城市(city): Ashburn
省份(region): Virginia
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 52.0.0.0 - 52.79.255.255
CIDR: 52.64.0.0/12, 52.0.0.0/10
NetName: AT-88-Z
NetHandle: NET-52-0-0-0-1
Parent: NET52 (NET-52-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Amazon Technologies Inc. (AT-88-Z)
RegDate: 1991-12-19
Updated: 2024-02-05
Comment: Geofeed http://ip-ranges.amazonaws.com/geo-ip-feed.csv
Ref: https://rdap.arin.net/registry/ip/52.0.0.0
OrgName: Amazon Technologies Inc.
OrgId: AT-88-Z
Address: 410 Terry Ave N.
City: Seattle
StateProv: WA
PostalCode: 98109
Country: US
RegDate: 2011-12-08
Updated: 2024-01-24
Comment: All abuse reports MUST include:
Comment: * src IP
Comment: * dest IP (your IP)
Comment: * dest port
Comment: * Accurate date/timestamp and timezone of activity
Comment: * Intensity/frequency (short log extracts)
Comment: * Your contact details (phone and email) Without these we will be unable to identify the correct owner of the IP address at that point in time.
Ref: https://rdap.arin.net/registry/entity/AT-88-Z
OrgNOCHandle: AANO1-ARIN
OrgNOCName: Amazon AWS Network Operations
OrgNOCPhone: +1-206-555-0000
OrgNOCEmail: amzn-noc-contact@amazon.com
OrgNOCRef: https://rdap.arin.net/registry/entity/AANO1-ARIN
OrgAbuseHandle: AEA8-ARIN
OrgAbuseName: Amazon EC2 Abuse
OrgAbusePhone: +1-206-555-0000
OrgAbuseEmail: trustandsafety@support.aws.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/AEA8-ARIN
OrgRoutingHandle: IPROU3-ARIN
OrgRoutingName: IP Routing
OrgRoutingPhone: +1-206-555-0000
OrgRoutingEmail: aws-routing-poc@amazon.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/IPROU3-ARIN
OrgRoutingHandle: ARMP-ARIN
OrgRoutingName: AWS RPKI Management POC
OrgRoutingPhone: +1-206-555-0000
OrgRoutingEmail: aws-rpki-routing-poc@amazon.com
OrgRoutingRef: https://rdap.arin.net/registry/entity/ARMP-ARIN
OrgTechHandle: ANO24-ARIN
OrgTechName: Amazon EC2 Network Operations
OrgTechPhone: +1-206-555-0000
OrgTechEmail: amzn-noc-contact@amazon.com
OrgTechRef: https://rdap.arin.net/registry/entity/ANO24-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.2.130.179
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48439
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;52.2.130.179. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026030900 1800 900 604800 86400
;; Query time: 27 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 09 18:00:53 CST 2026
;; MSG SIZE rcvd: 105179.130.2.52.in-addr.arpa domain name pointer ec2-52-2-130-179.compute-1.amazonaws.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
179.130.2.52.in-addr.arpa name = ec2-52-2-130-179.compute-1.amazonaws.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 168.227.212.140 | attackbots | Automatic report - Port Scan Attack |
2020-06-30 22:24:13 |
| 137.117.214.55 | attackbotsspam | Jun 30 15:47:42 inter-technics sshd[27088]: Invalid user tianyu from 137.117.214.55 port 52642 Jun 30 15:47:42 inter-technics sshd[27088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.117.214.55 Jun 30 15:47:42 inter-technics sshd[27088]: Invalid user tianyu from 137.117.214.55 port 52642 Jun 30 15:47:44 inter-technics sshd[27088]: Failed password for invalid user tianyu from 137.117.214.55 port 52642 ssh2 Jun 30 15:51:09 inter-technics sshd[27283]: Invalid user zd from 137.117.214.55 port 53564 ... |
2020-06-30 21:51:55 |
| 46.38.150.72 | attackspam | 2020-06-30 14:32:08 SMTP protocol synchronization error (input sent without waiting for greeting): rejected connection from H=[46.38.150.72] input="QUIT " 2020-06-30 14:32:40 auth_plain authenticator failed for (User) [46.38.150.72]: 535 Incorrect authentication data (set_id=l_@csmailer.org) 2020-06-30 14:33:39 auth_plain authenticator failed for (User) [46.38.150.72]: 535 Incorrect authentication data (set_id=landingstrip@csmailer.org) 2020-06-30 14:34:40 auth_plain authenticator failed for (User) [46.38.150.72]: 535 Incorrect authentication data (set_id=internal_market@csmailer.org) 2020-06-30 14:35:38 auth_plain authenticator failed for (User) [46.38.150.72]: 535 Incorrect authentication data (set_id=Isuzu@csmailer.org) ... |
2020-06-30 22:33:11 |
| 54.37.205.241 | attackspam | Jun 30 15:59:52 buvik sshd[25695]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.205.241 user=root Jun 30 15:59:55 buvik sshd[25695]: Failed password for root from 54.37.205.241 port 50252 ssh2 Jun 30 16:03:15 buvik sshd[26645]: Invalid user xh from 54.37.205.241 ... |
2020-06-30 22:28:24 |
| 186.208.70.106 | attackbotsspam | Jun 30 14:19:20 ns382633 sshd\[14036\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.208.70.106 user=root Jun 30 14:19:23 ns382633 sshd\[14036\]: Failed password for root from 186.208.70.106 port 59918 ssh2 Jun 30 14:23:49 ns382633 sshd\[14882\]: Invalid user wing from 186.208.70.106 port 52922 Jun 30 14:23:49 ns382633 sshd\[14882\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.208.70.106 Jun 30 14:23:51 ns382633 sshd\[14882\]: Failed password for invalid user wing from 186.208.70.106 port 52922 ssh2 |
2020-06-30 21:56:31 |
| 220.140.5.119 | attackbots | Fail2Ban Ban Triggered |
2020-06-30 22:26:35 |
| 134.119.191.9 | attackbots |
|
2020-06-30 22:21:46 |
| 142.93.107.175 | attackspambots | 2020-06-30T13:50:30.340170shield sshd\[8461\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.107.175 user=root 2020-06-30T13:50:32.392616shield sshd\[8461\]: Failed password for root from 142.93.107.175 port 54236 ssh2 2020-06-30T13:55:06.674994shield sshd\[10475\]: Invalid user gj from 142.93.107.175 port 53058 2020-06-30T13:55:06.679446shield sshd\[10475\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.107.175 2020-06-30T13:55:08.621459shield sshd\[10475\]: Failed password for invalid user gj from 142.93.107.175 port 53058 ssh2 |
2020-06-30 22:29:51 |
| 122.51.32.91 | attack | Jun 30 07:06:17 online-web-1 sshd[2007916]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.32.91 user=r.r Jun 30 07:06:19 online-web-1 sshd[2007916]: Failed password for r.r from 122.51.32.91 port 58846 ssh2 Jun 30 07:06:19 online-web-1 sshd[2007916]: Received disconnect from 122.51.32.91 port 58846:11: Bye Bye [preauth] Jun 30 07:06:19 online-web-1 sshd[2007916]: Disconnected from 122.51.32.91 port 58846 [preauth] Jun 30 07:21:01 online-web-1 sshd[2009018]: Invalid user sqoop from 122.51.32.91 port 57298 Jun 30 07:21:01 online-web-1 sshd[2009018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.32.91 Jun 30 07:21:03 online-web-1 sshd[2009018]: Failed password for invalid user sqoop from 122.51.32.91 port 57298 ssh2 Jun 30 07:21:04 online-web-1 sshd[2009018]: Received disconnect from 122.51.32.91 port 57298:11: Bye Bye [preauth] Jun 30 07:21:04 online-web-1 sshd[2009018]: Dis........ ------------------------------- |
2020-06-30 22:26:15 |
| 89.154.4.249 | attackbotsspam | Jun 30 15:25:54 santamaria sshd\[12993\]: Invalid user kk from 89.154.4.249 Jun 30 15:25:54 santamaria sshd\[12993\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.154.4.249 Jun 30 15:25:57 santamaria sshd\[12993\]: Failed password for invalid user kk from 89.154.4.249 port 52774 ssh2 ... |
2020-06-30 22:14:04 |
| 121.157.82.202 | attackspambots | Jun 30 13:54:43 ns382633 sshd\[9203\]: Invalid user vlad from 121.157.82.202 port 46850 Jun 30 13:54:43 ns382633 sshd\[9203\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.157.82.202 Jun 30 13:54:45 ns382633 sshd\[9203\]: Failed password for invalid user vlad from 121.157.82.202 port 46850 ssh2 Jun 30 14:23:47 ns382633 sshd\[14876\]: Invalid user newuser from 121.157.82.202 port 35924 Jun 30 14:23:47 ns382633 sshd\[14876\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.157.82.202 |
2020-06-30 22:00:45 |
| 5.135.186.52 | attackbotsspam | $f2bV_matches |
2020-06-30 22:15:37 |
| 37.187.99.147 | attackbotsspam | DATE:2020-06-30 16:24:03, IP:37.187.99.147, PORT:ssh SSH brute force auth (docker-dc) |
2020-06-30 22:33:41 |
| 183.56.211.38 | attackspambots | Jun 30 12:20:44 onepixel sshd[2516975]: Invalid user feng from 183.56.211.38 port 50973 Jun 30 12:20:44 onepixel sshd[2516975]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.56.211.38 Jun 30 12:20:44 onepixel sshd[2516975]: Invalid user feng from 183.56.211.38 port 50973 Jun 30 12:20:47 onepixel sshd[2516975]: Failed password for invalid user feng from 183.56.211.38 port 50973 ssh2 Jun 30 12:24:05 onepixel sshd[2518653]: Invalid user apagar from 183.56.211.38 port 35448 |
2020-06-30 22:01:29 |
| 68.183.124.34 | attackspam | Fail2Ban Ban Triggered (2) |
2020-06-30 22:04:38 |