52.82.20.49 - IPInfo

Basic Info

City: unknown

Region: Ningxia Hui Autonomous Region

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: Ningxia West Cloud Data Technology Co.Ltd.

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.82.20.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11080
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.82.20.49.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041500 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 15 15:40:30 +08 2019
;; MSG SIZE  rcvd: 115

Host info

49.20.82.52.in-addr.arpa domain name pointer ec2-52-82-20-49.cn-northwest-1.compute.amazonaws.com.cn.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
49.20.82.52.in-addr.arpa	name = ec2-52-82-20-49.cn-northwest-1.compute.amazonaws.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.95.186.194	attackspambots	Automated reporting of FTP Brute Force	2019-09-29 22:19:25
49.88.112.80	attackbots	Sep 29 20:22:59 areeb-Workstation sshd[28233]: Failed password for root from 49.88.112.80 port 60556 ssh2 Sep 29 20:23:00 areeb-Workstation sshd[28233]: Failed password for root from 49.88.112.80 port 60556 ssh2 ...	2019-09-29 22:53:15
37.139.2.218	attack	2019-09-29T10:08:24.9372851495-001 sshd\[13786\]: Failed password for invalid user ftpguest from 37.139.2.218 port 37118 ssh2 2019-09-29T10:21:17.0706201495-001 sshd\[14835\]: Invalid user miroslav from 37.139.2.218 port 43370 2019-09-29T10:21:17.0799471495-001 sshd\[14835\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.2.218 2019-09-29T10:21:19.5153001495-001 sshd\[14835\]: Failed password for invalid user miroslav from 37.139.2.218 port 43370 ssh2 2019-09-29T10:25:28.4378091495-001 sshd\[15200\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.2.218 user=adm 2019-09-29T10:25:30.3306471495-001 sshd\[15200\]: Failed password for adm from 37.139.2.218 port 54854 ssh2 ...	2019-09-29 22:44:23
89.248.169.94	attack	firewall-block, port(s): 505/tcp, 2011/tcp, 2016/tcp, 3388/tcp, 3391/tcp, 4443/tcp, 5002/tcp, 10002/tcp, 10005/tcp, 10007/tcp, 50003/tcp, 50005/tcp	2019-09-29 22:24:01
222.186.175.140	attackspambots	Sep 29 16:45:53 meumeu sshd[15752]: Failed password for root from 222.186.175.140 port 15324 ssh2 Sep 29 16:46:14 meumeu sshd[15752]: error: maximum authentication attempts exceeded for root from 222.186.175.140 port 15324 ssh2 [preauth] Sep 29 16:46:25 meumeu sshd[15891]: Failed password for root from 222.186.175.140 port 4526 ssh2 ...	2019-09-29 23:02:52
80.211.95.201	attackspambots	Sep 29 04:01:04 web9 sshd\[23210\]: Invalid user sgamer from 80.211.95.201 Sep 29 04:01:04 web9 sshd\[23210\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.95.201 Sep 29 04:01:06 web9 sshd\[23210\]: Failed password for invalid user sgamer from 80.211.95.201 port 46414 ssh2 Sep 29 04:05:27 web9 sshd\[24136\]: Invalid user dcadmin from 80.211.95.201 Sep 29 04:05:27 web9 sshd\[24136\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.95.201	2019-09-29 22:35:58
195.123.238.79	attackspambots	Sep 27 19:16:52 toyboy sshd[15837]: reveeclipse mapping checking getaddrinfo for vps.hostry.com [195.123.238.79] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 27 19:16:52 toyboy sshd[15837]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.123.238.79 user=r.r Sep 27 19:16:55 toyboy sshd[15837]: Failed password for r.r from 195.123.238.79 port 44246 ssh2 Sep 27 19:16:55 toyboy sshd[15837]: Received disconnect from 195.123.238.79: 11: Bye Bye [preauth] Sep 27 19:25:18 toyboy sshd[16156]: reveeclipse mapping checking getaddrinfo for vps.hostry.com [195.123.238.79] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 27 19:25:18 toyboy sshd[16156]: Invalid user user from 195.123.238.79 Sep 27 19:25:19 toyboy sshd[16156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.123.238.79 Sep 27 19:25:21 toyboy sshd[16156]: Failed password for invalid user user from 195.123.238.79 port 59240 ssh2 Sep 27 19:25:21 toy........ -------------------------------	2019-09-29 22:52:39
124.93.2.233	attackspam	ssh failed login	2019-09-29 22:56:37
191.238.222.17	attackspam	$f2bV_matches	2019-09-29 22:57:33
92.222.84.34	attack	Sep 29 15:40:36 fr01 sshd[2750]: Invalid user botmaster from 92.222.84.34 Sep 29 15:40:36 fr01 sshd[2750]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.84.34 Sep 29 15:40:36 fr01 sshd[2750]: Invalid user botmaster from 92.222.84.34 Sep 29 15:40:38 fr01 sshd[2750]: Failed password for invalid user botmaster from 92.222.84.34 port 38124 ssh2 ...	2019-09-29 22:40:38
190.145.55.89	attackbotsspam	Automated report - ssh fail2ban: Sep 29 15:06:11 authentication failure Sep 29 15:06:13 wrong password, user=deploy, port=45288, ssh2 Sep 29 15:23:32 authentication failure	2019-09-29 22:20:32
139.219.15.178	attackspambots	Sep 29 14:00:58 OPSO sshd\[32347\]: Invalid user webmail from 139.219.15.178 port 35332 Sep 29 14:00:58 OPSO sshd\[32347\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.15.178 Sep 29 14:01:00 OPSO sshd\[32347\]: Failed password for invalid user webmail from 139.219.15.178 port 35332 ssh2 Sep 29 14:06:59 OPSO sshd\[774\]: Invalid user mcserver from 139.219.15.178 port 46834 Sep 29 14:06:59 OPSO sshd\[774\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.219.15.178	2019-09-29 23:01:11
206.189.91.97	attackbots	Sep 27 16:39:49 rb06 sshd[10394]: Failed password for invalid user wasadrc from 206.189.91.97 port 35758 ssh2 Sep 27 16:39:49 rb06 sshd[10394]: Received disconnect from 206.189.91.97: 11: Bye Bye [preauth] Sep 27 16:45:54 rb06 sshd[6760]: Failed password for invalid user ubnt from 206.189.91.97 port 56784 ssh2 Sep 27 16:45:54 rb06 sshd[6760]: Received disconnect from 206.189.91.97: 11: Bye Bye [preauth] Sep 27 16:55:18 rb06 sshd[7175]: Failed password for invalid user teamspeak3 from 206.189.91.97 port 56142 ssh2 Sep 27 16:55:18 rb06 sshd[7175]: Received disconnect from 206.189.91.97: 11: Bye Bye [preauth] Sep 27 16:59:58 rb06 sshd[22974]: Failed password for invalid user vanessa from 206.189.91.97 port 41602 ssh2 Sep 27 16:59:58 rb06 sshd[22974]: Received disconnect from 206.189.91.97: 11: Bye Bye [preauth] Sep 27 17:04:45 rb06 sshd[27946]: Failed password for invalid user info from 206.189.91.97 port 55288 ssh2 Sep 27 17:04:45 rb06 sshd[27946]: Received disconnect fro........ -------------------------------	2019-09-29 22:38:41
67.218.96.156	attackbots	ssh failed login	2019-09-29 22:55:33
185.216.140.252	attack	firewall-block, port(s): 9425/tcp, 9430/tcp	2019-09-29 22:33:29

Recently Reported IPs

119.24.141.142	13.250.7.111	119.23.52.232	124.123.41.243
118.31.52.109	190.145.23.195	118.110.165.178	116.65.139.87
116.255.215.78	190.86.175.1	129.204.38.136	114.182.6.22
112.70.65.119	94.140.224.207	182.88.30.149	111.231.118.241
18.188.171.185	116.62.122.179	107.150.99.41	180.76.108.110