 18:26:40 mail sshd\[12996\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.246.16	2019-08-31 01:03:06
193.32.163.123	attack	Aug 30 23:30:06 webhost01 sshd[23935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.32.163.123 Aug 30 23:30:08 webhost01 sshd[23935]: Failed password for invalid user admin from 193.32.163.123 port 45890 ssh2 ...	2019-08-31 00:56:42
182.61.105.89	attack	Aug 30 17:31:07 MK-Soft-VM3 sshd\[23159\]: Invalid user gal from 182.61.105.89 port 52012 Aug 30 17:31:07 MK-Soft-VM3 sshd\[23159\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.105.89 Aug 30 17:31:08 MK-Soft-VM3 sshd\[23159\]: Failed password for invalid user gal from 182.61.105.89 port 52012 ssh2 ...	2019-08-31 01:50:36
23.123.85.16	attackbots	Aug 30 12:46:53 TORMINT sshd\[21359\]: Invalid user lehranstalt from 23.123.85.16 Aug 30 12:46:53 TORMINT sshd\[21359\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.123.85.16 Aug 30 12:46:55 TORMINT sshd\[21359\]: Failed password for invalid user lehranstalt from 23.123.85.16 port 54135 ssh2 ...	2019-08-31 00:52:13
202.187.132.73	attackspam	Aug 30 09:06:23 eola postfix/smtpd[18967]: connect from unknown[202.187.132.73] Aug 30 09:06:24 eola postfix/smtpd[18967]: lost connection after AUTH from unknown[202.187.132.73] Aug 30 09:06:24 eola postfix/smtpd[18967]: disconnect from unknown[202.187.132.73] ehlo=1 auth=0/1 commands=1/2 Aug 30 09:06:24 eola postfix/smtpd[18967]: connect from unknown[202.187.132.73] Aug 30 09:06:25 eola postfix/smtpd[18967]: lost connection after AUTH from unknown[202.187.132.73] Aug 30 09:06:25 eola postfix/smtpd[18967]: disconnect from unknown[202.187.132.73] ehlo=1 auth=0/1 commands=1/2 Aug 30 09:06:25 eola postfix/smtpd[18967]: connect from unknown[202.187.132.73] Aug 30 09:06:26 eola postfix/smtpd[18967]: lost connection after AUTH from unknown[202.187.132.73] Aug 30 09:06:26 eola postfix/smtpd[18967]: disconnect from unknown[202.187.132.73] ehlo=1 auth=0/1 commands=1/2 Aug 30 09:06:26 eola postfix/smtpd[18967]: connect from unknown[202.187.132.73] Aug 30 09:06:27 eola postfix/sm........ -------------------------------	2019-08-31 00:50:35
118.24.143.233	attackspam	Aug 30 12:50:44 vps200512 sshd\[30035\]: Invalid user rodomantsev from 118.24.143.233 Aug 30 12:50:44 vps200512 sshd\[30035\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.143.233 Aug 30 12:50:47 vps200512 sshd\[30035\]: Failed password for invalid user rodomantsev from 118.24.143.233 port 37226 ssh2 Aug 30 12:55:02 vps200512 sshd\[30101\]: Invalid user blynk from 118.24.143.233 Aug 30 12:55:02 vps200512 sshd\[30101\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.143.233	2019-08-31 01:04:48
68.183.203.52	attack	Aug 29 18:01:14 nandi sshd[5697]: Invalid user school from 68.183.203.52 Aug 29 18:01:14 nandi sshd[5697]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.203.52 Aug 29 18:01:16 nandi sshd[5697]: Failed password for invalid user school from 68.183.203.52 port 60424 ssh2 Aug 29 18:01:16 nandi sshd[5697]: Received disconnect from 68.183.203.52: 11: Bye Bye [preauth] Aug 29 18:29:12 nandi sshd[23432]: Invalid user scanner from 68.183.203.52 Aug 29 18:29:12 nandi sshd[23432]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.203.52 Aug 29 18:29:14 nandi sshd[23432]: Failed password for invalid user scanner from 68.183.203.52 port 57686 ssh2 Aug 29 18:29:14 nandi sshd[23432]: Received disconnect from 68.183.203.52: 11: Bye Bye [preauth] Aug 29 18:33:16 nandi sshd[26051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.203.52 user=r.r A........ -------------------------------	2019-08-31 01:38:09

Recently Reported IPs

157.230.26.139	69.165.78.27	43.128.171.191	45.173.130.63
72.255.57.229	54.180.2.227	193.233.230.227	54.235.21.182
49.254.79.1	114.32.28.68	252.54.16.31	222.246.110.142
154.39.64.74	113.25.215.67	39.153.141.146	34.170.148.239
2.149.160.216	112.105.116.86	168.232.197.175	115.242.211.98