54.67.15.145 - IPInfo

Basic Info

City: San Jose

Region: California

Country: United States

Internet Service Provider: Amazon Technologies Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Wordpress hacking	2019-10-18 03:03:53

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.67.15.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36098
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;54.67.15.145.			IN	A

;; AUTHORITY SECTION:
.			476	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101700 1800 900 604800 86400

;; Query time: 125 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 18 03:03:50 CST 2019
;; MSG SIZE  rcvd: 116

Host info

145.15.67.54.in-addr.arpa domain name pointer ec2-54-67-15-145.us-west-1.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
145.15.67.54.in-addr.arpa	name = ec2-54-67-15-145.us-west-1.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.51.143.22	attackspambots	(From sales@chronicwatch.com) Dear Health care provider Medicare Care Management Program reimburses $46 per patient per month for non face-to-face care of 20 minutes by a MA. You can continue to see patients in the office face to face and get reimbursed for the same. This is just additional revenue for the practice to help patients better manage their chronic conditions. Medicare reimburses around $100 for some of your patients that qualify to be "sickest of the sick" when you provide additional non face-to-face care of 60 minutes. Can we schedule a demo and small webinar to explain the Medicare CCM program and how we can help. Thanks ChronicWatch, Inc.	2019-10-22 17:37:59
198.211.123.183	attackbotsspam	Oct 21 23:17:32 server sshd\[11580\]: Failed password for invalid user www from 198.211.123.183 port 48748 ssh2 Oct 22 06:42:56 server sshd\[10121\]: Invalid user ubuntu from 198.211.123.183 Oct 22 06:42:56 server sshd\[10121\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.211.123.183 Oct 22 06:42:58 server sshd\[10121\]: Failed password for invalid user ubuntu from 198.211.123.183 port 51238 ssh2 Oct 22 12:41:00 server sshd\[14289\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.211.123.183 user=nagios ...	2019-10-22 17:51:59
54.39.18.237	attack	Oct 22 09:09:40 marvibiene sshd[15243]: Invalid user user from 54.39.18.237 port 39052 Oct 22 09:09:40 marvibiene sshd[15243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.18.237 Oct 22 09:09:40 marvibiene sshd[15243]: Invalid user user from 54.39.18.237 port 39052 Oct 22 09:09:42 marvibiene sshd[15243]: Failed password for invalid user user from 54.39.18.237 port 39052 ssh2 ...	2019-10-22 18:06:56
171.8.216.224	attackspambots	Automatic report - Port Scan Attack	2019-10-22 17:53:32
218.75.216.20	attackbotsspam	Oct 22 06:46:55 www5 sshd\[3043\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.75.216.20 user=root Oct 22 06:46:57 www5 sshd\[3043\]: Failed password for root from 218.75.216.20 port 37894 ssh2 Oct 22 06:50:47 www5 sshd\[3719\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.75.216.20 user=root ...	2019-10-22 17:41:44
118.25.103.132	attackspam	Oct 22 06:57:07 OPSO sshd\[12059\]: Invalid user boc from 118.25.103.132 port 56774 Oct 22 06:57:07 OPSO sshd\[12059\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.103.132 Oct 22 06:57:09 OPSO sshd\[12059\]: Failed password for invalid user boc from 118.25.103.132 port 56774 ssh2 Oct 22 07:01:30 OPSO sshd\[13008\]: Invalid user legal2 from 118.25.103.132 port 34946 Oct 22 07:01:30 OPSO sshd\[13008\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.103.132	2019-10-22 17:46:23
222.186.173.215	attack	Oct 22 05:31:21 ny01 sshd[15909]: Failed password for root from 222.186.173.215 port 24984 ssh2 Oct 22 05:31:39 ny01 sshd[15909]: error: maximum authentication attempts exceeded for root from 222.186.173.215 port 24984 ssh2 [preauth] Oct 22 05:31:50 ny01 sshd[15956]: Failed password for root from 222.186.173.215 port 12486 ssh2	2019-10-22 17:37:06
61.230.97.188	attack	Fail2Ban Ban Triggered	2019-10-22 17:37:32
181.30.27.11	attackspam	Oct 21 20:19:47 wbs sshd\[5401\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.30.27.11 user=root Oct 21 20:19:49 wbs sshd\[5401\]: Failed password for root from 181.30.27.11 port 60589 ssh2 Oct 21 20:24:41 wbs sshd\[5800\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.30.27.11 user=root Oct 21 20:24:43 wbs sshd\[5800\]: Failed password for root from 181.30.27.11 port 51464 ssh2 Oct 21 20:29:29 wbs sshd\[6224\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.30.27.11 user=root	2019-10-22 17:42:02
222.186.180.9	attackbotsspam	Oct 22 11:51:59 MK-Soft-Root2 sshd[27725]: Failed password for root from 222.186.180.9 port 62464 ssh2 Oct 22 11:52:05 MK-Soft-Root2 sshd[27725]: Failed password for root from 222.186.180.9 port 62464 ssh2 ...	2019-10-22 17:54:47
1.174.72.113	attackbotsspam	UTC: 2019-10-21 port: 23/tcp	2019-10-22 18:03:43
200.89.178.52	attack	$f2bV_matches	2019-10-22 18:02:56
155.94.195.57	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/155.94.195.57/ RU - 1H : (155) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : RU NAME ASN : ASN8100 IP : 155.94.195.57 CIDR : 155.94.192.0/20 PREFIX COUNT : 593 UNIQUE IP COUNT : 472064 ATTACKS DETECTED ASN8100 : 1H - 1 3H - 2 6H - 2 12H - 2 24H - 3 DateTime : 2019-10-22 05:50:16 INFO : Web Crawlers ? Scan Detected and Blocked by ADMIN - data recovery	2019-10-22 18:04:24
106.12.206.53	attackbotsspam	2019-10-22T15:26:06.371833enmeeting.mahidol.ac.th sshd\[14006\]: User root from 106.12.206.53 not allowed because not listed in AllowUsers 2019-10-22T15:26:06.493020enmeeting.mahidol.ac.th sshd\[14006\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.206.53 user=root 2019-10-22T15:26:08.245491enmeeting.mahidol.ac.th sshd\[14006\]: Failed password for invalid user root from 106.12.206.53 port 41388 ssh2 ...	2019-10-22 17:50:41
139.59.5.65	attackspambots	Oct 22 08:29:38 localhost sshd\[24963\]: Invalid user python from 139.59.5.65 port 34934 Oct 22 08:29:38 localhost sshd\[24963\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.5.65 Oct 22 08:29:39 localhost sshd\[24963\]: Failed password for invalid user python from 139.59.5.65 port 34934 ssh2 ...	2019-10-22 17:48:34

Recently Reported IPs

201.39.164.120	74.211.13.88	47.192.202.119	56.147.237.185
173.126.197.21	80.75.255.41	222.131.239.156	221.224.78.228
75.21.132.241	74.97.52.226	78.55.10.176	93.75.43.51
80.211.134.237	41.33.14.45	205.142.251.1	126.29.132.53
185.65.193.87	71.182.157.124	78.169.173.125	102.179.143.242