54.214.121.191

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Amazon.com Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	SSH login attempts.	2020-05-28 12:26:57

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.214.121.191
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57792
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;54.214.121.191.			IN	A

;; AUTHORITY SECTION:
.			597	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052702 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 28 12:26:52 CST 2020
;; MSG SIZE  rcvd: 118

Host info

191.121.214.54.in-addr.arpa domain name pointer ec2-54-214-121-191.us-west-2.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
191.121.214.54.in-addr.arpa	name = ec2-54-214-121-191.us-west-2.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.27.14.233	attack	4989/tcp [2020-08-30]1pkt	2020-08-31 05:40:34
46.101.233.248	attack	4065/tcp [2020-08-30]1pkt	2020-08-31 05:28:03
92.44.6.91	attackspam	DATE:2020-08-30 22:37:03, IP:92.44.6.91, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2020-08-31 05:38:25
222.186.175.202	attack	(sshd) Failed SSH login from 222.186.175.202 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 30 17:19:51 server sshd[20106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202 user=root Aug 30 17:19:52 server sshd[20116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202 user=root Aug 30 17:19:52 server sshd[20108]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202 user=root Aug 30 17:19:53 server sshd[20106]: Failed password for root from 222.186.175.202 port 47564 ssh2 Aug 30 17:19:53 server sshd[20116]: Failed password for root from 222.186.175.202 port 17552 ssh2	2020-08-31 05:22:21
45.142.120.166	attackspam	2020-08-30 23:18:51 dovecot_login authenticator failed for \(User\) \[45.142.120.166\]: 535 Incorrect authentication data 2020-08-30 23:18:51 dovecot_login authenticator failed for \(User\) \[45.142.120.166\]: 535 Incorrect authentication data 2020-08-30 23:23:48 dovecot_login authenticator failed for \(User\) \[45.142.120.166\]: 535 Incorrect authentication data \(set_id=students@no-server.de\) 2020-08-30 23:23:49 dovecot_login authenticator failed for \(User\) \[45.142.120.166\]: 535 Incorrect authentication data \(set_id=students@no-server.de\) 2020-08-30 23:23:57 dovecot_login authenticator failed for \(User\) \[45.142.120.166\]: 535 Incorrect authentication data \(set_id=students@no-server.de\) ...	2020-08-31 05:30:03
59.52.36.182	attackspambots	445/tcp 445/tcp [2020-08-30]2pkt	2020-08-31 05:45:30
199.195.196.4	attackbotsspam	Aug 30 22:30:13 cp sshd[25175]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.195.196.4 Aug 30 22:30:15 cp sshd[25175]: Failed password for invalid user andres from 199.195.196.4 port 37600 ssh2 Aug 30 22:37:23 cp sshd[29015]: Failed password for root from 199.195.196.4 port 55126 ssh2	2020-08-31 05:18:56
167.71.224.234	attackspam	various attack	2020-08-31 05:40:00
103.14.229.39	attackspam	Invalid user tomcat from 103.14.229.39 port 47542	2020-08-31 05:42:17
109.195.139.50	attack	23/tcp [2020-08-30]1pkt	2020-08-31 05:20:26
139.199.189.158	attackspam	Aug 30 22:31:16 minden010 sshd[6081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.189.158 Aug 30 22:31:18 minden010 sshd[6081]: Failed password for invalid user appuser from 139.199.189.158 port 50124 ssh2 Aug 30 22:39:25 minden010 sshd[9002]: Failed password for root from 139.199.189.158 port 40276 ssh2 ...	2020-08-31 05:20:04
188.226.192.115	attackbotsspam	Tried sshing with brute force.	2020-08-31 05:52:34
64.184.29.138	attackspam	1598819839 - 08/30/2020 22:37:19 Host: 64.184.29.138/64.184.29.138 Port: 445 TCP Blocked	2020-08-31 05:21:48
192.241.235.97	attackspambots	Port Scan detected! ...	2020-08-31 05:51:27
222.186.180.6	attack	Aug 30 23:22:20 piServer sshd[3660]: Failed password for root from 222.186.180.6 port 58898 ssh2 Aug 30 23:22:25 piServer sshd[3660]: Failed password for root from 222.186.180.6 port 58898 ssh2 Aug 30 23:22:29 piServer sshd[3660]: Failed password for root from 222.186.180.6 port 58898 ssh2 Aug 30 23:22:34 piServer sshd[3660]: Failed password for root from 222.186.180.6 port 58898 ssh2 ...	2020-08-31 05:43:14

Recently Reported IPs

18.218.35.7	184.170.212.94	95.181.178.4	203.39.96.163
229.42.55.241	95.216.62.102	113.69.204.187	178.75.109.227
35.220.162.79	111.67.84.174	59.103.108.20	148.70.223.218
18.223.98.209	103.199.16.133	149.13.115.194	85.105.96.64
46.43.213.207	141.237.61.248	139.199.85.241	255.117.206.122