52.47.85.245 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
52.47.85.228	attackbots	Invalid user temporal from 52.47.85.228 port 34716	2020-03-30 09:45:29

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.47.85.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45219
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;52.47.85.245.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091401 1800 900 604800 86400

;; Query time: 43 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 15 03:21:08 CST 2022
;; MSG SIZE  rcvd: 105

Host info

245.85.47.52.in-addr.arpa domain name pointer ec2-52-47-85-245.eu-west-3.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
245.85.47.52.in-addr.arpa	name = ec2-52-47-85-245.eu-west-3.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
87.251.73.238	attackbotsspam	Aug 1 02:36:58 debian-2gb-nbg1-2 kernel: \[18500701.746633\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=87.251.73.238 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=42826 PROTO=TCP SPT=44621 DPT=34672 WINDOW=1024 RES=0x00 SYN URGP=0	2020-08-01 08:38:12
175.207.13.22	attackspambots	Aug 1 01:42:34 server sshd[62824]: Failed password for root from 175.207.13.22 port 34982 ssh2 Aug 1 01:47:13 server sshd[64471]: Failed password for root from 175.207.13.22 port 40312 ssh2 Aug 1 01:51:49 server sshd[869]: Failed password for root from 175.207.13.22 port 45666 ssh2	2020-08-01 08:33:24
95.172.47.54	attack	Automatic report - Port Scan Attack	2020-08-01 08:40:01
141.98.10.198	attackbots	Aug 1 02:21:20 inter-technics sshd[32170]: Invalid user Administrator from 141.98.10.198 port 39595 Aug 1 02:21:20 inter-technics sshd[32170]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.10.198 Aug 1 02:21:20 inter-technics sshd[32170]: Invalid user Administrator from 141.98.10.198 port 39595 Aug 1 02:21:22 inter-technics sshd[32170]: Failed password for invalid user Administrator from 141.98.10.198 port 39595 ssh2 Aug 1 02:21:39 inter-technics sshd[32205]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.10.198 user=root Aug 1 02:21:41 inter-technics sshd[32205]: Failed password for root from 141.98.10.198 port 45143 ssh2 ...	2020-08-01 08:30:57
157.230.248.89	attackbots	Automatic report - Banned IP Access	2020-08-01 08:41:05
118.27.11.168	attackspam	Aug 1 05:50:01 piServer sshd[22416]: Failed password for root from 118.27.11.168 port 60356 ssh2 Aug 1 05:54:14 piServer sshd[22692]: Failed password for root from 118.27.11.168 port 44466 ssh2 ...	2020-08-01 12:07:58
60.167.177.172	attack	SSH auth scanning - multiple failed logins	2020-08-01 12:01:07
101.255.124.93	attack	SSH Invalid Login	2020-08-01 08:33:48
182.18.228.207	attack	182.18.228.207 - - [01/Aug/2020:04:52:59 +0100] "POST /xmlrpc.php HTTP/1.1" 503 18229 "-" "Mozilla/5.0 (X11; Linux i686; rv:2.0.1) Gecko/20100101 Firefox/4.0.1" 182.18.228.207 - - [01/Aug/2020:04:53:00 +0100] "POST /wp-login.php HTTP/1.1" 503 18025 "-" "Mozilla/5.0 (X11; Linux i686; rv:2.0.1) Gecko/20100101 Firefox/4.0.1" 182.18.228.207 - - [01/Aug/2020:04:58:36 +0100] "POST /xmlrpc.php HTTP/1.1" 503 18025 "-" "Mozilla/5.0 (X11; Linux i686; rv:2.0.1) Gecko/20100101 Firefox/4.0.1" ...	2020-08-01 12:04:23
51.210.107.217	attack	Invalid user wyg from 51.210.107.217 port 56836	2020-08-01 08:26:29
67.189.245.119	attack	Port scan detected on ports: 85[TCP], 85[TCP], 85[TCP]	2020-08-01 08:23:50
222.186.42.57	attackbots	Aug 1 04:10:01 rush sshd[29609]: Failed password for root from 222.186.42.57 port 53994 ssh2 Aug 1 04:10:11 rush sshd[29616]: Failed password for root from 222.186.42.57 port 16808 ssh2 Aug 1 04:10:14 rush sshd[29616]: Failed password for root from 222.186.42.57 port 16808 ssh2 ...	2020-08-01 12:18:09
190.215.112.122	attack	Aug 1 06:58:22 lukav-desktop sshd\[28526\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.215.112.122 user=root Aug 1 06:58:24 lukav-desktop sshd\[28526\]: Failed password for root from 190.215.112.122 port 34905 ssh2 Aug 1 07:02:33 lukav-desktop sshd\[28604\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.215.112.122 user=root Aug 1 07:02:34 lukav-desktop sshd\[28604\]: Failed password for root from 190.215.112.122 port 34930 ssh2 Aug 1 07:06:41 lukav-desktop sshd\[31088\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.215.112.122 user=root	2020-08-01 12:22:47
106.12.189.197	attackbots	Invalid user demo from 106.12.189.197 port 46940	2020-08-01 08:39:39
14.29.148.201	attack	Aug 1 02:03:44 pornomens sshd\[5962\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.148.201 user=root Aug 1 02:03:46 pornomens sshd\[5962\]: Failed password for root from 14.29.148.201 port 51730 ssh2 Aug 1 02:18:24 pornomens sshd\[5992\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.148.201 user=root ...	2020-08-01 08:28:31

Recently Reported IPs

157.230.26.139	69.165.78.27	43.128.171.191	45.173.130.63
72.255.57.229	54.180.2.227	193.233.230.227	54.235.21.182
49.254.79.1	114.32.28.68	252.54.16.31	222.246.110.142
154.39.64.74	113.25.215.67	39.153.141.146	34.170.148.239
2.149.160.216	112.105.116.86	168.232.197.175	115.242.211.98