54.191.2.119 - IPInfo

Basic Info

City: Boardman

Region: Oregon

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
54.191.224.189	attackspambots	54.191.224.189 - - [07/Jul/2020:09:23:40 +0100] "POST /wp-login.php HTTP/1.1" 200 2420 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 54.191.224.189 - - [07/Jul/2020:09:23:42 +0100] "POST /wp-login.php HTTP/1.1" 200 2415 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 54.191.224.189 - - [07/Jul/2020:09:23:44 +0100] "POST /wp-login.php HTTP/1.1" 200 2415 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-07 17:54:18
54.191.236.124	attack	54.191.236.124 - - [04/Jul/2020:13:17:29 +0100] "POST /wp-login.php HTTP/1.1" 200 1996 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 54.191.236.124 - - [04/Jul/2020:13:17:32 +0100] "POST /wp-login.php HTTP/1.1" 200 1994 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 54.191.236.124 - - [04/Jul/2020:13:17:35 +0100] "POST /wp-login.php HTTP/1.1" 200 2000 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-05 01:48:20
54.191.214.10	attack	RDP Brute-Force (honeypot 9)	2020-04-30 17:37:23
54.191.245.91	attack	Attempted connection to ports 1080, 3128, 443, 80, 8080, 8088.	2020-04-08 04:17:49
54.191.214.161	attackbots	Unauthorized connection attempt detected from IP address 54.191.214.161 to port 5431	2019-12-29 02:03:39
54.191.214.10	attackbots	RDP Bruteforce	2019-11-24 06:59:19
54.191.214.10	attackspam	3389BruteforceFW22	2019-11-22 06:53:59
54.191.214.10	attack	RDP Bruteforce	2019-11-21 22:07:19

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.191.2.119
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48653
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;54.191.2.119.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090100 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Sep 01 16:57:45 CST 2019
;; MSG SIZE  rcvd: 116

Host info

119.2.191.54.in-addr.arpa domain name pointer ec2-54-191-2-119.us-west-2.compute.amazonaws.com.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
119.2.191.54.in-addr.arpa	name = ec2-54-191-2-119.us-west-2.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
119.196.83.18	attackbotsspam	Automatic report - Banned IP Access	2019-11-15 21:06:10
192.99.47.10	attackbotsspam	Looking for resource vulnerabilities	2019-11-15 21:12:23
106.13.59.229	attackspambots	Invalid user kxso from 106.13.59.229 port 50526 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.59.229 Failed password for invalid user kxso from 106.13.59.229 port 50526 ssh2 Invalid user globalflash from 106.13.59.229 port 56380 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.59.229	2019-11-15 21:00:38
52.165.88.121	attackbots	Repeated brute force against a port	2019-11-15 20:54:01
103.26.99.143	attackbotsspam	5x Failed Password	2019-11-15 20:45:11
123.10.187.95	attackbotsspam	port scan and connect, tcp 23 (telnet)	2019-11-15 20:33:30
49.118.132.44	attackspambots	firewall-block, port(s): 3389/tcp	2019-11-15 20:55:13
5.196.226.217	attackbots	Nov 15 10:29:44 serwer sshd\[23428\]: Invalid user hand from 5.196.226.217 port 32852 Nov 15 10:29:44 serwer sshd\[23428\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.226.217 Nov 15 10:29:46 serwer sshd\[23428\]: Failed password for invalid user hand from 5.196.226.217 port 32852 ssh2 ...	2019-11-15 20:32:38
49.207.106.83	attack	firewall-block, port(s): 445/tcp	2019-11-15 20:53:28
185.162.235.113	attack	Nov 15 12:51:32 mail postfix/smtpd[10001]: warning: unknown[185.162.235.113]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 15 12:56:27 mail postfix/smtpd[10009]: warning: unknown[185.162.235.113]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 15 13:00:43 mail postfix/smtpd[9986]: warning: unknown[185.162.235.113]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-15 20:33:59
167.172.242.90	attackspambots	Mail/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2019-11-15 21:00:18
178.124.161.75	attackspam	Automatic report - Banned IP Access	2019-11-15 20:41:37
111.75.253.76	attackbotsspam	Nov 15 07:19:43 MK-Soft-VM5 sshd[18127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.75.253.76 Nov 15 07:19:44 MK-Soft-VM5 sshd[18127]: Failed password for invalid user chopper1 from 111.75.253.76 port 52180 ssh2 ...	2019-11-15 21:10:46
68.183.204.162	attackspambots	Nov 15 10:55:30 tuxlinux sshd[41956]: Invalid user aigneis from 68.183.204.162 port 60348 Nov 15 10:55:30 tuxlinux sshd[41956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.204.162 Nov 15 10:55:30 tuxlinux sshd[41956]: Invalid user aigneis from 68.183.204.162 port 60348 Nov 15 10:55:30 tuxlinux sshd[41956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.204.162 Nov 15 10:55:30 tuxlinux sshd[41956]: Invalid user aigneis from 68.183.204.162 port 60348 Nov 15 10:55:30 tuxlinux sshd[41956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.204.162 Nov 15 10:55:31 tuxlinux sshd[41956]: Failed password for invalid user aigneis from 68.183.204.162 port 60348 ssh2 ...	2019-11-15 21:06:38
190.85.234.215	attackspambots	Nov 14 22:17:22 hanapaa sshd\[9950\]: Invalid user zaq1@WSX from 190.85.234.215 Nov 14 22:17:22 hanapaa sshd\[9950\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.85.234.215 Nov 14 22:17:24 hanapaa sshd\[9950\]: Failed password for invalid user zaq1@WSX from 190.85.234.215 port 38970 ssh2 Nov 14 22:21:37 hanapaa sshd\[10245\]: Invalid user 123456 from 190.85.234.215 Nov 14 22:21:37 hanapaa sshd\[10245\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.85.234.215	2019-11-15 20:36:05

Recently Reported IPs

122.176.83.72	122.176.57.247	122.118.25.169	118.164.216.11
121.164.252.197	121.149.48.74	121.78.145.241	13.7.217.106
120.146.39.194	119.62.73.24	160.132.142.218	119.42.119.49
210.72.106.174	73.38.142.152	118.172.151.126	173.242.119.199
63.5.127.12	124.186.179.167	124.80.194.83	118.168.54.191