58.255.55.190 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 58.255.55.190
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25599
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;58.255.55.190.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021101 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 12 03:03:35 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

Host 190.55.255.58.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 190.55.255.58.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
94.237.72.217	attack	[WedNov2707:24:00.9667952019][:error][pid964:tid47011378247424][client94.237.72.217:52792][client94.237.72.217]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles$disablethisruleifyourequireaccesstofilesthatendwith.sql$"][severity"CRITICAL"][hostname"leti.eu.com"][uri"/3.sql"][unique_id"Xd4WgO1fzFCldH4LDsAgggAAAYc"][WedNov2707:24:01.8367832019][:error][pid773:tid47011407664896][client94.237.72.217:53080][client94.237.72.217]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles$disablethisruleifyourequireaccesstofilesthatendwith.sql$"][severity"CRI	2019-11-27 19:27:54
223.71.167.155	attack	[portscan] udp/500 [isakmp] *(RWIN=-)(11271302)	2019-11-27 19:19:07
115.112.143.190	attack	2019-11-27T11:46:56.689416scmdmz1 sshd\[7871\]: Invalid user usuario from 115.112.143.190 port 56412 2019-11-27T11:46:56.692093scmdmz1 sshd\[7871\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.112.143.190 2019-11-27T11:46:58.564167scmdmz1 sshd\[7871\]: Failed password for invalid user usuario from 115.112.143.190 port 56412 ssh2 ...	2019-11-27 19:45:17
180.183.177.147	attack	Honeypot attack, port: 445, PTR: mx-ll-180.183.177-147.dynamic.3bb.co.th.	2019-11-27 19:42:40
188.213.49.60	attack	Invalid user froylan from 188.213.49.60 port 56216	2019-11-27 19:21:45
49.88.112.54	attack	Nov 27 18:37:00 itv-usvr-02 sshd[4718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.54 user=root Nov 27 18:37:02 itv-usvr-02 sshd[4718]: Failed password for root from 49.88.112.54 port 48735 ssh2 Nov 27 18:37:15 itv-usvr-02 sshd[4718]: error: maximum authentication attempts exceeded for root from 49.88.112.54 port 48735 ssh2 [preauth] Nov 27 18:37:00 itv-usvr-02 sshd[4718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.54 user=root Nov 27 18:37:02 itv-usvr-02 sshd[4718]: Failed password for root from 49.88.112.54 port 48735 ssh2 Nov 27 18:37:15 itv-usvr-02 sshd[4718]: error: maximum authentication attempts exceeded for root from 49.88.112.54 port 48735 ssh2 [preauth]	2019-11-27 19:44:34
178.128.153.159	attackbotsspam	178.128.153.159 - - [27/Nov/2019:07:22:31 +0100] "GET /wp-login.php HTTP/1.1" 200 1256 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.128.153.159 - - [27/Nov/2019:07:22:32 +0100] "POST /wp-login.php HTTP/1.1" 200 1651 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.128.153.159 - - [27/Nov/2019:07:22:38 +0100] "GET /wp-login.php HTTP/1.1" 200 1256 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.128.153.159 - - [27/Nov/2019:07:22:43 +0100] "POST /wp-login.php HTTP/1.1" 200 1629 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.128.153.159 - - [27/Nov/2019:07:22:44 +0100] "GET /wp-login.php HTTP/1.1" 200 1256 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.128.153.159 - - [27/Nov/2019:07:22:49 +0100] "POST /wp-login.php HTTP/1.1" 200 1626 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" .	2019-11-27 19:53:25
134.209.152.176	attackspam	Nov 27 02:32:24 TORMINT sshd\[30120\]: Invalid user thuong from 134.209.152.176 Nov 27 02:32:24 TORMINT sshd\[30120\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.152.176 Nov 27 02:32:26 TORMINT sshd\[30120\]: Failed password for invalid user thuong from 134.209.152.176 port 46184 ssh2 ...	2019-11-27 19:24:27
185.10.68.88	attackspambots	Port Scan detected from 185.10.68.88 (SC/Seychelles/www.scan). 11 hits in the last 235 seconds	2019-11-27 19:20:32
46.165.245.154	attackbotsspam	Unauthorized access detected from banned ip	2019-11-27 19:41:48
157.245.111.175	attackbotsspam	Nov 27 11:09:56 vserver sshd\[5821\]: Invalid user tracee from 157.245.111.175Nov 27 11:09:58 vserver sshd\[5821\]: Failed password for invalid user tracee from 157.245.111.175 port 58840 ssh2Nov 27 11:13:44 vserver sshd\[5843\]: Invalid user server from 157.245.111.175Nov 27 11:13:46 vserver sshd\[5843\]: Failed password for invalid user server from 157.245.111.175 port 38390 ssh2 ...	2019-11-27 19:39:56
111.231.239.143	attack	Nov 27 11:51:23 ns37 sshd[21081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.239.143	2019-11-27 19:49:10
113.62.176.98	attack	(sshd) Failed SSH login from 113.62.176.98 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Nov 27 01:23:48 host sshd[20183]: Invalid user csssuser from 113.62.176.98 port 54339	2019-11-27 19:35:32
1.2.229.200	attackspam	Honeypot attack, port: 23, PTR: node-k3s.pool-1-2.dynamic.totinternet.net.	2019-11-27 19:14:00
89.148.241.118	attackspam	Honeypot attack, port: 23, PTR: homeuser241-118.ccl.perm.ru.	2019-11-27 19:10:57

最近上报的IP列表

28.81.111.86	235.182.174.89	114.154.29.59	54.236.248.113
53.234.248.66	157.195.73.244	219.86.233.75	241.73.30.123
176.154.194.228	248.32.213.48	48.29.106.243	30.58.123.1
243.6.46.252	23.235.190.23	9.148.222.196	188.39.247.116
168.73.54.227	127.91.190.177	68.48.97.244	223.101.89.75