54.38.154.145 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
54.38.154.25	attackspam	Port Scan detected from 54.38.154.25 (DE/Germany/ip25.ip-54-38-154.eu). 4 hits in the last 85 seconds	2019-07-27 02:17:17
54.38.154.25	attackspambots	SIPVicious Scanner Detection	2019-07-10 10:42:42
54.38.154.25	attackbots	09.07.2019 17:52:42 Connection to port 5060 blocked by firewall	2019-07-10 03:05:48
54.38.154.25	attackbotsspam	Jul 8 05:03:29 box kernel: [669633.046352] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:68:c5:28:99:3a:4d:30:af:08:00 SRC=54.38.154.25 DST=[munged] LEN=439 TOS=0x00 PREC=0x00 TTL=53 ID=51532 DF PROTO=UDP SPT=5119 DPT=5060 LEN=419 Jul 8 06:36:28 box kernel: [675212.195695] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:68:c5:28:99:3a:4d:30:af:08:00 SRC=54.38.154.25 DST=[munged] LEN=439 TOS=0x00 PREC=0x00 TTL=53 ID=28723 DF PROTO=UDP SPT=5122 DPT=5060 LEN=419 Jul 8 07:58:16 box kernel: [680120.486155] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:68:c5:28:99:3a:4d:30:af:08:00 SRC=54.38.154.25 DST=[munged] LEN=439 TOS=0x00 PREC=0x00 TTL=53 ID=34801 DF PROTO=UDP SPT=5110 DPT=5060 LEN=419 Jul 8 09:45:12 box kernel: [686536.014303] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:68:c5:28:99:3a:4d:30:af:08:00 SRC=54.38.154.25 DST=[munged] LEN=435 TOS=0x00 PREC=0x00 TTL=53 ID=33177 DF PROTO=UDP SPT=5070 DPT=5060 LEN=415 Jul 9 03:16:58 box kernel: [749642.774236] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:68:c5:28:99:3a:4d:30:af:08	2019-07-09 10:48:25
54.38.154.25	attackbots	5060/udp 5060/udp 5060/udp... [2019-06-22/07-06]88pkt,1pt.(udp)	2019-07-07 16:06:30

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.38.154.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8613
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;54.38.154.145.			IN	A

;; AUTHORITY SECTION:
.			366	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022010801 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 09 08:14:02 CST 2022
;; MSG SIZE  rcvd: 106

Host info

145.154.38.54.in-addr.arpa domain name pointer ip145.ip-54-38-154.eu.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
145.154.38.54.in-addr.arpa	name = ip145.ip-54-38-154.eu.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
144.217.17.140	attackspambots	Unauthorised access (Nov 23) SRC=144.217.17.140 LEN=40 TOS=0x18 TTL=238 ID=11196 TCP DPT=1433 WINDOW=1024 SYN	2019-11-23 13:45:16
1.54.44.160	attackbots	Automatic report - Port Scan Attack	2019-11-23 13:52:32
121.182.166.82	attackspambots	Nov 23 05:40:36 vtv3 sshd[6194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.182.166.82 Nov 23 05:40:38 vtv3 sshd[6194]: Failed password for invalid user zeus from 121.182.166.82 port 28706 ssh2 Nov 23 05:45:19 vtv3 sshd[8273]: Failed password for root from 121.182.166.82 port 10237 ssh2 Nov 23 05:57:54 vtv3 sshd[13363]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.182.166.82 Nov 23 05:57:57 vtv3 sshd[13363]: Failed password for invalid user gattrell from 121.182.166.82 port 59590 ssh2 Nov 23 06:01:53 vtv3 sshd[15138]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.182.166.82 Nov 23 06:13:41 vtv3 sshd[20249]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.182.166.82 Nov 23 06:13:43 vtv3 sshd[20249]: Failed password for invalid user kilaas from 121.182.166.82 port 31225 ssh2 Nov 23 06:17:46 vtv3 sshd[22033]: pam_unix(sshd:au	2019-11-23 14:00:51
196.13.207.52	attackspambots	Invalid user backup from 196.13.207.52 port 44024	2019-11-23 14:07:33
182.61.175.96	attack	$f2bV_matches	2019-11-23 13:33:44
187.32.169.41	attackspambots	web-1 [ssh_2] SSH Attack	2019-11-23 13:48:38
106.12.90.45	attackspam	Nov 23 08:04:22 microserver sshd[39453]: Invalid user admin from 106.12.90.45 port 44306 Nov 23 08:04:22 microserver sshd[39453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.90.45 Nov 23 08:04:23 microserver sshd[39453]: Failed password for invalid user admin from 106.12.90.45 port 44306 ssh2 Nov 23 08:09:31 microserver sshd[40153]: Invalid user guest from 106.12.90.45 port 50324 Nov 23 08:09:31 microserver sshd[40153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.90.45 Nov 23 08:26:32 microserver sshd[42702]: Invalid user gerd from 106.12.90.45 port 43190 Nov 23 08:26:32 microserver sshd[42702]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.90.45 Nov 23 08:26:35 microserver sshd[42702]: Failed password for invalid user gerd from 106.12.90.45 port 43190 ssh2 Nov 23 08:36:07 microserver sshd[44012]: Invalid user admin from 106.12.90.45 port 53898 Nov 23 08:36:07	2019-11-23 14:01:20
222.186.180.9	attackbots	Nov 23 06:38:00 MK-Soft-Root2 sshd[25054]: Failed password for root from 222.186.180.9 port 43340 ssh2 Nov 23 06:38:04 MK-Soft-Root2 sshd[25054]: Failed password for root from 222.186.180.9 port 43340 ssh2 ...	2019-11-23 13:46:19
123.30.236.149	attack	Nov 23 05:49:53 meumeu sshd[21740]: Failed password for root from 123.30.236.149 port 43568 ssh2 Nov 23 05:54:16 meumeu sshd[22333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.30.236.149 Nov 23 05:54:18 meumeu sshd[22333]: Failed password for invalid user 0 from 123.30.236.149 port 14740 ssh2 ...	2019-11-23 14:04:47
78.35.38.35	attack	Nov 23 10:38:29 vibhu-HP-Z238-Microtower-Workstation sshd\[11363\]: Invalid user cloud_user from 78.35.38.35 Nov 23 10:38:29 vibhu-HP-Z238-Microtower-Workstation sshd\[11363\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.35.38.35 Nov 23 10:38:32 vibhu-HP-Z238-Microtower-Workstation sshd\[11363\]: Failed password for invalid user cloud_user from 78.35.38.35 port 43382 ssh2 Nov 23 10:41:58 vibhu-HP-Z238-Microtower-Workstation sshd\[11592\]: Invalid user quevedo from 78.35.38.35 Nov 23 10:41:58 vibhu-HP-Z238-Microtower-Workstation sshd\[11592\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.35.38.35 ...	2019-11-23 13:28:07
167.99.75.174	attack	Invalid user danny from 167.99.75.174 port 36206	2019-11-23 14:06:45
70.88.94.201	attack	RDP Bruteforce	2019-11-23 13:33:08
104.248.37.88	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-23 13:35:20
45.45.45.45	attackspam	23.11.2019 04:54:34 Recursive DNS scan	2019-11-23 13:56:42
49.88.112.70	attackspambots	2019-11-23T04:55:21.549505abusebot-7.cloudsearch.cf sshd\[5433\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.70 user=root	2019-11-23 13:24:48

Recently Reported IPs

138.113.102.59	145.85.65.8	64.100.53.70	156.106.161.201
154.127.50.87	51.147.48.35	185.145.135.96	46.58.134.96
150.246.18.46	202.162.231.65	193.141.202.79	184.217.92.154
199.39.198.117	134.246.127.8	51.161.15.108	106.57.150.224
50.4.36.93	221.132.49.39	164.114.155.114	114.35.48.251