54.239.171.102

Basic Info

City: unknown

Region: unknown

Country: Poland

Internet Service Provider: Amazon.com Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Automatic report generated by Wazuh	2020-01-10 15:09:12

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.239.171.102
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44606
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;54.239.171.102.			IN	A

;; AUTHORITY SECTION:
.			574	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011000 1800 900 604800 86400

;; Query time: 139 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 10 15:09:09 CST 2020
;; MSG SIZE  rcvd: 118

Host info

102.171.239.54.in-addr.arpa domain name pointer server-54-239-171-102.waw50.r.cloudfront.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
102.171.239.54.in-addr.arpa	name = server-54-239-171-102.waw50.r.cloudfront.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
122.55.190.12	attackbots	SSH invalid-user multiple login try	2020-06-07 14:50:19
185.39.10.65	attackspambots	Port Scan detected from 185.39.10.65 (CH/Switzerland/-). 11 hits in the last 220 seconds	2020-06-07 15:14:18
49.233.204.37	attackbotsspam	Jun 7 08:51:47 srv-ubuntu-dev3 sshd[32729]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.204.37 user=root Jun 7 08:51:49 srv-ubuntu-dev3 sshd[32729]: Failed password for root from 49.233.204.37 port 39418 ssh2 Jun 7 08:53:06 srv-ubuntu-dev3 sshd[32924]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.204.37 user=root Jun 7 08:53:08 srv-ubuntu-dev3 sshd[32924]: Failed password for root from 49.233.204.37 port 52296 ssh2 Jun 7 08:55:40 srv-ubuntu-dev3 sshd[33298]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.204.37 user=root Jun 7 08:55:41 srv-ubuntu-dev3 sshd[33298]: Failed password for root from 49.233.204.37 port 49820 ssh2 ...	2020-06-07 15:05:54
106.13.233.4	attackbots	2020-06-07T09:08:10.642571+02:00 sshd[27080]: Failed password for root from 106.13.233.4 port 57056 ssh2	2020-06-07 15:25:55
123.17.2.136	attack	1591502055 - 06/07/2020 05:54:15 Host: 123.17.2.136/123.17.2.136 Port: 445 TCP Blocked	2020-06-07 15:14:38
148.251.70.179	attackbotsspam	20 attempts against mh-misbehave-ban on wood	2020-06-07 15:05:39
139.59.169.37	attackspambots	Jun 7 07:56:41 lukav-desktop sshd\[17836\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.169.37 user=root Jun 7 07:56:43 lukav-desktop sshd\[17836\]: Failed password for root from 139.59.169.37 port 39278 ssh2 Jun 7 08:00:23 lukav-desktop sshd\[17895\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.169.37 user=root Jun 7 08:00:26 lukav-desktop sshd\[17895\]: Failed password for root from 139.59.169.37 port 41832 ssh2 Jun 7 08:04:03 lukav-desktop sshd\[17934\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.169.37 user=root	2020-06-07 15:16:03
122.51.114.51	attackbots	Jun 7 07:59:10 vps687878 sshd\[3419\]: Failed password for root from 122.51.114.51 port 44046 ssh2 Jun 7 08:00:58 vps687878 sshd\[3748\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.114.51 user=root Jun 7 08:00:59 vps687878 sshd\[3748\]: Failed password for root from 122.51.114.51 port 35288 ssh2 Jun 7 08:02:47 vps687878 sshd\[3973\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.114.51 user=root Jun 7 08:02:49 vps687878 sshd\[3973\]: Failed password for root from 122.51.114.51 port 54766 ssh2 ...	2020-06-07 15:25:04
62.210.105.116	attack	Jun 7 07:55:54 [Censored Hostname] sshd[11953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.210.105.116 Jun 7 07:55:56 [Censored Hostname] sshd[11953]: Failed password for invalid user acer from 62.210.105.116 port 36266 ssh2[...]	2020-06-07 14:47:53
49.233.87.146	attack	Jun 7 08:35:53 Ubuntu-1404-trusty-64-minimal sshd\[17909\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.87.146 user=root Jun 7 08:35:55 Ubuntu-1404-trusty-64-minimal sshd\[17909\]: Failed password for root from 49.233.87.146 port 47643 ssh2 Jun 7 08:53:38 Ubuntu-1404-trusty-64-minimal sshd\[28099\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.87.146 user=root Jun 7 08:53:40 Ubuntu-1404-trusty-64-minimal sshd\[28099\]: Failed password for root from 49.233.87.146 port 36546 ssh2 Jun 7 08:56:25 Ubuntu-1404-trusty-64-minimal sshd\[29559\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.87.146 user=root	2020-06-07 15:03:38
115.231.221.129	attackbots	k+ssh-bruteforce	2020-06-07 14:51:11
49.233.182.205	attack	2020-06-07T03:46:42.412601abusebot-7.cloudsearch.cf sshd[27690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.182.205 user=root 2020-06-07T03:46:44.708086abusebot-7.cloudsearch.cf sshd[27690]: Failed password for root from 49.233.182.205 port 45122 ssh2 2020-06-07T03:49:26.194339abusebot-7.cloudsearch.cf sshd[27993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.182.205 user=root 2020-06-07T03:49:28.003356abusebot-7.cloudsearch.cf sshd[27993]: Failed password for root from 49.233.182.205 port 55154 ssh2 2020-06-07T03:52:13.824899abusebot-7.cloudsearch.cf sshd[28143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.182.205 user=root 2020-06-07T03:52:14.891315abusebot-7.cloudsearch.cf sshd[28143]: Failed password for root from 49.233.182.205 port 36940 ssh2 2020-06-07T03:54:53.832869abusebot-7.cloudsearch.cf sshd[28340]: pam_unix(sshd:auth): ...	2020-06-07 14:49:34
112.85.42.180	attackbotsspam	$f2bV_matches	2020-06-07 14:55:27
180.76.117.138	attack	Jun 4 19:12:55 srv01 sshd[15524]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.117.138 user=r.r Jun 4 19:12:57 srv01 sshd[15524]: Failed password for r.r from 180.76.117.138 port 60690 ssh2 Jun 4 19:12:57 srv01 sshd[15524]: Received disconnect from 180.76.117.138: 11: Bye Bye [preauth] Jun 4 19:29:17 srv01 sshd[21161]: Connection closed by 180.76.117.138 [preauth] Jun 4 19:38:59 srv01 sshd[27492]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.117.138 user=r.r Jun 4 19:39:02 srv01 sshd[27492]: Failed password for r.r from 180.76.117.138 port 51274 ssh2 Jun 4 19:39:02 srv01 sshd[27492]: Received disconnect from 180.76.117.138: 11: Bye Bye [preauth] Jun 4 19:41:13 srv01 sshd[29354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.117.138 user=r.r Jun 4 19:41:15 srv01 sshd[29354]: Failed password for r.r from 180.76.11........ -------------------------------	2020-06-07 15:14:58
139.162.39.204	attackspambots	RDP Brute-Force (honeypot 5)	2020-06-07 15:18:37

Recently Reported IPs

190.19.149.250	173.86.82.146	103.42.216.202	66.253.130.211
171.96.90.70	104.196.4.163	75.106.72.16	49.233.183.155
101.51.218.87	117.69.154.246	88.248.19.197	213.141.22.34
218.103.15.177	117.5.227.159	125.165.72.202	204.145.125.82
175.162.210.224	1.55.183.7	204.145.127.82	14.233.112.138