54.206.94.135 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Australia

Internet Service Provider: Amazon.com Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 54.206.94.135 to port 80 [T]	2020-02-01 18:02:39

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.206.94.135
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39303
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;54.206.94.135.			IN	A

;; AUTHORITY SECTION:
.			523	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020101 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 01 18:02:36 CST 2020
;; MSG SIZE  rcvd: 117

Host info

135.94.206.54.in-addr.arpa domain name pointer ec2-54-206-94-135.ap-southeast-2.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
135.94.206.54.in-addr.arpa	name = ec2-54-206-94-135.ap-southeast-2.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.215.80.110	attackbots	Automatic report - Banned IP Access	2020-02-17 15:10:00
45.188.64.250	attack	Automatic report - Banned IP Access	2020-02-17 14:39:32
222.186.30.35	attackspambots	Feb 17 07:19:46 h2177944 sshd\[23326\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.35 user=root Feb 17 07:19:48 h2177944 sshd\[23326\]: Failed password for root from 222.186.30.35 port 48373 ssh2 Feb 17 07:19:51 h2177944 sshd\[23326\]: Failed password for root from 222.186.30.35 port 48373 ssh2 Feb 17 07:19:53 h2177944 sshd\[23326\]: Failed password for root from 222.186.30.35 port 48373 ssh2 ...	2020-02-17 14:40:04
222.186.180.41	attackbotsspam	Feb 17 07:25:03 web1 sshd\[23661\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.41 user=root Feb 17 07:25:05 web1 sshd\[23661\]: Failed password for root from 222.186.180.41 port 21896 ssh2 Feb 17 07:25:09 web1 sshd\[23661\]: Failed password for root from 222.186.180.41 port 21896 ssh2 Feb 17 07:25:12 web1 sshd\[23661\]: Failed password for root from 222.186.180.41 port 21896 ssh2 Feb 17 07:25:15 web1 sshd\[23661\]: Failed password for root from 222.186.180.41 port 21896 ssh2	2020-02-17 14:45:10
66.133.129.79	attack	SSH login attempts.	2020-02-17 14:48:49
68.183.236.29	attackspambots	detected by Fail2Ban	2020-02-17 15:16:50
211.72.239.34	attackspambots	Feb 16 18:58:46 web1 sshd\[25343\]: Invalid user gehua from 211.72.239.34 Feb 16 18:58:46 web1 sshd\[25343\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.72.239.34 Feb 16 18:58:49 web1 sshd\[25343\]: Failed password for invalid user gehua from 211.72.239.34 port 57018 ssh2 Feb 16 19:02:44 web1 sshd\[25765\]: Invalid user areyes from 211.72.239.34 Feb 16 19:02:44 web1 sshd\[25765\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.72.239.34	2020-02-17 14:58:44
182.71.151.162	attackspam	Fail2Ban - HTTP Auth Bruteforce Attempt	2020-02-17 14:52:10
37.20.247.154	attackbotsspam	Automatic report - Port Scan Attack	2020-02-17 15:07:11
77.93.33.212	attack	SSH login attempts.	2020-02-17 14:52:39
196.218.93.213	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-17 15:17:27
61.222.56.80	attack	Feb 16 21:05:49 hpm sshd\[28032\]: Invalid user 1234 from 61.222.56.80 Feb 16 21:05:49 hpm sshd\[28032\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61-222-56-80.hinet-ip.hinet.net Feb 16 21:05:51 hpm sshd\[28032\]: Failed password for invalid user 1234 from 61.222.56.80 port 50254 ssh2 Feb 16 21:08:47 hpm sshd\[28434\]: Invalid user qwerty12 from 61.222.56.80 Feb 16 21:08:47 hpm sshd\[28434\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61-222-56-80.hinet-ip.hinet.net	2020-02-17 15:14:39
46.51.238.1	attack	SSH login attempts.	2020-02-17 14:58:13
116.109.159.151	attack	DATE:2020-02-17 05:58:47, IP:116.109.159.151, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2020-02-17 14:44:31
190.129.49.62	attackbotsspam	SSH login attempts.	2020-02-17 14:55:33

Recently Reported IPs

217.212.231.112	194.131.201.247	35.224.119.139	193.74.70.222
15.205.147.253	47.23.239.56	34.153.171.44	213.201.138.254
37.37.170.62	165.138.231.96	13.238.254.196	52.126.79.210
54.221.90.53	13.78.60.227	13.238.182.77	219.240.83.51
68.10.201.221	3.24.208.170	27.34.12.241	144.111.1.92