134.255.254.52

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): Active 1 GmbH

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Aug 22 23:18:15 home sshd[3391029]: Invalid user tunnel from 134.255.254.52 port 53610 Aug 22 23:18:15 home sshd[3391029]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.255.254.52 Aug 22 23:18:15 home sshd[3391029]: Invalid user tunnel from 134.255.254.52 port 53610 Aug 22 23:18:17 home sshd[3391029]: Failed password for invalid user tunnel from 134.255.254.52 port 53610 ssh2 Aug 22 23:20:27 home sshd[3391757]: Invalid user vega from 134.255.254.52 port 38102 ...	2020-08-23 05:32:45

类型

评论内容

时间

attack

Aug 22 23:18:15 home sshd[3391029]: Invalid user tunnel from 134.255.254.52 port 53610
Aug 22 23:18:15 home sshd[3391029]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.255.254.52 
Aug 22 23:18:15 home sshd[3391029]: Invalid user tunnel from 134.255.254.52 port 53610
Aug 22 23:18:17 home sshd[3391029]: Failed password for invalid user tunnel from 134.255.254.52 port 53610 ssh2
Aug 22 23:20:27 home sshd[3391757]: Invalid user vega from 134.255.254.52 port 38102
...

2020-08-23 05:32:45

相同子网IP讨论:

IP	类型	评论内容	时间
134.255.254.175	attackbotsspam	Fail2Ban Ban Triggered	2020-07-02 07:28:30
134.255.254.186	attackspambots	Feb 28 15:37:54 game-panel sshd[15426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.255.254.186 Feb 28 15:37:56 game-panel sshd[15426]: Failed password for invalid user black from 134.255.254.186 port 56600 ssh2 Feb 28 15:47:06 game-panel sshd[15854]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.255.254.186	2020-02-28 23:55:28
134.255.254.186	attackbotsspam	Feb 23 22:47:49 sshd[8169]: Failed password for invalid user mongouser from 134.255.254.186 port 36706 ssh2	2020-02-24 06:42:11
134.255.254.186	attack	Feb 22 01:50:26 firewall sshd[28824]: Invalid user zori from 134.255.254.186 Feb 22 01:50:28 firewall sshd[28824]: Failed password for invalid user zori from 134.255.254.186 port 38230 ssh2 Feb 22 01:53:26 firewall sshd[28903]: Invalid user saed2 from 134.255.254.186 ...	2020-02-22 14:06:36
134.255.254.186	attackbots	Invalid user webadmin from 134.255.254.186 port 44308	2020-02-22 03:26:12

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.255.254.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40154
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.255.254.52.			IN	A

;; AUTHORITY SECTION:
.			577	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082201 1800 900 604800 86400

;; Query time: 29 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Aug 23 05:32:42 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 52.254.255.134.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 52.254.255.134.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
182.61.46.62	attack	(sshd) Failed SSH login from 182.61.46.62 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Nov 26 15:02:09 elude sshd[21246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.46.62 user=root Nov 26 15:02:10 elude sshd[21246]: Failed password for root from 182.61.46.62 port 59372 ssh2 Nov 26 15:37:11 elude sshd[26462]: Invalid user students from 182.61.46.62 port 34472 Nov 26 15:37:13 elude sshd[26462]: Failed password for invalid user students from 182.61.46.62 port 34472 ssh2 Nov 26 15:46:14 elude sshd[27901]: Invalid user spider from 182.61.46.62 port 37724	2019-11-26 23:54:39
113.193.180.34	attackspam	Unauthorized connection attempt from IP address 113.193.180.34 on Port 445(SMB)	2019-11-26 23:49:02
36.79.213.235	attackbotsspam	Unauthorized connection attempt from IP address 36.79.213.235 on Port 445(SMB)	2019-11-27 00:21:30
187.189.109.138	attack	Nov 26 05:39:20 hanapaa sshd\[21920\]: Invalid user exim from 187.189.109.138 Nov 26 05:39:20 hanapaa sshd\[21920\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=fixed-187-189-109-138.totalplay.net Nov 26 05:39:21 hanapaa sshd\[21920\]: Failed password for invalid user exim from 187.189.109.138 port 48686 ssh2 Nov 26 05:46:01 hanapaa sshd\[22466\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=fixed-187-189-109-138.totalplay.net user=root Nov 26 05:46:04 hanapaa sshd\[22466\]: Failed password for root from 187.189.109.138 port 55992 ssh2	2019-11-26 23:50:12
24.63.224.206	attack	Nov 26 16:47:36 tux-35-217 sshd\[9956\]: Invalid user keegstra from 24.63.224.206 port 44043 Nov 26 16:47:36 tux-35-217 sshd\[9956\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=24.63.224.206 Nov 26 16:47:38 tux-35-217 sshd\[9956\]: Failed password for invalid user keegstra from 24.63.224.206 port 44043 ssh2 Nov 26 16:56:19 tux-35-217 sshd\[10037\]: Invalid user oracle from 24.63.224.206 port 40663 Nov 26 16:56:19 tux-35-217 sshd\[10037\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=24.63.224.206 ...	2019-11-27 00:22:33
62.210.10.244	attackbots	2019-11-25 18:34:44 UDP SRC: 62.210.10.244:4327 DST PORT: 5060 (spp_sip) Method is unknown	2019-11-27 00:03:22
218.92.0.160	attackbots	frenzy	2019-11-26 23:57:16
103.99.151.145	attackspam	Unauthorized connection attempt from IP address 103.99.151.145 on Port 445(SMB)	2019-11-26 23:35:32
112.85.42.171	attack	$f2bV_matches	2019-11-27 00:01:38
120.29.118.221	attackbotsspam	Unauthorized connection attempt from IP address 120.29.118.221 on Port 445(SMB)	2019-11-26 23:31:49
190.39.141.185	attackspambots	Unauthorized connection attempt from IP address 190.39.141.185 on Port 445(SMB)	2019-11-27 00:15:45
49.49.250.235	attackbots	Unauthorized connection attempt from IP address 49.49.250.235 on Port 445(SMB)	2019-11-26 23:34:20
89.136.253.231	attackspam	Wordpress login scanning	2019-11-27 00:06:17
129.211.13.164	attackbotsspam	Nov 26 21:06:04 vibhu-HP-Z238-Microtower-Workstation sshd\[6138\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.13.164 user=root Nov 26 21:06:05 vibhu-HP-Z238-Microtower-Workstation sshd\[6138\]: Failed password for root from 129.211.13.164 port 34466 ssh2 Nov 26 21:10:30 vibhu-HP-Z238-Microtower-Workstation sshd\[6384\]: Invalid user harshman from 129.211.13.164 Nov 26 21:10:30 vibhu-HP-Z238-Microtower-Workstation sshd\[6384\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.13.164 Nov 26 21:10:32 vibhu-HP-Z238-Microtower-Workstation sshd\[6384\]: Failed password for invalid user harshman from 129.211.13.164 port 41270 ssh2 ...	2019-11-26 23:53:11
159.203.201.15	attackspambots	11/26/2019-09:46:25.580829 159.203.201.15 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-26 23:45:36

最近上报的IP列表

45.136.7.63	162.142.125.53	162.142.125.52	162.142.125.50
162.142.125.51	162.142.125.42	179.18.196.182	162.142.125.45
7.22.102.17	201.142.238.21	165.232.74.253	250.254.105.30
162.142.125.47	218.10.113.157	144.89.206.76	29.248.236.152
140.195.111.202	53.167.165.94	162.142.125.46	20.33.172.27