1.64.203.220 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Hong Kong Telecommunications (HKT) Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Unauthorized connection attempt detected from IP address 1.64.203.220 to port 5555 [J]	2020-01-31 21:58:21
attack	Unauthorized connection attempt detected from IP address 1.64.203.220 to port 5555 [J]	2020-01-12 23:49:20
attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-19 07:28:46

类型

评论内容

时间

attackspam

Unauthorized connection attempt detected from IP address 1.64.203.220 to port 5555 [J]

2020-01-31 21:58:21

attack

Unauthorized connection attempt detected from IP address 1.64.203.220 to port 5555 [J]

2020-01-12 23:49:20

attack

MultiHost/MultiPort Probe, Scan, Hack -

2019-12-19 07:28:46

相同子网IP讨论:

IP	类型	评论内容	时间
1.64.203.47	attack	Sep 2 16:46:19 vlre-nyc-1 sshd\[8415\]: Invalid user user from 1.64.203.47 Sep 2 16:46:19 vlre-nyc-1 sshd\[8415\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.64.203.47 Sep 2 16:46:21 vlre-nyc-1 sshd\[8415\]: Failed password for invalid user user from 1.64.203.47 port 34974 ssh2 Sep 2 16:48:36 vlre-nyc-1 sshd\[8530\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.64.203.47 user=root Sep 2 16:48:38 vlre-nyc-1 sshd\[8530\]: Failed password for root from 1.64.203.47 port 55166 ssh2 ...	2020-09-03 21:21:47
1.64.203.47	attack	Sep 2 16:46:19 vlre-nyc-1 sshd\[8415\]: Invalid user user from 1.64.203.47 Sep 2 16:46:19 vlre-nyc-1 sshd\[8415\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.64.203.47 Sep 2 16:46:21 vlre-nyc-1 sshd\[8415\]: Failed password for invalid user user from 1.64.203.47 port 34974 ssh2 Sep 2 16:48:36 vlre-nyc-1 sshd\[8530\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.64.203.47 user=root Sep 2 16:48:38 vlre-nyc-1 sshd\[8530\]: Failed password for root from 1.64.203.47 port 55166 ssh2 ...	2020-09-03 13:04:03
1.64.203.47	attackbots	Sep 2 16:46:19 vlre-nyc-1 sshd\[8415\]: Invalid user user from 1.64.203.47 Sep 2 16:46:19 vlre-nyc-1 sshd\[8415\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.64.203.47 Sep 2 16:46:21 vlre-nyc-1 sshd\[8415\]: Failed password for invalid user user from 1.64.203.47 port 34974 ssh2 Sep 2 16:48:36 vlre-nyc-1 sshd\[8530\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.64.203.47 user=root Sep 2 16:48:38 vlre-nyc-1 sshd\[8530\]: Failed password for root from 1.64.203.47 port 55166 ssh2 ...	2020-09-03 05:21:54
1.64.203.197	attackbotsspam	Automatic report - Port Scan Attack	2019-07-15 07:04:03

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.64.203.220
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 243
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.64.203.220.			IN	A

;; AUTHORITY SECTION:
.			355	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121802 1800 900 604800 86400

;; Query time: 130 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 19 07:28:44 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

220.203.64.1.in-addr.arpa domain name pointer 1-64-203-220.static.netvigator.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
220.203.64.1.in-addr.arpa	name = 1-64-203-220.static.netvigator.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
183.82.97.36	attack	Port probing on unauthorized port 445	2020-08-06 16:10:37
193.112.47.237	attackspambots	Automatic report - Banned IP Access	2020-08-06 16:28:11
138.68.253.149	attackbots	Aug 6 07:55:46 hell sshd[9487]: Failed password for root from 138.68.253.149 port 51536 ssh2 ...	2020-08-06 16:33:28
54.38.186.69	attackbotsspam	Aug 6 07:12:48 amit sshd\[16739\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.186.69 user=root Aug 6 07:12:50 amit sshd\[16739\]: Failed password for root from 54.38.186.69 port 47952 ssh2 Aug 6 07:22:20 amit sshd\[13931\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.186.69 user=root ...	2020-08-06 16:24:44
123.16.135.136	attackspam	Port probing on unauthorized port 445	2020-08-06 16:03:08
45.139.185.48	attack	Phishing attack	2020-08-06 16:21:39
179.171.110.243	attackbots	Port Scan detected from 179.171.110.243 (BR/Brazil/179-171-110-243.user.vivozap.com.br). 4 hits in the last 110 seconds	2020-08-06 16:38:15
121.201.35.131	attack	Host Scan	2020-08-06 16:07:14
104.236.75.62	attackbots	104.236.75.62 - - [06/Aug/2020:09:33:14 +0100] "POST /wp-login.php HTTP/1.1" 200 1875 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.236.75.62 - - [06/Aug/2020:09:33:15 +0100] "POST /wp-login.php HTTP/1.1" 200 1875 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.236.75.62 - - [06/Aug/2020:09:33:15 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-06 16:37:05
59.34.233.229	attackbots	SSH bruteforce	2020-08-06 16:28:28
45.124.144.116	attackspam	SSH Brute Force	2020-08-06 16:30:37
119.45.0.9	attack	Repeated brute force against a port	2020-08-06 15:59:23
46.41.140.71	attackspam	SSH authentication failure x 6 reported by Fail2Ban ...	2020-08-06 16:02:26
112.73.0.146	attackspam	$f2bV_matches	2020-08-06 16:22:34
202.105.182.178	attackspam	Aug 6 00:54:51 lola sshd[8183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.105.182.178 user=r.r Aug 6 00:54:53 lola sshd[8183]: Failed password for r.r from 202.105.182.178 port 41184 ssh2 Aug 6 00:54:53 lola sshd[8183]: Received disconnect from 202.105.182.178: 11: Bye Bye [preauth] Aug 6 01:09:24 lola sshd[8647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.105.182.178 user=r.r Aug 6 01:09:26 lola sshd[8647]: Failed password for r.r from 202.105.182.178 port 34248 ssh2 Aug 6 01:09:27 lola sshd[8647]: Received disconnect from 202.105.182.178: 11: Bye Bye [preauth] Aug 6 01:13:02 lola sshd[8769]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.105.182.178 user=r.r Aug 6 01:13:04 lola sshd[8769]: Failed password for r.r from 202.105.182.178 port 60364 ssh2 Aug 6 01:13:04 lola sshd[8769]: Received disconnect from 202.105.1........ -------------------------------	2020-08-06 16:04:56

最近上报的IP列表

171.252.156.242	115.118.85.101	3.228.20.34	176.255.0.63
40.92.4.109	45.82.153.84	106.54.185.253	90.113.198.248
49.235.117.58	107.87.236.76	162.205.46.107	40.92.72.37
147.185.243.201	36.151.22.220	69.173.127.104	109.242.21.246
165.78.69.150	143.58.76.12	86.217.11.19	159.138.128.51