81.70.55.21 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Oct 2 15:07:34 mx sshd[6783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.70.55.21 Oct 2 15:07:36 mx sshd[6783]: Failed password for invalid user king from 81.70.55.21 port 44912 ssh2	2020-10-03 05:20:45
attack	(sshd) Failed SSH login from 81.70.55.21 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 2 03:49:29 server2 sshd[17508]: Invalid user www from 81.70.55.21 Oct 2 03:49:29 server2 sshd[17508]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.70.55.21 Oct 2 03:49:30 server2 sshd[17508]: Failed password for invalid user www from 81.70.55.21 port 35490 ssh2 Oct 2 03:52:07 server2 sshd[24450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.70.55.21 user=root Oct 2 03:52:09 server2 sshd[24450]: Failed password for root from 81.70.55.21 port 58378 ssh2	2020-10-03 00:44:40
attackbotsspam	(sshd) Failed SSH login from 81.70.55.21 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 2 03:49:29 server2 sshd[17508]: Invalid user www from 81.70.55.21 Oct 2 03:49:29 server2 sshd[17508]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.70.55.21 Oct 2 03:49:30 server2 sshd[17508]: Failed password for invalid user www from 81.70.55.21 port 35490 ssh2 Oct 2 03:52:07 server2 sshd[24450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.70.55.21 user=root Oct 2 03:52:09 server2 sshd[24450]: Failed password for root from 81.70.55.21 port 58378 ssh2	2020-10-02 21:14:30
attack	(sshd) Failed SSH login from 81.70.55.21 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 2 03:49:29 server2 sshd[17508]: Invalid user www from 81.70.55.21 Oct 2 03:49:29 server2 sshd[17508]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.70.55.21 Oct 2 03:49:30 server2 sshd[17508]: Failed password for invalid user www from 81.70.55.21 port 35490 ssh2 Oct 2 03:52:07 server2 sshd[24450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.70.55.21 user=root Oct 2 03:52:09 server2 sshd[24450]: Failed password for root from 81.70.55.21 port 58378 ssh2	2020-10-02 17:47:02
attack	SSH/22 MH Probe, BF, Hack -	2020-10-02 14:13:41

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 81.70.55.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28048
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;81.70.55.21.			IN	A

;; AUTHORITY SECTION:
.			598	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020100200 1800 900 604800 86400

;; Query time: 70 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 02 14:13:38 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 21.55.70.81.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 21.55.70.81.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
178.159.249.66	attackspam	Nov 14 12:05:17 ArkNodeAT sshd\[1002\]: Invalid user edan from 178.159.249.66 Nov 14 12:05:17 ArkNodeAT sshd\[1002\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.159.249.66 Nov 14 12:05:19 ArkNodeAT sshd\[1002\]: Failed password for invalid user edan from 178.159.249.66 port 49310 ssh2	2019-11-14 20:40:26
42.61.60.78	attack	detected by Fail2Ban	2019-11-14 21:08:16
109.93.95.1	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/109.93.95.1/ RS - 1H : (8) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : RS NAME ASN : ASN8400 IP : 109.93.95.1 CIDR : 109.92.0.0/15 PREFIX COUNT : 79 UNIQUE IP COUNT : 711680 ATTACKS DETECTED ASN8400 : 1H - 1 3H - 3 6H - 3 12H - 4 24H - 7 DateTime : 2019-11-14 07:20:54 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-14 21:07:50
177.52.183.139	attackbots	Nov 11 06:54:32 olgosrv01 sshd[25010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.52.183.139 user=r.r Nov 11 06:54:34 olgosrv01 sshd[25010]: Failed password for r.r from 177.52.183.139 port 43016 ssh2 Nov 11 06:54:34 olgosrv01 sshd[25010]: Received disconnect from 177.52.183.139: 11: Bye Bye [preauth] Nov 11 07:14:22 olgosrv01 sshd[26494]: Invalid user patricia from 177.52.183.139 Nov 11 07:14:22 olgosrv01 sshd[26494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.52.183.139 Nov 11 07:14:25 olgosrv01 sshd[26494]: Failed password for invalid user patricia from 177.52.183.139 port 44504 ssh2 Nov 11 07:14:25 olgosrv01 sshd[26494]: Received disconnect from 177.52.183.139: 11: Bye Bye [preauth] Nov 11 07:18:59 olgosrv01 sshd[26786]: Invalid user shandeigh from 177.52.183.139 Nov 11 07:18:59 olgosrv01 sshd[26786]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 ........ -------------------------------	2019-11-14 20:43:50
82.63.94.223	attackspam	Automatic report - Port Scan Attack	2019-11-14 20:46:30
111.231.208.118	attack	$f2bV_matches	2019-11-14 21:12:55
173.254.192.182	attack	Brute force attempt	2019-11-14 20:40:04
74.82.47.5	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-14 20:58:15
142.93.198.152	attackbotsspam	Nov 14 07:21:15 ns41 sshd[19508]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.198.152	2019-11-14 20:51:43
54.39.151.22	attack	2019-11-14T08:42:28.787153abusebot-2.cloudsearch.cf sshd\[4329\]: Invalid user pass1235 from 54.39.151.22 port 43276	2019-11-14 20:54:03
45.136.110.24	attack	Fail2Ban Ban Triggered	2019-11-14 20:57:27
222.186.169.192	attackbotsspam	Nov 14 03:12:25 sachi sshd\[14079\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.169.192 user=root Nov 14 03:12:27 sachi sshd\[14079\]: Failed password for root from 222.186.169.192 port 35550 ssh2 Nov 14 03:12:30 sachi sshd\[14079\]: Failed password for root from 222.186.169.192 port 35550 ssh2 Nov 14 03:12:34 sachi sshd\[14079\]: Failed password for root from 222.186.169.192 port 35550 ssh2 Nov 14 03:12:37 sachi sshd\[14079\]: Failed password for root from 222.186.169.192 port 35550 ssh2	2019-11-14 21:14:00
1.253.165.84	attackbotsspam	Telnet/23 MH Probe, BF, Hack -	2019-11-14 21:02:10
163.172.52.222	attack	3389BruteforceFW22	2019-11-14 21:11:24
89.46.107.156	attack	xmlrpc attack	2019-11-14 21:01:30

最近上报的IP列表

220.204.170.56	196.201.235.170	151.226.44.60	205.168.199.207
184.90.242.80	152.80.129.134	221.245.136.226	91.40.229.40
187.62.177.81	72.80.13.82	59.15.188.184	3.137.151.217
90.211.205.151	14.35.1.162	109.12.89.157	62.180.108.184
197.56.218.248	181.195.182.9	254.151.198.251	189.111.1.227