52.222.149.96 Threat Intelligence and Host Information

Oct 20, 2025 ipinfopage

General

IP Address

52.222.149.96

IPv4 Address

Location

🇺🇸 United States

Network

AS16509

AMAZON-02

Threat Score

10/100

Low Risk

Attack Intelligence

Open Ports Detected

443

Geographic Location

Country

United States

City

Unknown

Region

Unknown

Coordinates

37.7510, -97.8220

Network Information

ASN

AS16509

Organization

AMAZON-02

Network

AS16509 AMAZON-02

WHOIS Information

NetRange

52.222.128.0 - 52.222.255.255

CIDR

52.222.128.0/17

NetName

AMAZO-CF

NetHandle

NET-52-222-128-0-1

Parent

AT-88-Z (NET-52-192-0-0-1)

NetType

Reallocated

OriginAS

Organization

Amazon.com, Inc. (AMAZON-4)

RegDate

1995-01-23

Updated

2022-09-30

Ref

https://rdap.arin.net/registry/entity/AMAZON-4

OrgName

Amazon.com, Inc.

OrgId

AMAZON-4

Address

1918 8th Ave

City

SEATTLE

StateProv

PostalCode

98101-1244

Country

Comment

* Your contact details (phone and email) Without these we will be unable to identify the correct owner of the IP address at that point in time.

OrgRoutingHandle

ARMP-ARIN

OrgRoutingName

AWS RPKI Management POC

OrgRoutingPhone

+1-206-555-0000

OrgRoutingEmail

aws-rpki-routing-poc@amazon.com

OrgRoutingRef

https://rdap.arin.net/registry/entity/ARMP-ARIN

Country: United States
Network:
Noticed: 1 times
Protocols Attacked: SSH
Passive DNS Results: wp.coface.com talky.io 929o.com dl4iqd8hh0i6m.amplifyapp.com wapiti-magazine.com disparador-dev.cloud.itau.com.br assets.feedblitzstatic.com push.api.bbci.co.uk tag.demandbase.com fstatic.iadvize.com production.la.welt.de api.volotea.com iabmap.evidon.com tmz.com sp.mdotlabs.com image.afcdn.com cdn.iflychat.com vp.videoplaza.tv dplay-south-prod-images.disco-api.com logo.clearbit.com static.tradetracker.net jp.reuters.com www.stumbleupon.com embed.windy.com compass.pressekompass.net www.themodernvocalistworld.com www.oceansofosyrus.com cf.ads.kontextua.com d3hjue7omxs01q.cloudfront.net d1fmwj9jsxhg8c.cloudfront.net d30x8mtr3hjnzo.cloudfront.net ocsp.rootca1.amazontrust.com media.bebeconfort.com a47a5df437c5fdccab65528da0b959ee0.profile.fra53.cloudfront.net d19o643lxir6wy.cloudfront.net a93f7e370f219b9cdcb302589e6c8e6a3.profile.fra53.cloudfront.net desx4j6t36u6g.cloudfront.net cfg.wedo1.com a7818a71665cd9f1a293959c19afd33b8.profile.fra53.cloudfront.net d1g1b9l7554igi.cloudfront.net bae-systems-investor-relations-v3.production.investis.com d3qho2rk5jaw5q.cloudfront.net d3mmcl7rx9vef3.cloudfront.net d4c04g24ci6x7.cloudfront.net easyjet-event.production.investis.com d1ynmw0a0du3x1.cloudfront.net d4tg5cketftz9.cloudfront.net d2xxarhbhwxita.cloudfront.net img.musvc5.net upq.me d2x3fq1nn44ic7.cloudfront.net d3l4gn257ephzt.cloudfront.net d3oiaexj1fozj1.cloudfront.net d8qq139n0q9qc.cloudfront.net cdn.lsbf.org.uk d2qv5f444n933g.cloudfront.net d2sbzxv292w5q3.cloudfront.net dd4dnhmp319t.cloudfront.net dz1dq8i7vcduo.cloudfront.net ds2vm9vpxo21v.cloudfront.net d2dw6lv4z9w0e2.cloudfront.net d1b4wrwaq1bott.cloudfront.net tnk-bp-ir.production.investis.com www.eiyoshi-web.com d3m0tc7pjibga7.cloudfront.net www.provideodownloader.com d2hr1jc4vn010z.cloudfront.net d36vhlkv1efoxd.cloudfront.net arcadis-annual-report-2011.production.investis.com d2tkv3q57xq9iw.cloudfront.net d11fglv3q0z2k1.cloudfront.net d5fucxtzgzwli.cloudfront.net d1lbp2kp83xf89.cloudfront.net www.alexanderpokluda.ca d1gahxamcuu9d3.cloudfront.net d10s59hdinqmqq.cloudfront.net dna4mm5c1mahl.cloudfront.net wj934.com hotel-tour.info d2cbnnklff87r5.cloudfront.net d1ce2458qln1u7.cloudfront.net 176.74.19.69.crazyprizes.xyz dlc.justmyshop.com dl8osqulq9t07.cloudfront.net d37zo9iyrmu192.cloudfront.net 213.7.25.1.crazyprizes.xyz 185.115.127.185.crazyprizes.xyz 178.62.65.73.crazyprizes.xyz 176.74.19.68.crazyprizes.xyz dj1a9dwix5pje.cloudfront.net dggtwb4wc2zg7.cloudfront.net 109.190.209.33.crazyprizes.xyz 95.172.238.30.crazyprizes.xyz 217.148.43.169.crazyprizes.xyz 82.114.63.188.crazyprizes.xyz 212.18.228.188.crazyprizes.xyz 95.142.166.223.crazyprizes.xyz 92.243.26.27.crazyprizes.xyz 213.169.148.103.crazyprizes.xyz d2p2y6f2o9ov9r.cloudfront.net d16oc15frjt76r.cloudfront.net d2nck5wnz9hphu.cloudfront.net d15otwskaap5qm.cloudfront.net d1yse7kwifqozj.cloudfront.net d1ej5r2t2cu524.cloudfront.net d2ml10ouirc1wr.cloudfront.net givaudan-annual-report-2009.production.investis.com d34jrw28s98zti.cloudfront.net d3rh5dt2ig7542.cloudfront.net d2a37ve015rh3p.cloudfront.net d1vtofx7fo2uud.cloudfront.net dhcppd6c99x6i.cloudfront.net d1kea8ypfcqghc.cloudfront.net d17gg2mx4v8o5d.cloudfront.net dv2mdkguncioa.cloudfront.net d1uqtl5us26v9g.cloudfront.net 866ourvote.org d31zb6ev5hmn3f.cloudfront.net d3atsf3fgek2rw.cloudfront.net d11xp5f8q0u2c8.cloudfront.net d3jdpf2ev4ku7p.cloudfront.net ddbyw3kvsvep.cloudfront.net d3436mjmai0gas.cloudfront.net d1no4l5xxhfdh5.cloudfront.net d2hjkdvog8222w.cloudfront.net d5l62j8yg58os.cloudfront.net d3qor7nx9zb32s.cloudfront.net dmrm038s4vkzd.cloudfront.net d2stpqwf2hevny.cloudfront.net d3lar09xbwlsge.cloudfront.net d11xkndje730z2.cloudfront.net dm475u58drvy8.cloudfront.net d27gghvlero4vr.cloudfront.net d1ef3lhzkopvzm.cloudfront.net d3t0im579cvxtw.cloudfront.net d1t653m828c3x8.cloudfront.net d2ppr1q9ajemhw.cloudfront.net d1avcer7d2nv00.cloudfront.net d3ikounkosozqg.cloudfront.net

Malware Detected on Host

Count: 72 8836efbd33da36857b72b0cfd962dc29bd0b4fce27a74582c250d46c06bdade4 3e1c52b09c48e65f8b3345bf20f872c4b153ce43ee8d0885851cb76090360af4 68cea8c8b31be7183def731b73b15694f0ad99b9ac6da73ef8a0ed3bd540a9ce 981314a19e9d95f9548fe8d36dae444f8eca86b6100792e056139b108b25ad47 6d854e8bd40a50dc629808b1b9cf18ab9852aca44e9bc24db2759d8cee23a77b 74b47bd91176d9f2d5615c77cdc0500f3f3a8968fdb493d19c84cf2fbe3d1a3d 33dce95adbbcc516d0131dc955acd55cd571c56d078fcf202e6d9f4392dcd40f 55063fba16b013c53ee867ed8d28b696e1a1ad994ad4864dfc811ef0e4c636e8 b87834736ae98e182d5d3112d5c747230f14b33d75525b05155a5b08229bf06b ade1e9e25aa442236db838deed2f7dcd9689b31d8c449b850665bdac5196b787

Disclaimer

This page contains threat intelligence information for the IPv4 address 52.222.149.96 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.