52.66.200.148 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
52.66.200.241	attackbotsspam	firewall-block, port(s): 23/tcp	2019-10-16 16:51:06

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.66.200.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54777
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;52.66.200.148.			IN	A

;; AUTHORITY SECTION:
.			378	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091500 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 15 20:38:45 CST 2022
;; MSG SIZE  rcvd: 106

Host info

148.200.66.52.in-addr.arpa domain name pointer ec2-52-66-200-148.ap-south-1.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
148.200.66.52.in-addr.arpa	name = ec2-52-66-200-148.ap-south-1.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
179.97.60.190	attackspambots	Received: from 10.220.180.164 (EHLO mm60-190.bankit.com.br) (179.97.60.190) http://bankit.com.br http://www.sejaorganico.com.br ultragoplex.com.br vipnettelecom.com.br	2019-11-15 21:25:30
140.143.16.248	attack	Automatic report - SSH Brute-Force Attack	2019-11-15 21:17:24
118.89.26.15	attack	Nov 14 23:09:57 php1 sshd\[30993\]: Invalid user Satan from 118.89.26.15 Nov 14 23:09:57 php1 sshd\[30993\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.26.15 Nov 14 23:10:00 php1 sshd\[30993\]: Failed password for invalid user Satan from 118.89.26.15 port 45422 ssh2 Nov 14 23:14:07 php1 sshd\[31302\]: Invalid user machalek from 118.89.26.15 Nov 14 23:14:07 php1 sshd\[31302\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.26.15	2019-11-15 21:31:59
68.183.204.162	attackspambots	Nov 15 10:55:30 tuxlinux sshd[41956]: Invalid user aigneis from 68.183.204.162 port 60348 Nov 15 10:55:30 tuxlinux sshd[41956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.204.162 Nov 15 10:55:30 tuxlinux sshd[41956]: Invalid user aigneis from 68.183.204.162 port 60348 Nov 15 10:55:30 tuxlinux sshd[41956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.204.162 Nov 15 10:55:30 tuxlinux sshd[41956]: Invalid user aigneis from 68.183.204.162 port 60348 Nov 15 10:55:30 tuxlinux sshd[41956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.204.162 Nov 15 10:55:31 tuxlinux sshd[41956]: Failed password for invalid user aigneis from 68.183.204.162 port 60348 ssh2 ...	2019-11-15 21:06:38
86.106.131.191	attack	Brute force SMTP login attempts.	2019-11-15 21:24:39
117.50.46.176	attackspam	Automatic report - Banned IP Access	2019-11-15 21:43:14
216.45.23.6	attackbots	Nov 15 10:12:48 venus sshd\[5559\]: Invalid user gportas3 from 216.45.23.6 port 55813 Nov 15 10:12:48 venus sshd\[5559\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.45.23.6 Nov 15 10:12:50 venus sshd\[5559\]: Failed password for invalid user gportas3 from 216.45.23.6 port 55813 ssh2 ...	2019-11-15 21:30:46
120.138.125.222	attackbots	23/tcp [2019-11-15]1pkt	2019-11-15 21:08:03
157.245.233.164	attack	B: Abusive content scan (301)	2019-11-15 21:29:24
94.191.119.176	attackspam	Nov 15 11:08:34 XXXXXX sshd[23740]: Invalid user test from 94.191.119.176 port 42645	2019-11-15 21:13:29
140.143.189.177	attack	SSH invalid-user multiple login try	2019-11-15 21:42:48
185.117.118.187	attackspambots	\[2019-11-15 07:58:56\] NOTICE\[2601\] chan_sip.c: Registration from '\' failed for '185.117.118.187:58640' - Wrong password \[2019-11-15 07:58:56\] SECURITY\[2634\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-11-15T07:58:56.513-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="30886",SessionID="0x7fdf2c834818",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.117.118.187/58640",Challenge="6ccab1ae",ReceivedChallenge="6ccab1ae",ReceivedHash="730704be4a3f39070ad52ecbd066923a" \[2019-11-15 08:00:35\] NOTICE\[2601\] chan_sip.c: Registration from '\' failed for '185.117.118.187:59142' - Wrong password \[2019-11-15 08:00:35\] SECURITY\[2634\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-11-15T08:00:35.452-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="32270",SessionID="0x7fdf2c53e5e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP	2019-11-15 21:15:55
162.241.32.152	attackspam	Nov 15 09:15:46 server sshd\[877\]: Invalid user raulin from 162.241.32.152 Nov 15 09:15:46 server sshd\[877\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=server.ulfaworld.com Nov 15 09:15:49 server sshd\[877\]: Failed password for invalid user raulin from 162.241.32.152 port 55402 ssh2 Nov 15 09:19:42 server sshd\[1540\]: Invalid user minecraft3 from 162.241.32.152 Nov 15 09:19:42 server sshd\[1540\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=server.ulfaworld.com ...	2019-11-15 21:11:57
218.27.204.33	attackbotsspam	2019-11-15T09:07:32.048403abusebot-8.cloudsearch.cf sshd\[12709\]: Invalid user roshauw from 218.27.204.33 port 48830	2019-11-15 21:14:49
37.53.64.68	attackspam	Port scan	2019-11-15 21:40:50

Recently Reported IPs

79.225.78.82	154.95.36.46	45.138.100.248	45.145.130.239
180.107.217.186	88.218.67.222	86.171.131.105	88.248.50.145
185.162.229.214	196.179.204.9	43.134.184.134	32.208.253.219
113.93.242.108	46.101.56.61	41.205.24.8	154.201.34.97
83.171.253.240	104.144.230.109	183.88.131.240	187.18.3.25