54.152.185.113

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.152.185.113
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12228
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;54.152.185.113.			IN	A

;; AUTHORITY SECTION:
.			197	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091402 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 15 13:02:47 CST 2022
;; MSG SIZE  rcvd: 107

Host info

113.185.152.54.in-addr.arpa domain name pointer ec2-54-152-185-113.compute-1.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
113.185.152.54.in-addr.arpa	name = ec2-54-152-185-113.compute-1.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
54.38.139.210	attack	Dec 21 17:54:29 lnxweb62 sshd[32127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.139.210	2019-12-22 02:23:39
89.248.168.202	attack	ET DROP Dshield Block Listed Source group 1 - port: 3216 proto: TCP cat: Misc Attack	2019-12-22 02:18:29
142.4.22.236	attack	142.4.22.236 - - \[21/Dec/2019:15:52:57 +0100\] "POST /wp-login.php HTTP/1.0" 200 6640 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 142.4.22.236 - - \[21/Dec/2019:15:53:07 +0100\] "POST /wp-login.php HTTP/1.0" 200 6453 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 142.4.22.236 - - \[21/Dec/2019:15:53:10 +0100\] "POST /wp-login.php HTTP/1.0" 200 6453 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-12-22 02:10:09
142.93.218.11	attack	Dec 21 08:16:06 web1 sshd\[28978\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.218.11 user=root Dec 21 08:16:08 web1 sshd\[28978\]: Failed password for root from 142.93.218.11 port 52340 ssh2 Dec 21 08:23:31 web1 sshd\[29716\]: Invalid user named from 142.93.218.11 Dec 21 08:23:31 web1 sshd\[29716\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.218.11 Dec 21 08:23:33 web1 sshd\[29716\]: Failed password for invalid user named from 142.93.218.11 port 56308 ssh2	2019-12-22 02:38:07
36.11.86.36	attack	Dec 21 16:52:18 server2 sshd\[6037\]: User root from kd036011086036.au-net.ne.jp not allowed because not listed in AllowUsers Dec 21 16:52:24 server2 sshd\[6044\]: User root from kd036011086036.au-net.ne.jp not allowed because not listed in AllowUsers Dec 21 16:52:30 server2 sshd\[6046\]: User root from kd036011086036.au-net.ne.jp not allowed because not listed in AllowUsers Dec 21 16:52:38 server2 sshd\[6048\]: User root from kd036011086036.au-net.ne.jp not allowed because not listed in AllowUsers Dec 21 16:52:48 server2 sshd\[6050\]: Invalid user admin from 36.11.86.36 Dec 21 16:52:54 server2 sshd\[6052\]: Invalid user admin from 36.11.86.36	2019-12-22 02:25:01
195.209.127.200	attackbots	[portscan] Port scan	2019-12-22 01:54:30
216.198.66.21	attack	[ 🇺🇸 ] From return@adbees.com.br Sat Dec 21 06:52:52 2019 Received: from vsef-1.adbees.com.br ([216.198.66.21]:40697)	2019-12-22 02:27:20
5.39.74.233	attackbots	WordPress login Brute force / Web App Attack on client site.	2019-12-22 02:31:31
147.83.192.152	attackbotsspam	Dec 21 15:37:15 localhost sshd\[122071\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.83.192.152 user=root Dec 21 15:37:16 localhost sshd\[122071\]: Failed password for root from 147.83.192.152 port 49960 ssh2 Dec 21 15:43:36 localhost sshd\[122277\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.83.192.152 user=root Dec 21 15:43:38 localhost sshd\[122277\]: Failed password for root from 147.83.192.152 port 57462 ssh2 Dec 21 15:49:55 localhost sshd\[122473\]: Invalid user gdm from 147.83.192.152 port 36724 ...	2019-12-22 02:00:47
117.247.152.60	attackbots	Dec 21 05:06:55 fwweb01 sshd[7226]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.247.152.60 user=r.r Dec 21 05:06:57 fwweb01 sshd[7226]: Failed password for r.r from 117.247.152.60 port 50166 ssh2 Dec 21 05:06:57 fwweb01 sshd[7226]: Received disconnect from 117.247.152.60: 11: Bye Bye [preauth] Dec 21 05:11:42 fwweb01 sshd[7419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.247.152.60 user=r.r Dec 21 05:11:44 fwweb01 sshd[7419]: Failed password for r.r from 117.247.152.60 port 42900 ssh2 Dec 21 05:11:44 fwweb01 sshd[7419]: Received disconnect from 117.247.152.60: 11: Bye Bye [preauth] Dec 21 05:16:26 fwweb01 sshd[7650]: Invalid user deaundra from 117.247.152.60 Dec 21 05:16:26 fwweb01 sshd[7650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.247.152.60 Dec 21 05:16:28 fwweb01 sshd[7650]: Failed password for invalid user deaundra ........ -------------------------------	2019-12-22 02:33:26
164.163.99.10	attack	Dec 21 15:53:21 MK-Soft-Root2 sshd[970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.163.99.10 Dec 21 15:53:23 MK-Soft-Root2 sshd[970]: Failed password for invalid user ts3bot from 164.163.99.10 port 53846 ssh2 ...	2019-12-22 02:03:15
125.72.232.51	attackspam	SASL broute force	2019-12-22 02:31:06
113.203.233.65	attackbots	Unauthorized connection attempt detected from IP address 113.203.233.65 to port 445	2019-12-22 01:55:19
109.202.0.14	attackbots	Dec 21 18:56:32 eventyay sshd[13888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.202.0.14 Dec 21 18:56:34 eventyay sshd[13888]: Failed password for invalid user webmaster from 109.202.0.14 port 51294 ssh2 Dec 21 19:04:13 eventyay sshd[14098]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.202.0.14 ...	2019-12-22 02:09:05
89.111.238.57	attackbotsspam	Dec 21 19:18:22 microserver sshd[12272]: Invalid user guest from 89.111.238.57 port 45762 Dec 21 19:18:22 microserver sshd[12272]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.111.238.57 Dec 21 19:18:24 microserver sshd[12272]: Failed password for invalid user guest from 89.111.238.57 port 45762 ssh2 Dec 21 19:23:42 microserver sshd[13079]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.111.238.57 user=root Dec 21 19:23:44 microserver sshd[13079]: Failed password for root from 89.111.238.57 port 51002 ssh2 Dec 21 19:35:01 microserver sshd[14703]: Invalid user ftpuser from 89.111.238.57 port 33242 Dec 21 19:35:01 microserver sshd[14703]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.111.238.57 Dec 21 19:35:04 microserver sshd[14703]: Failed password for invalid user ftpuser from 89.111.238.57 port 33242 ssh2 Dec 21 19:40:24 microserver sshd[15939]: Invalid user squanna from 89	2019-12-22 01:54:42

Recently Reported IPs

49.238.169.108	8.136.29.127	112.16.185.112	5.128.176.16
118.250.104.136	14.177.246.19	106.10.31.128	1.116.162.15
192.169.82.134	159.192.44.65	34.74.43.165	54.191.200.102
41.214.134.204	172.245.64.215	85.24.216.41	161.97.117.21
186.195.15.122	45.87.249.241	31.223.146.213	120.236.14.205