54.91.28.214 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Amazon Technologies Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Port Scan: TCP/443	2019-09-03 03:24:42

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.91.28.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60384
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;54.91.28.214.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090201 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Sep 03 03:24:37 CST 2019
;; MSG SIZE  rcvd: 116

Host info

214.28.91.54.in-addr.arpa domain name pointer ec2-54-91-28-214.compute-1.amazonaws.com.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
214.28.91.54.in-addr.arpa	name = ec2-54-91-28-214.compute-1.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
104.245.145.13	attackbots	rfi injection: ftp://sergievs:sergievs@sergievs.50webs.org/envi.php?	2019-10-29 21:38:39
122.55.90.45	attack	Oct 29 18:41:41 gw1 sshd[24106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.55.90.45 Oct 29 18:41:42 gw1 sshd[24106]: Failed password for invalid user test from 122.55.90.45 port 39906 ssh2 ...	2019-10-29 21:48:29
203.177.60.238	attackspam	DATE:2019-10-29 12:40:02, IP:203.177.60.238, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-10-29 21:36:11
103.81.192.22	attackbots	TCP Port Scanning	2019-10-29 21:43:36
106.12.108.32	attackbots	2019-10-29T13:58:04.780146abusebot-2.cloudsearch.cf sshd\[3772\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.108.32 user=root	2019-10-29 22:00:24
59.120.189.234	attackbots	Oct 29 13:14:41 game-panel sshd[3689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.120.189.234 Oct 29 13:14:43 game-panel sshd[3689]: Failed password for invalid user zun from 59.120.189.234 port 41282 ssh2 Oct 29 13:18:39 game-panel sshd[3867]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.120.189.234	2019-10-29 22:10:03
106.12.199.24	attackbots	Invalid user admin from 106.12.199.24 port 60724	2019-10-29 21:46:33
82.9.30.6	attackspam	Port Scan	2019-10-29 21:50:59
218.92.0.210	attackspam	Oct 29 14:35:07 ArkNodeAT sshd\[14623\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.210 user=root Oct 29 14:35:10 ArkNodeAT sshd\[14623\]: Failed password for root from 218.92.0.210 port 57667 ssh2 Oct 29 14:35:12 ArkNodeAT sshd\[14623\]: Failed password for root from 218.92.0.210 port 57667 ssh2	2019-10-29 21:37:04
106.13.101.220	attack	2019-10-29T14:32:34.029717scmdmz1 sshd\[8962\]: Invalid user vpnuser1 from 106.13.101.220 port 49430 2019-10-29T14:32:34.032808scmdmz1 sshd\[8962\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.101.220 2019-10-29T14:32:36.311194scmdmz1 sshd\[8962\]: Failed password for invalid user vpnuser1 from 106.13.101.220 port 49430 ssh2 ...	2019-10-29 21:38:18
115.68.220.10	attack	2019-10-29T14:23:43.276538scmdmz1 sshd\[7977\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.68.220.10 user=root 2019-10-29T14:23:44.992707scmdmz1 sshd\[7977\]: Failed password for root from 115.68.220.10 port 47612 ssh2 2019-10-29T14:27:40.708050scmdmz1 sshd\[8288\]: Invalid user homework from 115.68.220.10 port 50818 ...	2019-10-29 21:39:58
188.166.150.17	attack	Oct 29 12:39:58 lnxmysql61 sshd[32432]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.150.17	2019-10-29 21:41:48
106.12.193.39	attackbotsspam	Oct 29 14:37:58 sd-53420 sshd\[11824\]: Invalid user 123456 from 106.12.193.39 Oct 29 14:37:58 sd-53420 sshd\[11824\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.193.39 Oct 29 14:38:00 sd-53420 sshd\[11824\]: Failed password for invalid user 123456 from 106.12.193.39 port 39476 ssh2 Oct 29 14:44:07 sd-53420 sshd\[12284\]: Invalid user Admin12 from 106.12.193.39 Oct 29 14:44:07 sd-53420 sshd\[12284\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.193.39 ...	2019-10-29 21:51:16
202.164.48.202	attackspam	Oct 29 14:12:13 vps691689 sshd[21417]: Failed password for root from 202.164.48.202 port 60669 ssh2 Oct 29 14:17:06 vps691689 sshd[21514]: Failed password for root from 202.164.48.202 port 51840 ssh2 ...	2019-10-29 22:01:15
217.12.221.131	attackspam	Chat Spam	2019-10-29 22:13:19

Recently Reported IPs

24.230.115.239	160.250.223.239	187.109.168.98	185.118.197.124
162.243.170.51	124.226.149.71	13.235.146.167	163.218.91.125
177.130.136.19	91.203.61.33	19.75.57.114	119.103.159.121
31.170.237.218	86.106.118.247	247.235.139.74	121.234.25.189
200.36.180.242	194.132.235.86	122.199.197.245	114.47.74.73