52.82.49.70 - IPInfo

Basic Info

City: unknown

Region: Ningxia Hui Autonomous Region

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: Ningxia West Cloud Data Technology Co.Ltd.

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
52.82.49.150	attackbotsspam	ICMP MH Probe, Scan /Distributed -	2020-08-20 18:23:58
52.82.49.150	attackbots	1 Attack(s) Detected [DoS Attack: Ping Sweep] from source: 52.82.49.150, Tuesday, August 11, 2020 16:52:18	2020-08-13 15:32:00

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.82.49.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60085
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.82.49.70.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040900 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue Apr 09 23:24:47 +08 2019
;; MSG SIZE  rcvd: 115

Host info

70.49.82.52.in-addr.arpa domain name pointer ec2-52-82-49-70.cn-northwest-1.compute.amazonaws.com.cn.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
70.49.82.52.in-addr.arpa	name = ec2-52-82-49-70.cn-northwest-1.compute.amazonaws.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.51.98.159	attack	Sep 23 00:07:53 jane sshd[5086]: Failed password for root from 106.51.98.159 port 34446 ssh2 ...	2020-09-23 06:44:33
217.182.68.147	attackbots	$f2bV_matches	2020-09-23 06:13:19
111.85.90.122	attackspambots	IP 111.85.90.122 attacked honeypot on port: 1433 at 9/22/2020 10:03:38 AM	2020-09-23 06:39:24
212.70.149.4	attackbotsspam	Rude login attack (410 tries in 1d)	2020-09-23 06:41:41
185.191.171.7	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5d694d0e1e8fea24 \| WAF_Rule_ID: 4c344d8609cf47c88674e7c5f743a22c \| WAF_Kind: firewall \| CF_Action: drop \| Country: NL \| CF_IPClass: unknown \| Protocol: HTTP/1.1 \| Method: GET \| Host: www.wevg.org \| User-Agent: Mozilla/5.0 (compatible; SemrushBot/6~bl; +http://www.semrush.com/bot.html) \| CF_DC: IAD. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2020-09-23 06:35:13
82.81.9.62	attackbotsspam	Listed on abuseat.org plus barracudaCentral and zen-spamhaus / proto=6 . srcport=14404 . dstport=23 . (3080)	2020-09-23 06:29:24
192.241.235.231	attack	IP 192.241.235.231 attacked honeypot on port: 26 at 9/22/2020 10:03:38 AM	2020-09-23 06:38:17
54.39.152.32	attack	WordPress wp-login brute force :: 54.39.152.32 0.068 BYPASS [22/Sep/2020:17:04:08 0000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 2577 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-23 06:33:07
59.127.152.203	attackbotsspam	2020-09-23T00:01:38.323828ns386461 sshd\[31840\]: Invalid user s from 59.127.152.203 port 41438 2020-09-23T00:01:38.328590ns386461 sshd\[31840\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59-127-152-203.hinet-ip.hinet.net 2020-09-23T00:01:40.230617ns386461 sshd\[31840\]: Failed password for invalid user s from 59.127.152.203 port 41438 ssh2 2020-09-23T00:07:44.532175ns386461 sshd\[5110\]: Invalid user tom from 59.127.152.203 port 43428 2020-09-23T00:07:44.537391ns386461 sshd\[5110\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59-127-152-203.hinet-ip.hinet.net ...	2020-09-23 06:32:48
14.177.113.105	attack	1600794263 - 09/22/2020 19:04:23 Host: 14.177.113.105/14.177.113.105 Port: 445 TCP Blocked	2020-09-23 06:14:09
47.31.208.154	attackbotsspam	Unauthorized connection attempt from IP address 47.31.208.154 on Port 445(SMB)	2020-09-23 06:29:44
41.33.183.196	attackbotsspam	Unauthorized connection attempt from IP address 41.33.183.196 on Port 445(SMB)	2020-09-23 06:40:55
157.245.196.164	attackbotsspam	" "	2020-09-23 06:41:22
188.193.32.62	attack	Listed on zen-spamhaus also barracudaCentral and abuseat.org / proto=6 . srcport=22664 . dstport=5555 . (3079)	2020-09-23 06:38:36
117.51.159.1	attackspambots	Invalid user ansible from 117.51.159.1 port 35676	2020-09-23 06:11:49

Recently Reported IPs

77.66.124.118	35.231.48.87	178.79.46.5	124.89.211.50
35.161.196.101	187.162.23.177	86.42.91.227	46.176.53.177
114.244.246.79	129.213.67.237	179.228.75.215	115.224.13.67
91.97.150.213	49.7.58.119	83.219.153.218	117.90.52.7
146.164.28.2	95.174.65.21	195.231.9.212	185.153.46.147