52.5.7.245 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
52.5.70.31	spambots	52.5.70.31 - - [22/Apr/2019:18:27:34 +0800] "GET /index.php/2019/04/19/xiaomi_2019_04_19_en/ HTTP/1.1" 200 13454 "-" "Grammarly/1.0 (http://www.grammarly.com)"	2019-04-22 18:28:24

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.5.7.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61966
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;52.5.7.245.			IN	A

;; AUTHORITY SECTION:
.			389	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011201 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 13 04:10:30 CST 2022
;; MSG SIZE  rcvd: 103

Host info

245.7.5.52.in-addr.arpa domain name pointer ec2-52-5-7-245.compute-1.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
245.7.5.52.in-addr.arpa	name = ec2-52-5-7-245.compute-1.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
201.92.235.79	attackspambots	TCP (SYN) 201.92.235.79:33460 -> port 22, len 44	2020-08-05 20:18:29
180.246.149.22	attack	firewall-block, port(s): 137/udp	2020-08-05 20:26:22
223.71.167.166	attackbotsspam	firewall-block, port(s): 79/tcp, 113/tcp, 2379/tcp, 5678/tcp, 5986/tcp, 8123/tcp, 12587/tcp	2020-08-05 20:22:20
23.94.182.210	attackspam	port scan and connect, tcp 1433 (ms-sql-s)	2020-08-05 19:50:55
207.244.70.46	attackspambots	08/05/2020-08:20:27.116056 207.244.70.46 Protocol: 17 ET SCAN Sipvicious Scan	2020-08-05 20:27:49
83.110.155.97	attackbots	Aug 5 03:42:37 jumpserver sshd[23590]: Failed password for root from 83.110.155.97 port 54054 ssh2 Aug 5 03:47:00 jumpserver sshd[23693]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.110.155.97 user=root Aug 5 03:47:03 jumpserver sshd[23693]: Failed password for root from 83.110.155.97 port 37872 ssh2 ...	2020-08-05 20:03:31
68.183.229.218	attackbotsspam	2020-08-05T11:30:03.798520vps751288.ovh.net sshd\[1249\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.229.218 user=root 2020-08-05T11:30:05.948622vps751288.ovh.net sshd\[1249\]: Failed password for root from 68.183.229.218 port 46042 ssh2 2020-08-05T11:31:29.243890vps751288.ovh.net sshd\[1258\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.229.218 user=root 2020-08-05T11:31:30.867195vps751288.ovh.net sshd\[1258\]: Failed password for root from 68.183.229.218 port 38506 ssh2 2020-08-05T11:32:51.485510vps751288.ovh.net sshd\[1285\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.229.218 user=root	2020-08-05 20:14:10
103.72.109.16	attackbotsspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-08-05 20:06:41
222.186.30.35	attack	Aug 5 17:00:52 gw1 sshd[17576]: Failed password for root from 222.186.30.35 port 23175 ssh2 Aug 5 17:00:55 gw1 sshd[17576]: Failed password for root from 222.186.30.35 port 23175 ssh2 ...	2020-08-05 20:04:51
202.77.105.98	attackspambots	SSH Brute Force	2020-08-05 19:55:27
123.58.5.243	attackbots	Aug 5 04:38:49 lanister sshd[23125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.58.5.243 user=root Aug 5 04:38:51 lanister sshd[23125]: Failed password for root from 123.58.5.243 port 40916 ssh2 Aug 5 04:38:49 lanister sshd[23125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.58.5.243 user=root Aug 5 04:38:51 lanister sshd[23125]: Failed password for root from 123.58.5.243 port 40916 ssh2	2020-08-05 20:01:36
106.12.182.38	attackbots	Aug 5 08:00:45 havingfunrightnow sshd[442]: Failed password for root from 106.12.182.38 port 49186 ssh2 Aug 5 08:10:50 havingfunrightnow sshd[640]: Failed password for root from 106.12.182.38 port 49524 ssh2 ...	2020-08-05 19:57:17
66.70.130.149	attackbots	Fail2Ban - SSH Bruteforce Attempt	2020-08-05 20:25:05
198.199.124.117	attackspam	Lines containing failures of 198.199.124.117 Aug 2 11:31:55 metroid sshd[20491]: refused connect from 198.199.124.117 (198.199.124.117) Aug 2 12:36:37 metroid sshd[21523]: refused connect from 198.199.124.117 (198.199.124.117) Aug 2 13:42:04 metroid sshd[22996]: refused connect from 198.199.124.117 (198.199.124.117) Aug 2 14:51:17 metroid sshd[24243]: refused connect from 198.199.124.117 (198.199.124.117) Aug 2 15:51:43 metroid sshd[25462]: refused connect from 198.199.124.117 (198.199.124.117) Aug 2 17:06:38 metroid sshd[27055]: refused connect from 198.199.124.117 (198.199.124.117) Aug 3 01:45:20 metroid sshd[781]: refused connect from 198.199.124.117 (198.199.124.117) Aug 3 02:48:28 metroid sshd[1535]: refused connect from 198.199.124.117 (198.199.124.117) Aug 3 03:49:52 metroid sshd[2446]: refused connect from 198.199.124.117 (198.199.124.117) Aug 3 05:02:36 metroid sshd[3378]: refused connect from 198.199.124.117 (198.199.124.117) Aug 3 06:11:45 metroid s........ ------------------------------	2020-08-05 20:15:32
3.8.143.194	attack	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: ec2-3-8-143-194.eu-west-2.compute.amazonaws.com.	2020-08-05 20:25:52

Recently Reported IPs

157.233.125.114	165.21.194.30	229.116.167.124	146.31.251.223
170.209.58.133	133.41.244.196	33.153.173.236	136.147.78.142
175.179.234.115	222.11.226.133	190.94.128.73	14.180.127.55
166.206.1.176	48.194.54.66	78.111.97.180	127.245.64.219
251.183.240.32	48.253.19.139	230.175.15.226	240.163.28.152