54.193.122.40 - IPInfo

Basic Info

City: San Jose

Region: California

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: Amazon.com, Inc.

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
54.193.122.246	attack	SSH-bruteforce attempts	2019-12-27 07:56:21

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.193.122.40
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62406
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;54.193.122.40.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019042800 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 29 01:17:55 +08 2019
;; MSG SIZE  rcvd: 117

Host info

40.122.193.54.in-addr.arpa domain name pointer ec2-54-193-122-40.us-west-1.compute.amazonaws.com.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
40.122.193.54.in-addr.arpa	name = ec2-54-193-122-40.us-west-1.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.1.18.78	attack	Jun 24 23:16:30 vl01 sshd[25121]: Invalid user zhen from 218.1.18.78 Jun 24 23:16:30 vl01 sshd[25121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.1.18.78 Jun 24 23:16:32 vl01 sshd[25121]: Failed password for invalid user zhen from 218.1.18.78 port 10072 ssh2 Jun 24 23:16:32 vl01 sshd[25121]: Received disconnect from 218.1.18.78: 11: Bye Bye [preauth] Jun 24 23:25:31 vl01 sshd[26188]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.1.18.78 user=r.r Jun 24 23:25:33 vl01 sshd[26188]: Failed password for r.r from 218.1.18.78 port 41794 ssh2 Jun 24 23:25:33 vl01 sshd[26188]: Received disconnect from 218.1.18.78: 11: Bye Bye [preauth] Jun 24 23:26:14 vl01 sshd[26270]: Invalid user da from 218.1.18.78 Jun 24 23:26:14 vl01 sshd[26270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.1.18.78 Jun 24 23:26:16 vl01 sshd[26270]: Failed password fo........ -------------------------------	2019-06-25 18:21:22
103.125.190.110	attackspambots	>40 unauthorized SSH connections	2019-06-25 17:22:24
192.99.57.193	attack	Jun 25 10:55:08 XXX sshd[12292]: Invalid user jobs from 192.99.57.193 port 49636	2019-06-25 17:10:16
121.8.142.250	attackbotsspam	2019-06-25T08:58:50.764573scmdmz1 sshd\[15974\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.8.142.250 user=admin 2019-06-25T08:58:52.096892scmdmz1 sshd\[15974\]: Failed password for admin from 121.8.142.250 port 59956 ssh2 2019-06-25T09:00:37.999423scmdmz1 sshd\[16005\]: Invalid user cms from 121.8.142.250 port 48078 ...	2019-06-25 18:22:10
95.136.11.109	attackbotsspam	BadRequests	2019-06-25 17:32:03
75.44.245.48	attackbots	SS5,WP GET /wp-login.php	2019-06-25 17:05:41
35.233.104.145	attack	3389BruteforceFW21	2019-06-25 18:08:06
113.183.141.103	attack	Unauthorized connection attempt from IP address 113.183.141.103 on Port 445(SMB)	2019-06-25 17:18:32
180.97.80.55	attackbotsspam	Jun 25 10:01:43 server01 sshd\[12672\]: Invalid user fs5 from 180.97.80.55 Jun 25 10:01:43 server01 sshd\[12672\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.97.80.55 Jun 25 10:01:44 server01 sshd\[12672\]: Failed password for invalid user fs5 from 180.97.80.55 port 48050 ssh2 ...	2019-06-25 17:25:45
31.28.107.58	attack	Unauthorised access (Jun 25) SRC=31.28.107.58 LEN=44 TTL=246 ID=29801 TCP DPT=139 WINDOW=1024 SYN Unauthorised access (Jun 24) SRC=31.28.107.58 LEN=44 TTL=246 ID=64457 TCP DPT=139 WINDOW=1024 SYN	2019-06-25 17:06:35
103.133.111.73	attackspam	>30 unauthorized SSH connections	2019-06-25 17:19:56
190.12.178.212	attackspambots	Jun 25 11:45:16 ns37 sshd[6119]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.12.178.212 Jun 25 11:45:16 ns37 sshd[6119]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.12.178.212	2019-06-25 18:14:56
174.6.93.60	attack	$f2bV_matches	2019-06-25 17:38:44
52.224.143.24	attackspambots	Jun 25 03:02:04 localhost kernel: [12690317.898706] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=52.224.143.24 DST=[mungedIP2] LEN=68 TOS=0x00 PREC=0x00 TTL=244 ID=56540 PROTO=UDP SPT=30016 DPT=111 LEN=48 Jun 25 03:02:04 localhost kernel: [12690317.898739] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=52.224.143.24 DST=[mungedIP2] LEN=68 TOS=0x00 PREC=0x00 TTL=244 ID=56540 PROTO=UDP SPT=30016 DPT=111 LEN=48 Jun 25 03:02:05 localhost kernel: [12690318.297293] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=52.224.143.24 DST=[mungedIP2] LEN=68 TOS=0x00 PREC=0x00 TTL=244 ID=6616 PROTO=UDP SPT=30016 DPT=111 LEN=48 Jun 25 03:02:05 localhost kernel: [12690318.297326] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=52.224.143.24 DST=[mungedIP2] LEN=68 TOS=0x00 PREC=0x00 TTL=244 ID=6616 PROTO=UDP SPT=30016 DPT=111 LEN=48	2019-06-25 17:28:57
125.16.240.71	attackbotsspam	445/tcp 445/tcp 445/tcp... [2019-04-27/06-25]21pkt,1pt.(tcp)	2019-06-25 18:14:35

Recently Reported IPs

108.177.24.197	165.227.212.78	172.208.197.179	117.36.250.39
133.170.191.171	185.75.180.112	2601:901:4401:4b8a:7022:d0d4:6b0c:990b	5.190.20.217
46.160.110.146	223.111.139.203	14.153.233.213	155.122.49.122
186.206.158.204	172.217.46.103	112.78.40.218	124.239.181.36
49.3.172.165	83.167.68.166	125.27.163.44	180.76.50.6