1.54.34.55 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: FPT Broadband Service

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-08-01 23:58:42

Comments on same subnet:

IP	Type	Details	Datetime
1.54.34.3	spamproxy	cứ chờ ngày bố mày mò được nhà mày đi	2021-05-21 22:28:55
1.54.34.175	attackspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-08-15 19:09:01
1.54.34.213	attack	Unauthorized connection attempt from IP address 1.54.34.213 on Port 445(SMB)	2020-02-08 05:38:32
1.54.34.185	attackbots	Unauthorized connection attempt detected from IP address 1.54.34.185 to port 23	2020-01-01 02:44:33
1.54.34.59	attackspambots	1433/tcp [2019-10-26]1pkt	2019-10-26 16:42:10

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.54.34.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64932
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.54.34.55.			IN	A

;; AUTHORITY SECTION:
.			441	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020080100 1800 900 604800 86400

;; Query time: 29 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Aug 01 23:58:34 CST 2020
;; MSG SIZE  rcvd: 114

Host info

Host 55.34.54.1.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 55.34.54.1.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.254.141.10	attack	Aug 21 06:53:36 OPSO sshd\[3138\]: Invalid user buh from 51.254.141.10 port 51808 Aug 21 06:53:36 OPSO sshd\[3138\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.141.10 Aug 21 06:53:37 OPSO sshd\[3138\]: Failed password for invalid user buh from 51.254.141.10 port 51808 ssh2 Aug 21 07:00:58 OPSO sshd\[4859\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.141.10 user=root Aug 21 07:01:00 OPSO sshd\[4859\]: Failed password for root from 51.254.141.10 port 33148 ssh2	2020-08-21 14:52:44
112.85.42.173	attackspam	Aug 21 08:14:43 ns381471 sshd[1904]: Failed password for root from 112.85.42.173 port 21537 ssh2 Aug 21 08:14:58 ns381471 sshd[1904]: error: maximum authentication attempts exceeded for root from 112.85.42.173 port 21537 ssh2 [preauth]	2020-08-21 14:21:12
222.186.42.155	attack	Aug 21 02:24:56 NPSTNNYC01T sshd[29366]: Failed password for root from 222.186.42.155 port 14912 ssh2 Aug 21 02:25:03 NPSTNNYC01T sshd[29373]: Failed password for root from 222.186.42.155 port 38769 ssh2 ...	2020-08-21 14:33:56
42.234.210.128	attack	Telnet Honeypot -> Telnet Bruteforce / Login	2020-08-21 14:43:46
189.59.5.49	attackbotsspam	Aug 18 22:09:18 WHD8 dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 5 secs\): user=\, method=PLAIN, rip=189.59.5.49, lip=10.64.89.208, TLS: Disconnected, session=\<1i4Bdiyty8u9OwUx\> Aug 18 22:53:31 WHD8 dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 6 secs\): user=\, method=PLAIN, rip=189.59.5.49, lip=10.64.89.208, TLS, session=\ Aug 19 04:02:37 WHD8 dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 6 secs\): user=\, method=PLAIN, rip=189.59.5.49, lip=10.64.89.208, TLS, session=\ Aug 19 04:34:32 WHD8 dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 6 secs\): user=\, method=PLAIN, rip=189.59.5.49, lip=10.64.89.208, session=\ Aug 19 06:02:03 WHD8 dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 6 secs\): user=\, method=PL ...	2020-08-21 14:53:16
185.202.2.68	attack	Automatic report - Banned IP Access	2020-08-21 14:24:47
121.229.26.104	attackspam	2020-08-21T07:10:06.864152mail.standpoint.com.ua sshd[25297]: Invalid user mercedes from 121.229.26.104 port 34270 2020-08-21T07:10:06.866541mail.standpoint.com.ua sshd[25297]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.229.26.104 2020-08-21T07:10:06.864152mail.standpoint.com.ua sshd[25297]: Invalid user mercedes from 121.229.26.104 port 34270 2020-08-21T07:10:08.714077mail.standpoint.com.ua sshd[25297]: Failed password for invalid user mercedes from 121.229.26.104 port 34270 ssh2 2020-08-21T07:14:41.393896mail.standpoint.com.ua sshd[26084]: Invalid user gourav from 121.229.26.104 port 57286 ...	2020-08-21 14:48:43
192.144.215.146	attack	Invalid user matlab from 192.144.215.146 port 47896	2020-08-21 14:50:40
222.217.69.247	attack	Port Scan ...	2020-08-21 14:30:20
140.143.199.89	attackbots	Invalid user hub from 140.143.199.89 port 47702	2020-08-21 14:33:12
79.143.44.122	attackbotsspam	Invalid user deployer from 79.143.44.122 port 54693	2020-08-21 14:11:42
170.239.85.39	attack	Invalid user teste from 170.239.85.39 port 39182	2020-08-21 14:19:50
191.193.206.49	attack	Aug 21 00:22:16 our-server-hostname sshd[26336]: reveeclipse mapping checking getaddrinfo for 191-193-206-49.user.vivozap.com.br [191.193.206.49] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 21 00:22:16 our-server-hostname sshd[26336]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.193.206.49 user=r.r Aug 21 00:22:18 our-server-hostname sshd[26336]: Failed password for r.r from 191.193.206.49 port 55504 ssh2 Aug 21 00:31:58 our-server-hostname sshd[28066]: reveeclipse mapping checking getaddrinfo for 191-193-206-49.user.vivozap.com.br [191.193.206.49] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 21 00:31:58 our-server-hostname sshd[28066]: Invalid user abc123 from 191.193.206.49 Aug 21 00:31:58 our-server-hostname sshd[28066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.193.206.49 Aug 21 00:32:00 our-server-hostname sshd[28066]: Failed password for invalid user abc123 from 191.193.206.4........ -------------------------------	2020-08-21 14:50:59
222.186.175.202	attack	Aug 21 08:35:13 ns381471 sshd[3329]: Failed password for root from 222.186.175.202 port 31398 ssh2 Aug 21 08:35:25 ns381471 sshd[3329]: error: maximum authentication attempts exceeded for root from 222.186.175.202 port 31398 ssh2 [preauth]	2020-08-21 14:47:27
185.217.1.246	attackspambots	2020-08-21T00:18:36.748394dreamphreak.com sshd[116665]: Invalid user 0 from 185.217.1.246 port 35344 2020-08-21T00:18:43.088234dreamphreak.com sshd[116665]: Failed password for invalid user 0 from 185.217.1.246 port 35344 ssh2 ...	2020-08-21 14:36:08

Recently Reported IPs

158.214.60.195	32.173.6.41	221.79.66.235	109.100.187.92
99.153.87.68	93.35.234.7	46.146.248.209	163.170.92.79
79.251.132.47	49.230.64.203	137.157.221.7	208.198.201.88
152.3.118.10	193.219.98.240	199.98.83.101	11.213.219.162
141.226.10.248	186.218.231.152	210.132.26.1	42.13.43.28