54.169.21.171 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
54.169.217.119	attack	Jul 17 14:46:59 master sshd[13779]: Failed password for invalid user luo from 54.169.217.119 port 50420 ssh2 Jul 17 14:58:37 master sshd[13881]: Failed password for invalid user info from 54.169.217.119 port 33126 ssh2 Jul 17 15:02:40 master sshd[14325]: Failed password for invalid user test from 54.169.217.119 port 45976 ssh2 Jul 17 15:06:52 master sshd[14351]: Failed password for invalid user dan from 54.169.217.119 port 58824 ssh2 Jul 17 15:11:04 master sshd[14465]: Failed password for invalid user samira from 54.169.217.119 port 43430 ssh2	2020-07-17 23:00:41
54.169.211.28	attackspam	Lines containing failures of 54.169.211.28 May 13 06:10:10 www sshd[9479]: Invalid user ubuntu from 54.169.211.28 port 35084 May 13 06:10:10 www sshd[9479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.169.211.28 May 13 06:10:12 www sshd[9479]: Failed password for invalid user ubuntu from 54.169.211.28 port 35084 ssh2 May 13 06:10:13 www sshd[9479]: Received disconnect from 54.169.211.28 port 35084:11: Bye Bye [preauth] May 13 06:10:13 www sshd[9479]: Disconnected from invalid user ubuntu 54.169.211.28 port 35084 [preauth] May 13 06:25:24 www sshd[12114]: Invalid user net from 54.169.211.28 port 34574 May 13 06:25:24 www sshd[12114]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.169.211.28 May 13 06:25:26 www sshd[12114]: Failed password for invalid user net from 54.169.211.28 port 34574 ssh2 May 13 06:25:26 www sshd[12114]: Received disconnect from 54.169.211.28 port 34574:11: Bye........ ------------------------------	2020-05-15 07:00:08

Type

Details

Datetime

54.169.217.119

attack

Jul 17 14:46:59 master sshd[13779]: Failed password for invalid user luo from 54.169.217.119 port 50420 ssh2
Jul 17 14:58:37 master sshd[13881]: Failed password for invalid user info from 54.169.217.119 port 33126 ssh2
Jul 17 15:02:40 master sshd[14325]: Failed password for invalid user test from 54.169.217.119 port 45976 ssh2
Jul 17 15:06:52 master sshd[14351]: Failed password for invalid user dan from 54.169.217.119 port 58824 ssh2
Jul 17 15:11:04 master sshd[14465]: Failed password for invalid user samira from 54.169.217.119 port 43430 ssh2

2020-07-17 23:00:41

54.169.211.28

attackspam

Lines containing failures of 54.169.211.28
May 13 06:10:10 www sshd[9479]: Invalid user ubuntu from 54.169.211.28 port 35084
May 13 06:10:10 www sshd[9479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.169.211.28
May 13 06:10:12 www sshd[9479]: Failed password for invalid user ubuntu from 54.169.211.28 port 35084 ssh2
May 13 06:10:13 www sshd[9479]: Received disconnect from 54.169.211.28 port 35084:11: Bye Bye [preauth]
May 13 06:10:13 www sshd[9479]: Disconnected from invalid user ubuntu 54.169.211.28 port 35084 [preauth]
May 13 06:25:24 www sshd[12114]: Invalid user net from 54.169.211.28 port 34574
May 13 06:25:24 www sshd[12114]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.169.211.28
May 13 06:25:26 www sshd[12114]: Failed password for invalid user net from 54.169.211.28 port 34574 ssh2
May 13 06:25:26 www sshd[12114]: Received disconnect from 54.169.211.28 port 34574:11: Bye........
------------------------------

2020-05-15 07:00:08

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.169.21.171
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34491
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;54.169.21.171.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012600 1800 900 604800 86400

;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 27 00:06:14 CST 2025
;; MSG SIZE  rcvd: 106

Host info

171.21.169.54.in-addr.arpa domain name pointer ec2-54-169-21-171.ap-southeast-1.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
171.21.169.54.in-addr.arpa	name = ec2-54-169-21-171.ap-southeast-1.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
80.91.176.139	attack	Dec 14 06:37:35 wbs sshd\[22066\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.91.176.139 user=root Dec 14 06:37:38 wbs sshd\[22066\]: Failed password for root from 80.91.176.139 port 41179 ssh2 Dec 14 06:43:25 wbs sshd\[22717\]: Invalid user jacoby from 80.91.176.139 Dec 14 06:43:25 wbs sshd\[22717\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.91.176.139 Dec 14 06:43:27 wbs sshd\[22717\]: Failed password for invalid user jacoby from 80.91.176.139 port 46062 ssh2	2019-12-15 02:05:30
178.210.175.180	attackspam	GET /wp-admin/network/site-new.php	2019-12-15 01:33:54
1.247.109.136	attackbots	Caught in portsentry honeypot	2019-12-15 02:06:35
77.81.178.67	attackspambots	POST /login/ Attempting to login via port 2083. No user agent.	2019-12-15 01:38:47
202.151.30.141	attack	Dec 14 07:34:03 eddieflores sshd\[10343\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.151.30.141 user=root Dec 14 07:34:05 eddieflores sshd\[10343\]: Failed password for root from 202.151.30.141 port 37266 ssh2 Dec 14 07:41:52 eddieflores sshd\[11131\]: Invalid user paillet from 202.151.30.141 Dec 14 07:41:52 eddieflores sshd\[11131\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.151.30.141 Dec 14 07:41:54 eddieflores sshd\[11131\]: Failed password for invalid user paillet from 202.151.30.141 port 43634 ssh2	2019-12-15 02:13:03
222.186.175.216	attack	Dec 14 19:07:14 legacy sshd[14056]: Failed password for root from 222.186.175.216 port 55304 ssh2 Dec 14 19:07:18 legacy sshd[14056]: Failed password for root from 222.186.175.216 port 55304 ssh2 Dec 14 19:07:20 legacy sshd[14056]: Failed password for root from 222.186.175.216 port 55304 ssh2 Dec 14 19:07:27 legacy sshd[14056]: error: maximum authentication attempts exceeded for root from 222.186.175.216 port 55304 ssh2 [preauth] ...	2019-12-15 02:10:37
217.182.95.16	attackbots	--- report --- Dec 14 14:58:19 sshd: Connection from 217.182.95.16 port 53742 Dec 14 14:58:20 sshd: Invalid user anjan from 217.182.95.16 Dec 14 14:58:20 sshd: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.95.16 Dec 14 14:58:21 sshd: Failed password for invalid user anjan from 217.182.95.16 port 53742 ssh2 Dec 14 14:58:22 sshd: Received disconnect from 217.182.95.16: 11: Bye Bye [preauth]	2019-12-15 02:12:30
163.44.197.47	attackbotsspam	POST /login/ Attempting to login via port 2083. No user agent.	2019-12-15 01:47:23
51.255.35.41	attack	Dec 14 18:57:58 meumeu sshd[31478]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.35.41 Dec 14 18:57:59 meumeu sshd[31478]: Failed password for invalid user mariaisabel from 51.255.35.41 port 39878 ssh2 Dec 14 19:03:09 meumeu sshd[32532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.35.41 ...	2019-12-15 02:05:50
167.172.103.66	attackbots	/xmlrpc.php /wp-includes/wlwmanifest.xml /2015/wp-includes/wlwmanifest.xml /2016/wp-includes/wlwmanifest.xml /2017/wp-includes/wlwmanifest.xml /2018/wp-includes/wlwmanifest.xml /blog/wp-includes/wlwmanifest.xml /cms/wp-includes/wlwmanifest.xml /media/wp-includes/wlwmanifest.xml /news/wp-includes/wlwmanifest.xml /shop/wp-includes/wlwmanifest.xml /site/wp-includes/wlwmanifest.xml /sito/wp-includes/wlwmanifest.xml /test/wp-includes/wlwmanifest.xml /web/wp-includes/wlwmanifest.xml /website/wp-includes/wlwmanifest.xml /wordpress/wp-includes/wlwmanifest.xml /wp/wp-includes/wlwmanifest.xml /wp1/wp-includes/wlwmanifest.xml /wp2/wp-includes/wlwmanifest.xml	2019-12-15 01:46:16
35.223.174.202	attackbotsspam	//.env //clients/.env //laravel/.env //laravel-sites/.env //public/.env	2019-12-15 01:42:42
115.238.229.15	attackspam	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2019-12-15 02:07:26
134.175.183.168	attackspam	POST request to home page. No user agent.	2019-12-15 01:49:55
80.82.64.214	attackspam	19/12/14@11:18:32: FAIL: IoT-SSH address from=80.82.64.214 ...	2019-12-15 01:54:05
200.219.177.227	attackbotsspam	1576334616 - 12/14/2019 15:43:36 Host: 200.219.177.227/200.219.177.227 Port: 445 TCP Blocked	2019-12-15 02:03:53

Recently Reported IPs

132.55.201.65	201.199.43.96	236.135.49.45	138.75.249.118
88.245.246.18	6.115.57.150	196.242.195.64	119.169.79.59
146.160.140.27	29.215.160.97	47.94.44.249	85.61.0.77
163.107.110.161	136.14.92.253	160.123.47.179	238.113.210.44
234.38.141.150	165.228.149.121	238.125.92.84	224.47.19.143