52.59.94.217 - IPInfo

Basic Info

City: Frankfurt am Main

Region: Hessen

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.59.94.217
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24589
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;52.59.94.217.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022802 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 01 08:44:40 CST 2025
;; MSG SIZE  rcvd: 105

Host info

217.94.59.52.in-addr.arpa domain name pointer ec2-52-59-94-217.eu-central-1.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
217.94.59.52.in-addr.arpa	name = ec2-52-59-94-217.eu-central-1.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
61.191.50.172	attack	Unauthorized connection attempt from IP address 61.191.50.172 on Port 445(SMB)	2020-01-16 19:39:43
104.248.60.98	attackbotsspam	Automatic report - XMLRPC Attack	2020-01-16 19:42:06
160.16.119.126	attack	Lines containing failures of 160.16.119.126 Jan 14 04:32:39 nxxxxxxx sshd[11502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.16.119.126 user=r.r Jan 14 04:32:41 nxxxxxxx sshd[11502]: Failed password for r.r from 160.16.119.126 port 59554 ssh2 Jan 14 04:32:41 nxxxxxxx sshd[11502]: Received disconnect from 160.16.119.126 port 59554:11: Bye Bye [preauth] Jan 14 04:32:41 nxxxxxxx sshd[11502]: Disconnected from authenticating user r.r 160.16.119.126 port 59554 [preauth] Jan 14 04:44:34 nxxxxxxx sshd[12915]: Invalid user samba from 160.16.119.126 port 38228 Jan 14 04:44:34 nxxxxxxx sshd[12915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.16.119.126 Jan 14 04:44:36 nxxxxxxx sshd[12915]: Failed password for invalid user samba from 160.16.119.126 port 38228 ssh2 Jan 14 04:44:37 nxxxxxxx sshd[12915]: Received disconnect from 160.16.119.126 port 38228:11: Bye Bye [preauth] Jan 14 04:44........ ------------------------------	2020-01-16 19:12:57
184.168.193.98	attack	Automatic report - XMLRPC Attack	2020-01-16 19:48:21
157.245.213.138	attackbots	ft-1848-fussball.de 157.245.213.138 [16/Jan/2020:09:47:59 +0100] "POST /wp-login.php HTTP/1.1" 200 2907 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ft-1848-fussball.de 157.245.213.138 [16/Jan/2020:09:48:02 +0100] "POST /wp-login.php HTTP/1.1" 200 2878 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-01-16 19:37:42
165.22.73.156	attack	Unauthorized connection attempt detected from IP address 165.22.73.156 to port 2220 [J]	2020-01-16 19:17:50
31.11.53.106	attackbotsspam	3389/tcp 3389/tcp 3389/tcp... [2020-01-07/16]8pkt,1pt.(tcp)	2020-01-16 19:15:48
217.56.27.242	attack	Unauthorized connection attempt from IP address 217.56.27.242 on Port 445(SMB)	2020-01-16 19:17:30
125.160.60.167	attack	Unauthorized connection attempt from IP address 125.160.60.167 on Port 445(SMB)	2020-01-16 19:47:32
14.172.89.219	attackbotsspam	Unauthorized connection attempt from IP address 14.172.89.219 on Port 445(SMB)	2020-01-16 19:41:38
189.15.84.68	attackspambots	23/tcp [2020-01-16]1pkt	2020-01-16 19:40:33
180.254.91.67	attackbots	Unauthorized connection attempt from IP address 180.254.91.67 on Port 445(SMB)	2020-01-16 19:11:23
167.172.158.200	attackbots	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-01-16 19:44:20
203.177.57.13	attackbotsspam	Jan 15 13:22:40 garuda sshd[561459]: Address 203.177.57.13 maps to smtp.cmtspace.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jan 15 13:22:40 garuda sshd[561459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.177.57.13 user=r.r Jan 15 13:22:42 garuda sshd[561459]: Failed password for r.r from 203.177.57.13 port 38452 ssh2 Jan 15 13:22:43 garuda sshd[561459]: Received disconnect from 203.177.57.13: 11: Bye Bye [preauth] Jan 15 13:30:59 garuda sshd[564228]: Address 203.177.57.13 maps to smtp.cmtspace.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jan 15 13:30:59 garuda sshd[564228]: Invalid user jack from 203.177.57.13 Jan 15 13:30:59 garuda sshd[564228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.177.57.13 Jan 15 13:31:01 garuda sshd[564228]: Failed password for invalid user jack from 203.177.57.13 port 57974 ssh2 Ja........ -------------------------------	2020-01-16 19:10:57
34.220.22.12	attackbots	helo=	2020-01-16 19:44:52

Recently Reported IPs

48.188.22.3	120.25.242.110	245.83.107.79	238.113.156.11
9.75.97.198	15.48.6.79	190.123.88.67	203.101.189.211
30.134.87.153	228.54.201.188	124.49.199.21	214.182.137.100
50.248.53.237	44.245.63.96	24.123.112.133	65.141.95.118
36.120.115.218	229.56.222.167	15.219.169.166	171.20.149.90