52.90.44.173 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Amazon Technologies Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	by Amazon Technologies Inc.	2019-09-16 07:33:33

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.90.44.173
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41998
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.90.44.173.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091501 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Sep 16 07:33:27 CST 2019
;; MSG SIZE  rcvd: 116

Host info

173.44.90.52.in-addr.arpa domain name pointer ec2-52-90-44-173.compute-1.amazonaws.com.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
173.44.90.52.in-addr.arpa	name = ec2-52-90-44-173.compute-1.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
60.170.203.83	attackspambots	UTC: 2019-11-13 port: 23/tcp	2019-11-14 16:22:19
112.216.129.138	attackbots	Nov 14 07:41:21 sd-53420 sshd\[10809\]: Invalid user runo from 112.216.129.138 Nov 14 07:41:21 sd-53420 sshd\[10809\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.216.129.138 Nov 14 07:41:23 sd-53420 sshd\[10809\]: Failed password for invalid user runo from 112.216.129.138 port 48028 ssh2 Nov 14 07:45:51 sd-53420 sshd\[12038\]: Invalid user tarbatt from 112.216.129.138 Nov 14 07:45:51 sd-53420 sshd\[12038\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.216.129.138 ...	2019-11-14 16:35:16
162.144.141.141	attackbots	162.144.141.141 - - \[14/Nov/2019:06:28:42 +0000\] "POST /wp-login.php HTTP/1.1" 200 4358 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 162.144.141.141 - - \[14/Nov/2019:06:28:44 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2019-11-14 16:09:20
156.67.250.205	attack	Nov 14 06:28:35 ms-srv sshd[33987]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.67.250.205 Nov 14 06:28:37 ms-srv sshd[33987]: Failed password for invalid user pos from 156.67.250.205 port 53714 ssh2	2019-11-14 16:13:49
98.156.148.239	attack	Nov 14 08:25:24 game-panel sshd[8909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.156.148.239 Nov 14 08:25:26 game-panel sshd[8909]: Failed password for invalid user ching from 98.156.148.239 port 51452 ssh2 Nov 14 08:29:32 game-panel sshd[9050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.156.148.239	2019-11-14 16:34:30
125.212.201.7	attackspambots	Nov 14 08:01:16 zeus sshd[21684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.201.7 Nov 14 08:01:17 zeus sshd[21684]: Failed password for invalid user hoski from 125.212.201.7 port 13609 ssh2 Nov 14 08:06:00 zeus sshd[21751]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.201.7 Nov 14 08:06:02 zeus sshd[21751]: Failed password for invalid user elodie12345 from 125.212.201.7 port 22838 ssh2	2019-11-14 16:18:45
148.66.142.161	attack	Automatic report - Banned IP Access	2019-11-14 16:39:05
27.70.153.187	attack	Invalid user test1	2019-11-14 16:12:19
88.214.26.40	attack	191114 7:30:22 \[Warning\] Access denied for user 'root'@'88.214.26.40' \(using password: YES\) 191114 8:03:28 \[Warning\] Access denied for user 'root'@'88.214.26.40' \(using password: YES\) 191114 8:27:04 \[Warning\] Access denied for user 'root'@'88.214.26.40' \(using password: YES\) ...	2019-11-14 16:26:22
83.97.20.46	attackspambots	11/14/2019-09:29:11.902568 83.97.20.46 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-14 16:33:26
123.143.203.67	attack	Nov 13 20:58:02 php1 sshd\[24078\]: Invalid user temporary1 from 123.143.203.67 Nov 13 20:58:02 php1 sshd\[24078\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.143.203.67 Nov 13 20:58:03 php1 sshd\[24078\]: Failed password for invalid user temporary1 from 123.143.203.67 port 43550 ssh2 Nov 13 21:02:16 php1 sshd\[24407\]: Invalid user pptpd from 123.143.203.67 Nov 13 21:02:16 php1 sshd\[24407\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.143.203.67	2019-11-14 16:15:39
31.155.169.212	attack	UTC: 2019-11-13 port: 80/tcp	2019-11-14 16:11:58
175.9.142.56	attack	175.9.142.56 was recorded 5 times by 3 hosts attempting to connect to the following ports: 135,1433. Incident counter (4h, 24h, all-time): 5, 7, 7	2019-11-14 16:09:06
149.129.235.163	attackbotsspam	Nov 14 08:50:57 cp sshd[12732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.129.235.163	2019-11-14 16:43:33
103.87.59.134	attackbotsspam	" "	2019-11-14 16:24:50

Recently Reported IPs

135.93.249.200	62.234.65.92	20.220.90.51	126.179.93.9
45.10.74.64	202.137.134.12	171.35.162.85	95.9.207.130
187.173.147.92	182.234.89.109	157.245.104.139	57.181.237.247
69.184.110.105	78.186.160.14	14.246.83.105	213.197.200.36
136.103.23.216	46.177.100.73	187.22.41.209	172.219.134.229