52.80.42.31 - IPInfo

Basic Info

City: Beijing

Region: Beijing

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
52.80.42.177	attackspam	Automatic report - XMLRPC Attack	2020-02-07 05:48:21

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.80.42.31
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41946
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;52.80.42.31.			IN	A

;; AUTHORITY SECTION:
.			572	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024060700 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 07 15:05:15 CST 2024
;; MSG SIZE  rcvd: 104

Host info

31.42.80.52.in-addr.arpa domain name pointer ec2-52-80-42-31.cn-north-1.compute.amazonaws.com.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
31.42.80.52.in-addr.arpa	name = ec2-52-80-42-31.cn-north-1.compute.amazonaws.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
163.172.138.68	attackspam	detected by Fail2Ban	2019-11-21 21:53:18
49.234.44.48	attackspam	Oct 22 23:51:12 odroid64 sshd\[8092\]: User root from 49.234.44.48 not allowed because not listed in AllowUsers Oct 22 23:51:12 odroid64 sshd\[8092\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.44.48 user=root Oct 22 23:51:12 odroid64 sshd\[8092\]: User root from 49.234.44.48 not allowed because not listed in AllowUsers Oct 22 23:51:12 odroid64 sshd\[8092\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.44.48 user=root Oct 22 23:51:14 odroid64 sshd\[8092\]: Failed password for invalid user root from 49.234.44.48 port 54958 ssh2 Oct 22 23:51:12 odroid64 sshd\[8092\]: User root from 49.234.44.48 not allowed because not listed in AllowUsers Oct 22 23:51:12 odroid64 sshd\[8092\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.44.48 user=root Oct 22 23:51:14 odroid64 sshd\[8092\]: Failed password for invalid user root from 49.234.44 ...	2019-11-21 21:52:45
103.129.222.135	attackspambots	2019-11-21T13:19:10.865678shield sshd\[9948\]: Invalid user amu from 103.129.222.135 port 53368 2019-11-21T13:19:10.869925shield sshd\[9948\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.129.222.135 2019-11-21T13:19:12.723567shield sshd\[9948\]: Failed password for invalid user amu from 103.129.222.135 port 53368 ssh2 2019-11-21T13:23:50.413087shield sshd\[10997\]: Invalid user chadd from 103.129.222.135 port 43122 2019-11-21T13:23:50.417245shield sshd\[10997\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.129.222.135	2019-11-21 21:33:26
87.239.85.169	attackbotsspam	Nov 21 02:58:49 web9 sshd\[26740\]: Invalid user imlintz from 87.239.85.169 Nov 21 02:58:49 web9 sshd\[26740\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.239.85.169 Nov 21 02:58:51 web9 sshd\[26740\]: Failed password for invalid user imlintz from 87.239.85.169 port 38776 ssh2 Nov 21 03:02:43 web9 sshd\[27218\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.239.85.169 user=root Nov 21 03:02:44 web9 sshd\[27218\]: Failed password for root from 87.239.85.169 port 46950 ssh2	2019-11-21 22:01:08
54.191.214.10	attack	RDP Bruteforce	2019-11-21 22:07:19
103.77.18.134	attackspam	[portscan] tcp/23 [TELNET] *(RWIN=34793)(11211003)	2019-11-21 21:57:36
190.145.55.89	attack	Nov 21 14:11:05 eventyay sshd[19343]: Failed password for sync from 190.145.55.89 port 55434 ssh2 Nov 21 14:16:34 eventyay sshd[19421]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.145.55.89 Nov 21 14:16:36 eventyay sshd[19421]: Failed password for invalid user cerutty from 190.145.55.89 port 44953 ssh2 ...	2019-11-21 21:40:37
40.114.246.252	attack	Nov 21 17:29:31 gw1 sshd[9607]: Failed password for backup from 40.114.246.252 port 42126 ssh2 ...	2019-11-21 21:29:34
134.73.51.229	attackbotsspam	Spam trapped	2019-11-21 21:27:51
116.203.8.63	attackspambots	Nov 21 09:42:32 firewall sshd[5071]: Invalid user mysql from 116.203.8.63 Nov 21 09:42:33 firewall sshd[5071]: Failed password for invalid user mysql from 116.203.8.63 port 34182 ssh2 Nov 21 09:45:56 firewall sshd[5135]: Invalid user jonez from 116.203.8.63 ...	2019-11-21 21:31:37
222.186.180.147	attackbots	2019-11-21T13:40:40.149665abusebot-6.cloudsearch.cf sshd\[877\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.147 user=root	2019-11-21 21:54:46
128.199.142.138	attack	Automatic report - Banned IP Access	2019-11-21 21:37:13
185.112.250.45	attackspambots	Invalid user admin from 185.112.250.45 port 34182	2019-11-21 22:02:05
222.186.52.86	attackspam	Nov 21 07:58:23 ny01 sshd[25684]: Failed password for root from 222.186.52.86 port 62155 ssh2 Nov 21 07:59:40 ny01 sshd[25814]: Failed password for root from 222.186.52.86 port 61789 ssh2	2019-11-21 21:36:47
92.222.89.7	attackspam	Nov 21 07:45:01 srv01 sshd[11589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.89.7 user=root Nov 21 07:45:03 srv01 sshd[11589]: Failed password for root from 92.222.89.7 port 43060 ssh2 Nov 21 07:48:34 srv01 sshd[11773]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.89.7 user=root Nov 21 07:48:36 srv01 sshd[11773]: Failed password for root from 92.222.89.7 port 51796 ssh2 Nov 21 07:52:11 srv01 sshd[12040]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.89.7 user=root Nov 21 07:52:13 srv01 sshd[12040]: Failed password for root from 92.222.89.7 port 60534 ssh2 ...	2019-11-21 21:43:41

Recently Reported IPs

202.9.244.115	119.215.218.253	97.16.105.120	212.201.27.232
6.215.29.26	33.75.108.13	180.26.12.80	246.252.96.92
1.43.210.17	237.199.174.177	219.201.255.171	144.157.226.9
236.210.29.12	51.86.128.123	165.203.143.211	102.80.96.34
45.100.100.35	147.179.90.198	84.0.183.168	73.197.243.15