134.73.55.56 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DataParadise

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	proto=tcp . spt=38757 . dpt=25 . (Found on Blocklist de Dec 30) (439)	2019-12-31 05:41:30

相同子网IP讨论:

IP	类型	评论内容	时间
134.73.55.245	attack	$f2bV_matches	2020-03-29 13:28:50
134.73.55.172	attack	Brute forcing email accounts	2020-03-04 04:48:54
134.73.55.62	attackbotsspam	Jan 7 22:17:33 grey postfix/smtpd\[18300\]: NOQUEUE: reject: RCPT from unknown\[134.73.55.62\]: 554 5.7.1 Service unavailable\; Client host \[134.73.55.62\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[134.73.55.62\]\; from=\<3644-1134-56717-1128-principal=learning-steps.com@mail.debastext.info\> to=\ proto=ESMTP helo=\ ...	2020-01-08 07:55:34
134.73.55.66	attack	Dec 9 17:08:28 grey postfix/smtpd\[18517\]: NOQUEUE: reject: RCPT from unknown\[134.73.55.66\]: 554 5.7.1 Service unavailable\; Client host \[134.73.55.66\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?134.73.55.66\; from=\<2800-1134-56717-873-principal=learning-steps.com@mail.sworight.info\> to=\ proto=ESMTP helo=\ ...	2019-12-10 02:02:15
134.73.55.65	attackbots	Mail/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2019-11-23 02:07:34
134.73.55.82	attackbots	Oct 19 22:49:04 mxgate1 postfix/postscreen[4415]: CONNECT from [134.73.55.82]:49599 to [176.31.12.44]:25 Oct 19 22:49:04 mxgate1 postfix/dnsblog[4420]: addr 134.73.55.82 listed by domain zen.spamhaus.org as 127.0.0.3 Oct 19 22:49:04 mxgate1 postfix/dnsblog[4419]: addr 134.73.55.82 listed by domain bl.spamcop.net as 127.0.0.2 Oct 19 22:49:10 mxgate1 postfix/postscreen[4415]: DNSBL rank 3 for [134.73.55.82]:49599 Oct x@x Oct 19 22:49:11 mxgate1 postfix/postscreen[4415]: DISCONNECT [134.73.55.82]:49599 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=134.73.55.82	2019-10-20 08:08:30
134.73.55.178	attackspambots	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-09-23 23:31:52

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.73.55.56
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9213
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.73.55.56.			IN	A

;; AUTHORITY SECTION:
.			201	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019123001 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 31 05:41:26 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 56.55.73.134.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 56.55.73.134.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
177.94.84.243	attack	port scan and connect, tcp 80 (http)	2019-07-23 00:14:01
41.232.143.228	attack	Jul 22 16:01:18 master sshd[29901]: Failed password for invalid user admin from 41.232.143.228 port 51853 ssh2	2019-07-23 01:14:35
121.122.120.147	attack	Telnetd brute force attack detected by fail2ban	2019-07-23 01:39:34
54.36.148.252	attackbotsspam	Automatic report - Banned IP Access	2019-07-23 00:46:48
190.37.149.24	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-20 16:40:03,502 INFO [shellcode_manager] (190.37.149.24) no match, writing hexdump (3b39230961ab95f28aaa0f24b096d71f :17432) - SMB (Unknown)	2019-07-23 00:20:25
188.166.41.192	attack	Jul 22 19:06:49 yabzik sshd[18358]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.41.192 Jul 22 19:06:51 yabzik sshd[18358]: Failed password for invalid user cloud from 188.166.41.192 port 43902 ssh2 Jul 22 19:11:28 yabzik sshd[20159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.41.192	2019-07-23 00:14:38
185.159.32.4	attackbots	2019-07-22T16:42:32.190667abusebot-7.cloudsearch.cf sshd\[10633\]: Invalid user sp from 185.159.32.4 port 43776	2019-07-23 01:13:56
47.75.101.162	attackspambots	GET editor/ueditor/net/controller.ashx	2019-07-23 01:16:06
183.98.140.119	attackbotsspam	Jul 22 15:19:09 nextcloud sshd\[9007\]: Invalid user fivem from 183.98.140.119 Jul 22 15:19:09 nextcloud sshd\[9007\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.98.140.119 Jul 22 15:19:11 nextcloud sshd\[9007\]: Failed password for invalid user fivem from 183.98.140.119 port 57556 ssh2 ...	2019-07-23 01:04:34
220.92.16.102	attackbotsspam	Jul 22 16:19:35 server01 sshd\[6217\]: Invalid user adminftp from 220.92.16.102 Jul 22 16:19:35 server01 sshd\[6217\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.92.16.102 Jul 22 16:19:37 server01 sshd\[6217\]: Failed password for invalid user adminftp from 220.92.16.102 port 55180 ssh2 ...	2019-07-23 00:37:25
164.132.74.224	attack	Jul 22 17:36:47 SilenceServices sshd[7444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.74.224 Jul 22 17:36:49 SilenceServices sshd[7444]: Failed password for invalid user pm from 164.132.74.224 port 57526 ssh2 Jul 22 17:41:22 SilenceServices sshd[12587]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.74.224	2019-07-23 00:00:20
45.82.153.6	attackbotsspam	22.07.2019 15:47:56 Connection to port 5578 blocked by firewall	2019-07-23 00:24:03
121.12.87.83	attack	Jul 7 17:02:52 sanyalnet-cloud-vps4 sshd[28816]: Connection from 121.12.87.83 port 26945 on 64.137.160.124 port 23 Jul 7 17:02:54 sanyalnet-cloud-vps4 sshd[28816]: Invalid user cstrike from 121.12.87.83 Jul 7 17:02:54 sanyalnet-cloud-vps4 sshd[28816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.12.87.83 Jul 7 17:02:56 sanyalnet-cloud-vps4 sshd[28816]: Failed password for invalid user cstrike from 121.12.87.83 port 26945 ssh2 Jul 7 17:02:56 sanyalnet-cloud-vps4 sshd[28816]: Received disconnect from 121.12.87.83: 11: Bye Bye [preauth] Jul 7 17:08:20 sanyalnet-cloud-vps4 sshd[28854]: Connection from 121.12.87.83 port 56779 on 64.137.160.124 port 23 Jul 7 17:08:22 sanyalnet-cloud-vps4 sshd[28854]: Invalid user pork from 121.12.87.83 Jul 7 17:08:22 sanyalnet-cloud-vps4 sshd[28854]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.12.87.83 Jul 7 17:08:24 sanyalnet-cloud-vps4 ........ -------------------------------	2019-07-23 01:43:15
218.92.0.204	attackbotsspam	Jul 22 17:51:21 mail sshd\[10323\]: Failed password for root from 218.92.0.204 port 43120 ssh2 Jul 22 17:54:55 mail sshd\[10833\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.204 user=root Jul 22 17:54:57 mail sshd\[10833\]: Failed password for root from 218.92.0.204 port 41447 ssh2 Jul 22 17:55:01 mail sshd\[10833\]: Failed password for root from 218.92.0.204 port 41447 ssh2 Jul 22 17:55:03 mail sshd\[10833\]: Failed password for root from 218.92.0.204 port 41447 ssh2	2019-07-23 00:06:50
112.170.27.139	attackbots	Jul 22 16:01:31 master sshd[29903]: Failed password for invalid user admin from 112.170.27.139 port 45440 ssh2	2019-07-23 01:12:33

最近上报的IP列表

224.77.147.4	102.85.228.116	9.140.112.165	138.160.40.208
20.130.161.84	88.101.110.78	249.113.115.246	49.173.71.196
110.228.28.251	118.118.195.29	39.245.248.239	144.109.250.60
253.91.205.249	236.87.182.121	33.162.210.26	65.252.219.253
113.161.1.5	147.142.87.86	206.239.146.178	167.172.241.42