134.175.55.42 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	SSH Brute-Force reported by Fail2Ban	2020-09-19 00:34:49
attackspambots	2020-09-18T07:11:29.743860Z 3869266aef5a New connection: 134.175.55.42:45602 (172.17.0.5:2222) [session: 3869266aef5a] 2020-09-18T07:16:02.914262Z ff67dd4a15c3 New connection: 134.175.55.42:37984 (172.17.0.5:2222) [session: ff67dd4a15c3]	2020-09-18 16:38:20
attackbots	s3.hscode.pl - SSH Attack	2020-09-18 06:52:41
attackbots	Aug 27 23:08:22 prox sshd[30585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.55.42 Aug 27 23:08:24 prox sshd[30585]: Failed password for invalid user user from 134.175.55.42 port 46682 ssh2	2020-08-28 06:00:50
attackspam	Automatic report BANNED IP	2020-07-25 15:40:03
attackbotsspam	Jul 24 18:25:03 ip-172-31-62-245 sshd\[18092\]: Invalid user wp from 134.175.55.42\ Jul 24 18:25:05 ip-172-31-62-245 sshd\[18092\]: Failed password for invalid user wp from 134.175.55.42 port 36210 ssh2\ Jul 24 18:30:00 ip-172-31-62-245 sshd\[18160\]: Invalid user rsy from 134.175.55.42\ Jul 24 18:30:02 ip-172-31-62-245 sshd\[18160\]: Failed password for invalid user rsy from 134.175.55.42 port 47196 ssh2\ Jul 24 18:34:51 ip-172-31-62-245 sshd\[18216\]: Invalid user sergi from 134.175.55.42\	2020-07-25 04:59:00
attackspam	Invalid user inacio from 134.175.55.42 port 41424	2020-06-26 17:04:02
attackbots	$f2bV_matches	2020-06-08 23:56:20
attackbots	Jun 5 10:17:31 gw1 sshd[4997]: Failed password for root from 134.175.55.42 port 38226 ssh2 ...	2020-06-05 14:17:42
attack	SSH Honeypot -> SSH Bruteforce / Login	2020-05-28 23:48:07
attackbots	May 24 21:18:31 webhost01 sshd[7594]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.55.42 May 24 21:18:33 webhost01 sshd[7594]: Failed password for invalid user jan from 134.175.55.42 port 50446 ssh2 ...	2020-05-24 23:50:50
attackspambots	May 21 17:46:55 vps639187 sshd\[8531\]: Invalid user ymo from 134.175.55.42 port 48248 May 21 17:46:55 vps639187 sshd\[8531\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.55.42 May 21 17:46:57 vps639187 sshd\[8531\]: Failed password for invalid user ymo from 134.175.55.42 port 48248 ssh2 ...	2020-05-22 03:32:15
attackspambots	SSH/22 MH Probe, BF, Hack -	2020-05-15 17:53:22
attack	Invalid user user from 134.175.55.42 port 58498	2020-05-14 20:10:32

Comments on same subnet:

IP	Type	Details	Datetime
134.175.55.10	attackspam	Sep 10 12:17:12 ift sshd\[60737\]: Invalid user alice from 134.175.55.10Sep 10 12:17:14 ift sshd\[60737\]: Failed password for invalid user alice from 134.175.55.10 port 35634 ssh2Sep 10 12:21:34 ift sshd\[61421\]: Invalid user alain from 134.175.55.10Sep 10 12:21:37 ift sshd\[61421\]: Failed password for invalid user alain from 134.175.55.10 port 59414 ssh2Sep 10 12:25:53 ift sshd\[61918\]: Failed password for root from 134.175.55.10 port 54956 ssh2 ...	2020-09-10 22:53:29
134.175.55.10	attack	(sshd) Failed SSH login from 134.175.55.10 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 9 16:05:40 server5 sshd[30350]: Invalid user zennia from 134.175.55.10 Sep 9 16:05:40 server5 sshd[30350]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.55.10 Sep 9 16:05:42 server5 sshd[30350]: Failed password for invalid user zennia from 134.175.55.10 port 57266 ssh2 Sep 9 16:16:19 server5 sshd[3436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.55.10 user=root Sep 9 16:16:21 server5 sshd[3436]: Failed password for root from 134.175.55.10 port 36822 ssh2	2020-09-10 14:26:31
134.175.55.10	attackbots	(sshd) Failed SSH login from 134.175.55.10 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 9 16:05:40 server5 sshd[30350]: Invalid user zennia from 134.175.55.10 Sep 9 16:05:40 server5 sshd[30350]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.55.10 Sep 9 16:05:42 server5 sshd[30350]: Failed password for invalid user zennia from 134.175.55.10 port 57266 ssh2 Sep 9 16:16:19 server5 sshd[3436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.55.10 user=root Sep 9 16:16:21 server5 sshd[3436]: Failed password for root from 134.175.55.10 port 36822 ssh2	2020-09-10 05:08:11
134.175.55.10	attackspam	SSH brutforce	2020-08-08 21:06:01
134.175.55.10	attack	Invalid user office2 from 134.175.55.10 port 36024	2020-08-01 05:22:01
134.175.55.10	attackbotsspam	Invalid user aarushi from 134.175.55.10 port 34616	2020-07-26 13:03:23
134.175.55.10	attack	Jul 9 16:20:58 hosting sshd[5691]: Invalid user administrator from 134.175.55.10 port 60676 ...	2020-07-10 00:25:27
134.175.55.10	attackspam	Jul 5 00:07:10 mockhub sshd[26611]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.55.10 Jul 5 00:07:13 mockhub sshd[26611]: Failed password for invalid user delivery from 134.175.55.10 port 51536 ssh2 ...	2020-07-05 17:53:54
134.175.55.10	attackbotsspam	Jun 19 23:27:33 electroncash sshd[9444]: Invalid user debian from 134.175.55.10 port 58140 Jun 19 23:27:33 electroncash sshd[9444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.55.10 Jun 19 23:27:33 electroncash sshd[9444]: Invalid user debian from 134.175.55.10 port 58140 Jun 19 23:27:34 electroncash sshd[9444]: Failed password for invalid user debian from 134.175.55.10 port 58140 ssh2 Jun 19 23:30:38 electroncash sshd[10242]: Invalid user test2 from 134.175.55.10 port 46622 ...	2020-06-20 05:34:20
134.175.55.10	attackspambots	Invalid user siska from 134.175.55.10 port 54154	2020-06-12 15:05:41
134.175.55.10	attack	Jun 10 17:57:44 santamaria sshd\[16898\]: Invalid user admin from 134.175.55.10 Jun 10 17:57:44 santamaria sshd\[16898\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.55.10 Jun 10 17:57:46 santamaria sshd\[16898\]: Failed password for invalid user admin from 134.175.55.10 port 37866 ssh2 ...	2020-06-11 00:36:19
134.175.55.10	attackbotsspam	May 27 20:46:18 srv-ubuntu-dev3 sshd[86862]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.55.10 user=root May 27 20:46:20 srv-ubuntu-dev3 sshd[86862]: Failed password for root from 134.175.55.10 port 38962 ssh2 May 27 20:47:53 srv-ubuntu-dev3 sshd[87085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.55.10 user=root May 27 20:47:55 srv-ubuntu-dev3 sshd[87085]: Failed password for root from 134.175.55.10 port 59052 ssh2 May 27 20:49:30 srv-ubuntu-dev3 sshd[87303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.55.10 user=root May 27 20:49:32 srv-ubuntu-dev3 sshd[87303]: Failed password for root from 134.175.55.10 port 50914 ssh2 May 27 20:51:05 srv-ubuntu-dev3 sshd[87573]: Invalid user kyle from 134.175.55.10 May 27 20:51:05 srv-ubuntu-dev3 sshd[87573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rh ...	2020-05-28 04:45:22
134.175.55.10	attackbotsspam	May 8 14:25:23 inter-technics sshd[14351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.55.10 user=root May 8 14:25:25 inter-technics sshd[14351]: Failed password for root from 134.175.55.10 port 42838 ssh2 May 8 14:30:34 inter-technics sshd[14794]: Invalid user jenkins from 134.175.55.10 port 54090 May 8 14:30:34 inter-technics sshd[14794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.55.10 May 8 14:30:34 inter-technics sshd[14794]: Invalid user jenkins from 134.175.55.10 port 54090 May 8 14:30:36 inter-technics sshd[14794]: Failed password for invalid user jenkins from 134.175.55.10 port 54090 ssh2 ...	2020-05-08 21:53:53
134.175.55.10	attackspambots	Apr 30 16:52:06 cumulus sshd[14897]: Invalid user search from 134.175.55.10 port 48546 Apr 30 16:52:06 cumulus sshd[14897]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.55.10 Apr 30 16:52:08 cumulus sshd[14897]: Failed password for invalid user search from 134.175.55.10 port 48546 ssh2 Apr 30 16:52:09 cumulus sshd[14897]: Received disconnect from 134.175.55.10 port 48546:11: Bye Bye [preauth] Apr 30 16:52:09 cumulus sshd[14897]: Disconnected from 134.175.55.10 port 48546 [preauth] Apr 30 17:04:28 cumulus sshd[15592]: Invalid user lbc from 134.175.55.10 port 49028 Apr 30 17:04:28 cumulus sshd[15592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.55.10 Apr 30 17:04:30 cumulus sshd[15592]: Failed password for invalid user lbc from 134.175.55.10 port 49028 ssh2 Apr 30 17:04:31 cumulus sshd[15592]: Received disconnect from 134.175.55.10 port 49028:11: Bye Bye [preauth] Apr 30........ -------------------------------	2020-05-01 20:34:18
134.175.55.178	attackspambots	50 failed attempt(s) in the last 24h	2019-11-15 08:14:13

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.175.55.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14585
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.175.55.42.			IN	A

;; AUTHORITY SECTION:
.			331	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051400 1800 900 604800 86400

;; Query time: 94 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 14 20:10:26 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 42.55.175.134.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.55.175.134.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
113.98.101.188	attackspambots	Brute-force attempt banned	2020-04-08 16:57:58
121.22.5.83	attackbotsspam	Apr 8 09:32:05 vmd17057 sshd[1813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.22.5.83 Apr 8 09:32:07 vmd17057 sshd[1813]: Failed password for invalid user User from 121.22.5.83 port 40203 ssh2 ...	2020-04-08 16:48:14
66.70.130.149	attackspambots	(sshd) Failed SSH login from 66.70.130.149 (BR/Brazil/ip149.ip-66-70-130.net): 5 in the last 3600 secs	2020-04-08 16:38:05
195.224.138.61	attack	Apr 8 04:39:51 lanister sshd[6639]: Invalid user tomcat from 195.224.138.61 Apr 8 04:39:51 lanister sshd[6639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.224.138.61 Apr 8 04:39:51 lanister sshd[6639]: Invalid user tomcat from 195.224.138.61 Apr 8 04:39:53 lanister sshd[6639]: Failed password for invalid user tomcat from 195.224.138.61 port 58598 ssh2	2020-04-08 17:01:12
108.61.222.250	attackspam	Apr 8 05:55:20 debian-2gb-nbg1-2 kernel: \[8577139.252887\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=108.61.222.250 DST=195.201.40.59 LEN=72 TOS=0x00 PREC=0x00 TTL=48 ID=46265 DF PROTO=UDP SPT=56747 DPT=53 LEN=52 Apr 8 05:55:20 debian-2gb-nbg1-2 kernel: \[8577139.277470\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=108.61.222.250 DST=195.201.40.59 LEN=64 TOS=0x00 PREC=0x00 TTL=49 ID=46264 DF PROTO=UDP SPT=51230 DPT=53 LEN=44 Apr 8 05:55:20 debian-2gb-nbg1-2 kernel: \[8577139.293924\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=108.61.222.250 DST=195.201.40.59 LEN=59 TOS=0x00 PREC=0x00 TTL=49 ID=46262 DF PROTO=UDP SPT=1551 DPT=53 LEN=39 Apr 8 05:55:20 debian-2gb-nbg1-2 kernel: \[8577139.306640\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=108.61.222.250 DST=195.201.40.59 LEN=61 TOS=0x00 PREC=0x00 TTL=49 ID=46263 DF PROTO=UDP SPT=58198 DPT=53 LEN=41	2020-04-08 16:50:50
31.20.193.52	attack	2020-04-08T07:37:53.347031upcloud.m0sh1x2.com sshd[25533]: Invalid user webadmin from 31.20.193.52 port 35668	2020-04-08 17:07:31
14.254.54.248	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 08-04-2020 04:55:09.	2020-04-08 17:00:09
91.188.229.168	attack	HACKED MY ACCOUNT IN STEAM.. PLEASE RETURN MY ACCOUNT, HACKER HACKER	2020-04-08 17:09:24
37.193.108.101	attackspambots	prod11 ...	2020-04-08 17:08:33
189.213.27.104	attackbots	DrayTek CVE	2020-04-08 16:53:09
124.217.230.120	attack	Automatic report - XMLRPC Attack	2020-04-08 17:13:36
192.241.199.239	attackbotsspam	Port 3389 (MS RDP) access denied	2020-04-08 16:45:46
177.152.124.23	attack	2020-04-08T08:48:02.043242centos sshd[5092]: Invalid user jocelyn from 177.152.124.23 port 50972 2020-04-08T08:48:03.739428centos sshd[5092]: Failed password for invalid user jocelyn from 177.152.124.23 port 50972 ssh2 2020-04-08T08:52:46.296945centos sshd[5454]: Invalid user media from 177.152.124.23 port 60688 ...	2020-04-08 16:55:45
106.12.189.2	attackspam	Apr 8 04:54:40 firewall sshd[7347]: Invalid user anu from 106.12.189.2 Apr 8 04:54:42 firewall sshd[7347]: Failed password for invalid user anu from 106.12.189.2 port 49306 ssh2 Apr 8 04:58:53 firewall sshd[7515]: Invalid user ubuntu from 106.12.189.2 ...	2020-04-08 17:06:21
163.179.126.39	attack	leo_www	2020-04-08 17:09:38

Recently Reported IPs

63.107.247.139	225.220.54.241	158.124.210.221	111.65.136.249
35.74.104.239	44.143.154.68	193.142.146.50	191.101.22.189
121.225.39.107	86.105.51.23	187.163.120.81	186.89.190.195
185.17.132.214	210.187.233.225	176.188.134.212	171.247.110.122
171.224.180.171	121.173.24.174	90.3.87.204	85.99.18.236