54.252.2.20 - IPInfo

Basic Info

City: Sydney

Region: New South Wales

Country: Australia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
54.252.231.86	attack	Unauthorized connection attempt detected from IP address 54.252.231.86 to port 80 [T]	2020-02-01 21:06:28
54.252.213.237	attackspam	Unauthorized connection attempt detected from IP address 54.252.213.237 to port 80 [T]	2020-01-30 01:23:14
54.252.213.148	attack	RDP Bruteforce	2019-11-03 14:07:01

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.252.2.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54244
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;54.252.2.20.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025041003 1800 900 604800 86400

;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 11 10:27:51 CST 2025
;; MSG SIZE  rcvd: 104

Host info

20.2.252.54.in-addr.arpa domain name pointer ec2-54-252-2-20.ap-southeast-2.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.2.252.54.in-addr.arpa	name = ec2-54-252-2-20.ap-southeast-2.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
181.175.225.72	attackspambots	181.175.225.72 - - [12/Oct/2020:22:44:22 +0200] "GET / HTTP/1.0" 400 0 "-" "-" ...	2020-10-13 16:32:46
185.152.113.92	attackspambots	(sshd) Failed SSH login from 185.152.113.92 (SK/Slovakia/92-113-152-185.kiki.sk): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 13 04:18:59 server sshd[1132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.152.113.92 user=root Oct 13 04:19:01 server sshd[1132]: Failed password for root from 185.152.113.92 port 39295 ssh2 Oct 13 04:25:09 server sshd[2733]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.152.113.92 user=root Oct 13 04:25:12 server sshd[2733]: Failed password for root from 185.152.113.92 port 43428 ssh2 Oct 13 04:30:57 server sshd[4290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.152.113.92 user=root	2020-10-13 16:32:13
46.163.32.30	attackbotsspam	Automatic report - Port Scan Attack	2020-10-13 16:33:30
159.203.103.192	attackbots	SSH Brute-force	2020-10-13 16:10:57
222.222.31.70	attackspambots	SSH login attempts.	2020-10-13 16:16:33
110.185.104.126	attack	Oct 13 17:13:55 web1 sshd[7964]: Invalid user brian from 110.185.104.126 port 38324 Oct 13 17:13:55 web1 sshd[7964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.185.104.126 Oct 13 17:13:55 web1 sshd[7964]: Invalid user brian from 110.185.104.126 port 38324 Oct 13 17:13:57 web1 sshd[7964]: Failed password for invalid user brian from 110.185.104.126 port 38324 ssh2 Oct 13 17:44:41 web1 sshd[18539]: Invalid user test from 110.185.104.126 port 53144 Oct 13 17:44:41 web1 sshd[18539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.185.104.126 Oct 13 17:44:41 web1 sshd[18539]: Invalid user test from 110.185.104.126 port 53144 Oct 13 17:44:43 web1 sshd[18539]: Failed password for invalid user test from 110.185.104.126 port 53144 ssh2 Oct 13 17:49:26 web1 sshd[20107]: Invalid user lisa from 110.185.104.126 port 51420 ...	2020-10-13 16:17:48
218.92.0.145	attackspam	Oct 13 09:55:49 prod4 sshd\[30665\]: Failed password for root from 218.92.0.145 port 40038 ssh2 Oct 13 09:55:52 prod4 sshd\[30665\]: Failed password for root from 218.92.0.145 port 40038 ssh2 Oct 13 09:55:56 prod4 sshd\[30665\]: Failed password for root from 218.92.0.145 port 40038 ssh2 ...	2020-10-13 16:45:20
139.199.94.100	attackspam	$f2bV_matches	2020-10-13 16:34:04
45.116.112.22	attackbots	Invalid user arun from 45.116.112.22 port 51498	2020-10-13 16:23:45
112.85.42.176	attackspambots	2020-10-13T08:15:46.730218shield sshd\[23292\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.176 user=root 2020-10-13T08:15:48.526983shield sshd\[23292\]: Failed password for root from 112.85.42.176 port 3491 ssh2 2020-10-13T08:15:51.998837shield sshd\[23292\]: Failed password for root from 112.85.42.176 port 3491 ssh2 2020-10-13T08:15:55.713074shield sshd\[23292\]: Failed password for root from 112.85.42.176 port 3491 ssh2 2020-10-13T08:15:58.813256shield sshd\[23292\]: Failed password for root from 112.85.42.176 port 3491 ssh2	2020-10-13 16:22:43
218.92.0.175	attack	2020-10-13 03:18:29.459691-0500 localhost sshd[38702]: Failed password for root from 218.92.0.175 port 10920 ssh2	2020-10-13 16:24:36
82.130.201.15	attack	Oct 13 10:16:52 db sshd[14251]: Invalid user horiuchi from 82.130.201.15 port 37822 ...	2020-10-13 16:31:15
194.1.168.36	attackbotsspam	Oct 12 17:41:21 shivevps sshd[15912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.1.168.36 user=www-data Oct 12 17:41:24 shivevps sshd[15912]: Failed password for www-data from 194.1.168.36 port 45588 ssh2 Oct 12 17:45:50 shivevps sshd[16062]: Invalid user yoshitani from 194.1.168.36 port 52660 ...	2020-10-13 16:55:24
158.181.16.127	attackspam	Unauthorized connection attempt from IP address 158.181.16.127 on Port 445(SMB)	2020-10-13 16:33:50
112.85.42.94	attackbots	detected by Fail2Ban	2020-10-13 16:22:58

Recently Reported IPs

220.171.115.16	220.171.115.158	220.171.115.221	3.25.161.170
52.62.142.107	194.187.176.227	35.203.211.186	195.184.76.15
195.184.76.117	24.239.132.198	4.153.66.27	17.241.227.157
60.96.192.65	17.241.75.7	210.145.93.97	17.241.227.30
203.209.247.95	125.122.15.53	125.122.33.122	113.141.84.254