52.66.225.2 - IPInfo

Basic Info

City: Mumbai

Region: Maharashtra

Country: India

Internet Service Provider: unknown

Hostname: unknown

Organization: Amazon.com, Inc.

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.66.225.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16185
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.66.225.2.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019042100 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun Apr 21 21:57:22 +08 2019
;; MSG SIZE  rcvd: 115

Host info

2.225.66.52.in-addr.arpa domain name pointer ec2-52-66-225-2.ap-south-1.compute.amazonaws.com.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
2.225.66.52.in-addr.arpa	name = ec2-52-66-225-2.ap-south-1.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
210.183.21.48	attackspam	Aug 20 19:56:51 * sshd[26222]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.183.21.48 Aug 20 19:56:53 * sshd[26222]: Failed password for invalid user PASSWORD from 210.183.21.48 port 12023 ssh2	2019-08-21 07:18:18
128.199.78.191	attack	Aug 20 22:53:07 web8 sshd\[19088\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.78.191 user=root Aug 20 22:53:08 web8 sshd\[19088\]: Failed password for root from 128.199.78.191 port 44600 ssh2 Aug 20 22:59:00 web8 sshd\[22166\]: Invalid user wai from 128.199.78.191 Aug 20 22:59:00 web8 sshd\[22166\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.78.191 Aug 20 22:59:02 web8 sshd\[22166\]: Failed password for invalid user wai from 128.199.78.191 port 39281 ssh2	2019-08-21 07:10:25
102.65.158.35	attack	Aug 20 11:09:32 indra sshd[880603]: Invalid user ase from 102.65.158.35 Aug 20 11:09:32 indra sshd[880603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102-65-158-35.dsl.web.africa Aug 20 11:09:34 indra sshd[880603]: Failed password for invalid user ase from 102.65.158.35 port 48084 ssh2 Aug 20 11:09:34 indra sshd[880603]: Received disconnect from 102.65.158.35: 11: Bye Bye [preauth] Aug 20 11:23:05 indra sshd[884266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102-65-158-35.dsl.web.africa user=r.r Aug 20 11:23:07 indra sshd[884266]: Failed password for r.r from 102.65.158.35 port 47380 ssh2 Aug 20 11:23:07 indra sshd[884266]: Received disconnect from 102.65.158.35: 11: Bye Bye [preauth] Aug 20 11:28:27 indra sshd[885186]: Invalid user kass from 102.65.158.35 Aug 20 11:28:27 indra sshd[885186]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost........ -------------------------------	2019-08-21 07:10:51
45.249.48.21	attackbots	Aug 20 06:38:55 php2 sshd\[432\]: Invalid user medved from 45.249.48.21 Aug 20 06:38:55 php2 sshd\[432\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.249.48.21 Aug 20 06:38:57 php2 sshd\[432\]: Failed password for invalid user medved from 45.249.48.21 port 39878 ssh2 Aug 20 06:43:50 php2 sshd\[1456\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.249.48.21 user=root Aug 20 06:43:52 php2 sshd\[1456\]: Failed password for root from 45.249.48.21 port 60654 ssh2	2019-08-21 07:09:06
13.80.242.163	attackbots	Fail2Ban Ban Triggered	2019-08-21 07:08:29
104.198.171.176	attackbots	Telnet brute force and port scan	2019-08-21 07:28:58
187.120.129.55	attackspambots	$f2bV_matches	2019-08-21 07:14:28
193.169.252.174	attackspam	Aug 20 23:18:22 mail postfix/smtpd\[5312\]: warning: unknown\[193.169.252.174\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 20 23:56:57 mail postfix/smtpd\[6074\]: warning: unknown\[193.169.252.174\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 21 00:16:20 mail postfix/smtpd\[7528\]: warning: unknown\[193.169.252.174\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Aug 21 00:35:36 mail postfix/smtpd\[7778\]: warning: unknown\[193.169.252.174\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-08-21 07:34:37
76.74.170.93	attackbotsspam	Aug 20 20:23:15 vps691689 sshd[1419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=76.74.170.93 Aug 20 20:23:17 vps691689 sshd[1419]: Failed password for invalid user er from 76.74.170.93 port 59072 ssh2 ...	2019-08-21 06:58:49
106.12.125.27	attackbots	Triggered by Fail2Ban at Ares web server	2019-08-21 07:23:20
51.38.237.214	attack	Aug 20 21:26:54 SilenceServices sshd[6134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.237.214 Aug 20 21:26:55 SilenceServices sshd[6134]: Failed password for invalid user asd from 51.38.237.214 port 45622 ssh2 Aug 20 21:30:58 SilenceServices sshd[9614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.237.214	2019-08-21 07:01:47
51.79.66.229	attackspambots	Aug 21 01:30:33 [munged] sshd[15275]: Invalid user divya from 51.79.66.229 port 43400 Aug 21 01:30:33 [munged] sshd[15275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.66.229	2019-08-21 07:33:33
132.145.170.174	attack	Aug 20 13:14:58 tdfoods sshd\[22784\]: Invalid user lesly from 132.145.170.174 Aug 20 13:14:58 tdfoods sshd\[22784\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.170.174 Aug 20 13:15:00 tdfoods sshd\[22784\]: Failed password for invalid user lesly from 132.145.170.174 port 58164 ssh2 Aug 20 13:20:30 tdfoods sshd\[23236\]: Invalid user fan from 132.145.170.174 Aug 20 13:20:30 tdfoods sshd\[23236\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.170.174	2019-08-21 07:37:07
5.3.6.82	attack	Aug 20 20:38:31 meumeu sshd[18099]: Failed password for invalid user hoster from 5.3.6.82 port 58352 ssh2 Aug 20 20:42:32 meumeu sshd[18565]: Failed password for invalid user santiago from 5.3.6.82 port 55760 ssh2 ...	2019-08-21 07:24:36
108.62.202.220	attackspambots	Splunk® : port scan detected: Aug 20 18:38:45 testbed kernel: Firewall: TCP_IN Blocked IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:c0:42:d0:39:2c:30:08:00 SRC=108.62.202.220 DST=104.248.11.191 LEN=40 TOS=0x08 PREC=0x20 TTL=244 ID=54321 PROTO=TCP SPT=47294 DPT=3746 WINDOW=65535 RES=0x00 SYN URGP=0	2019-08-21 06:53:12

Recently Reported IPs

9.173.111.79	187.43.247.66	20.5.17.176	182.24.176.169
123.163.255.34	190.151.129.178	159.207.227.26	99.198.101.186
113.130.247.68	186.65.233.108	203.11.171.83	67.254.138.138
219.91.254.16	193.193.248.82	70.175.231.135	20.3.208.210
5.202.142.237	2.249.101.54	82.59.166.187	179.110.171.144