1.47.68.8 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Thailand

运营商(isp): Total Access Communication PLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Unauthorized connection attempt from IP address 1.47.68.8 on Port 445(SMB)	2020-08-14 06:18:22

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.47.68.8
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63534
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.47.68.8.			IN	A

;; AUTHORITY SECTION:
.			531	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081302 1800 900 604800 86400

;; Query time: 40 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Aug 14 06:18:19 CST 2020
;; MSG SIZE  rcvd: 113

HOST信息:

Host 8.68.47.1.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 8.68.47.1.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
200.54.242.46	attackbotsspam	Sep 6 20:43:37 microserver sshd[15704]: Invalid user usuario1 from 200.54.242.46 port 51800 Sep 6 20:43:37 microserver sshd[15704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.54.242.46 Sep 6 20:43:39 microserver sshd[15704]: Failed password for invalid user usuario1 from 200.54.242.46 port 51800 ssh2 Sep 6 20:48:59 microserver sshd[16366]: Invalid user appuser from 200.54.242.46 port 44603 Sep 6 20:48:59 microserver sshd[16366]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.54.242.46 Sep 6 20:59:34 microserver sshd[17700]: Invalid user kafka from 200.54.242.46 port 58435 Sep 6 20:59:34 microserver sshd[17700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.54.242.46 Sep 6 20:59:36 microserver sshd[17700]: Failed password for invalid user kafka from 200.54.242.46 port 58435 ssh2 Sep 6 21:05:10 microserver sshd[18530]: Invalid user test from 200.54.242.46 port 5123	2019-09-07 03:32:58
3.84.40.103	attackspam	3.84.40.103 - - [06/Sep/2019:16:06:26 +0200] "GET /wp-login.php HTTP/1.1" 302 536 ...	2019-09-07 03:19:38
104.236.230.165	attackbots	2019-09-06T18:54:57.946543abusebot-8.cloudsearch.cf sshd\[31270\]: Invalid user test2 from 104.236.230.165 port 47123	2019-09-07 02:59:46
210.212.165.246	attackspambots	Sep 6 16:07:13 lenivpn01 kernel: \[11650.019337\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:2f:6c:1b:d2:74:7f:6e:37:e3:08:00 SRC=210.212.165.246 DST=195.201.121.15 LEN=60 TOS=0x00 PREC=0x00 TTL=46 ID=59328 DF PROTO=TCP SPT=14557 DPT=63133 WINDOW=14600 RES=0x00 SYN URGP=0 Sep 6 16:07:14 lenivpn01 kernel: \[11651.019139\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:2f:6c:1b:d2:74:7f:6e:37:e3:08:00 SRC=210.212.165.246 DST=195.201.121.15 LEN=60 TOS=0x00 PREC=0x00 TTL=46 ID=59329 DF PROTO=TCP SPT=14557 DPT=63133 WINDOW=14600 RES=0x00 SYN URGP=0 Sep 6 16:07:16 lenivpn01 kernel: \[11653.019113\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:2f:6c:1b:d2:74:7f:6e:37:e3:08:00 SRC=210.212.165.246 DST=195.201.121.15 LEN=60 TOS=0x00 PREC=0x00 TTL=46 ID=59330 DF PROTO=TCP SPT=14557 DPT=63133 WINDOW=14600 RES=0x00 SYN URGP=0 ...	2019-09-07 02:57:01
132.232.72.110	attackbotsspam	Sep 6 05:52:15 php1 sshd\[13057\]: Invalid user postgres from 132.232.72.110 Sep 6 05:52:15 php1 sshd\[13057\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.72.110 Sep 6 05:52:16 php1 sshd\[13057\]: Failed password for invalid user postgres from 132.232.72.110 port 60924 ssh2 Sep 6 05:59:43 php1 sshd\[13681\]: Invalid user testuser from 132.232.72.110 Sep 6 05:59:43 php1 sshd\[13681\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.72.110	2019-09-07 03:14:45
161.202.192.218	attackspambots	Sep 6 18:55:47 web8 sshd\[7931\]: Invalid user vyatta from 161.202.192.218 Sep 6 18:55:47 web8 sshd\[7931\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.202.192.218 Sep 6 18:55:49 web8 sshd\[7931\]: Failed password for invalid user vyatta from 161.202.192.218 port 44728 ssh2 Sep 6 19:00:38 web8 sshd\[10418\]: Invalid user diradmin from 161.202.192.218 Sep 6 19:00:38 web8 sshd\[10418\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.202.192.218	2019-09-07 03:00:53
222.186.42.241	attackspam	Sep 6 21:10:08 eventyay sshd[11443]: Failed password for root from 222.186.42.241 port 16286 ssh2 Sep 6 21:10:38 eventyay sshd[11452]: Failed password for root from 222.186.42.241 port 29266 ssh2 ...	2019-09-07 03:31:06
113.118.198.124	attackspambots	Brute force SMTP login attempts.	2019-09-07 02:48:09
198.23.251.111	attackbotsspam	Sep 6 08:41:58 php2 sshd\[15409\]: Invalid user sammy from 198.23.251.111 Sep 6 08:41:58 php2 sshd\[15409\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.23.251.111 Sep 6 08:42:00 php2 sshd\[15409\]: Failed password for invalid user sammy from 198.23.251.111 port 44160 ssh2 Sep 6 08:48:51 php2 sshd\[16002\]: Invalid user temporal from 198.23.251.111 Sep 6 08:48:51 php2 sshd\[16002\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.23.251.111	2019-09-07 02:59:01
85.126.97.144	attackbots	Unauthorised access (Sep 6) SRC=85.126.97.144 LEN=44 TOS=0x10 PREC=0x40 TTL=52 ID=43780 TCP DPT=8080 WINDOW=32674 SYN Unauthorised access (Sep 6) SRC=85.126.97.144 LEN=44 TOS=0x10 PREC=0x40 TTL=52 ID=49795 TCP DPT=8080 WINDOW=30378 SYN Unauthorised access (Sep 4) SRC=85.126.97.144 LEN=44 TOS=0x10 PREC=0x40 TTL=52 ID=14161 TCP DPT=8080 WINDOW=30378 SYN	2019-09-07 03:35:13
42.114.16.191	attackspambots	Sep 6 20:20:53 server sshd\[27347\]: Invalid user admin from 42.114.16.191 port 13256 Sep 6 20:20:55 server sshd\[27347\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.114.16.191 Sep 6 20:20:56 server sshd\[27373\]: Invalid user system from 42.114.16.191 port 55476 Sep 6 20:20:56 server sshd\[27373\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.114.16.191 Sep 6 20:20:57 server sshd\[27347\]: Failed password for invalid user admin from 42.114.16.191 port 13256 ssh2	2019-09-07 02:50:05
192.81.216.31	attack	$f2bV_matches	2019-09-07 03:21:29
174.138.29.145	attack	Sep 6 19:44:41 eventyay sshd[9484]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.29.145 Sep 6 19:44:43 eventyay sshd[9484]: Failed password for invalid user gmodserver from 174.138.29.145 port 48260 ssh2 Sep 6 19:51:57 eventyay sshd[9642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.29.145 ...	2019-09-07 03:33:14
75.158.228.182	attackbotsspam	fail2ban	2019-09-07 03:37:32
106.53.118.74	attack	106.53.118.74 - - \[06/Sep/2019:16:06:04 +0200\] "POST /wp-content/themes/AdvanceImage5/header.php HTTP/1.1" 404 15212 "-" "-"	2019-09-07 03:32:01

最近上报的IP列表

103.237.58.162	85.234.124.147	101.74.19.233	21.195.225.64
5.62.60.55	236.144.151.74	231.129.209.203	139.199.201.243
73.176.199.250	5.158.154.56	91.199.3.25	209.157.107.107
83.3.145.250	110.83.109.235	169.186.250.241	48.161.214.179
209.97.141.112	28.0.86.180	178.185.41.3	107.167.87.115