54.166.94.52 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.166.94.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51636
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;54.166.94.52.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020302 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 11:15:22 CST 2025
;; MSG SIZE  rcvd: 105

Host info

52.94.166.54.in-addr.arpa domain name pointer ec2-54-166-94-52.compute-1.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
52.94.166.54.in-addr.arpa	name = ec2-54-166-94-52.compute-1.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
192.160.102.166	attackbots	2019-08-15T14:50:10.500527wiz-ks3 sshd[9540]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=chaucer.relay.coldhak.com user=root 2019-08-15T14:50:13.061089wiz-ks3 sshd[9540]: Failed password for root from 192.160.102.166 port 33395 ssh2 2019-08-15T14:50:15.643823wiz-ks3 sshd[9540]: Failed password for root from 192.160.102.166 port 33395 ssh2 2019-08-15T14:50:10.500527wiz-ks3 sshd[9540]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=chaucer.relay.coldhak.com user=root 2019-08-15T14:50:13.061089wiz-ks3 sshd[9540]: Failed password for root from 192.160.102.166 port 33395 ssh2 2019-08-15T14:50:15.643823wiz-ks3 sshd[9540]: Failed password for root from 192.160.102.166 port 33395 ssh2 2019-08-15T14:50:10.500527wiz-ks3 sshd[9540]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=chaucer.relay.coldhak.com user=root 2019-08-15T14:50:13.061089wiz-ks3 sshd[9540]: Failed password for root from 192	2019-08-17 11:04:30
193.32.163.182	attack	Aug 17 05:20:36 v22018076622670303 sshd\[10718\]: Invalid user admin from 193.32.163.182 port 40526 Aug 17 05:20:36 v22018076622670303 sshd\[10718\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.32.163.182 Aug 17 05:20:39 v22018076622670303 sshd\[10718\]: Failed password for invalid user admin from 193.32.163.182 port 40526 ssh2 ...	2019-08-17 11:23:23
104.236.131.54	attackbotsspam	2019-08-17T01:49:44.771581abusebot-2.cloudsearch.cf sshd\[6752\]: Invalid user firebird from 104.236.131.54 port 47689	2019-08-17 10:46:13
218.78.54.80	attack	Aug 16 20:16:34 web1 postfix/smtpd[15123]: warning: unknown[218.78.54.80]: SASL LOGIN authentication failed: authentication failure ...	2019-08-17 11:10:25
209.141.53.185	attack	WordPress brute force	2019-08-17 10:48:54
37.49.225.224	attackspambots	37.49.225.224 has been banned from MailServer for Abuse ...	2019-08-17 10:44:41
167.86.96.137	attackspambots	WordPress wp-login brute force :: 167.86.96.137 0.188 BYPASS [17/Aug/2019:12:54:04 1000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-08-17 11:08:41
103.52.52.23	attackbotsspam	Aug 16 14:14:09 * sshd[20688]: Failed password for invalid user sinusbot from 103.52.52.23 port 59696 ssh2 Aug 16 14:22:29 * sshd[20845]: Failed password for invalid user zhao from 103.52.52.23 port 34688 ssh2 Aug 16 14:28:01 * sshd[20963]: Failed password for invalid user dimas from 103.52.52.23 port 42678 ssh2 Aug 16 14:33:23 * sshd[21027]: Failed password for invalid user test from 103.52.52.23 port 48544 ssh2 Aug 16 14:38:56 * sshd[21106]: Failed password for invalid user karen from 103.52.52.23 port 55948 ssh2 Aug 16 14:44:22 * sshd[21304]: Failed password for invalid user facturacion from 103.52.52.23 port 35112 ssh2 Aug 16 14:49:44 * sshd[21383]: Failed password for invalid user test from 103.52.52.23 port 41106 ssh2 Aug 16 14:55:05 * sshd[21453]: Failed password for invalid user postmaster from 103.52.52.23 port 47884 ssh2 Aug 16 15:00:35 * sshd[21535]: Failed password for invalid user pi from 103.52.52.23 port 55548 ssh2 Aug 16 15:05:53 * sshd[21687]: Failed password for invalid u	2019-08-17 11:17:29
36.224.212.246	attackbotsspam	:	2019-08-17 10:53:13
87.116.178.197	attack	Unauthorized connection attempt from IP address 87.116.178.197 on Port 445(SMB)	2019-08-17 11:00:37
162.220.165.170	attackspambots	Splunk® : port scan detected: Aug 16 22:29:56 testbed kernel: Firewall: TCP_IN Blocked IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:c0:42:d0:39:2c:30:08:00 SRC=162.220.165.170 DST=104.248.11.191 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=54321 PROTO=TCP SPT=33668 DPT=8088 WINDOW=65535 RES=0x00 SYN URGP=0	2019-08-17 10:41:51
141.98.9.5	attackbotsspam	Aug 17 04:55:26 relay postfix/smtpd\[26066\]: warning: unknown\[141.98.9.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 17 04:55:41 relay postfix/smtpd\[6366\]: warning: unknown\[141.98.9.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 17 04:56:10 relay postfix/smtpd\[26066\]: warning: unknown\[141.98.9.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 17 04:56:28 relay postfix/smtpd\[26893\]: warning: unknown\[141.98.9.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 17 04:56:46 relay postfix/smtpd\[26218\]: warning: unknown\[141.98.9.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-08-17 10:59:02
39.107.47.159	attackspam	Unauthorised access (Aug 16) SRC=39.107.47.159 LEN=40 TTL=43 ID=25903 TCP DPT=8080 WINDOW=19210 SYN	2019-08-17 10:47:12
178.187.222.212	attackspambots	Attempts to probe for or exploit a Drupal site on url: /administrator/index.php. Reported by the module https://www.drupal.org/project/abuseipdb.	2019-08-17 11:05:21
125.92.223.150	attackspam	Aug 17 04:53:02 datentool sshd[24064]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.92.223.150 user=r.r Aug 17 04:53:05 datentool sshd[24064]: Failed password for r.r from 125.92.223.150 port 56318 ssh2 Aug 17 04:53:07 datentool sshd[24064]: Failed password for r.r from 125.92.223.150 port 56318 ssh2 Aug 17 04:53:09 datentool sshd[24064]: Failed password for r.r from 125.92.223.150 port 56318 ssh2 Aug 17 04:53:10 datentool sshd[24064]: Failed password for r.r from 125.92.223.150 port 56318 ssh2 Aug 17 04:53:12 datentool sshd[24064]: Failed password for r.r from 125.92.223.150 port 56318 ssh2 Aug 17 04:53:15 datentool sshd[24064]: Failed password for r.r from 125.92.223.150 port 56318 ssh2 Aug 17 04:53:15 datentool sshd[24064]: PAM 5 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.92.223.150 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=125.92.223.150	2019-08-17 11:07:07

Recently Reported IPs

232.103.158.190	255.47.244.143	165.22.194.27	218.109.27.199
31.208.211.82	66.218.141.186	55.121.91.108	251.137.4.206
227.205.167.172	36.165.44.224	184.190.3.156	42.52.29.240
24.171.67.172	43.213.25.219	220.212.222.213	153.3.83.63
154.246.216.94	152.92.224.203	218.221.223.128	249.80.178.195