218.64.55.201 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Jiangxi Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Unauthorized connection attempt from IP address 218.64.55.201 on Port 445(SMB)	2019-07-31 21:32:17

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 218.64.55.201
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63579
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;218.64.55.201.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019073100 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 31 21:32:10 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

201.55.64.218.in-addr.arpa domain name pointer 201.55.64.218.broad.nc.jx.dynamic.163data.com.cn.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
201.55.64.218.in-addr.arpa	name = 201.55.64.218.broad.nc.jx.dynamic.163data.com.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
62.171.177.122	attackbotsspam	php WP PHPmyadamin ABUSE blocked for 12h	2020-09-06 21:24:22
192.35.168.218	attackbots	2020-09-05 11:28 Unauthorized connection attempt to IMAP/POP 2020-09-05 11:14 SMTP:587 IP autobanned - 7 attempts a day	2020-09-06 21:43:11
61.177.172.61	attack	SSH Brute-Force attacks	2020-09-06 22:00:40
14.160.52.58	attack	Dovecot Invalid User Login Attempt.	2020-09-06 21:56:13
189.7.81.29	attackspambots	SSH	2020-09-06 21:58:53
112.13.200.154	attack	Sep 6 09:43:21 vps-51d81928 sshd[257760]: Invalid user admin from 112.13.200.154 port 4270 Sep 6 09:43:23 vps-51d81928 sshd[257760]: Failed password for invalid user admin from 112.13.200.154 port 4270 ssh2 Sep 6 09:45:59 vps-51d81928 sshd[257792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.13.200.154 user=root Sep 6 09:46:01 vps-51d81928 sshd[257792]: Failed password for root from 112.13.200.154 port 4271 ssh2 Sep 6 09:48:47 vps-51d81928 sshd[257826]: Invalid user admin from 112.13.200.154 port 4272 ...	2020-09-06 21:33:48
5.188.86.164	attack	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-09-06T13:52:42Z	2020-09-06 21:53:55
200.233.231.104	attack	trying to access non-authorized port	2020-09-06 21:58:13
144.217.95.97	attack	144.217.95.97 (CA/Canada/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 5 12:57:55 server2 sshd[17790]: Failed password for root from 141.98.252.163 port 32992 ssh2 Sep 5 12:57:53 server2 sshd[17790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.252.163 user=root Sep 5 13:11:00 server2 sshd[28523]: Failed password for root from 144.217.95.97 port 42370 ssh2 Sep 5 13:12:29 server2 sshd[29724]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.83.42 user=root Sep 5 13:11:58 server2 sshd[29343]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.91.72 user=root Sep 5 13:12:00 server2 sshd[29343]: Failed password for root from 157.245.91.72 port 37790 ssh2 IP Addresses Blocked: 141.98.252.163 (GB/United Kingdom/-)	2020-09-06 21:16:15
194.152.206.103	attackbots	(sshd) Failed SSH login from 194.152.206.103 (HR/Croatia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 6 08:20:23 optimus sshd[7016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.152.206.103 user=root Sep 6 08:20:25 optimus sshd[7016]: Failed password for root from 194.152.206.103 port 52864 ssh2 Sep 6 08:30:48 optimus sshd[11664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.152.206.103 user=root Sep 6 08:30:50 optimus sshd[11664]: Failed password for root from 194.152.206.103 port 41936 ssh2 Sep 6 08:39:04 optimus sshd[14210]: Invalid user daniel from 194.152.206.103	2020-09-06 21:48:22
45.142.120.78	attack	Sep 6 15:23:04 srv01 postfix/smtpd\[17238\]: warning: unknown\[45.142.120.78\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 6 15:23:12 srv01 postfix/smtpd\[11205\]: warning: unknown\[45.142.120.78\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 6 15:23:17 srv01 postfix/smtpd\[17236\]: warning: unknown\[45.142.120.78\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 6 15:23:22 srv01 postfix/smtpd\[18352\]: warning: unknown\[45.142.120.78\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 6 15:23:52 srv01 postfix/smtpd\[17238\]: warning: unknown\[45.142.120.78\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-06 21:24:39
81.163.14.205	attack	failed_logins	2020-09-06 21:46:43
85.206.165.172	attackspam	malicious Brute-Force reported by https://www.patrick-binder.de ...	2020-09-06 21:20:42
178.62.12.192	attackbots	TCP ports : 18621 / 23588 / 32368	2020-09-06 21:52:52
103.146.63.44	attackbots	Sep 6 10:46:29 sshgateway sshd\[21669\]: Invalid user test from 103.146.63.44 Sep 6 10:46:29 sshgateway sshd\[21669\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.146.63.44 Sep 6 10:46:30 sshgateway sshd\[21669\]: Failed password for invalid user test from 103.146.63.44 port 47816 ssh2 Sep 6 10:50:59 sshgateway sshd\[24456\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.146.63.44 user=root Sep 6 10:51:02 sshgateway sshd\[24456\]: Failed password for root from 103.146.63.44 port 45616 ssh2 Sep 6 10:54:06 sshgateway sshd\[26416\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.146.63.44 user=root Sep 6 10:54:07 sshgateway sshd\[26416\]: Failed password for root from 103.146.63.44 port 45420 ssh2 Sep 6 10:55:33 sshgateway sshd\[27308\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.146.63.44 user=root Sep	2020-09-06 21:56:48

最近上报的IP列表

102.129.62.94	80.210.22.82	123.136.117.2	42.118.230.146
222.80.164.3	123.165.59.236	83.143.246.2	91.78.108.198
185.177.200.78	180.126.130.40	66.42.53.133	60.190.154.66
34.68.106.191	77.42.120.186	61.218.44.89	125.26.169.128
112.133.246.81	37.49.227.109	88.229.243.52	126.59.207.142