54.179.138.130

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Amazon Technologies Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	2020-08-21T00:30:00.038482lavrinenko.info sshd[882]: Invalid user spark from 54.179.138.130 port 59706 2020-08-21T00:30:00.047858lavrinenko.info sshd[882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.179.138.130 2020-08-21T00:30:00.038482lavrinenko.info sshd[882]: Invalid user spark from 54.179.138.130 port 59706 2020-08-21T00:30:02.289620lavrinenko.info sshd[882]: Failed password for invalid user spark from 54.179.138.130 port 59706 ssh2 2020-08-21T00:34:50.301937lavrinenko.info sshd[1042]: Invalid user postgres from 54.179.138.130 port 47292 ...	2020-08-21 05:59:34

Type

Details

Datetime

attack

2020-08-21T00:30:00.038482lavrinenko.info sshd[882]: Invalid user spark from 54.179.138.130 port 59706
2020-08-21T00:30:00.047858lavrinenko.info sshd[882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.179.138.130
2020-08-21T00:30:00.038482lavrinenko.info sshd[882]: Invalid user spark from 54.179.138.130 port 59706
2020-08-21T00:30:02.289620lavrinenko.info sshd[882]: Failed password for invalid user spark from 54.179.138.130 port 59706 ssh2
2020-08-21T00:34:50.301937lavrinenko.info sshd[1042]: Invalid user postgres from 54.179.138.130 port 47292
...

2020-08-21 05:59:34

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.179.138.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18711
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;54.179.138.130.			IN	A

;; AUTHORITY SECTION:
.			203	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081701 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Aug 18 10:40:38 CST 2020
;; MSG SIZE  rcvd: 118

Host info

130.138.179.54.in-addr.arpa domain name pointer ec2-54-179-138-130.ap-southeast-1.compute.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
130.138.179.54.in-addr.arpa	name = ec2-54-179-138-130.ap-southeast-1.compute.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
14.29.232.82	attackbotsspam	May 15 00:38:58 legacy sshd[18119]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.232.82 May 15 00:39:00 legacy sshd[18119]: Failed password for invalid user seago from 14.29.232.82 port 33597 ssh2 May 15 00:43:34 legacy sshd[18336]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.232.82 ...	2020-05-15 07:42:00
111.254.72.252	attack	Port probing on unauthorized port 23	2020-05-15 07:33:40
162.243.143.168	attackspambots	1589489626 - 05/15/2020 03:53:46 Host: zg-0428c-573.stretchoid.com/162.243.143.168 Port: 20 TCP Blocked ...	2020-05-15 07:34:11
159.89.97.23	attack	May 15 01:14:27 server sshd[16690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.97.23 May 15 01:14:30 server sshd[16690]: Failed password for invalid user marco from 159.89.97.23 port 43606 ssh2 May 15 01:18:03 server sshd[16987]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.97.23 ...	2020-05-15 07:25:34
14.18.78.175	attackbotsspam	May 14 14:53:24 Host-KLAX-C sshd[26538]: Invalid user oper from 14.18.78.175 port 44846 ...	2020-05-15 07:48:29
49.235.134.46	attackbotsspam	2020-05-14T22:56:31.592310amanda2.illicoweb.com sshd\[3110\]: Invalid user deploy from 49.235.134.46 port 60172 2020-05-14T22:56:31.597560amanda2.illicoweb.com sshd\[3110\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.134.46 2020-05-14T22:56:33.948860amanda2.illicoweb.com sshd\[3110\]: Failed password for invalid user deploy from 49.235.134.46 port 60172 ssh2 2020-05-14T23:01:13.081704amanda2.illicoweb.com sshd\[3543\]: Invalid user mc from 49.235.134.46 port 52950 2020-05-14T23:01:13.087066amanda2.illicoweb.com sshd\[3543\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.134.46 ...	2020-05-15 07:54:50
124.232.133.205	attackbotsspam	Invalid user user from 124.232.133.205 port 49411	2020-05-15 07:22:38
207.180.250.154	attackspam	20/5/14@16:54:01: FAIL: Alarm-SSH address from=207.180.250.154 ...	2020-05-15 07:23:44
213.148.201.59	attackspam	Port probing on unauthorized port 3389	2020-05-15 07:44:24
167.114.226.137	attackbots	May 15 01:41:37 pve1 sshd[2979]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.226.137 May 15 01:41:39 pve1 sshd[2979]: Failed password for invalid user clamav from 167.114.226.137 port 55109 ssh2 ...	2020-05-15 07:50:04
124.250.83.16	attackbots	May 14 23:54:09 h1745522 sshd[13854]: Invalid user postgres from 124.250.83.16 port 39416 May 14 23:54:09 h1745522 sshd[13854]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.250.83.16 May 14 23:54:09 h1745522 sshd[13854]: Invalid user postgres from 124.250.83.16 port 39416 May 14 23:54:11 h1745522 sshd[13854]: Failed password for invalid user postgres from 124.250.83.16 port 39416 ssh2 May 14 23:57:38 h1745522 sshd[14091]: Invalid user uwsgi from 124.250.83.16 port 21202 May 14 23:57:38 h1745522 sshd[14091]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.250.83.16 May 14 23:57:38 h1745522 sshd[14091]: Invalid user uwsgi from 124.250.83.16 port 21202 May 14 23:57:41 h1745522 sshd[14091]: Failed password for invalid user uwsgi from 124.250.83.16 port 21202 ssh2 May 15 00:00:58 h1745522 sshd[15515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.250.83.16 ...	2020-05-15 07:54:04
49.233.92.34	attack	Invalid user hxhtftp from 49.233.92.34 port 40244	2020-05-15 07:45:10
14.186.35.65	attack	Attempts against SMTP/SSMTP	2020-05-15 07:36:19
110.166.82.138	attackspambots	Invalid user vps from 110.166.82.138 port 45984	2020-05-15 07:57:15
151.80.173.36	attack	(sshd) Failed SSH login from 151.80.173.36 (CZ/Czechia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 15 00:50:32 s1 sshd[30743]: Invalid user csgo from 151.80.173.36 port 59239 May 15 00:50:35 s1 sshd[30743]: Failed password for invalid user csgo from 151.80.173.36 port 59239 ssh2 May 15 00:55:11 s1 sshd[31257]: Invalid user git from 151.80.173.36 port 42101 May 15 00:55:12 s1 sshd[31257]: Failed password for invalid user git from 151.80.173.36 port 42101 ssh2 May 15 00:58:35 s1 sshd[31721]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.173.36 user=adm	2020-05-15 07:43:51

Recently Reported IPs

154.102.246.169	148.118.236.135	158.140.201.253	56.114.153.204
199.76.85.57	28.236.134.13	130.98.67.135	75.98.249.134
112.233.30.130	73.73.178.9	159.6.158.111	122.181.54.114
255.173.102.21	117.214.15.109	201.71.12.254	124.122.41.8
114.232.225.146	36.92.107.2	231.180.200.73	14.243.185.250