219.68.2.55 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Republic of China (ROC)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
219.68.245.173	attack	Sep 19 19:06:15 root sshd[7172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.68.245.173 user=root Sep 19 19:06:18 root sshd[7172]: Failed password for root from 219.68.245.173 port 32811 ssh2 ...	2020-09-20 00:23:26
219.68.245.173	attack	Sep 18 17:00:19 scw-focused-cartwright sshd[29003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.68.245.173 Sep 18 17:00:21 scw-focused-cartwright sshd[29003]: Failed password for invalid user osmc from 219.68.245.173 port 34050 ssh2	2020-09-19 16:09:57
219.68.245.173	attackspambots	Sep 18 17:00:19 scw-focused-cartwright sshd[29003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.68.245.173 Sep 18 17:00:21 scw-focused-cartwright sshd[29003]: Failed password for invalid user osmc from 219.68.245.173 port 34050 ssh2	2020-09-19 07:45:02
219.68.2.113	attack	TCP (SYN) 219.68.2.113:43441 -> port 23, len 44	2020-08-13 04:08:59
219.68.251.53	attack	DATE:2020-04-13 05:59:40, IP:219.68.251.53, PORT:ssh SSH brute force auth (docker-dc)	2020-04-13 12:22:10

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 219.68.2.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7170
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;219.68.2.55.			IN	A

;; AUTHORITY SECTION:
.			128	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022010300 1800 900 604800 86400

;; Query time: 73 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 03 23:03:57 CST 2022
;; MSG SIZE  rcvd: 104

HOST信息:

55.2.68.219.in-addr.arpa domain name pointer host-219-68-2-55.static.kbtelecom.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
55.2.68.219.in-addr.arpa	name = host-219-68-2-55.static.kbtelecom.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
222.179.220.106	attackspambots	Dec 28 22:21:27 nbi-636 sshd[21850]: Invalid user wurst from 222.179.220.106 port 18584 Dec 28 22:21:29 nbi-636 sshd[21850]: Failed password for invalid user wurst from 222.179.220.106 port 18584 ssh2 Dec 28 22:21:29 nbi-636 sshd[21850]: Received disconnect from 222.179.220.106 port 18584:11: Bye Bye [preauth] Dec 28 22:21:29 nbi-636 sshd[21850]: Disconnected from 222.179.220.106 port 18584 [preauth] Dec 28 22:35:38 nbi-636 sshd[24661]: Invalid user giem from 222.179.220.106 port 54142 Dec 28 22:35:41 nbi-636 sshd[24661]: Failed password for invalid user giem from 222.179.220.106 port 54142 ssh2 Dec 28 22:35:41 nbi-636 sshd[24661]: Received disconnect from 222.179.220.106 port 54142:11: Bye Bye [preauth] Dec 28 22:35:41 nbi-636 sshd[24661]: Disconnected from 222.179.220.106 port 54142 [preauth] Dec 28 22:38:39 nbi-636 sshd[25156]: User r.r from 222.179.220.106 not allowed because not listed in AllowUsers Dec 28 22:38:39 nbi-636 sshd[25156]: pam_unix(sshd:auth): authenti........ -------------------------------	2019-12-30 07:51:08
222.186.175.150	attackbots	2019-12-29T23:53:22.172670abusebot-4.cloudsearch.cf sshd[26511]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.150 user=root 2019-12-29T23:53:24.081668abusebot-4.cloudsearch.cf sshd[26511]: Failed password for root from 222.186.175.150 port 10944 ssh2 2019-12-29T23:53:27.625019abusebot-4.cloudsearch.cf sshd[26511]: Failed password for root from 222.186.175.150 port 10944 ssh2 2019-12-29T23:53:22.172670abusebot-4.cloudsearch.cf sshd[26511]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.150 user=root 2019-12-29T23:53:24.081668abusebot-4.cloudsearch.cf sshd[26511]: Failed password for root from 222.186.175.150 port 10944 ssh2 2019-12-29T23:53:27.625019abusebot-4.cloudsearch.cf sshd[26511]: Failed password for root from 222.186.175.150 port 10944 ssh2 2019-12-29T23:53:22.172670abusebot-4.cloudsearch.cf sshd[26511]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 ...	2019-12-30 07:55:05
77.42.94.208	attackspam	Automatic report - Port Scan Attack	2019-12-30 07:58:52
45.82.153.86	attack	2019-12-30 00:45:45 dovecot_login authenticator failed for \(\[45.82.153.86\]\) \[45.82.153.86\]: 535 Incorrect authentication data \(set_id=sales@opso.it\) 2019-12-30 00:45:56 dovecot_login authenticator failed for \(\[45.82.153.86\]\) \[45.82.153.86\]: 535 Incorrect authentication data 2019-12-30 00:46:09 dovecot_login authenticator failed for \(\[45.82.153.86\]\) \[45.82.153.86\]: 535 Incorrect authentication data 2019-12-30 00:46:26 dovecot_login authenticator failed for \(\[45.82.153.86\]\) \[45.82.153.86\]: 535 Incorrect authentication data 2019-12-30 00:46:28 dovecot_login authenticator failed for \(\[45.82.153.86\]\) \[45.82.153.86\]: 535 Incorrect authentication data \(set_id=sales\)	2019-12-30 07:50:16
80.211.29.172	attackspambots	Dec 30 00:30:13 debian-2gb-nbg1-2 kernel: \[1314922.708754\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=80.211.29.172 DST=195.201.40.59 LEN=40 TOS=0x08 PREC=0x00 TTL=240 ID=54321 PROTO=TCP SPT=46777 DPT=22 WINDOW=65535 RES=0x00 SYN URGP=0	2019-12-30 08:13:23
116.52.121.205	attackspam	Forbidden directory scan :: 2019/12/29 23:03:37 [error] 1031#1031: *119513 access forbidden by rule, client: 116.52.121.205, server: [censored_1], request: "GET /downloads/Windows10-DisableCortanaSearch.zip HTTP/1.1", host: "www.[censored_1]"	2019-12-30 07:59:42
41.93.32.88	attack	Dec 30 00:03:56 localhost sshd\[19259\]: Invalid user plute from 41.93.32.88 port 50204 Dec 30 00:03:56 localhost sshd\[19259\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.93.32.88 Dec 30 00:03:58 localhost sshd\[19259\]: Failed password for invalid user plute from 41.93.32.88 port 50204 ssh2	2019-12-30 07:44:50
122.51.178.89	attackbotsspam	Dec 30 00:03:30 hell sshd[14701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.178.89 Dec 30 00:03:31 hell sshd[14701]: Failed password for invalid user svarverud from 122.51.178.89 port 52764 ssh2 ...	2019-12-30 08:00:56
222.186.180.147	attackbots	2019-12-29T23:44:40.289351+00:00 suse sshd[24433]: User root from 222.186.180.147 not allowed because not listed in AllowUsers 2019-12-29T23:44:43.016144+00:00 suse sshd[24433]: error: PAM: Authentication failure for illegal user root from 222.186.180.147 2019-12-29T23:44:40.289351+00:00 suse sshd[24433]: User root from 222.186.180.147 not allowed because not listed in AllowUsers 2019-12-29T23:44:43.016144+00:00 suse sshd[24433]: error: PAM: Authentication failure for illegal user root from 222.186.180.147 2019-12-29T23:44:40.289351+00:00 suse sshd[24433]: User root from 222.186.180.147 not allowed because not listed in AllowUsers 2019-12-29T23:44:43.016144+00:00 suse sshd[24433]: error: PAM: Authentication failure for illegal user root from 222.186.180.147 2019-12-29T23:44:43.018380+00:00 suse sshd[24433]: Failed keyboard-interactive/pam for invalid user root from 222.186.180.147 port 65186 ssh2 ...	2019-12-30 07:48:08
88.214.26.39	attackbots	191229 17:51:36 [Warning] Access denied for user 'admin'@'88.214.26.39' (using password: YES) 191229 17:51:40 [Warning] Access denied for user 'admin'@'88.214.26.39' (using password: YES) 191229 17:51:43 [Warning] Access denied for user 'admin'@'88.214.26.39' (using password: YES) ...	2019-12-30 07:58:24
211.151.95.139	attack	5x Failed Password	2019-12-30 07:57:16
5.2.143.125	attack	Dec 30 00:03:25 debian-2gb-nbg1-2 kernel: \[1313315.057824\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=5.2.143.125 DST=195.201.40.59 LEN=60 TOS=0x00 PREC=0x00 TTL=52 ID=35894 DF PROTO=TCP SPT=35350 DPT=81 WINDOW=14600 RES=0x00 SYN URGP=0	2019-12-30 08:06:06
180.66.207.67	attackbots	Unauthorized connection attempt detected from IP address 180.66.207.67 to port 22	2019-12-30 07:58:00
58.57.4.238	attackspambots	Dec 29 18:02:59 web1 postfix/smtpd[8834]: warning: unknown[58.57.4.238]: SASL LOGIN authentication failed: authentication failure ...	2019-12-30 08:20:34
80.82.65.74	attackspambots	12/30/2019-00:03:42.417371 80.82.65.74 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-12-30 07:56:21

最近上报的IP列表

43.148.154.71	117.132.193.176	42.241.60.82	224.190.154.213
12.27.16.174	231.168.216.176	110.162.109.216	20.37.140.129
178.102.226.21	3.115.108.144	45.142.28.154	251.92.183.83
230.135.42.219	174.178.143.166	129.230.142.36	121.77.186.79
81.73.152.159	190.20.217.4	11.116.179.55	209.211.83.29