52.42.3.170 - IPInfo

Basic Info

City: Boardman

Region: Oregon

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: Amazon.com, Inc.

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
52.42.3.207	attackspam	Part of attack with from=	2019-12-26 17:37:55

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.42.3.170
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48298
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.42.3.170.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082200 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 23 01:57:13 CST 2019
;; MSG SIZE  rcvd: 115

Host info

170.3.42.52.in-addr.arpa domain name pointer ec2-52-42-3-170.us-west-2.compute.amazonaws.com.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
170.3.42.52.in-addr.arpa	name = ec2-52-42-3-170.us-west-2.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
61.183.35.44	attack	Invalid user brz from 61.183.35.44 port 43140	2019-08-14 16:31:33
112.91.179.18	attack	Splunk® : port scan detected: Aug 13 23:09:27 testbed kernel: Firewall: TCP_IN Blocked IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:64:c3:d6:0b:ef:f0:08:00 SRC=112.91.179.18 DST=104.248.11.191 LEN=52 TOS=0x00 PREC=0x00 TTL=110 ID=25084 DF PROTO=TCP SPT=60666 DPT=3389 WINDOW=8192 RES=0x00 SYN URGP=0	2019-08-14 17:03:35
54.37.157.82	attackspam	Aug 14 04:52:33 SilenceServices sshd[5504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.157.82 Aug 14 04:52:35 SilenceServices sshd[5504]: Failed password for invalid user alfons from 54.37.157.82 port 42754 ssh2 Aug 14 04:57:10 SilenceServices sshd[8697]: Failed password for root from 54.37.157.82 port 35278 ssh2	2019-08-14 16:41:59
66.70.130.152	attackbots	Automatic report - Banned IP Access	2019-08-14 16:42:53
106.13.48.20	attack	$f2bV_matches	2019-08-14 16:38:35
159.203.17.176	attackbotsspam	2019-08-14T04:36:26.286389abusebot-8.cloudsearch.cf sshd\[7042\]: Invalid user sergiu from 159.203.17.176 port 42113	2019-08-14 17:02:02
141.98.9.42	attack	Aug 14 10:41:53 relay postfix/smtpd\[22735\]: warning: unknown\[141.98.9.42\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 14 10:42:26 relay postfix/smtpd\[11830\]: warning: unknown\[141.98.9.42\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 14 10:43:20 relay postfix/smtpd\[22736\]: warning: unknown\[141.98.9.42\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 14 10:43:55 relay postfix/smtpd\[15596\]: warning: unknown\[141.98.9.42\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 14 10:44:48 relay postfix/smtpd\[25075\]: warning: unknown\[141.98.9.42\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-08-14 16:53:01
104.244.75.97	attackbots	2019-08-14T08:45:36.854552abusebot.cloudsearch.cf sshd\[14962\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.244.75.97 user=root	2019-08-14 16:46:20
51.77.201.36	attackbotsspam	Aug 14 07:36:29 XXX sshd[47744]: Invalid user okilab from 51.77.201.36 port 48640	2019-08-14 16:51:03
41.169.151.90	attackspam	email spam	2019-08-14 16:52:39
112.186.77.74	attackbotsspam	2019-08-14T08:43:27.120500abusebot.cloudsearch.cf sshd\[14936\]: Invalid user chughett from 112.186.77.74 port 55128	2019-08-14 17:04:57
114.33.233.226	attackbotsspam	$f2bV_matches	2019-08-14 16:39:13
140.143.241.251	attackspambots	Aug 14 06:04:27 Proxmox sshd\[15169\]: Invalid user hadoop from 140.143.241.251 port 41582 Aug 14 06:04:27 Proxmox sshd\[15169\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.241.251 Aug 14 06:04:29 Proxmox sshd\[15169\]: Failed password for invalid user hadoop from 140.143.241.251 port 41582 ssh2	2019-08-14 16:52:00
89.248.168.51	attackbotsspam	2087/tcp 1935/tcp 1900/tcp... [2019-06-13/08-14]127pkt,14pt.(tcp)	2019-08-14 17:00:00
92.63.194.148	attack	firewall-block, port(s): 22609/tcp	2019-08-14 16:29:27

Recently Reported IPs

211.79.114.253	6.6.253.95	66.198.107.45	216.191.104.87
183.226.113.237	32.170.66.157	181.157.25.10	2.121.79.217
177.234.180.8	52.29.73.119	103.251.208.56	27.234.66.117
157.4.65.136	1.200.31.233	99.230.151.254	141.107.26.98
65.142.200.0	131.146.220.213	109.228.124.238	61.161.233.156