68.183.55.207 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	derorga.de:443 68.183.55.207 - - [01/Jun/2020:05:54:13 +0200] "GET / HTTP/1.0" 403 4780 "-" "Mozilla/5.0 (compatible; NetcraftSurveyAgent/1.0; +info@netcraft.com)"	2020-06-01 13:00:32

相同子网IP讨论:

IP	类型	评论内容	时间
68.183.55.223	attack	Misc Attack - Port=20285	2020-10-08 02:59:19
68.183.55.223	attackbotsspam	TCP (SYN) 68.183.55.223:58282 -> port 20285, len 44	2020-10-07 19:14:06
68.183.55.223	attackspambots	scans once in preceeding hours on the ports (in chronological order) 24956 resulting in total of 4 scans from 68.183.0.0/16 block.	2020-10-01 06:51:27
68.183.55.223	attackbotsspam	ET CINS Active Threat Intelligence Poor Reputation IP group 61 - port: 24956 proto: tcp cat: Misc Attackbytes: 60	2020-09-30 23:15:09
68.183.55.125	attackbots	2020-09-21T16:27:47.222669billing sshd[25186]: Invalid user testftp from 68.183.55.125 port 53502 2020-09-21T16:27:49.486109billing sshd[25186]: Failed password for invalid user testftp from 68.183.55.125 port 53502 ssh2 2020-09-21T16:31:36.753697billing sshd[970]: Invalid user www from 68.183.55.125 port 37788 ...	2020-09-21 23:30:35
68.183.55.125	attackbots	<6 unauthorized SSH connections	2020-09-21 15:13:37
68.183.55.125	attackspambots	Sep 20 22:49:39 haigwepa sshd[3419]: Failed password for root from 68.183.55.125 port 43570 ssh2 ...	2020-09-21 07:07:18
68.183.55.223	attackspam	TCP (SYN) 68.183.55.223:56684 -> port 23445, len 44	2020-08-27 01:02:49
68.183.55.223	attackbotsspam	" "	2020-08-13 12:34:01
68.183.55.223	attackbotsspam	firewall-block, port(s): 27323/tcp	2020-08-08 12:24:59
68.183.55.223	attackspambots	Jul 6 18:29:03 debian-2gb-nbg1-2 kernel: \[16311550.921581\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=68.183.55.223 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=13617 PROTO=TCP SPT=42841 DPT=26923 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-07 00:48:17
68.183.55.223	attack	TCP (SYN) 68.183.55.223:42841 -> port 26923, len 44	2020-07-05 21:58:53
68.183.55.223	attackbotsspam	Multiport scan 65 ports : 101 399 427 593 960 2431 3512 3994 5699 7673 7936 8901 9064 9159 9533 9615 13308 13354 13622 13682 14404 14669 15593 16078 16742 17053 17638 18549 18592 18786 18931 19040 19244 19541 20820 21576 21728 21816 22530 22973 23437 23523 23596 24488 24742 24783 25652 26116 27328 27448 27804 28449 28749 28915 29184 29262 29304 30967 31308 31385 31426 31443 32177 32193 32669	2020-06-21 06:47:33
68.183.55.223	attackspambots	Port scan denied	2020-06-16 17:47:18
68.183.55.223	attackspambots	TCP (SYN) 68.183.55.223:59376 -> port 13354, len 44	2020-06-06 08:05:55

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 68.183.55.207
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15562
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;68.183.55.207.			IN	A

;; AUTHORITY SECTION:
.			467	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020053101 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 01 13:00:26 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

207.55.183.68.in-addr.arpa domain name pointer jobqueue-listener.jobqueue.netcraft.com-ue5e426f0a39d11ea8160a266838d6ab1u-digitalocean-2gb.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
207.55.183.68.in-addr.arpa	name = jobqueue-listener.jobqueue.netcraft.com-ue5e426f0a39d11ea8160a266838d6ab1u-digitalocean-2gb.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
106.225.129.108	attackbotsspam	2019-10-14T04:59:57.125415abusebot-7.cloudsearch.cf sshd\[22357\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.225.129.108 user=root	2019-10-14 13:29:03
37.187.54.45	attackbotsspam	2019-10-14T05:05:10.636964shield sshd\[14872\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.ip-37-187-54.eu user=root 2019-10-14T05:05:12.599023shield sshd\[14872\]: Failed password for root from 37.187.54.45 port 59348 ssh2 2019-10-14T05:09:16.154601shield sshd\[16512\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.ip-37-187-54.eu user=root 2019-10-14T05:09:17.898900shield sshd\[16512\]: Failed password for root from 37.187.54.45 port 42370 ssh2 2019-10-14T05:13:08.139541shield sshd\[17310\]: Invalid user 123 from 37.187.54.45 port 53666	2019-10-14 13:26:15
81.22.45.202	attack	2019-10-14T07:05:57.708758+02:00 lumpi kernel: [851969.303641] INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.202 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=58323 PROTO=TCP SPT=51561 DPT=3373 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-14 13:27:22
5.152.159.31	attackspam	Oct 14 01:03:29 ny01 sshd[30957]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.152.159.31 Oct 14 01:03:31 ny01 sshd[30957]: Failed password for invalid user QWERTY from 5.152.159.31 port 42385 ssh2 Oct 14 01:07:42 ny01 sshd[31364]: Failed password for root from 5.152.159.31 port 34453 ssh2	2019-10-14 13:22:31
151.80.140.166	attackspambots	Oct 14 06:37:57 SilenceServices sshd[12259]: Failed password for root from 151.80.140.166 port 34084 ssh2 Oct 14 06:41:43 SilenceServices sshd[13326]: Failed password for root from 151.80.140.166 port 45406 ssh2	2019-10-14 13:26:53
177.42.184.23	attackspambots	Automatic report - Port Scan Attack	2019-10-14 13:28:13
185.90.118.38	attackbots	10/14/2019-01:52:01.228248 185.90.118.38 Protocol: 6 ET SCAN Potential SSH Scan	2019-10-14 14:00:52
103.212.64.98	attack	Oct 14 06:45:42 www1 sshd\[5402\]: Invalid user Wireless@2017 from 103.212.64.98Oct 14 06:45:43 www1 sshd\[5402\]: Failed password for invalid user Wireless@2017 from 103.212.64.98 port 44050 ssh2Oct 14 06:50:41 www1 sshd\[5983\]: Invalid user @34WwerSdfXcv from 103.212.64.98Oct 14 06:50:43 www1 sshd\[5983\]: Failed password for invalid user @34WwerSdfXcv from 103.212.64.98 port 35447 ssh2Oct 14 06:55:37 www1 sshd\[6521\]: Invalid user Salut1@3 from 103.212.64.98Oct 14 06:55:39 www1 sshd\[6521\]: Failed password for invalid user Salut1@3 from 103.212.64.98 port 55084 ssh2 ...	2019-10-14 14:01:51
222.186.31.136	attack	Oct 14 07:02:05 [host] sshd[6453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.136 user=root Oct 14 07:02:07 [host] sshd[6453]: Failed password for root from 222.186.31.136 port 41269 ssh2 Oct 14 07:02:08 [host] sshd[6453]: Failed password for root from 222.186.31.136 port 41269 ssh2	2019-10-14 13:25:14
119.54.222.210	attackbots	Unauthorised access (Oct 14) SRC=119.54.222.210 LEN=40 TTL=49 ID=24672 TCP DPT=8080 WINDOW=5090 SYN	2019-10-14 13:24:38
200.77.186.205	attack	postfix (unknown user, SPF fail or relay access denied)	2019-10-14 14:12:05
45.40.244.197	attack	Oct 14 07:32:07 vps01 sshd[15007]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.40.244.197 Oct 14 07:32:09 vps01 sshd[15007]: Failed password for invalid user P4$$2019 from 45.40.244.197 port 38576 ssh2	2019-10-14 13:44:35
145.239.90.235	attack	Oct 14 07:21:25 minden010 sshd[28124]: Failed password for root from 145.239.90.235 port 52640 ssh2 Oct 14 07:25:27 minden010 sshd[353]: Failed password for root from 145.239.90.235 port 36166 ssh2 ...	2019-10-14 13:42:30
68.183.86.76	attack	Oct 13 19:53:22 kapalua sshd\[9281\]: Invalid user 123 from 68.183.86.76 Oct 13 19:53:22 kapalua sshd\[9281\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.86.76 Oct 13 19:53:24 kapalua sshd\[9281\]: Failed password for invalid user 123 from 68.183.86.76 port 50268 ssh2 Oct 13 19:57:37 kapalua sshd\[9629\]: Invalid user P4sswort123456 from 68.183.86.76 Oct 13 19:57:37 kapalua sshd\[9629\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.86.76	2019-10-14 14:08:35
45.32.22.18	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-14 13:46:09

最近上报的IP列表

199.180.190.22	15.48.62.136	111.169.48.238	61.115.175.146
197.231.161.77	156.193.184.63	152.226.228.118	142.49.217.179
27.18.223.149	80.230.182.67	197.25.131.202	177.95.80.164
156.25.216.173	72.60.143.110	15.156.146.249	54.155.32.115
222.54.60.172	35.87.117.251	150.202.41.136	199.197.120.80