54.152.0.45 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Amazon Technologies Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	[Thu Aug 06 23:26:33 2020] - Syn Flood From IP: 54.152.0.45 Port: 51968	2020-08-07 15:06:23

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.152.0.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39655
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;54.152.0.45.			IN	A

;; AUTHORITY SECTION:
.			583	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020080700 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Aug 07 15:06:17 CST 2020
;; MSG SIZE  rcvd: 115

Host info

45.0.152.54.in-addr.arpa domain name pointer ec2-54-152-0-45.compute-1.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
45.0.152.54.in-addr.arpa	name = ec2-54-152-0-45.compute-1.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.156.238.155	attack	2020-08-01 11:08:57 server sshd[68312]: Failed password for invalid user root from 190.156.238.155 port 56844 ssh2	2020-08-03 07:44:53
167.71.201.137	attackbots	Aug 3 01:26:57 sshd\[6022\]: User root from 167.71.201.137 not allowed because not listed in AllowUsersAug 3 01:26:59 sshd\[6022\]: Failed password for invalid user root from 167.71.201.137 port 50284 ssh2 ...	2020-08-03 07:54:14
218.92.0.248	attackbotsspam	sshd jail - ssh hack attempt	2020-08-03 07:30:23
145.239.85.21	attack	Aug 2 18:39:57 r.ca sshd[32093]: Failed password for root from 145.239.85.21 port 51467 ssh2	2020-08-03 07:42:57
216.83.45.154	attackbotsspam	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-08-02T20:35:43Z and 2020-08-02T20:45:30Z	2020-08-03 07:29:28
121.186.122.216	attackbotsspam	frenzy	2020-08-03 07:41:26
190.195.132.175	attack	Fail2Ban - HTTP Auth Bruteforce Attempt	2020-08-03 07:21:41
192.144.175.40	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-08-03 07:27:53
51.222.48.59	attack	Aug 2 22:20:29 PorscheCustomer sshd[797]: Failed password for root from 51.222.48.59 port 45504 ssh2 Aug 2 22:21:14 PorscheCustomer sshd[814]: Failed password for root from 51.222.48.59 port 56584 ssh2 ...	2020-08-03 07:50:36
118.24.102.148	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-08-03 07:37:26
177.23.184.99	attackspam	$f2bV_matches	2020-08-03 07:40:22
177.152.124.21	attackbots	Failed password for root from 177.152.124.21 port 38830 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.152.124.21 user=root Failed password for root from 177.152.124.21 port 43788 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.152.124.21 user=root Failed password for root from 177.152.124.21 port 48798 ssh2	2020-08-03 07:48:35
178.255.96.70	attackbotsspam	DATE:2020-08-02 22:22:26, IP:178.255.96.70, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc)	2020-08-03 07:27:15
116.92.213.114	attackspambots	Aug 3 04:31:02 gw1 sshd[24976]: Failed password for root from 116.92.213.114 port 58492 ssh2 ...	2020-08-03 07:49:04
168.245.171.102	attackbots	2020-08-02T23:05:39.558512mail.cevreciler.com sshd[13226]: Invalid user admin from 168.245.171.102 port 33486 2020-08-02T23:05:39.675695mail.cevreciler.com sshd[13226]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.245.171.102 2020-08-02T23:05:41.922923mail.cevreciler.com sshd[13226]: Failed password for invalid user admin from 168.245.171.102 port 33486 ssh2 2020-08-02T23:05:43.122257mail.cevreciler.com sshd[13228]: Invalid user admin from 168.245.171.102 port 33562 2020-08-02T23:05:43.235611mail.cevreciler.com sshd[13228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.245.171.102 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=168.245.171.102	2020-08-03 07:32:56

Recently Reported IPs

85.96.56.232	117.40.226.243	182.207.182.149	244.97.109.90
109.148.26.44	49.83.139.162	45.155.124.120	187.177.135.192
190.106.130.20	109.116.109.54	103.207.39.19	58.216.12.251
172.69.33.173	45.79.143.33	222.184.112.3	22.81.126.121
82.165.118.249	209.230.69.171	110.108.130.77	14.207.204.203