52.82.49.70 - IPInfo

Basic Info

City: unknown

Region: Ningxia Hui Autonomous Region

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: Ningxia West Cloud Data Technology Co.Ltd.

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
52.82.49.150	attackbotsspam	ICMP MH Probe, Scan /Distributed -	2020-08-20 18:23:58
52.82.49.150	attackbots	1 Attack(s) Detected [DoS Attack: Ping Sweep] from source: 52.82.49.150, Tuesday, August 11, 2020 16:52:18	2020-08-13 15:32:00

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.82.49.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60085
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.82.49.70.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040900 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue Apr 09 23:24:47 +08 2019
;; MSG SIZE  rcvd: 115

Host info

70.49.82.52.in-addr.arpa domain name pointer ec2-52-82-49-70.cn-northwest-1.compute.amazonaws.com.cn.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
70.49.82.52.in-addr.arpa	name = ec2-52-82-49-70.cn-northwest-1.compute.amazonaws.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
114.33.178.162	attackbotsspam	trying to access non-authorized port	2020-05-21 05:34:52
75.130.124.90	attackspam	DATE:2020-05-20 23:28:30, IP:75.130.124.90, PORT:ssh SSH brute force auth (docker-dc)	2020-05-21 05:31:50
104.140.188.10	attackspam	port scan and connect, tcp 23 (telnet)	2020-05-21 05:24:55
119.254.7.114	attackspambots	May 20 22:35:37 server sshd[3256]: Failed password for invalid user nnj from 119.254.7.114 port 24814 ssh2 May 20 22:38:12 server sshd[5368]: Failed password for invalid user pvm from 119.254.7.114 port 46933 ssh2 May 20 22:40:44 server sshd[7766]: Failed password for invalid user xob from 119.254.7.114 port 4268 ssh2	2020-05-21 05:35:52
46.83.43.132	attackbotsspam	May 20 22:39:11 minden010 postfix/smtpd[5370]: NOQUEUE: reject: RCPT from p2e532b84.dip0.t-ipconnect.de[46.83.43.132]: 450 4.7.1 : Helo command rejected: Host not found; from=<> to= proto=ESMTP helo= May 20 22:39:11 minden010 postfix/smtpd[8849]: NOQUEUE: reject: RCPT from p2e532b84.dip0.t-ipconnect.de[46.83.43.132]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= May 20 22:39:12 minden010 postfix/smtpd[17258]: NOQUEUE: reject: RCPT from p2e532b84.dip0.t-ipconnect.de[46.83.43.132]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= May 20 22:39:12 minden010 postfix/smtpd[17260]: NOQUEUE: reject: RCPT from p2e532b84.dip0.t-ipconnect.de[46.83.43.132]: 450 4.7.1 : Helo command rejected: Host not found; from=<> to= proto=ESMTP helo=	2020-05-21 05:21:00
35.227.125.51	attackspam	Automated report (2020-05-21T01:33:07+08:00). Misbehaving bot detected at this address.	2020-05-21 05:51:59
103.61.37.231	attack	May 20 20:19:34 legacy sshd[29978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.61.37.231 May 20 20:19:36 legacy sshd[29978]: Failed password for invalid user lks from 103.61.37.231 port 39570 ssh2 May 20 20:23:29 legacy sshd[30193]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.61.37.231 ...	2020-05-21 05:24:43
162.243.138.182	attackspam	Automatic report - Port Scan Attack	2020-05-21 05:52:40
206.132.109.108	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-05-21 05:56:40
114.237.109.253	attack	Brute force attempt	2020-05-21 05:34:26
152.250.252.179	attack	Too many connections or unauthorized access detected from Arctic banned ip	2020-05-21 05:57:11
209.141.40.12	attackspambots	May 20 21:49:38 internal-server-tf sshd\[15256\]: Invalid user guest from 209.141.40.12May 20 21:49:38 internal-server-tf sshd\[15263\]: Invalid user ec2-user from 209.141.40.12 ...	2020-05-21 05:49:47
178.207.60.161	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-05-21 05:43:42
222.186.175.148	attackspambots	May 20 21:34:00 ip-172-31-62-245 sshd\[24106\]: Failed password for root from 222.186.175.148 port 65062 ssh2\ May 20 21:34:03 ip-172-31-62-245 sshd\[24106\]: Failed password for root from 222.186.175.148 port 65062 ssh2\ May 20 21:34:06 ip-172-31-62-245 sshd\[24106\]: Failed password for root from 222.186.175.148 port 65062 ssh2\ May 20 21:34:10 ip-172-31-62-245 sshd\[24106\]: Failed password for root from 222.186.175.148 port 65062 ssh2\ May 20 21:34:13 ip-172-31-62-245 sshd\[24106\]: Failed password for root from 222.186.175.148 port 65062 ssh2\	2020-05-21 05:41:56
165.22.31.24	attack	REQUESTED PAGE: /wp-login.php	2020-05-21 05:46:21

Recently Reported IPs

77.66.124.118	35.231.48.87	178.79.46.5	124.89.211.50
35.161.196.101	187.162.23.177	86.42.91.227	46.176.53.177
114.244.246.79	129.213.67.237	179.228.75.215	115.224.13.67
91.97.150.213	49.7.58.119	83.219.153.218	117.90.52.7
146.164.28.2	95.174.65.21	195.231.9.212	185.153.46.147