52.53.210.246 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Amazon Technologies Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 52.53.210.246 to port 5431	2019-12-29 01:39:16

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.53.210.246
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49846
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.53.210.246.			IN	A

;; AUTHORITY SECTION:
.			312	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122800 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 29 01:39:11 CST 2019
;; MSG SIZE  rcvd: 117

Host info

246.210.53.52.in-addr.arpa domain name pointer ec2-52-53-210-246.us-west-1.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
246.210.53.52.in-addr.arpa	name = ec2-52-53-210-246.us-west-1.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
134.209.197.218	attack	Jun 16 14:14:12 xeon sshd[35689]: Failed password for invalid user mongod from 134.209.197.218 port 16086 ssh2	2020-06-17 00:46:26
42.114.12.86	attackbots	Unauthorized connection attempt from IP address 42.114.12.86 on Port 445(SMB)	2020-06-17 01:02:57
106.54.245.12	attackbots	Jun 16 14:15:07 srv-ubuntu-dev3 sshd[73169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.245.12 user=root Jun 16 14:15:08 srv-ubuntu-dev3 sshd[73169]: Failed password for root from 106.54.245.12 port 37548 ssh2 Jun 16 14:16:42 srv-ubuntu-dev3 sshd[73479]: Invalid user bamboo from 106.54.245.12 Jun 16 14:16:42 srv-ubuntu-dev3 sshd[73479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.245.12 Jun 16 14:16:42 srv-ubuntu-dev3 sshd[73479]: Invalid user bamboo from 106.54.245.12 Jun 16 14:16:44 srv-ubuntu-dev3 sshd[73479]: Failed password for invalid user bamboo from 106.54.245.12 port 53750 ssh2 Jun 16 14:18:16 srv-ubuntu-dev3 sshd[73693]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.245.12 user=root Jun 16 14:18:18 srv-ubuntu-dev3 sshd[73693]: Failed password for root from 106.54.245.12 port 41716 ssh2 Jun 16 14:19:50 srv-ubuntu-dev3 sshd[73 ...	2020-06-17 01:02:27
111.231.55.203	attackspam	Invalid user victor from 111.231.55.203 port 42272	2020-06-17 00:46:47
185.121.69.4	attackbotsspam	CMS (WordPress or Joomla) login attempt.	2020-06-17 01:11:18
123.56.158.49	attackbots	Port Scan detected! ...	2020-06-17 01:00:51
167.114.251.164	attackspam	Jun 16 14:19:49 zulu412 sshd\[28273\]: Invalid user jesa from 167.114.251.164 port 52919 Jun 16 14:19:49 zulu412 sshd\[28273\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.251.164 Jun 16 14:19:51 zulu412 sshd\[28273\]: Failed password for invalid user jesa from 167.114.251.164 port 52919 ssh2 ...	2020-06-17 01:00:04
123.16.15.247	attackspam	Automatic report - Port Scan Attack	2020-06-17 01:10:32
186.235.63.115	attackspambots	Jun 16 18:02:43 zulu412 sshd\[20738\]: Invalid user client from 186.235.63.115 port 51158 Jun 16 18:02:43 zulu412 sshd\[20738\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.235.63.115 Jun 16 18:02:44 zulu412 sshd\[20738\]: Failed password for invalid user client from 186.235.63.115 port 51158 ssh2 ...	2020-06-17 00:50:14
13.79.191.179	attack	Jun 16 09:20:02 ws24vmsma01 sshd[106692]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.79.191.179 Jun 16 09:20:04 ws24vmsma01 sshd[106692]: Failed password for invalid user git from 13.79.191.179 port 50074 ssh2 ...	2020-06-17 00:42:26
51.75.131.235	attackbots	Jun 16 16:16:14 onepixel sshd[1410548]: Invalid user falcon from 51.75.131.235 port 33612 Jun 16 16:16:14 onepixel sshd[1410548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.131.235 Jun 16 16:16:14 onepixel sshd[1410548]: Invalid user falcon from 51.75.131.235 port 33612 Jun 16 16:16:16 onepixel sshd[1410548]: Failed password for invalid user falcon from 51.75.131.235 port 33612 ssh2 Jun 16 16:17:38 onepixel sshd[1410746]: Invalid user accumulo from 51.75.131.235 port 52258	2020-06-17 00:31:34
35.160.161.108	attackspam	Jun 16 08:15:12 ny01 sshd[8364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.160.161.108 Jun 16 08:15:14 ny01 sshd[8364]: Failed password for invalid user ubuntu from 35.160.161.108 port 57742 ssh2 Jun 16 08:19:57 ny01 sshd[8841]: Failed password for root from 35.160.161.108 port 46144 ssh2	2020-06-17 00:52:54
167.71.72.70	attackspambots	2020-06-16T18:26:18.112853+02:00 sshd[27474]: Failed password for invalid user user3 from 167.71.72.70 port 42352 ssh2	2020-06-17 00:35:30
194.26.29.53	attackbots	Jun 16 18:41:00 debian-2gb-nbg1-2 kernel: \[14584363.025862\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=194.26.29.53 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=48941 PROTO=TCP SPT=54880 DPT=4548 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-17 00:48:46
94.102.56.231	attack	TCP (SYN) 94.102.56.231:41281 -> port 8021, len 44	2020-06-17 00:38:32

Recently Reported IPs

195.158.108.80	101.96.170.173	11.234.153.228	165.36.60.100
241.143.215.161	118.55.207.140	190.182.69.186	180.123.198.20
68.59.204.153	189.142.99.18	189.78.62.117	143.78.30.104
189.19.176.64	41.124.233.198	46.249.102.192	188.38.6.177
181.118.123.12	173.165.151.195	150.109.238.123	119.206.86.8