54.152.0.45 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Amazon Technologies Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	[Thu Aug 06 23:26:33 2020] - Syn Flood From IP: 54.152.0.45 Port: 51968	2020-08-07 15:06:23

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.152.0.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39655
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;54.152.0.45.			IN	A

;; AUTHORITY SECTION:
.			583	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020080700 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Aug 07 15:06:17 CST 2020
;; MSG SIZE  rcvd: 115

Host info

45.0.152.54.in-addr.arpa domain name pointer ec2-54-152-0-45.compute-1.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
45.0.152.54.in-addr.arpa	name = ec2-54-152-0-45.compute-1.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.99.99.10	attackbots	Feb 17 14:34:53 lnxmysql61 sshd[14084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.99.10	2020-02-18 03:10:34
37.114.183.179	attack	Unauthorized IMAP connection attempt	2020-02-18 02:46:22
37.187.117.187	attackspam	Feb 17 19:55:17 pornomens sshd\[24520\]: Invalid user debian from 37.187.117.187 port 44056 Feb 17 19:55:17 pornomens sshd\[24520\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.117.187 Feb 17 19:55:20 pornomens sshd\[24520\]: Failed password for invalid user debian from 37.187.117.187 port 44056 ssh2 ...	2020-02-18 03:11:41
123.20.122.100	attackspambots	Email server abuse	2020-02-18 03:13:39
151.80.173.36	attackspambots	Feb 17 13:35:09 marvibiene sshd[27992]: Invalid user teamspeak3 from 151.80.173.36 port 47628 Feb 17 13:35:09 marvibiene sshd[27992]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.173.36 Feb 17 13:35:09 marvibiene sshd[27992]: Invalid user teamspeak3 from 151.80.173.36 port 47628 Feb 17 13:35:10 marvibiene sshd[27992]: Failed password for invalid user teamspeak3 from 151.80.173.36 port 47628 ssh2 ...	2020-02-18 02:52:03
183.129.141.30	attack	(sshd) Failed SSH login from 183.129.141.30 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Feb 17 19:21:59 elude sshd[8079]: Invalid user jayant from 183.129.141.30 port 52124 Feb 17 19:22:00 elude sshd[8079]: Failed password for invalid user jayant from 183.129.141.30 port 52124 ssh2 Feb 17 19:31:47 elude sshd[8611]: Invalid user amdsa from 183.129.141.30 port 50126 Feb 17 19:31:49 elude sshd[8611]: Failed password for invalid user amdsa from 183.129.141.30 port 50126 ssh2 Feb 17 19:34:47 elude sshd[8817]: Invalid user celery from 183.129.141.30 port 48420	2020-02-18 03:13:06
198.211.110.133	attackbotsspam	Feb 17 04:24:20 web1 sshd\[15408\]: Invalid user geeko from 198.211.110.133 Feb 17 04:24:20 web1 sshd\[15408\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.211.110.133 Feb 17 04:24:22 web1 sshd\[15408\]: Failed password for invalid user geeko from 198.211.110.133 port 38182 ssh2 Feb 17 04:26:00 web1 sshd\[15558\]: Invalid user upload from 198.211.110.133 Feb 17 04:26:00 web1 sshd\[15558\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.211.110.133	2020-02-18 03:21:11
79.9.2.111	attack	Unauthorized connection attempt detected from IP address 79.9.2.111 to port 445	2020-02-18 02:57:18
177.159.151.212	attack	Port probing on unauthorized port 445	2020-02-18 03:02:42
45.141.84.38	attack	Feb 17 16:56:31 host3 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=45.141.84.38, lip=207.180.241.50, session= Feb 17 17:13:33 host3 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=45.141.84.38, lip=207.180.241.50, session=<9GcW1seenpwtjVQm> Feb 17 17:37:22 host3 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=45.141.84.38, lip=207.180.241.50, session= Feb 17 18:09:07 host3 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=45.141.84.38, lip=207.180.241.50, session= Feb 17 18:33:20 host3 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=45.141.84.38, lip=207.180.241.50, session=	2020-02-18 02:49:15
213.254.137.227	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-18 03:08:30
122.116.174.16	attackbotsspam	Fail2Ban Ban Triggered	2020-02-18 03:23:11
45.87.255.72	spamattack	Will try to compromise your steam account. Be weary.	2020-02-18 02:57:16
114.143.73.155	attackbotsspam	2020-02-17T18:25:49.035840abusebot-7.cloudsearch.cf sshd[5173]: Invalid user eula from 114.143.73.155 port 38858 2020-02-17T18:25:49.041721abusebot-7.cloudsearch.cf sshd[5173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.143.73.155 2020-02-17T18:25:49.035840abusebot-7.cloudsearch.cf sshd[5173]: Invalid user eula from 114.143.73.155 port 38858 2020-02-17T18:25:51.361851abusebot-7.cloudsearch.cf sshd[5173]: Failed password for invalid user eula from 114.143.73.155 port 38858 ssh2 2020-02-17T18:34:06.307792abusebot-7.cloudsearch.cf sshd[5634]: Invalid user plcmspip from 114.143.73.155 port 40096 2020-02-17T18:34:06.311815abusebot-7.cloudsearch.cf sshd[5634]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.143.73.155 2020-02-17T18:34:06.307792abusebot-7.cloudsearch.cf sshd[5634]: Invalid user plcmspip from 114.143.73.155 port 40096 2020-02-17T18:34:07.859336abusebot-7.cloudsearch.cf sshd[5634]: Fail ...	2020-02-18 03:19:59
104.236.124.45	attackspambots	Feb 17 15:19:04 srv-ubuntu-dev3 sshd[30039]: Invalid user teste from 104.236.124.45 Feb 17 15:19:04 srv-ubuntu-dev3 sshd[30039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.124.45 Feb 17 15:19:04 srv-ubuntu-dev3 sshd[30039]: Invalid user teste from 104.236.124.45 Feb 17 15:19:06 srv-ubuntu-dev3 sshd[30039]: Failed password for invalid user teste from 104.236.124.45 port 44318 ssh2 Feb 17 15:22:24 srv-ubuntu-dev3 sshd[30334]: Invalid user ubuntu2 from 104.236.124.45 Feb 17 15:22:24 srv-ubuntu-dev3 sshd[30334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.124.45 Feb 17 15:22:24 srv-ubuntu-dev3 sshd[30334]: Invalid user ubuntu2 from 104.236.124.45 Feb 17 15:22:26 srv-ubuntu-dev3 sshd[30334]: Failed password for invalid user ubuntu2 from 104.236.124.45 port 59153 ssh2 Feb 17 15:25:48 srv-ubuntu-dev3 sshd[30608]: Invalid user front from 104.236.124.45 ...	2020-02-18 02:50:06

Recently Reported IPs

85.96.56.232	117.40.226.243	182.207.182.149	244.97.109.90
109.148.26.44	49.83.139.162	45.155.124.120	187.177.135.192
190.106.130.20	109.116.109.54	103.207.39.19	58.216.12.251
172.69.33.173	45.79.143.33	222.184.112.3	22.81.126.121
82.165.118.249	209.230.69.171	110.108.130.77	14.207.204.203