211.72.1.19 - IPInfo

基本信息:

城市(city): Taipei

省份(region): Taipei City

国家(country): Taiwan, China

运营商(isp): Chunghwa Telecom Co. Ltd.

主机名(hostname): unknown

机构(organization): Data Communication Business Group

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	445/tcp 445/tcp 445/tcp... [2019-04-22/06-22]7pkt,1pt.(tcp)	2019-06-22 23:12:17

相同子网IP讨论:

IP	类型	评论内容	时间
211.72.117.101	attackbots	Aug 8 08:19:06 mout sshd[32751]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.72.117.101 user=root Aug 8 08:19:07 mout sshd[32751]: Failed password for root from 211.72.117.101 port 58602 ssh2	2020-08-08 17:29:05
211.72.117.101	attackspam	Aug 6 01:24:33 Tower sshd[39798]: Connection from 211.72.117.101 port 43660 on 192.168.10.220 port 22 rdomain "" Aug 6 01:24:34 Tower sshd[39798]: Failed password for root from 211.72.117.101 port 43660 ssh2 Aug 6 01:24:34 Tower sshd[39798]: Received disconnect from 211.72.117.101 port 43660:11: Bye Bye [preauth] Aug 6 01:24:34 Tower sshd[39798]: Disconnected from authenticating user root 211.72.117.101 port 43660 [preauth]	2020-08-06 13:33:37
211.72.109.243	attackbots	Port probing on unauthorized port 81	2020-08-01 15:01:21
211.72.117.101	attackbotsspam	Jul 23 10:39:59 ns382633 sshd\[1497\]: Invalid user andelaria from 211.72.117.101 port 41600 Jul 23 10:39:59 ns382633 sshd\[1497\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.72.117.101 Jul 23 10:40:01 ns382633 sshd\[1497\]: Failed password for invalid user andelaria from 211.72.117.101 port 41600 ssh2 Jul 23 10:43:07 ns382633 sshd\[2229\]: Invalid user user1 from 211.72.117.101 port 44716 Jul 23 10:43:07 ns382633 sshd\[2229\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.72.117.101	2020-07-23 17:22:10
211.72.117.101	attackspambots	2020-07-19T07:12:53.837630hostname sshd[25101]: Failed password for invalid user infra from 211.72.117.101 port 53964 ssh2 ...	2020-07-21 03:25:36
211.72.117.101	attackspambots	Jul 11 18:29:52 nextcloud sshd\[27743\]: Invalid user sic from 211.72.117.101 Jul 11 18:29:52 nextcloud sshd\[27743\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.72.117.101 Jul 11 18:29:54 nextcloud sshd\[27743\]: Failed password for invalid user sic from 211.72.117.101 port 48862 ssh2	2020-07-12 01:00:54
211.72.117.101	attackspambots	Jun 9 22:17:56 abendstille sshd\[23996\]: Invalid user contracts from 211.72.117.101 Jun 9 22:17:56 abendstille sshd\[23996\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.72.117.101 Jun 9 22:17:58 abendstille sshd\[23996\]: Failed password for invalid user contracts from 211.72.117.101 port 39376 ssh2 Jun 9 22:20:22 abendstille sshd\[26543\]: Invalid user pi from 211.72.117.101 Jun 9 22:20:22 abendstille sshd\[26543\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.72.117.101 ...	2020-06-10 04:58:50
211.72.117.101	attack	Fail2Ban Ban Triggered (2)	2020-05-27 21:50:47
211.72.113.127	attackbots	port 23	2020-05-27 19:19:01
211.72.117.101	attackbots	May 20 09:48:02 vmd26974 sshd[26415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.72.117.101 May 20 09:48:03 vmd26974 sshd[26415]: Failed password for invalid user qar from 211.72.117.101 port 33448 ssh2 ...	2020-05-20 18:00:24
211.72.15.95	attack	Unauthorized connection attempt from IP address 211.72.15.95 on Port 445(SMB)	2020-05-14 03:53:43
211.72.117.101	attackbotsspam	Found by fail2ban	2020-04-28 13:23:35
211.72.117.101	attackbots	Apr 20 19:53:32 raspberrypi sshd\[15617\]: Invalid user test1 from 211.72.117.101Apr 20 19:53:34 raspberrypi sshd\[15617\]: Failed password for invalid user test1 from 211.72.117.101 port 54482 ssh2Apr 20 19:57:43 raspberrypi sshd\[18452\]: Invalid user git from 211.72.117.101 ...	2020-04-21 04:14:29
211.72.117.101	attack	Mar 29 15:38:10 host01 sshd[15141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.72.117.101 Mar 29 15:38:12 host01 sshd[15141]: Failed password for invalid user kzo from 211.72.117.101 port 38270 ssh2 Mar 29 15:42:20 host01 sshd[15886]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.72.117.101 ...	2020-03-29 23:12:20
211.72.117.101	attack	2020-03-29T05:43:43.606592shield sshd\[32098\]: Invalid user qu from 211.72.117.101 port 58024 2020-03-29T05:43:43.610780shield sshd\[32098\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211-72-117-101.hinet-ip.hinet.net 2020-03-29T05:43:46.378201shield sshd\[32098\]: Failed password for invalid user qu from 211.72.117.101 port 58024 ssh2 2020-03-29T05:52:37.485298shield sshd\[2153\]: Invalid user kw from 211.72.117.101 port 55758 2020-03-29T05:52:37.494416shield sshd\[2153\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211-72-117-101.hinet-ip.hinet.net	2020-03-29 14:05:30

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 211.72.1.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32901
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;211.72.1.19.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062201 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jun 22 23:12:06 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

19.1.72.211.in-addr.arpa domain name pointer 211-72-1-19.HINET-IP.hinet.net.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
19.1.72.211.in-addr.arpa	name = 211-72-1-19.HINET-IP.hinet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
183.88.227.76	attackbots	$f2bV_matches	2020-07-16 14:02:33
1.34.118.219	attackbotsspam	TCP (SYN) 1.34.118.219:41267 -> port 80, len 44	2020-07-16 14:05:53
200.6.188.38	attackbots	Jul 16 08:22:36 web-main sshd[635806]: Invalid user ding from 200.6.188.38 port 48100 Jul 16 08:22:38 web-main sshd[635806]: Failed password for invalid user ding from 200.6.188.38 port 48100 ssh2 Jul 16 08:27:11 web-main sshd[635813]: Invalid user rtc from 200.6.188.38 port 55870	2020-07-16 14:29:45
95.178.156.60	attackbots	Telnetd brute force attack detected by fail2ban	2020-07-16 14:33:02
218.92.0.251	attackspambots	Jul 16 08:27:31 santamaria sshd\[2216\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.251 user=root Jul 16 08:27:33 santamaria sshd\[2216\]: Failed password for root from 218.92.0.251 port 34440 ssh2 Jul 16 08:27:50 santamaria sshd\[2218\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.251 user=root ...	2020-07-16 14:36:43
37.223.179.112	attack	Jul 16 07:36:48 meumeu sshd[755878]: Invalid user tracy from 37.223.179.112 port 51236 Jul 16 07:36:48 meumeu sshd[755878]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.223.179.112 Jul 16 07:36:48 meumeu sshd[755878]: Invalid user tracy from 37.223.179.112 port 51236 Jul 16 07:36:51 meumeu sshd[755878]: Failed password for invalid user tracy from 37.223.179.112 port 51236 ssh2 Jul 16 07:41:14 meumeu sshd[760155]: Invalid user ts3 from 37.223.179.112 port 38626 Jul 16 07:41:14 meumeu sshd[760155]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.223.179.112 Jul 16 07:41:14 meumeu sshd[760155]: Invalid user ts3 from 37.223.179.112 port 38626 Jul 16 07:41:17 meumeu sshd[760155]: Failed password for invalid user ts3 from 37.223.179.112 port 38626 ssh2 Jul 16 07:45:48 meumeu sshd[760364]: Invalid user user from 37.223.179.112 port 54246 ...	2020-07-16 14:06:31
103.210.21.57	attack	Invalid user testuser from 103.210.21.57 port 35656	2020-07-16 14:16:31
211.108.69.103	attackspam	Brute-force attempt banned	2020-07-16 14:11:42
5.61.30.54	attack	Jul 16 06:15:33 ip-172-31-62-245 sshd\[13397\]: Invalid user lkj from 5.61.30.54\ Jul 16 06:15:36 ip-172-31-62-245 sshd\[13397\]: Failed password for invalid user lkj from 5.61.30.54 port 44331 ssh2\ Jul 16 06:20:14 ip-172-31-62-245 sshd\[13435\]: Invalid user senior from 5.61.30.54\ Jul 16 06:20:16 ip-172-31-62-245 sshd\[13435\]: Failed password for invalid user senior from 5.61.30.54 port 47110 ssh2\ Jul 16 06:25:07 ip-172-31-62-245 sshd\[13528\]: Invalid user gorge from 5.61.30.54\	2020-07-16 14:29:19
198.27.81.94	attackbotsspam	198.27.81.94 - - [16/Jul/2020:06:58:16 +0100] "POST /wp-login.php HTTP/1.1" 200 5940 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 198.27.81.94 - - [16/Jul/2020:07:01:26 +0100] "POST /wp-login.php HTTP/1.1" 200 5947 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 198.27.81.94 - - [16/Jul/2020:07:03:08 +0100] "POST /wp-login.php HTTP/1.1" 200 5947 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" ...	2020-07-16 14:10:29
35.245.180.147	attackbotsspam	Jul 16 11:02:43 gw1 sshd[21528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.245.180.147 Jul 16 11:02:45 gw1 sshd[21528]: Failed password for invalid user dm from 35.245.180.147 port 46270 ssh2 ...	2020-07-16 14:35:05
42.236.10.105	attackspam	Automatic report - Banned IP Access	2020-07-16 14:21:07
222.186.180.41	attackbots	SSH Login Bruteforce	2020-07-16 14:15:56
61.177.172.102	attackspam	Unauthorized connection attempt detected from IP address 61.177.172.102 to port 22 [T]	2020-07-16 14:17:37
111.229.134.68	attack	Jul 16 04:54:39 ip-172-31-62-245 sshd\[12268\]: Invalid user tom from 111.229.134.68\ Jul 16 04:54:41 ip-172-31-62-245 sshd\[12268\]: Failed password for invalid user tom from 111.229.134.68 port 47966 ssh2\ Jul 16 04:57:18 ip-172-31-62-245 sshd\[12317\]: Invalid user liyuan from 111.229.134.68\ Jul 16 04:57:20 ip-172-31-62-245 sshd\[12317\]: Failed password for invalid user liyuan from 111.229.134.68 port 48020 ssh2\ Jul 16 05:00:01 ip-172-31-62-245 sshd\[12348\]: Invalid user jenkins from 111.229.134.68\	2020-07-16 14:34:38

最近上报的IP列表

68.111.135.255	209.153.247.88	110.76.234.74	170.2.167.188
210.35.35.200	81.12.72.88	179.67.97.72	88.79.64.37
177.66.73.172	204.13.203.99	221.61.191.79	74.89.178.232
83.158.79.5	200.46.138.6	41.32.106.186	169.238.36.104
91.132.138.78	92.46.241.99	218.175.16.113	212.174.144.29