54.159.142.66 - IPInfo

Basic Info

City: Ashburn

Region: Virginia

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.159.142.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23543
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;54.159.142.66.			IN	A

;; AUTHORITY SECTION:
.			217	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022120400 1800 900 604800 86400

;; Query time: 28 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 04 19:36:24 CST 2022
;; MSG SIZE  rcvd: 106

Host info

66.142.159.54.in-addr.arpa domain name pointer ec2-54-159-142-66.compute-1.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
66.142.159.54.in-addr.arpa	name = ec2-54-159-142-66.compute-1.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
117.193.16.109	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 04-11-2019 14:35:18.	2019-11-04 23:37:47
185.176.27.166	attackbotsspam	firewall-block, port(s): 19004/tcp	2019-11-04 23:27:08
130.105.68.165	attack	Nov 4 14:27:57 yesfletchmain sshd\[27750\]: User root from 130.105.68.165 not allowed because not listed in AllowUsers Nov 4 14:27:57 yesfletchmain sshd\[27750\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.105.68.165 user=root Nov 4 14:28:00 yesfletchmain sshd\[27750\]: Failed password for invalid user root from 130.105.68.165 port 42147 ssh2 Nov 4 14:35:35 yesfletchmain sshd\[27872\]: User root from 130.105.68.165 not allowed because not listed in AllowUsers Nov 4 14:35:35 yesfletchmain sshd\[27872\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.105.68.165 user=root ...	2019-11-04 23:19:31
54.93.152.59	attackbots	11/04/2019-10:02:43.613822 54.93.152.59 Protocol: 6 ET SCAN Potential SSH Scan	2019-11-04 23:03:34
201.131.241.251	attackspam	port scan and connect, tcp 8080 (http-proxy)	2019-11-04 22:57:12
51.75.246.176	attack	$f2bV_matches	2019-11-04 22:51:56
49.88.112.115	attackbots	Nov 4 04:45:43 php1 sshd\[12117\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.115 user=root Nov 4 04:45:45 php1 sshd\[12117\]: Failed password for root from 49.88.112.115 port 47538 ssh2 Nov 4 04:46:48 php1 sshd\[12205\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.115 user=root Nov 4 04:46:50 php1 sshd\[12205\]: Failed password for root from 49.88.112.115 port 47988 ssh2 Nov 4 04:47:53 php1 sshd\[12279\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.115 user=root	2019-11-04 22:58:03
60.248.250.181	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 04-11-2019 14:35:24.	2019-11-04 23:28:18
61.77.113.218	attackspambots	$f2bV_matches	2019-11-04 23:22:02
157.230.57.112	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-04 23:15:12
37.9.169.7	attackspambots	Automatic report - XMLRPC Attack	2019-11-04 23:22:51
182.61.37.199	attackbots	Nov 4 17:42:06 server sshd\[29878\]: Invalid user spigot from 182.61.37.199 Nov 4 17:42:06 server sshd\[29878\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.37.199 Nov 4 17:42:07 server sshd\[29878\]: Failed password for invalid user spigot from 182.61.37.199 port 53520 ssh2 Nov 4 17:56:40 server sshd\[1600\]: Invalid user Hille from 182.61.37.199 Nov 4 17:56:40 server sshd\[1600\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.37.199 ...	2019-11-04 23:14:30
45.148.10.24	attackspam	2019-11-04T16:06:04.367543mail01 postfix/smtpd[20903]: warning: unknown[45.148.10.24]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-04T16:14:45.346208mail01 postfix/smtpd[17108]: warning: unknown[45.148.10.24]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-04T16:15:03.042051mail01 postfix/smtpd[20903]: warning: unknown[45.148.10.24]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-04 23:16:36
218.92.0.134	attack	Triggered by Fail2Ban at Ares web server	2019-11-04 23:18:43
103.26.41.131	attack	Nov 4 04:28:46 tdfoods sshd\[14506\]: Invalid user password123 from 103.26.41.131 Nov 4 04:28:46 tdfoods sshd\[14506\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.26.41.131 Nov 4 04:28:48 tdfoods sshd\[14506\]: Failed password for invalid user password123 from 103.26.41.131 port 41814 ssh2 Nov 4 04:35:54 tdfoods sshd\[15067\]: Invalid user pass from 103.26.41.131 Nov 4 04:35:54 tdfoods sshd\[15067\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.26.41.131	2019-11-04 23:04:46

Recently Reported IPs

122.219.77.219	122.219.77.135	244.93.249.92	235.236.67.30
84.242.255.166	199.53.36.174	28.251.96.112	48.5.210.132
28.173.241.220	253.119.84.42	250.132.1.79	25.253.158.231
246.54.186.251	210.8.122.180	98.81.36.70	199.109.44.37
66.3.23.81	41.94.169.176	39.39.122.236	35.20.206.39