52.42.3.170 - IPInfo

Basic Info

City: Boardman

Region: Oregon

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: Amazon.com, Inc.

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
52.42.3.207	attackspam	Part of attack with from=	2019-12-26 17:37:55

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.42.3.170
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48298
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.42.3.170.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082200 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 23 01:57:13 CST 2019
;; MSG SIZE  rcvd: 115

Host info

170.3.42.52.in-addr.arpa domain name pointer ec2-52-42-3-170.us-west-2.compute.amazonaws.com.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
170.3.42.52.in-addr.arpa	name = ec2-52-42-3-170.us-west-2.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.65.67.134	attackbots	Sep 4 21:00:22 cp sshd[19667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.67.134	2019-09-05 04:16:36
181.230.35.65	attackspam	Sep 4 21:38:22 localhost sshd\[4207\]: Invalid user elasticsearch from 181.230.35.65 port 39222 Sep 4 21:38:22 localhost sshd\[4207\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.230.35.65 Sep 4 21:38:24 localhost sshd\[4207\]: Failed password for invalid user elasticsearch from 181.230.35.65 port 39222 ssh2	2019-09-05 03:41:08
81.22.45.225	attackbotsspam	51515/tcp 64646/tcp 42424/tcp... [2019-08-10/09-04]1249pkt,579pt.(tcp)	2019-09-05 04:42:26
148.70.62.12	attackbotsspam	Sep 4 10:23:56 tdfoods sshd\[28307\]: Invalid user tr from 148.70.62.12 Sep 4 10:23:56 tdfoods sshd\[28307\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.62.12 Sep 4 10:23:58 tdfoods sshd\[28307\]: Failed password for invalid user tr from 148.70.62.12 port 55604 ssh2 Sep 4 10:29:06 tdfoods sshd\[29013\]: Invalid user qhsupport from 148.70.62.12 Sep 4 10:29:06 tdfoods sshd\[29013\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.62.12	2019-09-05 04:32:59
185.211.245.170	attackbotsspam	Sep 4 21:16:36 relay postfix/smtpd\[21776\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 4 21:16:54 relay postfix/smtpd\[23870\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 4 21:22:37 relay postfix/smtpd\[27367\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 4 21:22:54 relay postfix/smtpd\[29627\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 4 21:23:55 relay postfix/smtpd\[27549\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-09-05 03:51:12
153.36.242.143	attackspambots	Sep 4 10:10:15 hanapaa sshd\[9936\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.143 user=root Sep 4 10:10:17 hanapaa sshd\[9936\]: Failed password for root from 153.36.242.143 port 17124 ssh2 Sep 4 10:10:19 hanapaa sshd\[9936\]: Failed password for root from 153.36.242.143 port 17124 ssh2 Sep 4 10:10:21 hanapaa sshd\[9936\]: Failed password for root from 153.36.242.143 port 17124 ssh2 Sep 4 10:10:23 hanapaa sshd\[9943\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.143 user=root	2019-09-05 04:13:10
106.12.134.133	attack	Sep 4 05:20:38 kapalua sshd\[2125\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.133 user=root Sep 4 05:20:40 kapalua sshd\[2125\]: Failed password for root from 106.12.134.133 port 38984 ssh2 Sep 4 05:26:40 kapalua sshd\[2720\]: Invalid user wayne from 106.12.134.133 Sep 4 05:26:40 kapalua sshd\[2720\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.133 Sep 4 05:26:42 kapalua sshd\[2720\]: Failed password for invalid user wayne from 106.12.134.133 port 55196 ssh2	2019-09-05 04:17:02
193.188.22.56	attack	OS-WINDOWS Microsoft Windows Terminal server RDP over non-standard port attempt	2019-09-05 04:28:44
80.0.37.216	attackbotsspam	Aug 29 02:16:41 itv-usvr-01 sshd[23571]: Invalid user admin from 80.0.37.216 Aug 29 02:16:41 itv-usvr-01 sshd[23571]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.0.37.216 Aug 29 02:16:41 itv-usvr-01 sshd[23571]: Invalid user admin from 80.0.37.216 Aug 29 02:16:43 itv-usvr-01 sshd[23571]: Failed password for invalid user admin from 80.0.37.216 port 58104 ssh2 Aug 29 02:16:41 itv-usvr-01 sshd[23571]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.0.37.216 Aug 29 02:16:41 itv-usvr-01 sshd[23571]: Invalid user admin from 80.0.37.216 Aug 29 02:16:43 itv-usvr-01 sshd[23571]: Failed password for invalid user admin from 80.0.37.216 port 58104 ssh2 Aug 29 02:16:45 itv-usvr-01 sshd[23571]: Failed password for invalid user admin from 80.0.37.216 port 58104 ssh2	2019-09-05 03:53:38
80.211.95.201	attack	Sep 1 13:27:32 itv-usvr-01 sshd[26065]: Invalid user webuser from 80.211.95.201 Sep 1 13:27:32 itv-usvr-01 sshd[26065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.95.201 Sep 1 13:27:32 itv-usvr-01 sshd[26065]: Invalid user webuser from 80.211.95.201 Sep 1 13:27:33 itv-usvr-01 sshd[26065]: Failed password for invalid user webuser from 80.211.95.201 port 42526 ssh2 Sep 1 13:31:17 itv-usvr-01 sshd[26176]: Invalid user gnu from 80.211.95.201	2019-09-05 03:42:21
139.59.92.117	attackbotsspam	Automatic report	2019-09-05 03:45:49
175.23.203.163	attackspambots	Automatic report - Port Scan Attack	2019-09-05 03:48:13
49.234.36.126	attackbotsspam	Sep 4 13:57:51 vtv3 sshd\[1947\]: Invalid user redmine from 49.234.36.126 port 14203 Sep 4 13:57:51 vtv3 sshd\[1947\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.36.126 Sep 4 13:57:53 vtv3 sshd\[1947\]: Failed password for invalid user redmine from 49.234.36.126 port 14203 ssh2 Sep 4 14:05:40 vtv3 sshd\[6298\]: Invalid user rk3229 from 49.234.36.126 port 15942 Sep 4 14:05:40 vtv3 sshd\[6298\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.36.126 Sep 4 14:17:02 vtv3 sshd\[12098\]: Invalid user teamspeak from 49.234.36.126 port 49431 Sep 4 14:17:02 vtv3 sshd\[12098\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.36.126 Sep 4 14:17:04 vtv3 sshd\[12098\]: Failed password for invalid user teamspeak from 49.234.36.126 port 49431 ssh2 Sep 4 14:23:00 vtv3 sshd\[14951\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruse	2019-09-05 03:39:42
218.98.26.183	attackspam	SSH Bruteforce attempt	2019-09-05 04:18:17
159.65.153.163	attackspambots	Sep 4 20:21:29 eventyay sshd[12523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.153.163 Sep 4 20:21:31 eventyay sshd[12523]: Failed password for invalid user admin from 159.65.153.163 port 60742 ssh2 Sep 4 20:26:53 eventyay sshd[12642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.153.163 ...	2019-09-05 04:12:40

Recently Reported IPs

211.79.114.253	6.6.253.95	66.198.107.45	216.191.104.87
183.226.113.237	32.170.66.157	181.157.25.10	2.121.79.217
177.234.180.8	52.29.73.119	103.251.208.56	27.234.66.117
157.4.65.136	1.200.31.233	99.230.151.254	141.107.26.98
65.142.200.0	131.146.220.213	109.228.124.238	61.161.233.156