217.68.221.131

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Turkey

运营商(isp): Garanti Bilisim Teknolojisi ve Ticaret T.A.S.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 01:04:40

相同子网IP讨论:

IP	类型	评论内容	时间
217.68.221.189	attackbotsspam	slow and persistent scanner	2019-10-29 19:02:51
217.68.221.91	attack	slow and persistent scanner	2019-10-29 13:57:01
217.68.221.102	attackspam	[portscan] Port scan	2019-10-28 16:33:03
217.68.221.10	attackbots	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 01:08:35
217.68.221.107	attack	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 01:08:02
217.68.221.111	attackspambots	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 01:07:43
217.68.221.12	attackspam	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 01:06:32
217.68.221.113	attackspam	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 01:06:14
217.68.221.117	attackbotsspam	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 01:05:44
217.68.221.122	attackbots	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 01:05:03
217.68.221.141	attack	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 01:04:14
217.68.221.153	attackspam	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 01:03:53
217.68.221.161	attackspambots	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 01:03:23
217.68.221.165	attackspam	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 01:02:31
217.68.221.175	attackspam	Host is trying to send e-mails. Multiple unauthorized connections to SMTP Sever: tcp/25.	2019-10-28 01:01:42

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 217.68.221.131
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60537
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;217.68.221.131.			IN	A

;; AUTHORITY SECTION:
.			436	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102700 1800 900 604800 86400

;; Query time: 267 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 28 01:04:37 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

131.221.68.217.in-addr.arpa domain name pointer bosip.garantiteknoloji.com.tr.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
131.221.68.217.in-addr.arpa	name = bosip.garantiteknoloji.com.tr.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
212.70.149.19	attack	Aug 1 00:50:06 relay postfix/smtpd\[22498\]: warning: unknown\[212.70.149.19\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 1 00:50:20 relay postfix/smtpd\[11648\]: warning: unknown\[212.70.149.19\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 1 00:50:28 relay postfix/smtpd\[8486\]: warning: unknown\[212.70.149.19\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 1 00:50:43 relay postfix/smtpd\[11648\]: warning: unknown\[212.70.149.19\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 1 00:50:51 relay postfix/smtpd\[12530\]: warning: unknown\[212.70.149.19\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-08-01 06:57:29
201.87.111.200	attack	Automatic report - Port Scan Attack	2020-08-01 06:58:58
149.56.141.170	attack	Aug 1 05:21:35 itv-usvr-02 sshd[7340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.141.170 user=root Aug 1 05:26:29 itv-usvr-02 sshd[7582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.141.170 user=root Aug 1 05:31:26 itv-usvr-02 sshd[7917]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.141.170 user=root	2020-08-01 06:52:10
83.240.242.218	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-07-31T20:22:46Z and 2020-07-31T20:31:05Z	2020-08-01 07:13:34
14.241.183.184	attack	Unauthorized connection attempt from IP address 14.241.183.184 on Port 445(SMB)	2020-08-01 06:55:22
220.201.80.37	attack	Port Scan detected! ...	2020-08-01 06:51:56
118.24.219.30	attack	Jul 31 22:27:02 vmd36147 sshd[8646]: Failed password for root from 118.24.219.30 port 49440 ssh2 Jul 31 22:30:52 vmd36147 sshd[17236]: Failed password for root from 118.24.219.30 port 46234 ssh2 ...	2020-08-01 07:21:14
146.115.100.130	attack	Invalid user jp from 146.115.100.130 port 60074	2020-08-01 07:04:36
106.13.110.150	attack	Unauthorized SSH login attempts	2020-08-01 07:22:46
190.85.192.90	attackbotsspam	Unauthorized connection attempt from IP address 190.85.192.90 on Port 445(SMB)	2020-08-01 06:42:41
119.93.145.123	attack	Unauthorized connection attempt from IP address 119.93.145.123 on Port 445(SMB)	2020-08-01 07:12:08
106.13.173.137	attackbotsspam	Jul 31 22:26:42 melroy-server sshd[5139]: Failed password for root from 106.13.173.137 port 55728 ssh2 ...	2020-08-01 06:44:45
115.79.196.113	attack	Unauthorized connection attempt from IP address 115.79.196.113 on Port 445(SMB)	2020-08-01 07:01:17
61.157.91.159	attackbots	Banned for a week because repeated abuses, for example SSH, but not only	2020-08-01 07:07:23
93.114.86.226	attackbotsspam	www.fahrlehrerfortbildung-hessen.de 93.114.86.226 [31/Jul/2020:22:54:51 +0200] "POST /wp-login.php HTTP/1.1" 200 6114 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" www.fahrlehrerfortbildung-hessen.de 93.114.86.226 [31/Jul/2020:22:54:51 +0200] "POST /wp-login.php HTTP/1.1" 200 6072 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-01 06:50:30

最近上报的IP列表

217.68.220.37	217.68.220.32	85.230.130.122	217.68.220.251
217.68.220.242	217.68.220.235	217.68.220.29	217.68.220.24
162.241.32.152	217.68.220.229	217.68.220.215	217.68.220.214
217.68.220.21	217.68.220.182	217.68.220.181	217.68.220.180
217.68.220.19	217.68.220.179	217.68.220.168	217.68.220.162