52.66.250.121 - IPInfo

Basic Info

City: Mumbai

Region: Maharashtra

Country: India

Internet Service Provider: Amazon Data Services India

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Honeypot attack, port: 23, PTR: ec2-52-66-250-121.ap-south-1.compute.amazonaws.com.	2019-11-05 04:01:41

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.66.250.121
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49083
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.66.250.121.			IN	A

;; AUTHORITY SECTION:
.			488	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110401 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Nov 05 04:01:38 CST 2019
;; MSG SIZE  rcvd: 117

Host info

121.250.66.52.in-addr.arpa domain name pointer ec2-52-66-250-121.ap-south-1.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
121.250.66.52.in-addr.arpa	name = ec2-52-66-250-121.ap-south-1.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
181.30.28.133	attack	$f2bV_matches	2020-10-12 04:04:09
122.51.208.60	attack	2020-10-11T11:33:47.999127ks3355764 sshd[5517]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.208.60 user=root 2020-10-11T11:33:49.986768ks3355764 sshd[5517]: Failed password for root from 122.51.208.60 port 40802 ssh2 ...	2020-10-12 04:13:57
202.179.76.187	attackbots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-12 04:10:00
94.102.50.137	attackspambots	Port scan: Attack repeated for 24 hours	2020-10-12 04:05:47
192.241.139.236	attack	Auto Fail2Ban report, multiple SSH login attempts.	2020-10-12 04:20:40
61.19.127.228	attackbots	(sshd) Failed SSH login from 61.19.127.228 (TH/Thailand/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 11 08:24:57 server2 sshd[30103]: Invalid user username from 61.19.127.228 Oct 11 08:24:57 server2 sshd[30103]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.19.127.228 Oct 11 08:24:59 server2 sshd[30103]: Failed password for invalid user username from 61.19.127.228 port 53578 ssh2 Oct 11 08:28:56 server2 sshd[32104]: Invalid user testuser from 61.19.127.228 Oct 11 08:28:56 server2 sshd[32104]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.19.127.228	2020-10-12 04:07:13
59.78.85.210	attack	Oct 11 19:41:43 scw-6657dc sshd[14027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.78.85.210 Oct 11 19:41:43 scw-6657dc sshd[14027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.78.85.210 Oct 11 19:41:45 scw-6657dc sshd[14027]: Failed password for invalid user gyongyver from 59.78.85.210 port 63749 ssh2 ...	2020-10-12 04:16:23
45.55.214.64	attackspambots	Oct 11 19:57:01 main sshd[19781]: Failed password for invalid user admin from 45.55.214.64 port 33346 ssh2	2020-10-12 04:30:25
45.143.221.101	attackbotsspam	TCP port : 5060	2020-10-12 04:08:31
106.124.132.105	attackbots	Oct 11 20:24:35 * sshd[27216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.132.105 Oct 11 20:24:38 * sshd[27216]: Failed password for invalid user rob from 106.124.132.105 port 59542 ssh2	2020-10-12 04:25:49
51.38.129.120	attackspam	Automatic report BANNED IP	2020-10-12 04:29:39
45.14.224.182	attackbots	SSH Brute Force	2020-10-12 04:18:25
186.10.125.209	attackbotsspam	SSH login attempts.	2020-10-12 04:11:17
122.31.188.43	attack	20 attempts against mh-ssh on ice	2020-10-12 04:24:27
51.68.122.147	attack	(sshd) Failed SSH login from 51.68.122.147 (FR/France/vps-96baf7b1.vps.ovh.net): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 11 12:16:32 server sshd[22634]: Invalid user www from 51.68.122.147 port 55768 Oct 11 12:16:34 server sshd[22634]: Failed password for invalid user www from 51.68.122.147 port 55768 ssh2 Oct 11 12:28:37 server sshd[25792]: Invalid user joanne from 51.68.122.147 port 50278 Oct 11 12:28:39 server sshd[25792]: Failed password for invalid user joanne from 51.68.122.147 port 50278 ssh2 Oct 11 12:34:36 server sshd[28003]: Failed password for root from 51.68.122.147 port 54498 ssh2	2020-10-12 04:29:11

Recently Reported IPs

188.127.152.47	81.214.74.234	192.3.217.101	39.48.131.19
201.231.4.7	138.186.38.243	89.238.167.198	77.43.184.244
23.251.87.187	58.147.182.57	188.59.102.235	95.153.135.80
24.181.158.142	183.150.166.181	120.236.87.3	201.54.228.90
138.94.28.234	220.188.31.135	106.12.107.234	150.255.224.245