54.149.89.75 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Amazon Technologies Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Automatic report - WordPress Brute Force	2020-03-18 04:20:09

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.149.89.75
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26790
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;54.149.89.75.			IN	A

;; AUTHORITY SECTION:
.			126	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031701 1800 900 604800 86400

;; Query time: 46 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 18 04:20:05 CST 2020
;; MSG SIZE  rcvd: 116

Host info

75.89.149.54.in-addr.arpa domain name pointer ec2-54-149-89-75.us-west-2.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
75.89.149.54.in-addr.arpa	name = ec2-54-149-89-75.us-west-2.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
81.22.45.148	attack	09/19/2019-14:58:50.089008 81.22.45.148 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 85	2019-09-20 03:31:00
151.80.75.125	attackbots	Sep 19 19:35:32 postfix/smtpd: warning: unknown[151.80.75.125]: SASL LOGIN authentication failed	2019-09-20 03:57:38
101.89.145.133	attackspam	Sep 19 19:27:31 ip-172-31-62-245 sshd\[8143\]: Invalid user gamer from 101.89.145.133\ Sep 19 19:27:33 ip-172-31-62-245 sshd\[8143\]: Failed password for invalid user gamer from 101.89.145.133 port 45114 ssh2\ Sep 19 19:31:43 ip-172-31-62-245 sshd\[8178\]: Invalid user user from 101.89.145.133\ Sep 19 19:31:45 ip-172-31-62-245 sshd\[8178\]: Failed password for invalid user user from 101.89.145.133 port 56054 ssh2\ Sep 19 19:35:54 ip-172-31-62-245 sshd\[8210\]: Invalid user tuser from 101.89.145.133\	2019-09-20 03:44:30
45.146.202.118	attack	2019-09-19T21:35:30.687548stark.klein-stark.info postfix/smtpd\[19814\]: NOQUEUE: reject: RCPT from woman.krcsf.com\[45.146.202.118\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\ ...	2019-09-20 03:58:08
222.186.175.8	attackspam	Sep 19 21:54:12 MK-Soft-Root1 sshd\[16913\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.8 user=root Sep 19 21:54:14 MK-Soft-Root1 sshd\[16913\]: Failed password for root from 222.186.175.8 port 10984 ssh2 Sep 19 21:54:18 MK-Soft-Root1 sshd\[16913\]: Failed password for root from 222.186.175.8 port 10984 ssh2 ...	2019-09-20 03:58:40
165.227.2.127	attack	Sep 19 15:31:57 debian sshd\[29552\]: Invalid user romualdo from 165.227.2.127 port 37786 Sep 19 15:31:57 debian sshd\[29552\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.2.127 Sep 19 15:31:59 debian sshd\[29552\]: Failed password for invalid user romualdo from 165.227.2.127 port 37786 ssh2 ...	2019-09-20 03:35:33
49.231.68.58	attackspam	Sep 19 21:35:42 vps01 sshd[8549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.231.68.58 Sep 19 21:35:44 vps01 sshd[8549]: Failed password for invalid user mybotuser from 49.231.68.58 port 47208 ssh2	2019-09-20 03:50:13
82.129.197.6	attackspam	Sep 19 19:30:39 localhost sshd\[125647\]: Invalid user abbai from 82.129.197.6 port 59974 Sep 19 19:30:39 localhost sshd\[125647\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.129.197.6 Sep 19 19:30:41 localhost sshd\[125647\]: Failed password for invalid user abbai from 82.129.197.6 port 59974 ssh2 Sep 19 19:35:48 localhost sshd\[125845\]: Invalid user ab from 82.129.197.6 port 46780 Sep 19 19:35:48 localhost sshd\[125845\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.129.197.6 ...	2019-09-20 03:47:17
221.179.103.2	attackbots	2019-09-19T19:36:01.675888abusebot-3.cloudsearch.cf sshd\[19441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.179.103.2 user=root	2019-09-20 03:36:09
192.42.116.15	attack	Sep 19 08:09:00 eddieflores sshd\[1223\]: Invalid user aaron from 192.42.116.15 Sep 19 08:09:00 eddieflores sshd\[1223\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=this-is-a-tor-exit-node-hviv115.hviv.nl Sep 19 08:09:02 eddieflores sshd\[1223\]: Failed password for invalid user aaron from 192.42.116.15 port 34850 ssh2 Sep 19 08:09:04 eddieflores sshd\[1223\]: Failed password for invalid user aaron from 192.42.116.15 port 34850 ssh2 Sep 19 08:09:07 eddieflores sshd\[1223\]: Failed password for invalid user aaron from 192.42.116.15 port 34850 ssh2	2019-09-20 03:30:27
1.180.70.178	attackbots	Bruteforce from 1.180.70.178	2019-09-20 03:53:01
182.61.162.54	attackspam	2019-09-19T15:26:54.1414041495-001 sshd\[54084\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.162.54 2019-09-19T15:26:56.4399521495-001 sshd\[54084\]: Failed password for invalid user dougg from 182.61.162.54 port 38848 ssh2 2019-09-19T15:43:15.4096691495-001 sshd\[55419\]: Invalid user behrman from 182.61.162.54 port 53256 2019-09-19T15:43:15.4188161495-001 sshd\[55419\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.162.54 2019-09-19T15:43:16.7238761495-001 sshd\[55419\]: Failed password for invalid user behrman from 182.61.162.54 port 53256 ssh2 2019-09-19T15:44:28.5598061495-001 sshd\[55467\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.162.54 user=root ...	2019-09-20 03:53:20
167.99.71.156	attackbotsspam	Sep 19 18:05:41 reporting sshd[28419]: reveeclipse mapping checking getaddrinfo for preciousreiko26.8.9-singapore-1 [167.99.71.156] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 19 18:05:41 reporting sshd[28419]: Invalid user ftp from 167.99.71.156 Sep 19 18:05:41 reporting sshd[28419]: Failed password for invalid user ftp from 167.99.71.156 port 35976 ssh2 Sep 19 18:24:05 reporting sshd[31556]: reveeclipse mapping checking getaddrinfo for preciousreiko26.8.9-singapore-1 [167.99.71.156] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 19 18:24:05 reporting sshd[31556]: Invalid user snoopy from 167.99.71.156 Sep 19 18:24:05 reporting sshd[31556]: Failed password for invalid user snoopy from 167.99.71.156 port 41880 ssh2 Sep 19 18:28:47 reporting sshd[32427]: reveeclipse mapping checking getaddrinfo for preciousreiko26.8.9-singapore-1 [167.99.71.156] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 19 18:28:47 reporting sshd[32427]: Invalid user admin from 167.99.71.156 Sep 19 18:28:48 reporting........ -------------------------------	2019-09-20 04:00:54
66.69.124.142	attack	Spam	2019-09-20 03:30:00
121.33.247.107	attackbotsspam	Sep 19 15:35:29 web1 postfix/smtpd[11478]: warning: unknown[121.33.247.107]: SASL LOGIN authentication failed: authentication failure ...	2019-09-20 03:55:58

Recently Reported IPs

187.57.51.247	202.184.177.53	95.165.219.222	227.234.252.209
253.168.170.160	98.110.124.115	7.24.10.235	104.139.125.169
151.2.146.157	222.186.133.174	145.34.168.235	51.226.246.152
79.197.225.92	144.235.255.101	189.68.18.56	54.92.197.41
42.109.82.196	28.80.248.87	29.204.92.134	162.243.132.116