211.75.51.34 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan, China

运营商(isp): Chunghwa Telecom Co. Ltd.

主机名(hostname): unknown

机构(organization): Data Communication Business Group

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	RDP Brute-Force (Grieskirchen RZ2)	2019-08-23 01:43:29

相同子网IP讨论:

IP	类型	评论内容	时间
211.75.51.43	attack	Aug 19 11:45:01 ms-srv sshd[48250]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.75.51.43 Aug 19 11:45:03 ms-srv sshd[48250]: Failed password for invalid user applmgr from 211.75.51.43 port 43238 ssh2	2020-03-09 05:21:27
211.75.51.96	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-28 03:29:43
211.75.51.96	attack	unauthorized connection attempt	2020-02-26 14:49:33
211.75.51.43	attackbotsspam	Aug 19 11:45:01 ms-srv sshd[48250]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.75.51.43 Aug 19 11:45:03 ms-srv sshd[48250]: Failed password for invalid user applmgr from 211.75.51.43 port 43238 ssh2	2020-02-16 00:29:19
211.75.51.170	attack	port scan and connect, tcp 23 (telnet)	2019-11-01 23:57:28

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 211.75.51.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22011
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;211.75.51.34.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041401 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 15 03:09:57 +08 2019
;; MSG SIZE  rcvd: 116

HOST信息:

34.51.75.211.in-addr.arpa domain name pointer 211-75-51-34.HINET-IP.hinet.net.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
34.51.75.211.in-addr.arpa	name = 211-75-51-34.HINET-IP.hinet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
185.176.27.42	attackspambots	Nov 12 05:16:23 h2177944 kernel: \[6407729.203256\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.42 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=33019 PROTO=TCP SPT=52270 DPT=33212 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 12 05:27:41 h2177944 kernel: \[6408407.249698\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.42 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=26909 PROTO=TCP SPT=52270 DPT=7613 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 12 05:50:19 h2177944 kernel: \[6409765.562857\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.42 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=48819 PROTO=TCP SPT=52270 DPT=9900 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 12 05:55:34 h2177944 kernel: \[6410079.593108\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.42 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=14577 PROTO=TCP SPT=52270 DPT=61213 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 12 05:58:57 h2177944 kernel: \[6410283.507032\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.176.27.42 DST=85.214.117	2019-11-12 13:01:40
80.82.70.239	attack	11/11/2019-19:42:37.587773 80.82.70.239 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-11-12 09:12:17
106.12.109.89	attackspam	Nov 11 20:41:16 firewall sshd[18431]: Failed password for invalid user bc from 106.12.109.89 port 35952 ssh2 Nov 11 20:45:34 firewall sshd[18589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.109.89 user=root Nov 11 20:45:37 firewall sshd[18589]: Failed password for root from 106.12.109.89 port 44090 ssh2 ...	2019-11-12 09:10:09
170.231.193.206	attackbots	Automatic report - Port Scan Attack	2019-11-12 13:20:45
40.107.77.40	attack	sent link to malicious site.	2019-11-12 09:16:02
45.227.253.141	attackbotsspam	2019-11-12T02:08:27.112218mail01 postfix/smtpd[13328]: warning: unknown[45.227.253.141]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-12T02:08:34.247801mail01 postfix/smtpd[8433]: warning: unknown[45.227.253.141]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-12T02:08:52.095395mail01 postfix/smtpd[13328]: warning: unknown[45.227.253.141]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-12 09:09:13
210.211.118.110	attack	Sql/code injection probe	2019-11-12 13:02:40
144.202.31.83	attackbotsspam	port scan and connect, tcp 23 (telnet)	2019-11-12 13:06:35
177.124.185.92	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/177.124.185.92/ BR - 1H : (125) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BR NAME ASN : ASN52865 IP : 177.124.185.92 CIDR : 177.124.185.0/24 PREFIX COUNT : 11 UNIQUE IP COUNT : 3072 ATTACKS DETECTED ASN52865 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-11-12 05:58:37 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-12 13:15:16
222.186.180.6	attackspambots	SSH Brute Force, server-1 sshd[25901]: Failed password for root from 222.186.180.6 port 52950 ssh2	2019-11-12 13:17:11
106.12.27.107	attackspam	ssh bruteforce or scan ...	2019-11-12 09:11:53
51.15.190.180	attackspam	Invalid user !nter@P1n00 from 51.15.190.180 port 52814 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.190.180 Failed password for invalid user !nter@P1n00 from 51.15.190.180 port 52814 ssh2 Invalid user guest1111 from 51.15.190.180 port 33688 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.190.180	2019-11-12 09:18:43
193.56.28.177	attack	Rude login attack (3 tries in 1d)	2019-11-12 13:24:48
139.59.247.114	attack	Nov 12 10:40:44 vibhu-HP-Z238-Microtower-Workstation sshd\[3076\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.247.114 user=root Nov 12 10:40:46 vibhu-HP-Z238-Microtower-Workstation sshd\[3076\]: Failed password for root from 139.59.247.114 port 46210 ssh2 Nov 12 10:44:58 vibhu-HP-Z238-Microtower-Workstation sshd\[3381\]: Invalid user ommundsen from 139.59.247.114 Nov 12 10:44:58 vibhu-HP-Z238-Microtower-Workstation sshd\[3381\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.247.114 Nov 12 10:45:00 vibhu-HP-Z238-Microtower-Workstation sshd\[3381\]: Failed password for invalid user ommundsen from 139.59.247.114 port 55602 ssh2 ...	2019-11-12 13:23:38
180.89.58.27	attackbotsspam	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.89.58.27 user=root Failed password for root from 180.89.58.27 port 42468 ssh2 Invalid user ashany from 180.89.58.27 port 1185 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.89.58.27 Failed password for invalid user ashany from 180.89.58.27 port 1185 ssh2	2019-11-12 09:17:41

最近上报的IP列表

217.15.130.200	88.247.67.126	222.89.92.195	157.230.190.247
187.5.109.174	196.35.199.188	188.166.127.107	103.48.67.93
209.17.97.90	122.121.102.178	58.144.34.96	182.239.238.49
5.39.16.9	183.82.100.198	128.199.58.133	46.116.73.108
180.222.141.30	159.39.86.7	190.79.112.200	31.163.229.110