54.81.92.54 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.81.92.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53872
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;54.81.92.54.			IN	A

;; AUTHORITY SECTION:
.			218	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 22:54:40 CST 2022
;; MSG SIZE  rcvd: 104

Host info

54.92.81.54.in-addr.arpa domain name pointer ec2-54-81-92-54.compute-1.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
54.92.81.54.in-addr.arpa	name = ec2-54-81-92-54.compute-1.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
174.138.6.123	attack	IP attempted unauthorised action	2019-06-28 15:17:11
176.87.107.52	attack	DATE:2019-06-28 07:15:44, IP:176.87.107.52, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2019-06-28 15:06:34
106.13.104.94	attackspambots	Jun 28 07:01:50 ns341937 sshd[14140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.104.94 Jun 28 07:01:52 ns341937 sshd[14140]: Failed password for invalid user css from 106.13.104.94 port 48983 ssh2 Jun 28 07:16:28 ns341937 sshd[16953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.104.94 ...	2019-06-28 14:47:10
158.69.198.102	attackspam	Reported by AbuseIPDB proxy server.	2019-06-28 14:44:15
200.111.237.78	attack	DATE:2019-06-28 07:13:24, IP:200.111.237.78, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc-bis)	2019-06-28 15:18:11
88.201.223.13	attack	[portscan] Port scan	2019-06-28 15:17:47
114.99.130.6	attack	Jun 28 00:16:09 mailman postfix/smtpd[31101]: warning: unknown[114.99.130.6]: SASL LOGIN authentication failed: authentication failure	2019-06-28 14:42:44
134.209.40.230	attackbots	SSH User Authentication Brute Force Attempt, PTR: PTR record not found	2019-06-28 14:45:42
191.240.24.136	attackbots	Brute force attempt	2019-06-28 15:28:35
193.112.253.200	attackspambots	[FriJun2807:15:33.5357292019][:error][pid6261:tid47523500697344][client193.112.253.200:56163][client193.112.253.200]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"390"][id"397989"][rev"1"][msg"Atomicorp.comWAFRules:MSIE6.0detected\(DisableifyouwanttoallowMSIE6\)"][severity"WARNING"][hostname"ledpiu.ch"][uri"/wp-content/plugins/woo-fiscalita-italiana/README.txt"][unique_id"XRWidX6Mstti-bzjhFssfAAAAFg"][FriJun2807:15:37.9166322019][:error][pid6263:tid47523395413760][client193.112.253.200:56408][client193.112.253.200]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"390"][id"397989"][rev"1"][m	2019-06-28 15:07:50
106.13.98.202	attackspam	Jun 28 07:15:26 bouncer sshd\[27990\]: Invalid user smbguest from 106.13.98.202 port 42670 Jun 28 07:15:26 bouncer sshd\[27990\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.98.202 Jun 28 07:15:28 bouncer sshd\[27990\]: Failed password for invalid user smbguest from 106.13.98.202 port 42670 ssh2 ...	2019-06-28 15:11:51
146.88.240.4	attackbotsspam	Scanning (more than 2 packets) random ports - tries to find possible vulnerable services	2019-06-28 14:44:45
128.92.50.18	attackspambots	Brute force attempt	2019-06-28 15:18:45
186.183.161.186	attackbots	Jun 28 07:13:24 mail sshd\[26368\]: Invalid user hank from 186.183.161.186 port 56656 Jun 28 07:13:24 mail sshd\[26368\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.183.161.186 Jun 28 07:13:27 mail sshd\[26368\]: Failed password for invalid user hank from 186.183.161.186 port 56656 ssh2 Jun 28 07:15:22 mail sshd\[31057\]: Invalid user riley from 186.183.161.186 port 48088 Jun 28 07:15:22 mail sshd\[31057\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.183.161.186 ...	2019-06-28 15:14:22
179.108.244.104	attack	SMTP-sasl brute force ...	2019-06-28 15:22:11

Recently Reported IPs

120.86.236.88	187.102.9.148	40.107.22.113	41.239.188.32
182.116.99.150	130.226.98.118	94.182.1.144	181.126.91.98
177.249.171.192	40.84.222.111	112.31.8.191	41.95.83.51
62.148.227.35	133.167.40.229	94.61.211.64	175.107.3.206
217.117.142.18	191.101.17.9	138.97.92.99	118.185.220.189