52.62.80.192 - IPInfo

基本信息:

城市(city): Sydney

省份(region): New South Wales

国家(country): Australia

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#


NetRange:       52.0.0.0 - 52.79.255.255
CIDR:           52.64.0.0/12, 52.0.0.0/10
NetName:        AT-88-Z
NetHandle:      NET-52-0-0-0-1
Parent:         NET52 (NET-52-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   Amazon Technologies Inc. (AT-88-Z)
RegDate:        1991-12-19
Updated:        2024-02-05
Comment:        Geofeed http://ip-ranges.amazonaws.com/geo-ip-feed.csv
Ref:            https://rdap.arin.net/registry/ip/52.0.0.0



OrgName:        Amazon Technologies Inc.
OrgId:          AT-88-Z
Address:        410 Terry Ave N.
City:           Seattle
StateProv:      WA
PostalCode:     98109
Country:        US
RegDate:        2011-12-08
Updated:        2024-01-24
Comment:        All abuse reports MUST include:
Comment:        * src IP
Comment:        * dest IP (your IP)
Comment:        * dest port
Comment:        * Accurate date/timestamp and timezone of activity
Comment:        * Intensity/frequency (short log extracts)
Comment:        * Your contact details (phone and email) Without these we will be unable to identify the correct owner of the IP address at that point in time.
Ref:            https://rdap.arin.net/registry/entity/AT-88-Z


OrgNOCHandle: AANO1-ARIN
OrgNOCName:   Amazon AWS Network Operations
OrgNOCPhone:  +1-206-555-0000 
OrgNOCEmail:  amzn-noc-contact@amazon.com
OrgNOCRef:    https://rdap.arin.net/registry/entity/AANO1-ARIN

OrgTechHandle: ANO24-ARIN
OrgTechName:   Amazon EC2 Network Operations
OrgTechPhone:  +1-206-555-0000 
OrgTechEmail:  amzn-noc-contact@amazon.com
OrgTechRef:    https://rdap.arin.net/registry/entity/ANO24-ARIN

OrgRoutingHandle: ARMP-ARIN
OrgRoutingName:   AWS RPKI Management POC
OrgRoutingPhone:  +1-206-555-0000 
OrgRoutingEmail:  aws-rpki-routing-poc@amazon.com
OrgRoutingRef:    https://rdap.arin.net/registry/entity/ARMP-ARIN

OrgRoutingHandle: IPROU3-ARIN
OrgRoutingName:   IP Routing
OrgRoutingPhone:  +1-206-555-0000 
OrgRoutingEmail:  aws-routing-poc@amazon.com
OrgRoutingRef:    https://rdap.arin.net/registry/entity/IPROU3-ARIN

OrgAbuseHandle: AEA8-ARIN
OrgAbuseName:   Amazon EC2 Abuse
OrgAbusePhone:  +1-206-555-0000 
OrgAbuseEmail:  trustandsafety@support.aws.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/AEA8-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.62.80.192
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17267
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;52.62.80.192.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026020201 1800 900 604800 86400

;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 03 03:30:11 CST 2026
;; MSG SIZE  rcvd: 105

HOST信息:

192.80.62.52.in-addr.arpa domain name pointer ec2-52-62-80-192.ap-southeast-2.compute.amazonaws.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
192.80.62.52.in-addr.arpa	name = ec2-52-62-80-192.ap-southeast-2.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
139.59.95.117	attackspambots	Unauthorized connection attempt detected from IP address 139.59.95.117 to port 5900	2020-02-28 04:42:21
36.110.218.194	attackspambots	Unauthorised access (Feb 27) SRC=36.110.218.194 LEN=40 TTL=244 ID=40984 TCP DPT=1433 WINDOW=1024 SYN	2020-02-28 05:00:30
167.114.227.113	attack	Feb 27 23:26:32 server sshd\[9977\]: Invalid user fisher from 167.114.227.113 Feb 27 23:26:32 server sshd\[9977\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.ip-167-114-227.eu Feb 27 23:26:35 server sshd\[9977\]: Failed password for invalid user fisher from 167.114.227.113 port 52771 ssh2 Feb 27 23:26:35 server sshd\[9980\]: Invalid user fisher from 167.114.227.113 Feb 27 23:26:35 server sshd\[9980\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.ip-167-114-227.eu ...	2020-02-28 04:43:05
122.230.207.158	attackspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-02-28 04:57:03
141.8.132.24	attack	[Thu Feb 27 21:20:09.236135 2020] [:error] [pid 3621:tid 139837702010624] [client 141.8.132.24:65499] [client 141.8.132.24] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XlfQGXgSyCP9O11ZuEgQHgAAAUw"] ...	2020-02-28 05:18:43
77.222.96.89	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 27-02-2020 14:20:15.	2020-02-28 05:15:06
220.248.30.58	attackspam	2020-02-27T15:46:03.622611vps751288.ovh.net sshd\[17879\]: Invalid user user02 from 220.248.30.58 port 17344 2020-02-27T15:46:03.629612vps751288.ovh.net sshd\[17879\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.248.30.58 2020-02-27T15:46:05.223795vps751288.ovh.net sshd\[17879\]: Failed password for invalid user user02 from 220.248.30.58 port 17344 ssh2 2020-02-27T15:47:23.475882vps751288.ovh.net sshd\[17887\]: Invalid user garden from 220.248.30.58 port 21816 2020-02-27T15:47:23.483715vps751288.ovh.net sshd\[17887\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.248.30.58	2020-02-28 05:04:48
123.235.36.26	attackbotsspam	Feb 27 19:44:48 ns382633 sshd\[26522\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.235.36.26 user=root Feb 27 19:44:50 ns382633 sshd\[26522\]: Failed password for root from 123.235.36.26 port 61964 ssh2 Feb 27 19:52:19 ns382633 sshd\[28168\]: Invalid user csgoserver from 123.235.36.26 port 46789 Feb 27 19:52:19 ns382633 sshd\[28168\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.235.36.26 Feb 27 19:52:21 ns382633 sshd\[28168\]: Failed password for invalid user csgoserver from 123.235.36.26 port 46789 ssh2	2020-02-28 05:11:24
181.53.251.181	attackbots	Feb 27 21:49:26 sso sshd[23387]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.53.251.181 Feb 27 21:49:27 sso sshd[23387]: Failed password for invalid user media from 181.53.251.181 port 52048 ssh2 ...	2020-02-28 05:19:54
122.165.185.99	attackspambots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-02-28 05:00:47
37.29.40.214	attack	Email rejected due to spam filtering	2020-02-28 04:54:52
14.53.209.84	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-02-28 04:52:39
116.202.24.192	attack	Lines containing failures of 116.202.24.192 /var/log/apache/pucorp.org.log:Feb 27 15:16:39 server01 postfix/smtpd[13351]: connect from static.192.24.202.116.clients.your-server.de[116.202.24.192] /var/log/apache/pucorp.org.log:Feb x@x /var/log/apache/pucorp.org.log:Feb x@x /var/log/apache/pucorp.org.log:Feb 27 15:16:39 server01 postfix/smtpd[13351]: disconnect from static.192.24.202.116.clients.your-server.de[116.202.24.192] /var/log/apache/pucorp.org.log:Feb 27 15:16:39 server01 postfix/smtpd[13351]: connect from static.192.24.202.116.clients.your-server.de[116.202.24.192] /var/log/apache/pucorp.org.log:Feb x@x /var/log/apache/pucorp.org.log:Feb x@x /var/log/apache/pucorp.org.log:Feb 27 15:16:39 server01 postfix/smtpd[13351]: disconnect from static.192.24.202.116.clients.your-server.de[116.202.24.192] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=116.202.24.192	2020-02-28 04:48:04
219.141.190.195	attackspam	FTP Brute-Force reported by Fail2Ban	2020-02-28 05:11:01
222.186.180.6	attackspam	Feb 27 15:37:31 plusreed sshd[26982]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.6 user=root Feb 27 15:37:33 plusreed sshd[26982]: Failed password for root from 222.186.180.6 port 35854 ssh2 ...	2020-02-28 04:40:35

最近上报的IP列表

178.239.123.228	111.178.61.25	49.234.76.21	209.54.104.45
47.92.146.183	157.173.102.59	149.1.126.65	149.1.126.197
116.1.215.173	34.82.98.72	42.180.227.130	95.164.5.48
54.85.134.46	43.136.167.214	103.236.95.173	144.172.108.12
222.254.34.14	194.187.177.99	194.187.177.201	3.91.58.30