Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: Boardman

Region: Oregon

Country: United States

Internet Service Provider: Amazon Technologies Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:
Type Details Datetime
attackspam
11/10/2019-07:59:07.249201 54.149.121.232 Protocol: 6 SURICATA TLS invalid record/traffic
2019-11-10 19:57:50
attack
11/09/2019-18:39:02.172815 54.149.121.232 Protocol: 6 SURICATA TLS invalid record/traffic
2019-11-10 01:49:13
attack
11/09/2019-16:23:02.018782 54.149.121.232 Protocol: 6 SURICATA TLS invalid record/traffic
2019-11-09 23:28:26
attackspambots
11/09/2019-10:18:02.453513 54.149.121.232 Protocol: 6 SURICATA TLS invalid record/traffic
2019-11-09 17:19:08
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.149.121.232
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34637
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;54.149.121.232.			IN	A

;; AUTHORITY SECTION:
.			470	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110900 1800 900 604800 86400

;; Query time: 111 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 09 17:19:04 CST 2019
;; MSG SIZE  rcvd: 118
Host info
232.121.149.54.in-addr.arpa domain name pointer ec2-54-149-121-232.us-west-2.compute.amazonaws.com.
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
232.121.149.54.in-addr.arpa	name = ec2-54-149-121-232.us-west-2.compute.amazonaws.com.

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
178.128.223.243 attackspam
2019-12-08T16:39:43.771832abusebot-8.cloudsearch.cf sshd\[4675\]: Invalid user rootme from 178.128.223.243 port 39232
2019-12-09 00:43:58
185.36.81.238 attackspambots
2019-12-08T16:06:48.697803MailD postfix/smtpd[21622]: warning: unknown[185.36.81.238]: SASL LOGIN authentication failed: authentication failure
2019-12-08T17:02:31.004706MailD postfix/smtpd[26213]: warning: unknown[185.36.81.238]: SASL LOGIN authentication failed: authentication failure
2019-12-08T17:59:40.066011MailD postfix/smtpd[29965]: warning: unknown[185.36.81.238]: SASL LOGIN authentication failed: authentication failure
2019-12-09 01:01:13
92.222.92.114 attackbots
Dec  8 16:20:49 work-partkepr sshd\[16825\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.92.114  user=root
Dec  8 16:20:50 work-partkepr sshd\[16825\]: Failed password for root from 92.222.92.114 port 57972 ssh2
...
2019-12-09 00:23:29
190.109.64.92 attackbotsspam
Automatic report - Port Scan Attack
2019-12-09 00:44:13
188.166.34.129 attackspambots
Dec  8 11:29:03 plusreed sshd[5486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.34.129  user=root
Dec  8 11:29:05 plusreed sshd[5486]: Failed password for root from 188.166.34.129 port 49902 ssh2
...
2019-12-09 00:43:27
173.160.41.137 attackbotsspam
Dec  8 17:22:49 markkoudstaal sshd[20815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.160.41.137
Dec  8 17:22:52 markkoudstaal sshd[20815]: Failed password for invalid user admin from 173.160.41.137 port 52410 ssh2
Dec  8 17:28:46 markkoudstaal sshd[21480]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.160.41.137
2019-12-09 00:41:12
116.236.147.38 attackspambots
Dec  8 16:18:30 game-panel sshd[28458]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.236.147.38
Dec  8 16:18:32 game-panel sshd[28458]: Failed password for invalid user ubnt from 116.236.147.38 port 35402 ssh2
Dec  8 16:24:11 game-panel sshd[28721]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.236.147.38
2019-12-09 00:25:58
165.227.39.133 attackbotsspam
2019-12-08T16:35:45.549174shield sshd\[26460\]: Invalid user geannopoulos from 165.227.39.133 port 48878
2019-12-08T16:35:45.553769shield sshd\[26460\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.39.133
2019-12-08T16:35:47.647946shield sshd\[26460\]: Failed password for invalid user geannopoulos from 165.227.39.133 port 48878 ssh2
2019-12-08T16:41:11.262030shield sshd\[28383\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.39.133  user=root
2019-12-08T16:41:13.777634shield sshd\[28383\]: Failed password for root from 165.227.39.133 port 34396 ssh2
2019-12-09 00:41:26
167.114.3.105 attackspambots
Dec  8 11:40:31 TORMINT sshd\[11200\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.3.105  user=root
Dec  8 11:40:33 TORMINT sshd\[11200\]: Failed password for root from 167.114.3.105 port 44438 ssh2
Dec  8 11:46:07 TORMINT sshd\[11612\]: Invalid user test from 167.114.3.105
Dec  8 11:46:07 TORMINT sshd\[11612\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.3.105
...
2019-12-09 00:53:01
222.186.175.161 attackspambots
SSH brutforce
2019-12-09 00:34:23
152.32.130.93 attackbotsspam
Dec  8 17:37:58 loxhost sshd\[28609\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.32.130.93  user=root
Dec  8 17:38:00 loxhost sshd\[28609\]: Failed password for root from 152.32.130.93 port 60950 ssh2
Dec  8 17:43:49 loxhost sshd\[28874\]: Invalid user tanioka from 152.32.130.93 port 42866
Dec  8 17:43:49 loxhost sshd\[28874\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.32.130.93
Dec  8 17:43:52 loxhost sshd\[28874\]: Failed password for invalid user tanioka from 152.32.130.93 port 42866 ssh2
...
2019-12-09 00:45:33
49.235.38.225 attack
Dec  8 16:30:45 icinga sshd[15269]: Failed password for root from 49.235.38.225 port 54908 ssh2
...
2019-12-09 00:26:43
50.227.212.101 attackspam
Dec  8 17:15:12 loxhost sshd\[27661\]: Invalid user server from 50.227.212.101 port 33530
Dec  8 17:15:12 loxhost sshd\[27661\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.227.212.101
Dec  8 17:15:15 loxhost sshd\[27661\]: Failed password for invalid user server from 50.227.212.101 port 33530 ssh2
Dec  8 17:22:44 loxhost sshd\[27988\]: Invalid user temp from 50.227.212.101 port 43436
Dec  8 17:22:44 loxhost sshd\[27988\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.227.212.101
...
2019-12-09 00:24:02
151.106.0.206 attackspam
12/08/2019-18:00:38.498817 151.106.0.206 Protocol: 17 ET SCAN Sipvicious Scan
2019-12-09 01:01:57
132.148.141.147 attackbotsspam
Automatic report - XMLRPC Attack
2019-12-09 00:38:45

Recently Reported IPs

218.173.0.91 5.196.105.252 1.10.184.210 200.36.117.176
178.46.16.255 198.23.223.139 152.160.241.241 187.162.122.29
212.68.42.177 155.138.128.22 51.158.67.13 43.242.128.32
122.199.25.15 95.54.203.95 45.82.34.4 179.247.165.137
89.3.133.153 192.227.248.221 54.83.151.53 1.52.34.255