54.242.172.95 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.242.172.95
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2331
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;54.242.172.95.			IN	A

;; AUTHORITY SECTION:
.			265	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091600 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 16 21:35:49 CST 2022
;; MSG SIZE  rcvd: 106

Host info

95.172.242.54.in-addr.arpa domain name pointer ec2-54-242-172-95.compute-1.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
95.172.242.54.in-addr.arpa	name = ec2-54-242-172-95.compute-1.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
87.251.74.46	attackbots	Jun 16 14:00:16 webctf kernel: [475075.443154] [UFW BLOCK] IN=ens3 OUT= MAC=fa:16:3e:1e:56:95:da:da:88:24:bd:ed:08:00 SRC=87.251.74.46 DST=137.74.115.118 LEN=40 TOS=0x00 PREC=0xE0 TTL=242 ID=44850 PROTO=TCP SPT=48608 DPT=16243 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 16 14:00:32 webctf kernel: [475091.552580] [UFW BLOCK] IN=ens3 OUT= MAC=fa:16:3e:1e:56:95:da:da:88:24:bd:ed:08:00 SRC=87.251.74.46 DST=137.74.115.118 LEN=40 TOS=0x00 PREC=0xE0 TTL=242 ID=32162 PROTO=TCP SPT=48608 DPT=17538 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 16 14:05:06 webctf kernel: [475364.873297] [UFW BLOCK] IN=ens3 OUT= MAC=fa:16:3e:1e:56:95:da:da:88:24:bd:ed:08:00 SRC=87.251.74.46 DST=137.74.115.118 LEN=40 TOS=0x00 PREC=0xE0 TTL=242 ID=37853 PROTO=TCP SPT=48608 DPT=15974 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 16 14:08:36 webctf kernel: [475574.950537] [UFW BLOCK] IN=ens3 OUT= MAC=fa:16:3e:1e:56:95:da:da:88:24:bd:ed:08:00 SRC=87.251.74.46 DST=137.74.115.118 LEN=40 TOS=0x00 PREC=0xE0 TTL=242 ID=2817 PROTO=TCP SPT=48608 DPT= ...	2020-06-16 22:47:21
62.83.12.126	attackspambots	Jun 16 10:23:08 vps46666688 sshd[8171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.83.12.126 Jun 16 10:23:10 vps46666688 sshd[8171]: Failed password for invalid user btc from 62.83.12.126 port 33252 ssh2 ...	2020-06-16 22:54:01
138.197.196.221	attackspam	Total attacks: 2	2020-06-16 23:06:12
156.38.174.244	attackbots	Jun 16 16:23:14 OPSO sshd\[30805\]: Invalid user ftpuser from 156.38.174.244 port 46964 Jun 16 16:23:14 OPSO sshd\[30805\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.38.174.244 Jun 16 16:23:16 OPSO sshd\[30805\]: Failed password for invalid user ftpuser from 156.38.174.244 port 46964 ssh2 Jun 16 16:27:52 OPSO sshd\[31738\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.38.174.244 user=root Jun 16 16:27:54 OPSO sshd\[31738\]: Failed password for root from 156.38.174.244 port 49122 ssh2	2020-06-16 23:11:28
222.186.30.76	attack	2020-06-16T14:40:09.172356abusebot-4.cloudsearch.cf sshd[25587]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.76 user=root 2020-06-16T14:40:11.177204abusebot-4.cloudsearch.cf sshd[25587]: Failed password for root from 222.186.30.76 port 21499 ssh2 2020-06-16T14:40:13.737703abusebot-4.cloudsearch.cf sshd[25587]: Failed password for root from 222.186.30.76 port 21499 ssh2 2020-06-16T14:40:09.172356abusebot-4.cloudsearch.cf sshd[25587]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.76 user=root 2020-06-16T14:40:11.177204abusebot-4.cloudsearch.cf sshd[25587]: Failed password for root from 222.186.30.76 port 21499 ssh2 2020-06-16T14:40:13.737703abusebot-4.cloudsearch.cf sshd[25587]: Failed password for root from 222.186.30.76 port 21499 ssh2 2020-06-16T14:40:09.172356abusebot-4.cloudsearch.cf sshd[25587]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruse ...	2020-06-16 22:43:57
171.244.22.78	attackspambots	SSH/22 MH Probe, BF, Hack -	2020-06-16 23:14:59
222.186.42.155	attack	Jun 16 17:12:14 ovpn sshd\[6980\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.155 user=root Jun 16 17:12:15 ovpn sshd\[6980\]: Failed password for root from 222.186.42.155 port 60091 ssh2 Jun 16 17:12:23 ovpn sshd\[7018\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.155 user=root Jun 16 17:12:25 ovpn sshd\[7018\]: Failed password for root from 222.186.42.155 port 29131 ssh2 Jun 16 17:12:27 ovpn sshd\[7018\]: Failed password for root from 222.186.42.155 port 29131 ssh2	2020-06-16 23:19:44
111.93.200.50	attackbotsspam	Jun 16 16:22:55 jane sshd[10277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.200.50 Jun 16 16:22:58 jane sshd[10277]: Failed password for invalid user user from 111.93.200.50 port 39654 ssh2 ...	2020-06-16 23:15:43
167.71.172.167	attack	Jun 16 14:07:11 admin sendmail[22047]: 05GC7BaT022047: semo-07.gz-s-6vcpu-16gb-nyc3-01 [167.71.172.167] (may be forged) did not issue MAIL/EXPN/VRFY/ETRN during connection to MTA Jun 16 14:07:17 admin sendmail[22063]: 05GC7FpX022063: semo-07.gz-s-6vcpu-16gb-nyc3-01 [167.71.172.167] (may be forged) did not issue MAIL/EXPN/VRFY/ETRN during connection to MTA Jun 16 14:07:17 admin sendmail[22056]: 05GC7Dtr022056: semo-07.gz-s-6vcpu-16gb-nyc3-01 [167.71.172.167] (may be forged) did not issue MAIL/EXPN/VRFY/ETRN during connection to MTA Jun 16 14:07:17 admin sendmail[22064]: 05GC7Fat022064: semo-07.gz-s-6vcpu-16gb-nyc3-01 [167.71.172.167] (may be forged) did not issue MAIL/EXPN/VRFY/ETRN during connection to MTA Jun 16 14:07:17 admin sendmail[22052]: 05GC7CFb022052: semo-07.gz-s-6vcpu-16gb-nyc3-01 [167.71.172.167] (may be forged) did not issue MAIL/EXPN/VRFY/ETRN during connection to MTA Jun 16 14:07:17 admin sendmail[22054]: 05GC7Co2022054: semo-07.gz-s-6vcpu-16gb-nyc3-01 [16........ ------------------------------	2020-06-16 23:08:29
101.91.198.130	attackspam	Jun 16 16:45:31 abendstille sshd\[22262\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.91.198.130 user=root Jun 16 16:45:33 abendstille sshd\[22262\]: Failed password for root from 101.91.198.130 port 50864 ssh2 Jun 16 16:50:06 abendstille sshd\[26987\]: Invalid user dragon from 101.91.198.130 Jun 16 16:50:06 abendstille sshd\[26987\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.91.198.130 Jun 16 16:50:07 abendstille sshd\[26987\]: Failed password for invalid user dragon from 101.91.198.130 port 39811 ssh2 ...	2020-06-16 23:06:54
202.103.37.40	attack	Bruteforce detected by fail2ban	2020-06-16 23:16:33
177.11.138.165	attackbotsspam	Jun 16 15:17:05 mail.srvfarm.net postfix/smtpd[168689]: warning: 165-138-11-177.raimax.com.br[177.11.138.165]: SASL PLAIN authentication failed: Jun 16 15:17:05 mail.srvfarm.net postfix/smtpd[168689]: lost connection after AUTH from 165-138-11-177.raimax.com.br[177.11.138.165] Jun 16 15:23:10 mail.srvfarm.net postfix/smtpd[189811]: lost connection after CONNECT from 165-138-11-177.raimax.com.br[177.11.138.165] Jun 16 15:23:13 mail.srvfarm.net postfix/smtpd[189858]: warning: 165-138-11-177.raimax.com.br[177.11.138.165]: SASL PLAIN authentication failed: Jun 16 15:23:13 mail.srvfarm.net postfix/smtpd[189858]: lost connection after AUTH from 165-138-11-177.raimax.com.br[177.11.138.165]	2020-06-16 23:17:26
141.98.81.42	attack	Jun 16 16:19:59 haigwepa sshd[23596]: Failed password for root from 141.98.81.42 port 26677 ssh2 ...	2020-06-16 22:40:16
119.29.187.218	attackspam	Jun 16 09:18:12 ws12vmsma01 sshd[23864]: Invalid user solr from 119.29.187.218 Jun 16 09:18:13 ws12vmsma01 sshd[23864]: Failed password for invalid user solr from 119.29.187.218 port 47371 ssh2 Jun 16 09:21:32 ws12vmsma01 sshd[24361]: Invalid user fmaster from 119.29.187.218 ...	2020-06-16 23:06:38
119.204.112.229	attackspam	Jun 16 08:30:26 mail sshd\[33902\]: Invalid user hannes from 119.204.112.229 Jun 16 08:30:26 mail sshd\[33902\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.204.112.229 ...	2020-06-16 22:49:36

Recently Reported IPs

41.215.217.157	111.175.75.63	171.96.25.193	220.198.115.21
210.99.3.9	151.37.196.210	1.14.100.146	222.129.136.225
45.153.165.154	134.209.154.203	106.55.24.132	200.98.81.47
201.105.141.179	1.20.93.112	20.43.57.71	114.216.199.63
117.60.42.251	103.153.35.25	38.7.16.196	128.90.167.74