52.52.128.204 - IPInfo

Basic Info

City: San Jose

Region: California

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.52.128.204
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32474
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.52.128.204.			IN	A

;; AUTHORITY SECTION:
.			572	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020100101 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 02 03:17:11 CST 2020
;; MSG SIZE  rcvd: 117

Host info

204.128.52.52.in-addr.arpa domain name pointer ec2-52-52-128-204.us-west-1.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
204.128.52.52.in-addr.arpa	name = ec2-52-52-128-204.us-west-1.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
178.62.75.81	attackbotsspam	SIP/5060 Probe, BF, Hack -	2020-04-16 16:53:12
51.178.41.242	attack	2020-04-16T08:26:35.848838shield sshd\[14824\]: Invalid user sinusbot from 51.178.41.242 port 40504 2020-04-16T08:26:35.853455shield sshd\[14824\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=242.ip-51-178-41.eu 2020-04-16T08:26:37.683529shield sshd\[14824\]: Failed password for invalid user sinusbot from 51.178.41.242 port 40504 ssh2 2020-04-16T08:33:07.162152shield sshd\[15538\]: Invalid user research from 51.178.41.242 port 47507 2020-04-16T08:33:07.166367shield sshd\[15538\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=242.ip-51-178-41.eu	2020-04-16 16:49:56
167.172.145.243	attack	SIP/5060 Probe, BF, Hack -	2020-04-16 17:18:09
106.13.37.213	attackspambots	SSH Brute-Force. Ports scanning.	2020-04-16 17:16:53
129.28.196.215	attack	(sshd) Failed SSH login from 129.28.196.215 (CN/China/-): 5 in the last 3600 secs	2020-04-16 16:55:14
115.79.35.110	attackbotsspam	Lines containing failures of 115.79.35.110 Apr 16 07:29:52 own sshd[25304]: Invalid user testuser from 115.79.35.110 port 62685 Apr 16 07:29:52 own sshd[25304]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.79.35.110 Apr 16 07:29:54 own sshd[25304]: Failed password for invalid user testuser from 115.79.35.110 port 62685 ssh2 Apr 16 07:29:55 own sshd[25304]: Received disconnect from 115.79.35.110 port 62685:11: Bye Bye [preauth] Apr 16 07:29:55 own sshd[25304]: Disconnected from invalid user testuser 115.79.35.110 port 62685 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=115.79.35.110	2020-04-16 17:19:20
165.227.74.50	attack	[portscan] tcp/23 [TELNET] [scan/connect: 3 time(s)] *(RWIN=49803,32367,57607)(04161050)	2020-04-16 17:21:59
51.178.46.226	attackspam	Apr 16 10:56:42 srv01 sshd[19344]: Invalid user helen from 51.178.46.226 port 59492 Apr 16 10:56:42 srv01 sshd[19344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.46.226 Apr 16 10:56:42 srv01 sshd[19344]: Invalid user helen from 51.178.46.226 port 59492 Apr 16 10:56:44 srv01 sshd[19344]: Failed password for invalid user helen from 51.178.46.226 port 59492 ssh2 Apr 16 11:00:26 srv01 sshd[19524]: Invalid user ts2 from 51.178.46.226 port 38650 ...	2020-04-16 17:26:31
47.101.193.3	attackspambots	CMS (WordPress or Joomla) login attempt.	2020-04-16 16:59:16
49.235.218.192	attackspam	SSH Bruteforce attack	2020-04-16 17:22:44
184.105.139.81	attack	firewall-block, port(s): 177/udp	2020-04-16 16:57:37
37.187.100.50	attack	Invalid user user from 37.187.100.50 port 54170	2020-04-16 17:27:55
140.143.16.248	attack	SSH brute-force: detected 9 distinct usernames within a 24-hour window.	2020-04-16 17:24:09
212.54.134.64	attack	Apr 16 02:24:27 debian sshd[2693]: Unable to negotiate with 212.54.134.64 port 37128: no matching key exchange method found. Their offer: diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] Apr 16 03:21:08 debian sshd[5297]: Unable to negotiate with 212.54.134.64 port 37128: no matching key exchange method found. Their offer: diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] ...	2020-04-16 16:51:06
119.198.85.191	attack	Invalid user bug from 119.198.85.191 port 43654	2020-04-16 16:56:49

Recently Reported IPs

194.41.114.6	15.245.242.154	174.85.11.145	118.247.208.125
179.57.133.18	186.166.33.83	221.21.41.176	37.119.102.201
223.136.213.106	201.177.248.250	185.201.16.157	51.130.12.253
220.43.234.247	134.94.139.191	31.222.146.7	220.178.7.216
202.5.128.209	202.49.182.133	8.116.213.97	148.218.93.172