54.252.2.20 - IPInfo

Basic Info

City: Sydney

Region: New South Wales

Country: Australia

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
54.252.231.86	attack	Unauthorized connection attempt detected from IP address 54.252.231.86 to port 80 [T]	2020-02-01 21:06:28
54.252.213.237	attackspam	Unauthorized connection attempt detected from IP address 54.252.213.237 to port 80 [T]	2020-01-30 01:23:14
54.252.213.148	attack	RDP Bruteforce	2019-11-03 14:07:01

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.252.2.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54244
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;54.252.2.20.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025041003 1800 900 604800 86400

;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 11 10:27:51 CST 2025
;; MSG SIZE  rcvd: 104

Host info

20.2.252.54.in-addr.arpa domain name pointer ec2-54-252-2-20.ap-southeast-2.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.2.252.54.in-addr.arpa	name = ec2-54-252-2-20.ap-southeast-2.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
125.124.174.127	attack	Apr 8 10:45:02 itv-usvr-01 sshd[21467]: Invalid user user from 125.124.174.127 Apr 8 10:45:02 itv-usvr-01 sshd[21467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.174.127 Apr 8 10:45:02 itv-usvr-01 sshd[21467]: Invalid user user from 125.124.174.127 Apr 8 10:45:04 itv-usvr-01 sshd[21467]: Failed password for invalid user user from 125.124.174.127 port 60886 ssh2 Apr 8 10:54:33 itv-usvr-01 sshd[21849]: Invalid user admin from 125.124.174.127	2020-04-08 17:26:57
113.98.101.188	attackspambots	Brute-force attempt banned	2020-04-08 16:57:58
114.44.154.112	attack	Telnet Server BruteForce Attack	2020-04-08 16:51:17
220.132.75.140	attackspambots	Apr 8 11:09:47 [host] sshd[14095]: Invalid user g Apr 8 11:09:47 [host] sshd[14095]: pam_unix(sshd: Apr 8 11:09:49 [host] sshd[14095]: Failed passwor	2020-04-08 17:19:46
112.45.122.7	attackspambots	Apr 8 06:26:36 legacy sshd[28341]: Failed password for root from 112.45.122.7 port 52231 ssh2 Apr 8 06:26:40 legacy sshd[28343]: Failed password for root from 112.45.122.7 port 52683 ssh2 ...	2020-04-08 17:24:26
139.199.228.133	attackspam	k+ssh-bruteforce	2020-04-08 17:10:36
142.44.240.190	attackbotsspam	Apr 8 05:54:38 nextcloud sshd\[25450\]: Invalid user admin from 142.44.240.190 Apr 8 05:54:38 nextcloud sshd\[25450\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.240.190 Apr 8 05:54:40 nextcloud sshd\[25450\]: Failed password for invalid user admin from 142.44.240.190 port 59564 ssh2	2020-04-08 17:20:48
218.92.0.201	attackbotsspam	Apr 8 05:54:49 [HOSTNAME] sshd[22255]: User removed from 218.92.0.201 not allowed because not listed in AllowUsers Apr 8 05:54:49 [HOSTNAME] sshd[22255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.201 user=removed Apr 8 05:54:51 [HOSTNAME] sshd[22255]: Failed password for invalid user removed from 218.92.0.201 port 29922 ssh2 ...	2020-04-08 17:13:22
91.188.229.168	attack	HACKED MY ACCOUNT IN STEAM.. PLEASE RETURN MY ACCOUNT, HACKER HACKER	2020-04-08 17:09:24
170.84.224.240	attackbotsspam	$f2bV_matches	2020-04-08 17:23:13
110.49.53.18	attack	20/4/7@23:54:53: FAIL: Alarm-Network address from=110.49.53.18 ...	2020-04-08 17:11:15
124.217.230.120	attack	Automatic report - XMLRPC Attack	2020-04-08 17:13:36
178.16.175.146	attackbots	Apr 8 08:02:42 vmd48417 sshd[30243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.16.175.146	2020-04-08 16:52:04
49.88.112.112	attackspam	port scan and connect, tcp 22 (ssh)	2020-04-08 16:52:50
37.187.100.50	attackbotsspam	Apr 8 02:53:01 vps46666688 sshd[19932]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.100.50 Apr 8 02:53:03 vps46666688 sshd[19932]: Failed password for invalid user sjen from 37.187.100.50 port 47300 ssh2 ...	2020-04-08 17:20:24

Recently Reported IPs

220.171.115.16	220.171.115.158	220.171.115.221	3.25.161.170
52.62.142.107	194.187.176.227	35.203.211.186	195.184.76.15
195.184.76.117	24.239.132.198	4.153.66.27	17.241.227.157
60.96.192.65	17.241.75.7	210.145.93.97	17.241.227.30
203.209.247.95	125.122.15.53	125.122.33.122	113.141.84.254