43.254.55.132 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai Anchnet Tec Inc

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Scanned 1 times in the last 24 hours on port 22	2020-03-31 08:10:58

相同子网IP讨论:

IP	类型	评论内容	时间
43.254.55.86	attack	$f2bV_matches	2020-03-22 02:53:07
43.254.55.86	attackspam	Mar 21 04:50:21 srv-ubuntu-dev3 sshd[4292]: Invalid user nothing from 43.254.55.86 Mar 21 04:50:21 srv-ubuntu-dev3 sshd[4292]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.254.55.86 Mar 21 04:50:21 srv-ubuntu-dev3 sshd[4292]: Invalid user nothing from 43.254.55.86 Mar 21 04:50:23 srv-ubuntu-dev3 sshd[4292]: Failed password for invalid user nothing from 43.254.55.86 port 55018 ssh2 Mar 21 04:52:43 srv-ubuntu-dev3 sshd[4671]: Invalid user oshima from 43.254.55.86 Mar 21 04:52:43 srv-ubuntu-dev3 sshd[4671]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.254.55.86 Mar 21 04:52:43 srv-ubuntu-dev3 sshd[4671]: Invalid user oshima from 43.254.55.86 Mar 21 04:52:46 srv-ubuntu-dev3 sshd[4671]: Failed password for invalid user oshima from 43.254.55.86 port 50148 ssh2 Mar 21 04:55:09 srv-ubuntu-dev3 sshd[5079]: Invalid user pend from 43.254.55.86 ...	2020-03-21 12:10:14
43.254.55.86	attackspambots	SSH brute-force: detected 7 distinct usernames within a 24-hour window.	2020-03-19 20:48:31
43.254.55.179	attackspambots	Nov 28 07:05:02 ns382633 sshd\[29361\]: Invalid user mariliana from 43.254.55.179 port 35032 Nov 28 07:05:02 ns382633 sshd\[29361\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.254.55.179 Nov 28 07:05:04 ns382633 sshd\[29361\]: Failed password for invalid user mariliana from 43.254.55.179 port 35032 ssh2 Nov 28 07:20:06 ns382633 sshd\[32060\]: Invalid user admin from 43.254.55.179 port 51376 Nov 28 07:20:06 ns382633 sshd\[32060\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.254.55.179	2019-11-28 20:56:21
43.254.55.179	attackspambots	2019-11-16T01:45:10.7796361495-001 sshd\[50065\]: Invalid user test from 43.254.55.179 port 43098 2019-11-16T01:45:10.7830951495-001 sshd\[50065\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.254.55.179 2019-11-16T01:45:12.8645101495-001 sshd\[50065\]: Failed password for invalid user test from 43.254.55.179 port 43098 ssh2 2019-11-16T01:49:35.7150051495-001 sshd\[50231\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.254.55.179 user=root 2019-11-16T01:49:37.5100641495-001 sshd\[50231\]: Failed password for root from 43.254.55.179 port 49740 ssh2 2019-11-16T01:54:12.6038191495-001 sshd\[50379\]: Invalid user camateros from 43.254.55.179 port 56378 ...	2019-11-16 16:09:34
43.254.55.179	attackbots	Nov 14 08:01:45 [host] sshd[15171]: Invalid user tolga from 43.254.55.179 Nov 14 08:01:45 [host] sshd[15171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.254.55.179 Nov 14 08:01:47 [host] sshd[15171]: Failed password for invalid user tolga from 43.254.55.179 port 59250 ssh2	2019-11-14 15:20:39
43.254.55.179	attack	Nov 7 16:49:18 h2177944 sshd\[4663\]: Invalid user com from 43.254.55.179 port 36104 Nov 7 16:49:18 h2177944 sshd\[4663\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.254.55.179 Nov 7 16:49:20 h2177944 sshd\[4663\]: Failed password for invalid user com from 43.254.55.179 port 36104 ssh2 Nov 7 16:53:58 h2177944 sshd\[4866\]: Invalid user massymo007 from 43.254.55.179 port 41522 ...	2019-11-08 00:43:13

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 43.254.55.132
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51935
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;43.254.55.132.			IN	A

;; AUTHORITY SECTION:
.			521	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020033001 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 31 08:10:54 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 132.55.254.43.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 132.55.254.43.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
149.202.55.18	attack	Invalid user xaviar from 149.202.55.18 port 49022	2019-08-29 10:20:29
124.93.18.202	attackbotsspam	Aug 29 03:47:08 vps691689 sshd[21060]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.93.18.202 Aug 29 03:47:10 vps691689 sshd[21060]: Failed password for invalid user apache from 124.93.18.202 port 13041 ssh2 Aug 29 03:52:51 vps691689 sshd[21255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.93.18.202 ...	2019-08-29 10:29:40
198.20.87.98	attackspam	13/tcp 9042/tcp 4786/tcp... [2019-06-28/08-28]283pkt,156pt.(tcp),26pt.(udp)	2019-08-29 10:25:18
42.104.97.227	attackbots	Aug 29 04:21:39 vps691689 sshd[21970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.104.97.227 Aug 29 04:21:41 vps691689 sshd[21970]: Failed password for invalid user vagrant from 42.104.97.227 port 53193 ssh2 ...	2019-08-29 10:33:02
185.143.221.187	attack	08/28/2019-21:47:51.054153 185.143.221.187 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-08-29 10:01:46
217.61.2.97	attackspambots	Aug 29 03:53:31 cp sshd[11010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.61.2.97	2019-08-29 09:57:49
94.191.8.31	attackbots	Aug 29 02:46:54 plex sshd[12084]: Invalid user huaqi from 94.191.8.31 port 50414	2019-08-29 10:22:30
140.249.35.66	attackbotsspam	Aug 29 03:50:55 eventyay sshd[30904]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.35.66 Aug 29 03:50:58 eventyay sshd[30904]: Failed password for invalid user gpadmin from 140.249.35.66 port 42870 ssh2 Aug 29 03:59:52 eventyay sshd[523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.249.35.66 ...	2019-08-29 10:13:52
221.150.17.93	attackbots	2019-08-22T04:53:04.014233wiz-ks3 sshd[31149]: Invalid user shit from 221.150.17.93 port 41650 2019-08-22T04:53:04.016358wiz-ks3 sshd[31149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.150.17.93 2019-08-22T04:53:04.014233wiz-ks3 sshd[31149]: Invalid user shit from 221.150.17.93 port 41650 2019-08-22T04:53:06.462304wiz-ks3 sshd[31149]: Failed password for invalid user shit from 221.150.17.93 port 41650 ssh2 2019-08-22T04:58:55.918734wiz-ks3 sshd[31190]: Invalid user admin from 221.150.17.93 port 56946 2019-08-22T04:58:55.920798wiz-ks3 sshd[31190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.150.17.93 2019-08-22T04:58:55.918734wiz-ks3 sshd[31190]: Invalid user admin from 221.150.17.93 port 56946 2019-08-22T04:58:57.885172wiz-ks3 sshd[31190]: Failed password for invalid user admin from 221.150.17.93 port 56946 ssh2 2019-08-22T05:05:17.053704wiz-ks3 sshd[31256]: pam_unix(sshd:auth): authentication failure; logname= ui	2019-08-29 10:18:16
180.100.214.87	attackspambots	Aug 28 16:10:01 hiderm sshd\[23094\]: Invalid user myer from 180.100.214.87 Aug 28 16:10:01 hiderm sshd\[23094\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.100.214.87 Aug 28 16:10:03 hiderm sshd\[23094\]: Failed password for invalid user myer from 180.100.214.87 port 42954 ssh2 Aug 28 16:13:17 hiderm sshd\[23377\]: Invalid user git from 180.100.214.87 Aug 28 16:13:17 hiderm sshd\[23377\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.100.214.87	2019-08-29 10:13:22
139.59.3.151	attack	Aug 28 16:13:50 friendsofhawaii sshd\[7469\]: Invalid user jetaero from 139.59.3.151 Aug 28 16:13:50 friendsofhawaii sshd\[7469\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.3.151 Aug 28 16:13:52 friendsofhawaii sshd\[7469\]: Failed password for invalid user jetaero from 139.59.3.151 port 58698 ssh2 Aug 28 16:18:40 friendsofhawaii sshd\[7957\]: Invalid user business from 139.59.3.151 Aug 28 16:18:40 friendsofhawaii sshd\[7957\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.3.151	2019-08-29 10:27:33
177.43.76.36	attackspam	$f2bV_matches	2019-08-29 10:16:31
51.75.170.13	attackspam	Aug 28 15:50:54 sachi sshd\[17590\]: Invalid user ubuntu from 51.75.170.13 Aug 28 15:50:54 sachi sshd\[17590\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.ip-51-75-170.eu Aug 28 15:50:56 sachi sshd\[17590\]: Failed password for invalid user ubuntu from 51.75.170.13 port 41602 ssh2 Aug 28 15:54:46 sachi sshd\[17909\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.ip-51-75-170.eu user=root Aug 28 15:54:48 sachi sshd\[17909\]: Failed password for root from 51.75.170.13 port 58230 ssh2	2019-08-29 10:01:30
81.22.45.150	attackspambots	Aug 29 04:25:24 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.150 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=51803 PROTO=TCP SPT=43466 DPT=3593 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-08-29 10:38:05
212.83.149.238	attackspam	Aug 28 16:00:57 xb3 sshd[31556]: reveeclipse mapping checking getaddrinfo for 212-83-149-238.rev.poneytelecom.eu [212.83.149.238] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 28 16:00:59 xb3 sshd[31556]: Failed password for invalid user jswd from 212.83.149.238 port 39944 ssh2 Aug 28 16:00:59 xb3 sshd[31556]: Received disconnect from 212.83.149.238: 11: Bye Bye [preauth] Aug 28 16:12:34 xb3 sshd[4345]: reveeclipse mapping checking getaddrinfo for 212-83-149-238.rev.poneytelecom.eu [212.83.149.238] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 28 16:12:36 xb3 sshd[4345]: Failed password for invalid user saas from 212.83.149.238 port 49210 ssh2 Aug 28 16:12:36 xb3 sshd[4345]: Received disconnect from 212.83.149.238: 11: Bye Bye [preauth] Aug 28 16:16:36 xb3 sshd[2181]: reveeclipse mapping checking getaddrinfo for 212-83-149-238.rev.poneytelecom.eu [212.83.149.238] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 28 16:16:37 xb3 sshd[2181]: Failed password for invalid user helpdesk from 212.8........ -------------------------------	2019-08-29 09:59:18

最近上报的IP列表

49.161.122.136	47.241.74.159	36.71.233.228	185.219.221.157
223.152.19.241	211.14.161.6	177.251.242.59	190.133.234.235
13.238.21.31	171.226.2.157	113.215.222.79	80.233.141.82
115.14.215.219	79.134.105.243	35.220.233.84	14.204.84.226
185.60.219.52	180.108.1.243	185.95.206.105	185.10.75.3