134.175.6.55 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Invalid user wu from 134.175.6.55 port 32788	2020-04-25 20:09:15

相同子网IP讨论:

IP	类型	评论内容	时间
134.175.68.129	attack	Fail2Ban Ban Triggered	2020-06-15 17:25:33
134.175.68.129	attack	Invalid user rtkit from 134.175.68.129 port 55702	2020-04-30 04:00:50
134.175.68.129	attackbots	Apr 19 13:57:34 vserver sshd\[12268\]: Invalid user qd from 134.175.68.129Apr 19 13:57:36 vserver sshd\[12268\]: Failed password for invalid user qd from 134.175.68.129 port 33228 ssh2Apr 19 14:05:08 vserver sshd\[12381\]: Invalid user br from 134.175.68.129Apr 19 14:05:11 vserver sshd\[12381\]: Failed password for invalid user br from 134.175.68.129 port 40404 ssh2 ...	2020-04-19 20:53:41
134.175.68.129	attack	Wordpress malicious attack:[sshd]	2020-04-18 14:20:21
134.175.68.129	attackbots	SSH brute force attempt @ 2020-04-09 18:33:10	2020-04-10 05:10:08
134.175.68.129	attackspambots	Apr 1 18:35:33 vps sshd[3594]: Failed password for root from 134.175.68.129 port 47094 ssh2 Apr 1 18:47:03 vps sshd[4285]: Failed password for root from 134.175.68.129 port 48760 ssh2 ...	2020-04-02 02:41:55
134.175.68.129	attack	Mar 28 05:08:40 itv-usvr-02 sshd[1882]: Invalid user gyh from 134.175.68.129 port 49640 Mar 28 05:08:40 itv-usvr-02 sshd[1882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.68.129 Mar 28 05:08:40 itv-usvr-02 sshd[1882]: Invalid user gyh from 134.175.68.129 port 49640 Mar 28 05:08:42 itv-usvr-02 sshd[1882]: Failed password for invalid user gyh from 134.175.68.129 port 49640 ssh2 Mar 28 05:14:25 itv-usvr-02 sshd[2168]: Invalid user ejv from 134.175.68.129 port 33080	2020-03-28 06:58:41
134.175.68.129	attack	Mar 19 02:14:31 srv206 sshd[12491]: Invalid user andrew from 134.175.68.129 ...	2020-03-19 09:58:30
134.175.60.216	attack	Invalid user lxd from 134.175.60.216 port 35286	2020-03-18 15:13:40
134.175.62.14	attackbots	fail2ban	2020-03-07 10:05:36
134.175.68.129	attack	SASL PLAIN auth failed: ruser=...	2020-03-07 09:11:10
134.175.68.129	attackbotsspam	Feb 22 21:44:05 gw1 sshd[10967]: Failed password for root from 134.175.68.129 port 36530 ssh2 ...	2020-02-23 03:02:57
134.175.68.129	attack	Feb 22 20:26:38 gw1 sshd[8599]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.68.129 Feb 22 20:26:40 gw1 sshd[8599]: Failed password for invalid user teste from 134.175.68.129 port 47492 ssh2 ...	2020-02-22 23:28:22
134.175.68.129	attackbotsspam	SSH Bruteforce attack	2020-02-20 03:18:47
134.175.68.129	attackspambots	Feb 18 14:01:40 hpm sshd\[998\]: Invalid user MYUSER from 134.175.68.129 Feb 18 14:01:40 hpm sshd\[998\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.68.129 Feb 18 14:01:42 hpm sshd\[998\]: Failed password for invalid user MYUSER from 134.175.68.129 port 54428 ssh2 Feb 18 14:05:11 hpm sshd\[1332\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.68.129 user=bin Feb 18 14:05:13 hpm sshd\[1332\]: Failed password for bin from 134.175.68.129 port 55112 ssh2	2020-02-19 08:30:52

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.175.6.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58008
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.175.6.55.			IN	A

;; AUTHORITY SECTION:
.			218	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042500 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Apr 25 20:09:12 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 55.6.175.134.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 55.6.175.134.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
202.175.186.211	attack	Jul 18 04:31:22 home sshd[22307]: Invalid user gmodserver from 202.175.186.211 port 58500 Jul 18 04:31:23 home sshd[22307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.175.186.211 Jul 18 04:31:22 home sshd[22307]: Invalid user gmodserver from 202.175.186.211 port 58500 Jul 18 04:31:24 home sshd[22307]: Failed password for invalid user gmodserver from 202.175.186.211 port 58500 ssh2 Jul 18 04:40:49 home sshd[22385]: Invalid user adam from 202.175.186.211 port 46842 Jul 18 04:40:49 home sshd[22385]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.175.186.211 Jul 18 04:40:49 home sshd[22385]: Invalid user adam from 202.175.186.211 port 46842 Jul 18 04:40:51 home sshd[22385]: Failed password for invalid user adam from 202.175.186.211 port 46842 ssh2 Jul 18 04:46:04 home sshd[22458]: Invalid user pms from 202.175.186.211 port 45218 Jul 18 04:46:04 home sshd[22458]: pam_unix(sshd:auth): authentication failure; logname= uid=0	2019-07-18 21:38:15
220.194.237.43	attackbotsspam	18.07.2019 11:14:49 Connection to port 6379 blocked by firewall	2019-07-18 21:37:55
116.206.19.139	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-18 09:34:46,532 INFO [amun_request_handler] PortScan Detected on Port: 445 (116.206.19.139)	2019-07-18 21:44:29
158.69.22.218	attackspam	Jul 18 09:40:21 vps200512 sshd\[3846\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.22.218 user=bin Jul 18 09:40:23 vps200512 sshd\[3846\]: Failed password for bin from 158.69.22.218 port 43128 ssh2 Jul 18 09:45:14 vps200512 sshd\[3941\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.22.218 user=root Jul 18 09:45:15 vps200512 sshd\[3941\]: Failed password for root from 158.69.22.218 port 41646 ssh2 Jul 18 09:50:12 vps200512 sshd\[4036\]: Invalid user alex from 158.69.22.218	2019-07-18 21:55:37
45.227.253.213	attack	Jul 18 12:04:42 mailserver postfix/anvil[80146]: statistics: max connection count 1 for (smtps:45.227.253.213) at Jul 18 11:55:21 Jul 18 13:09:28 mailserver postfix/smtps/smtpd[81390]: warning: hostname hosting-by.directwebhost.org does not resolve to address 45.227.253.213: hostname nor servname provided, or not known Jul 18 13:09:28 mailserver postfix/smtps/smtpd[81390]: connect from unknown[45.227.253.213] Jul 18 13:09:36 mailserver dovecot: auth-worker(81355): sql([hidden],45.227.253.213): unknown user Jul 18 13:09:38 mailserver postfix/smtps/smtpd[81390]: warning: unknown[45.227.253.213]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 18 13:09:38 mailserver postfix/smtps/smtpd[81390]: lost connection after AUTH from unknown[45.227.253.213] Jul 18 13:09:38 mailserver postfix/smtps/smtpd[81390]: disconnect from unknown[45.227.253.213] Jul 18 13:09:39 mailserver postfix/smtps/smtpd[81390]: warning: hostname hosting-by.directwebhost.org does not resolve to address 45.227.253.213: hostname nor servname pr	2019-07-18 21:01:56
94.142.63.218	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-18 21:32:08
223.72.88.61	attack	Jul 18 14:26:44 server6 sshd[17105]: Failed password for invalid user design from 223.72.88.61 port 4650 ssh2 Jul 18 14:26:44 server6 sshd[17105]: Received disconnect from 223.72.88.61: 11: Bye Bye [preauth] Jul 18 14:36:48 server6 sshd[27816]: Failed password for invalid user axente from 223.72.88.61 port 5093 ssh2 Jul 18 14:36:48 server6 sshd[27816]: Received disconnect from 223.72.88.61: 11: Bye Bye [preauth] Jul 18 14:42:48 server6 sshd[2231]: Failed password for invalid user kelly from 223.72.88.61 port 4670 ssh2 Jul 18 14:42:48 server6 sshd[2231]: Received disconnect from 223.72.88.61: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=223.72.88.61	2019-07-18 20:59:44
194.210.33.17	attackspam	2019-07-18 05:56:24 dovecot_plain authenticator failed for (LAPTOP-FFT8T2FE) [194.210.33.17]:50151 I=[192.147.25.65]:465: 535 Incorrect authentication data (set_id=why@lerctr.org) 2019-07-18 05:56:30 dovecot_login authenticator failed for (LAPTOP-FFT8T2FE) [194.210.33.17]:50151 I=[192.147.25.65]:465: 535 Incorrect authentication data (set_id=why@lerctr.org) 2019-07-18 05:56:43 dovecot_plain authenticator failed for (LAPTOP-FFT8T2FE) [194.210.33.17]:58718 I=[192.147.25.65]:465: 535 Incorrect authentication data (set_id=why@lerctr.org) ...	2019-07-18 21:10:42
14.231.177.214	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-18 09:37:09,672 INFO [amun_request_handler] PortScan Detected on Port: 445 (14.231.177.214)	2019-07-18 21:09:46
60.190.128.142	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-18 09:34:43,863 INFO [amun_request_handler] PortScan Detected on Port: 445 (60.190.128.142)	2019-07-18 21:47:28
185.25.102.98	attack	Brute force SMTP login attempts.	2019-07-18 21:31:27
94.182.234.252	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-18 21:27:33
94.53.86.165	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-18 20:55:25
193.188.23.41	attackspambots	RDP Brute-Force (Grieskirchen RZ2)	2019-07-18 21:28:06
157.230.225.222	attackspam	Jul 18 13:23:55 [munged] sshd[20903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.225.222	2019-07-18 21:39:53

最近上报的IP列表

113.179.147.112	51.15.19.174	31.181.180.63	5.202.114.160
138.255.110.30	46.42.53.226	181.49.116.50	83.233.193.39
80.70.22.209	218.79.5.111	80.237.205.10	42.91.34.143
2604:a880:800:c1::30d:b001	219.78.66.93	125.213.140.46	87.110.133.245
122.118.41.100	45.246.210.37	202.65.32.245	201.103.207.1