216.218.206.55

Basic Info

City: Cazadero

Region: California

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
spam	There is alot of spammers at uphsl.edu.ph aka a0800616@uphsl.edu.ph	2023-08-08 01:09:41

Comments on same subnet:

IP	Type	Details	Datetime
216.218.206.72	attackproxy	Vulnerability Scanner	2025-06-26 12:55:51
216.218.206.102	proxy	Vulnerability Scanner	2024-08-22 21:15:28
216.218.206.101	botsattackproxy	SMB bot	2024-06-19 20:50:36
216.218.206.125	attackproxy	Vulnerability Scanner	2024-04-25 21:28:54
216.218.206.92	proxy	VPN	2023-01-23 13:58:39
216.218.206.66	proxy	VPN	2023-01-20 13:48:44
216.218.206.126	proxy	Attack VPN	2022-12-08 13:51:17
216.218.206.90	attackproxy	ataque a router	2021-05-17 12:16:31
216.218.206.102	attackproxy	ataque a mi router	2021-05-17 12:12:18
216.218.206.86	attack	This IP has been trying for about a month (since then I noticed) to try to connect via VPN / WEB to the router using different accounts (admin, root, vpn, test, etc.). What does an ISP do in this situation? May/06/2021 03:52:17 216.218.206.82 failed to get valid proposal. May/06/2021 03:52:17 216.218.206.82 failed to pre-process ph1 packet (side: 1, status 1). May/06/2021 03:52:17 216.218.206.82 phase1 negotiation failed.	2021-05-06 19:38:14
216.218.206.97	attack	Port scan: Attack repeated for 24 hours	2020-10-14 01:00:06
216.218.206.97	attackspam	srv02 Mass scanning activity detected Target: 1434(ms-sql-m) ..	2020-10-13 16:10:07
216.218.206.97	attackspambots	srv02 Mass scanning activity detected Target: 445(microsoft-ds) ..	2020-10-13 08:45:33
216.218.206.106	attack	UDP port : 500	2020-10-12 22:22:49
216.218.206.88	attackspam	TCP (SYN) 216.218.206.88:47854 -> port 445, len 40	2020-10-11 02:41:09

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 216.218.206.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53702
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;216.218.206.55.			IN	A

;; AUTHORITY SECTION:
.			470	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023080700 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Aug 08 01:09:39 CST 2023
;; MSG SIZE  rcvd: 107

Host info

55.206.218.216.in-addr.arpa is an alias for 55.32-27.206.218.216.in-addr.arpa.
55.32-27.206.218.216.in-addr.arpa domain name pointer fmt11.web.com.ph.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
55.206.218.216.in-addr.arpa	canonical name = 55.32-27.206.218.216.in-addr.arpa.
55.32-27.206.218.216.in-addr.arpa	name = fmt11.web.com.ph.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
46.105.102.68	attack	php WP PHPmyadamin ABUSE blocked for 12h	2020-09-05 06:23:40
200.38.232.248	attack	$f2bV_matches	2020-09-05 06:06:30
107.189.11.78	attackbotsspam	2020-09-04T14:03:15.608974morrigan.ad5gb.com sshd[736319]: Failed password for root from 107.189.11.78 port 58448 ssh2 2020-09-04T14:03:21.434898morrigan.ad5gb.com sshd[736319]: Failed password for root from 107.189.11.78 port 58448 ssh2	2020-09-05 06:17:08
197.49.201.192	attack	Port Scan detected! ...	2020-09-05 06:39:29
218.241.202.58	attack	SSH Invalid Login	2020-09-05 06:36:00
180.76.107.10	attackspambots	Sep 4 23:41:26 minden010 sshd[19800]: Failed password for root from 180.76.107.10 port 47458 ssh2 Sep 4 23:44:01 minden010 sshd[20610]: Failed password for root from 180.76.107.10 port 56438 ssh2 Sep 4 23:46:35 minden010 sshd[21573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.107.10 ...	2020-09-05 06:08:07
180.166.192.66	attackspam	SSH Invalid Login	2020-09-05 06:09:26
151.50.88.96	attackbotsspam	Sep 4 18:51:41 mellenthin postfix/smtpd[32154]: NOQUEUE: reject: RCPT from unknown[151.50.88.96]: 554 5.7.1 Service unavailable; Client host [151.50.88.96] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/151.50.88.96; from= to= proto=ESMTP helo=	2020-09-05 06:24:44
190.72.39.166	attackbots	Honeypot attack, port: 445, PTR: 190-72-39-166.dyn.dsl.cantv.net.	2020-09-05 06:11:17
1.245.61.144	attackspam	Too many connections or unauthorized access detected from Arctic banned ip	2020-09-05 06:08:39
113.22.80.131	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-05 06:42:15
221.231.55.44	attackbots	Unauthorized connection attempt detected, IP banned.	2020-09-05 06:11:02
159.203.184.19	attack	Sep 4 12:52:54 ny01 sshd[7121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.184.19 Sep 4 12:52:56 ny01 sshd[7121]: Failed password for invalid user postgres from 159.203.184.19 port 35094 ssh2 Sep 4 12:56:31 ny01 sshd[7933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.184.19	2020-09-05 06:16:46
122.8.32.39	attackspambots	Sep 4 18:51:29 mellenthin postfix/smtpd[30865]: NOQUEUE: reject: RCPT from unknown[122.8.32.39]: 554 5.7.1 Service unavailable; Client host [122.8.32.39] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBL458178 / https://www.spamhaus.org/query/ip/122.8.32.39; from= to= proto=ESMTP helo=<[122.8.32.39]>	2020-09-05 06:35:44
45.142.120.20	attack	Sep 4 23:52:33 vmanager6029 postfix/smtpd\[19742\]: warning: unknown\[45.142.120.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 4 23:53:05 vmanager6029 postfix/smtpd\[19744\]: warning: unknown\[45.142.120.20\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-09-05 06:04:46

Recently Reported IPs

117.176.242.14	185.122.204.23	223.159.35.247	155.188.204.164
192.241.234.47	51.102.61.31	205.193.82.6	88.50.147.34
209.198.128.119	123.146.54.146	172.105.168.58	93.76.219.3
151.132.195.221	62.103.146.102	93.113.206.212	197.210.79.8
185.176.220.126	2.58.148.50	185.28.39.9	63.141.202.160