54.148.21.206 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
54.148.218.110	attackbots	05/11/2020-14:39:50.886746 54.148.218.110 Protocol: 6 SURICATA TLS invalid record/traffic	2020-05-11 20:53:16
54.148.218.110	attack	05/02/2020-15:32:35.917910 54.148.218.110 Protocol: 6 SURICATA TLS invalid record/traffic	2020-05-02 21:39:37

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.148.21.206
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49621
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;54.148.21.206.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020901 1800 900 604800 86400

;; Query time: 44 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 08:22:36 CST 2025
;; MSG SIZE  rcvd: 106

Host info

206.21.148.54.in-addr.arpa domain name pointer ec2-54-148-21-206.us-west-2.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
206.21.148.54.in-addr.arpa	name = ec2-54-148-21-206.us-west-2.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
144.202.47.160	attackspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-07-05 03:03:51
111.67.202.196	attack	Jul 4 20:00:40 buvik sshd[7162]: Failed password for invalid user gog from 111.67.202.196 port 57914 ssh2 Jul 4 20:02:57 buvik sshd[7407]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.67.202.196 user=root Jul 4 20:02:59 buvik sshd[7407]: Failed password for root from 111.67.202.196 port 60942 ssh2 ...	2020-07-05 02:23:16
175.101.10.194	attack	(mod_security) mod_security (id:350202) triggered by 175.101.10.194 (IN/India/-): 10 in the last 3600 secs; ID: rub	2020-07-05 02:25:58
49.233.26.75	attack	Jul 4 20:08:36 webhost01 sshd[31360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.26.75 Jul 4 20:08:38 webhost01 sshd[31360]: Failed password for invalid user prueba from 49.233.26.75 port 36802 ssh2 ...	2020-07-05 02:43:55
222.186.31.83	attackbotsspam	Jul 5 01:52:44 webhost01 sshd[4665]: Failed password for root from 222.186.31.83 port 64085 ssh2 ...	2020-07-05 02:54:52
213.197.180.91	attackbots	Automatic report - XMLRPC Attack	2020-07-05 02:29:18
163.172.117.227	attackspambots	SS5,DEF GET /wp-login.php	2020-07-05 02:22:48
152.32.216.191	attackbotsspam	20 attempts against mh-ssh on creek	2020-07-05 02:45:07
134.122.79.129	attackbots	scans 2 times in preceeding hours on the ports (in chronological order) 32498 32498	2020-07-05 02:52:46
189.125.93.48	attack	SSH Brute Force	2020-07-05 02:30:45
137.74.171.160	attackspambots	Jul 4 19:02:24 odroid64 sshd\[23216\]: User root from 137.74.171.160 not allowed because not listed in AllowUsers Jul 4 19:02:24 odroid64 sshd\[23216\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.171.160 user=root ...	2020-07-05 03:00:56
128.199.115.175	attackbots	Automatic report - Banned IP Access	2020-07-05 02:23:03
128.14.209.234	attackspam	GET /HNAP1 HTTP/1.1	2020-07-05 02:35:06
182.61.136.3	attackbotsspam	Jul 4 07:15:35 server1 sshd\[26089\]: Invalid user dst from 182.61.136.3 Jul 4 07:15:35 server1 sshd\[26089\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.136.3 Jul 4 07:15:37 server1 sshd\[26089\]: Failed password for invalid user dst from 182.61.136.3 port 37426 ssh2 Jul 4 07:18:02 server1 sshd\[26748\]: Invalid user lamp from 182.61.136.3 Jul 4 07:18:02 server1 sshd\[26748\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.136.3 ...	2020-07-05 02:52:24
190.104.40.231	attack	failed_logins	2020-07-05 03:02:20

Recently Reported IPs

85.180.78.224	228.238.163.232	234.163.23.153	118.111.234.225
190.229.123.201	228.9.162.131	93.103.127.166	135.48.91.75
89.139.99.145	75.19.185.217	194.104.182.52	52.216.0.110
101.8.94.122	78.242.149.12	32.30.139.12	125.152.74.131
117.199.190.225	236.115.210.165	225.114.180.168	97.172.238.250