52.42.63.82 - IPInfo

Basic Info

City: Boardman

Region: Oregon

Country: United States

Internet Service Provider: Amazon Technologies Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	As always with amazon web services	2019-10-03 03:21:58

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.42.63.82
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55078
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.42.63.82.			IN	A

;; AUTHORITY SECTION:
.			195	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100202 1800 900 604800 86400

;; Query time: 127 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 03 03:21:53 CST 2019
;; MSG SIZE  rcvd: 115

Host info

82.63.42.52.in-addr.arpa domain name pointer ec2-52-42-63-82.us-west-2.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
82.63.42.52.in-addr.arpa	name = ec2-52-42-63-82.us-west-2.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
213.141.132.29	attackbots	Bruteforce detected by fail2ban	2020-04-05 21:52:25
183.89.215.47	attack	(imapd) Failed IMAP login from 183.89.215.47 (TH/Thailand/mx-ll-183.89.215-47.dynamic.3bb.in.th): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Apr 5 17:14:56 ir1 dovecot[566034]: imap-login: Disconnected (auth failed, 1 attempts in 14 secs): user=, method=PLAIN, rip=183.89.215.47, lip=5.63.12.44, TLS: Connection closed, session=	2020-04-05 21:37:49
107.173.219.152	attack	US_New ColoCrossing_<177>1586090720 [1:2010935:3] ET SCAN Suspicious inbound to MSSQL port 1433 [Classification: Potentially Bad Traffic] [Priority: 2]: {TCP} 107.173.219.152:41126	2020-04-05 21:21:17
82.64.24.17	attackspam	Apr 5 15:06:20 silence02 sshd[7751]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.64.24.17 Apr 5 15:06:22 silence02 sshd[7751]: Failed password for invalid user liurui from 82.64.24.17 port 58982 ssh2 Apr 5 15:07:01 silence02 sshd[7782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.64.24.17	2020-04-05 21:08:37
123.207.33.139	attackspam	$f2bV_matches	2020-04-05 21:27:18
92.63.196.3	attackspam	Port scan on 3 port(s): 2789 3314 3489	2020-04-05 21:52:07
180.183.250.13	attack	Unauthorized connection attempt from IP address 180.183.250.13 on Port 445(SMB)	2020-04-05 21:28:59
51.77.108.92	attack	04/05/2020-09:53:41.901376 51.77.108.92 Protocol: 6 ET SCAN Potential SSH Scan	2020-04-05 21:53:53
45.64.126.103	attackbotsspam	Apr 5 14:35:17 DAAP sshd[6873]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.64.126.103 user=root Apr 5 14:35:19 DAAP sshd[6873]: Failed password for root from 45.64.126.103 port 48220 ssh2 Apr 5 14:40:05 DAAP sshd[7047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.64.126.103 user=root Apr 5 14:40:06 DAAP sshd[7047]: Failed password for root from 45.64.126.103 port 60156 ssh2 Apr 5 14:44:53 DAAP sshd[7161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.64.126.103 user=root Apr 5 14:44:55 DAAP sshd[7161]: Failed password for root from 45.64.126.103 port 43846 ssh2 ...	2020-04-05 21:50:47
116.237.63.69	attack	Unauthorized connection attempt from IP address 116.237.63.69 on Port 445(SMB)	2020-04-05 21:33:48
87.245.179.83	attackspam	Unauthorized connection attempt from IP address 87.245.179.83 on Port 445(SMB)	2020-04-05 21:29:27
45.119.212.14	attackbots	Automatic report - XMLRPC Attack	2020-04-05 21:54:11
51.158.124.45	attackbots	2020-04-04 x@x 2020-04-04 x@x 2020-04-04 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=51.158.124.45	2020-04-05 21:30:45
118.71.165.64	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 05-04-2020 13:45:08.	2020-04-05 21:36:45
120.224.61.184	attack	" "	2020-04-05 21:46:54

Recently Reported IPs

111.132.254.152	220.11.127.98	2.133.186.125	108.7.186.103
110.170.147.72	121.233.159.102	180.242.107.92	178.235.182.93
108.81.194.48	222.220.171.35	178.90.229.21	89.103.227.207
79.66.159.143	72.38.36.100	14.148.90.252	84.178.56.170
176.63.24.187	46.90.220.39	65.31.201.148	171.76.104.216