211.72.1.19 - IPInfo

基本信息:

城市(city): Taipei

省份(region): Taipei City

国家(country): Taiwan, China

运营商(isp): Chunghwa Telecom Co. Ltd.

主机名(hostname): unknown

机构(organization): Data Communication Business Group

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	445/tcp 445/tcp 445/tcp... [2019-04-22/06-22]7pkt,1pt.(tcp)	2019-06-22 23:12:17

相同子网IP讨论:

IP	类型	评论内容	时间
211.72.117.101	attackbots	Aug 8 08:19:06 mout sshd[32751]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.72.117.101 user=root Aug 8 08:19:07 mout sshd[32751]: Failed password for root from 211.72.117.101 port 58602 ssh2	2020-08-08 17:29:05
211.72.117.101	attackspam	Aug 6 01:24:33 Tower sshd[39798]: Connection from 211.72.117.101 port 43660 on 192.168.10.220 port 22 rdomain "" Aug 6 01:24:34 Tower sshd[39798]: Failed password for root from 211.72.117.101 port 43660 ssh2 Aug 6 01:24:34 Tower sshd[39798]: Received disconnect from 211.72.117.101 port 43660:11: Bye Bye [preauth] Aug 6 01:24:34 Tower sshd[39798]: Disconnected from authenticating user root 211.72.117.101 port 43660 [preauth]	2020-08-06 13:33:37
211.72.109.243	attackbots	Port probing on unauthorized port 81	2020-08-01 15:01:21
211.72.117.101	attackbotsspam	Jul 23 10:39:59 ns382633 sshd\[1497\]: Invalid user andelaria from 211.72.117.101 port 41600 Jul 23 10:39:59 ns382633 sshd\[1497\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.72.117.101 Jul 23 10:40:01 ns382633 sshd\[1497\]: Failed password for invalid user andelaria from 211.72.117.101 port 41600 ssh2 Jul 23 10:43:07 ns382633 sshd\[2229\]: Invalid user user1 from 211.72.117.101 port 44716 Jul 23 10:43:07 ns382633 sshd\[2229\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.72.117.101	2020-07-23 17:22:10
211.72.117.101	attackspambots	2020-07-19T07:12:53.837630hostname sshd[25101]: Failed password for invalid user infra from 211.72.117.101 port 53964 ssh2 ...	2020-07-21 03:25:36
211.72.117.101	attackspambots	Jul 11 18:29:52 nextcloud sshd\[27743\]: Invalid user sic from 211.72.117.101 Jul 11 18:29:52 nextcloud sshd\[27743\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.72.117.101 Jul 11 18:29:54 nextcloud sshd\[27743\]: Failed password for invalid user sic from 211.72.117.101 port 48862 ssh2	2020-07-12 01:00:54
211.72.117.101	attackspambots	Jun 9 22:17:56 abendstille sshd\[23996\]: Invalid user contracts from 211.72.117.101 Jun 9 22:17:56 abendstille sshd\[23996\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.72.117.101 Jun 9 22:17:58 abendstille sshd\[23996\]: Failed password for invalid user contracts from 211.72.117.101 port 39376 ssh2 Jun 9 22:20:22 abendstille sshd\[26543\]: Invalid user pi from 211.72.117.101 Jun 9 22:20:22 abendstille sshd\[26543\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.72.117.101 ...	2020-06-10 04:58:50
211.72.117.101	attack	Fail2Ban Ban Triggered (2)	2020-05-27 21:50:47
211.72.113.127	attackbots	port 23	2020-05-27 19:19:01
211.72.117.101	attackbots	May 20 09:48:02 vmd26974 sshd[26415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.72.117.101 May 20 09:48:03 vmd26974 sshd[26415]: Failed password for invalid user qar from 211.72.117.101 port 33448 ssh2 ...	2020-05-20 18:00:24
211.72.15.95	attack	Unauthorized connection attempt from IP address 211.72.15.95 on Port 445(SMB)	2020-05-14 03:53:43
211.72.117.101	attackbotsspam	Found by fail2ban	2020-04-28 13:23:35
211.72.117.101	attackbots	Apr 20 19:53:32 raspberrypi sshd\[15617\]: Invalid user test1 from 211.72.117.101Apr 20 19:53:34 raspberrypi sshd\[15617\]: Failed password for invalid user test1 from 211.72.117.101 port 54482 ssh2Apr 20 19:57:43 raspberrypi sshd\[18452\]: Invalid user git from 211.72.117.101 ...	2020-04-21 04:14:29
211.72.117.101	attack	Mar 29 15:38:10 host01 sshd[15141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.72.117.101 Mar 29 15:38:12 host01 sshd[15141]: Failed password for invalid user kzo from 211.72.117.101 port 38270 ssh2 Mar 29 15:42:20 host01 sshd[15886]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.72.117.101 ...	2020-03-29 23:12:20
211.72.117.101	attack	2020-03-29T05:43:43.606592shield sshd\[32098\]: Invalid user qu from 211.72.117.101 port 58024 2020-03-29T05:43:43.610780shield sshd\[32098\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211-72-117-101.hinet-ip.hinet.net 2020-03-29T05:43:46.378201shield sshd\[32098\]: Failed password for invalid user qu from 211.72.117.101 port 58024 ssh2 2020-03-29T05:52:37.485298shield sshd\[2153\]: Invalid user kw from 211.72.117.101 port 55758 2020-03-29T05:52:37.494416shield sshd\[2153\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211-72-117-101.hinet-ip.hinet.net	2020-03-29 14:05:30

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 211.72.1.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32901
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;211.72.1.19.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062201 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jun 22 23:12:06 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

19.1.72.211.in-addr.arpa domain name pointer 211-72-1-19.HINET-IP.hinet.net.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
19.1.72.211.in-addr.arpa	name = 211-72-1-19.HINET-IP.hinet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
85.105.68.175	attackspam	Automatic report - Port Scan Attack	2020-06-12 08:39:12
190.85.145.162	attack	(sshd) Failed SSH login from 190.85.145.162 (CO/Colombia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 12 05:53:47 amsweb01 sshd[24512]: Invalid user cf from 190.85.145.162 port 42304 Jun 12 05:53:49 amsweb01 sshd[24512]: Failed password for invalid user cf from 190.85.145.162 port 42304 ssh2 Jun 12 05:57:34 amsweb01 sshd[25171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.85.145.162 user=root Jun 12 05:57:36 amsweb01 sshd[25171]: Failed password for root from 190.85.145.162 port 60938 ssh2 Jun 12 05:59:16 amsweb01 sshd[25430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.85.145.162 user=root	2020-06-12 12:07:01
144.172.73.39	attackbots	Jun 10 00:26:07 h2570396 sshd[1251]: Failed password for invalid user honey from 144.172.73.39 port 57976 ssh2 Jun 10 00:26:10 h2570396 sshd[1251]: Received disconnect from 144.172.73.39: 11: PECL/ssh2 (hxxp://pecl.php.net/packages/ssh2) [preauth] Jun 10 00:26:12 h2570396 sshd[1253]: Failed password for invalid user admin from 144.172.73.39 port 60046 ssh2 Jun 10 00:26:18 h2570396 sshd[1253]: Received disconnect from 144.172.73.39: 11: PECL/ssh2 (hxxp://pecl.php.net/packages/ssh2) [preauth] Jun 10 00:26:18 h2570396 sshd[1255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.172.73.39 user=r.r Jun 10 00:26:20 h2570396 sshd[1255]: Failed password for r.r from 144.172.73.39 port 32776 ssh2 Jun 10 00:26:21 h2570396 sshd[1255]: Received disconnect from 144.172.73.39: 11: PECL/ssh2 (hxxp://pecl.php.net/packages/ssh2) [preauth] Jun 10 00:26:22 h2570396 sshd[1257]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tt........ -------------------------------	2020-06-12 09:01:53
212.124.22.156	attackbotsspam	Automatic report - Banned IP Access	2020-06-12 08:49:52
36.112.136.33	attackbots	Jun 12 01:05:29 zulu412 sshd\[11085\]: Invalid user takazawa from 36.112.136.33 port 50434 Jun 12 01:05:29 zulu412 sshd\[11085\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.112.136.33 Jun 12 01:05:31 zulu412 sshd\[11085\]: Failed password for invalid user takazawa from 36.112.136.33 port 50434 ssh2 ...	2020-06-12 09:02:45
222.186.180.6	attack	Jun 12 06:06:41 abendstille sshd\[10625\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.6 user=root Jun 12 06:06:41 abendstille sshd\[10614\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.6 user=root Jun 12 06:06:43 abendstille sshd\[10625\]: Failed password for root from 222.186.180.6 port 7162 ssh2 Jun 12 06:06:44 abendstille sshd\[10614\]: Failed password for root from 222.186.180.6 port 21370 ssh2 Jun 12 06:06:47 abendstille sshd\[10625\]: Failed password for root from 222.186.180.6 port 7162 ssh2 ...	2020-06-12 12:07:53
128.199.177.16	attackspam	Jun 11 20:26:57 firewall sshd[11092]: Failed password for invalid user office from 128.199.177.16 port 43346 ssh2 Jun 11 20:30:28 firewall sshd[11218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.177.16 user=root Jun 11 20:30:30 firewall sshd[11218]: Failed password for root from 128.199.177.16 port 43618 ssh2 ...	2020-06-12 08:44:14
80.211.246.93	attack	Lines containing failures of 80.211.246.93 Jun 10 00:56:14 nxxxxxxx sshd[13558]: Invalid user user from 80.211.246.93 port 38282 Jun 10 00:56:14 nxxxxxxx sshd[13558]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.246.93 Jun 10 00:56:16 nxxxxxxx sshd[13558]: Failed password for invalid user user from 80.211.246.93 port 38282 ssh2 Jun 10 00:56:16 nxxxxxxx sshd[13558]: Received disconnect from 80.211.246.93 port 38282:11: Bye Bye [preauth] Jun 10 00:56:16 nxxxxxxx sshd[13558]: Disconnected from invalid user user 80.211.246.93 port 38282 [preauth] Jun 10 01:11:23 nxxxxxxx sshd[16872]: Invalid user terry from 80.211.246.93 port 55244 Jun 10 01:11:23 nxxxxxxx sshd[16872]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.246.93 Jun 10 01:11:25 nxxxxxxx sshd[16872]: Failed password for invalid user terry from 80.211.246.93 port 55244 ssh2 Jun 10 01:11:25 nxxxxxxx sshd[16872]: Received ........ ------------------------------	2020-06-12 09:04:57
185.40.30.20	attack	$f2bV_matches	2020-06-12 12:01:04
217.182.67.242	attackspambots	Jun 12 01:39:44 ns382633 sshd\[12112\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.67.242 user=root Jun 12 01:39:46 ns382633 sshd\[12112\]: Failed password for root from 217.182.67.242 port 41555 ssh2 Jun 12 01:48:16 ns382633 sshd\[13794\]: Invalid user h2 from 217.182.67.242 port 53620 Jun 12 01:48:16 ns382633 sshd\[13794\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.67.242 Jun 12 01:48:18 ns382633 sshd\[13794\]: Failed password for invalid user h2 from 217.182.67.242 port 53620 ssh2	2020-06-12 08:51:17
79.58.45.55	attackbotsspam	Automatic report - Port Scan Attack	2020-06-12 08:54:25
212.179.229.245	attack	Port probing on unauthorized port 23	2020-06-12 08:53:24
119.97.164.243	attackspambots	Scanned 1 times in the last 24 hours on port 22	2020-06-12 08:38:04
122.114.109.220	attackbots	Jun 12 02:33:34 ns382633 sshd\[21867\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.109.220 user=root Jun 12 02:33:35 ns382633 sshd\[21867\]: Failed password for root from 122.114.109.220 port 34895 ssh2 Jun 12 02:39:06 ns382633 sshd\[22786\]: Invalid user samia from 122.114.109.220 port 28178 Jun 12 02:39:06 ns382633 sshd\[22786\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.109.220 Jun 12 02:39:08 ns382633 sshd\[22786\]: Failed password for invalid user samia from 122.114.109.220 port 28178 ssh2	2020-06-12 08:53:57
222.186.30.112	attackbotsspam	Jun 12 05:04:06 rocket sshd[22590]: Failed password for root from 222.186.30.112 port 26452 ssh2 Jun 12 05:04:17 rocket sshd[22593]: Failed password for root from 222.186.30.112 port 61605 ssh2 ...	2020-06-12 12:06:07

最近上报的IP列表

68.111.135.255	209.153.247.88	110.76.234.74	170.2.167.188
210.35.35.200	81.12.72.88	179.67.97.72	88.79.64.37
177.66.73.172	204.13.203.99	221.61.191.79	74.89.178.232
83.158.79.5	200.46.138.6	41.32.106.186	169.238.36.104
91.132.138.78	92.46.241.99	218.175.16.113	212.174.144.29