Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Amazon Technologies Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:
Type Details Datetime
attackspam
by Amazon Technologies Inc.
2019-09-16 07:33:33
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.90.44.173
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41998
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.90.44.173.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091501 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Sep 16 07:33:27 CST 2019
;; MSG SIZE  rcvd: 116
Host info
173.44.90.52.in-addr.arpa domain name pointer ec2-52-90-44-173.compute-1.amazonaws.com.
Nslookup info:
Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
173.44.90.52.in-addr.arpa	name = ec2-52-90-44-173.compute-1.amazonaws.com.

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
45.149.79.218 attackspambots
45.149.79.218 - - [09/Aug/2020:14:23:18 +0200] "GET /wp-login.php HTTP/1.1" 200 5990 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
45.149.79.218 - - [09/Aug/2020:14:23:19 +0200] "POST /wp-login.php HTTP/1.1" 200 6220 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
45.149.79.218 - - [09/Aug/2020:14:23:20 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-08-10 00:47:17
218.88.84.35 attack
3389BruteforceStormFW21
2020-08-10 01:09:21
113.170.96.68 attack
$f2bV_matches
2020-08-10 00:54:27
212.64.3.40 attackbotsspam
SSH Brute Force
2020-08-10 00:56:20
145.239.85.21 attack
Aug  9 16:40:25 abendstille sshd\[3210\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.85.21  user=root
Aug  9 16:40:26 abendstille sshd\[3210\]: Failed password for root from 145.239.85.21 port 40855 ssh2
Aug  9 16:44:30 abendstille sshd\[6942\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.85.21  user=root
Aug  9 16:44:32 abendstille sshd\[6942\]: Failed password for root from 145.239.85.21 port 45442 ssh2
Aug  9 16:48:35 abendstille sshd\[10878\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.85.21  user=root
...
2020-08-10 00:44:49
87.246.7.140 attack
Aug  9 14:09:17 srv1 postfix/smtpd[6220]: warning: unknown[87.246.7.140]: SASL LOGIN authentication failed: authentication failure
Aug  9 14:09:32 srv1 postfix/smtpd[6220]: warning: unknown[87.246.7.140]: SASL LOGIN authentication failed: authentication failure
Aug  9 14:09:39 srv1 postfix/smtpd[6220]: warning: unknown[87.246.7.140]: SASL LOGIN authentication failed: authentication failure
Aug  9 14:09:46 srv1 postfix/smtpd[6220]: warning: unknown[87.246.7.140]: SASL LOGIN authentication failed: authentication failure
Aug  9 14:09:50 srv1 postfix/smtpd[6220]: warning: unknown[87.246.7.140]: SASL LOGIN authentication failed: authentication failure
...
2020-08-10 00:57:17
141.98.9.157 attackbots
Aug  9 13:32:59 firewall sshd[32058]: Invalid user admin from 141.98.9.157
Aug  9 13:33:02 firewall sshd[32058]: Failed password for invalid user admin from 141.98.9.157 port 36845 ssh2
Aug  9 13:33:32 firewall sshd[32089]: Invalid user test from 141.98.9.157
...
2020-08-10 01:03:52
129.211.36.4 attackspambots
Aug  9 11:04:46 logopedia-1vcpu-1gb-nyc1-01 sshd[256908]: Failed password for root from 129.211.36.4 port 56584 ssh2
...
2020-08-10 01:12:09
212.102.35.104 attack
Fail2Ban Ban Triggered
2020-08-10 01:07:03
51.158.26.188 attackbotsspam
51.158.26.188 - - [09/Aug/2020:17:28:49 +0200] "GET /wp-login.php HTTP/1.1" 200 5738 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
51.158.26.188 - - [09/Aug/2020:17:28:51 +0200] "POST /wp-login.php HTTP/1.1" 200 5989 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
51.158.26.188 - - [09/Aug/2020:17:28:52 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-08-10 00:41:59
45.141.84.162 attackbots
Unauthorized connection attempt detected from IP address 45.141.84.162 to port 4001 [T]
2020-08-10 00:58:47
59.127.95.214 attack
[N10.H1.VM1] Port Scanner Detected Blocked by UFW
2020-08-10 00:58:16
167.172.207.139 attack
Aug  9 18:00:39 ns382633 sshd\[20107\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.207.139  user=root
Aug  9 18:00:40 ns382633 sshd\[20107\]: Failed password for root from 167.172.207.139 port 59248 ssh2
Aug  9 18:30:27 ns382633 sshd\[25665\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.207.139  user=root
Aug  9 18:30:29 ns382633 sshd\[25665\]: Failed password for root from 167.172.207.139 port 36158 ssh2
Aug  9 18:32:05 ns382633 sshd\[25981\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.207.139  user=root
2020-08-10 01:11:19
118.165.155.109 attack
firewall-block, port(s): 23/tcp
2020-08-10 00:37:56
179.27.60.34 attackbotsspam
2020-08-09T23:31:35.468960billing sshd[11178]: Failed password for root from 179.27.60.34 port 59722 ssh2
2020-08-09T23:36:29.776578billing sshd[22365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=r179-27-60-34.static.adinet.com.uy  user=root
2020-08-09T23:36:32.311032billing sshd[22365]: Failed password for root from 179.27.60.34 port 21992 ssh2
...
2020-08-10 00:45:50

Recently Reported IPs

135.93.249.200 62.234.65.92 20.220.90.51 126.179.93.9
45.10.74.64 202.137.134.12 171.35.162.85 95.9.207.130
187.173.147.92 182.234.89.109 157.245.104.139 57.181.237.247
69.184.110.105 78.186.160.14 14.246.83.105 213.197.200.36
136.103.23.216 46.177.100.73 187.22.41.209 172.219.134.229