102.68.1.5 - IPInfo

基本信息:

城市(city): George

省份(region): Western Cape

国家(country): South Africa

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
102.68.137.139	attackspambots	TCP (SYN) 102.68.137.139:54121 -> port 20592, len 44	2020-09-07 04:24:54
102.68.137.139	attackbots	TCP ports : 1615 / 2295 / 12969 / 15156 / 27429 / 29179	2020-09-06 20:00:58
102.68.110.108	attackspambots	Jul 14 20:24:46 mellenthin postfix/smtpd[15429]: NOQUEUE: reject: RCPT from unknown[102.68.110.108]: 554 5.7.1 Service unavailable; Client host [102.68.110.108] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/102.68.110.108 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=<[102.68.110.108]>	2020-07-15 07:57:58
102.68.135.234	attack	Port scanning	2020-07-12 17:50:48
102.68.130.109	attackspambots	Unauthorized connection attempt from IP address 102.68.130.109 on Port 445(SMB)	2020-06-21 22:04:34
102.68.17.48	attackbots	May 28 03:23:09 NPSTNNYC01T sshd[21311]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.68.17.48 May 28 03:23:10 NPSTNNYC01T sshd[21311]: Failed password for invalid user test1 from 102.68.17.48 port 36604 ssh2 May 28 03:27:16 NPSTNNYC01T sshd[21685]: Failed password for root from 102.68.17.48 port 54444 ssh2 ...	2020-05-28 18:23:18
102.68.17.138	attackspam	Icarus honeypot on github	2020-05-26 11:50:18
102.68.17.48	attack	May 22 15:06:56 l02a sshd[2038]: Invalid user eeg from 102.68.17.48 May 22 15:06:56 l02a sshd[2038]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.68.17.48 May 22 15:06:56 l02a sshd[2038]: Invalid user eeg from 102.68.17.48 May 22 15:06:58 l02a sshd[2038]: Failed password for invalid user eeg from 102.68.17.48 port 43006 ssh2	2020-05-23 03:10:31
102.68.109.97	attack	Invalid user dircreate from 102.68.109.97 port 53255	2020-05-22 03:39:40
102.68.17.48	attackbots	Invalid user yh from 102.68.17.48 port 52032	2020-05-01 15:50:49
102.68.17.48	attackspam	SSH brute force attempt	2020-04-27 01:01:30
102.68.17.48	attackspam	Apr 20 08:17:42 mail sshd[30021]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.68.17.48 user=root Apr 20 08:17:45 mail sshd[30021]: Failed password for root from 102.68.17.48 port 34032 ssh2 ...	2020-04-20 16:20:04
102.68.17.48	attack	Apr 14 10:58:31 vpn01 sshd[26903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.68.17.48 Apr 14 10:58:33 vpn01 sshd[26903]: Failed password for invalid user mis from 102.68.17.48 port 45534 ssh2 ...	2020-04-14 18:36:47
102.68.17.48	attack	Apr 11 14:01:21 ourumov-web sshd\[18424\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.68.17.48 user=root Apr 11 14:01:23 ourumov-web sshd\[18424\]: Failed password for root from 102.68.17.48 port 52110 ssh2 Apr 11 14:17:27 ourumov-web sshd\[19568\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.68.17.48 user=root ...	2020-04-11 23:54:13
102.68.17.48	attackbots	Apr 9 14:21:06 localhost sshd[117748]: Invalid user norbert from 102.68.17.48 port 59082 Apr 9 14:21:06 localhost sshd[117748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.68.17.48 Apr 9 14:21:06 localhost sshd[117748]: Invalid user norbert from 102.68.17.48 port 59082 Apr 9 14:21:08 localhost sshd[117748]: Failed password for invalid user norbert from 102.68.17.48 port 59082 ssh2 Apr 9 14:27:58 localhost sshd[118383]: Invalid user oraprod from 102.68.17.48 port 58402 ...	2020-04-10 04:31:58

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 102.68.1.5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64723
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;102.68.1.5.			IN	A

;; AUTHORITY SECTION:
.			358	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110201 1800 900 604800 86400

;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Nov 03 03:52:49 CST 2019
;; MSG SIZE  rcvd: 114

HOST信息:

Host 5.1.68.102.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 5.1.68.102.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
49.232.165.42	attackspambots	Oct 13 20:35:38 roki-contabo sshd\[18500\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.165.42 user=root Oct 13 20:35:41 roki-contabo sshd\[18500\]: Failed password for root from 49.232.165.42 port 48008 ssh2 Oct 13 20:45:44 roki-contabo sshd\[19090\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.165.42 user=root Oct 13 20:45:47 roki-contabo sshd\[19090\]: Failed password for root from 49.232.165.42 port 34730 ssh2 Oct 13 20:49:07 roki-contabo sshd\[19306\]: Invalid user rf from 49.232.165.42 ...	2020-10-14 03:26:44
106.54.47.171	attackbots	Oct 13 17:35:32 sigma sshd\[18703\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.47.171 user=rootOct 13 17:47:48 sigma sshd\[19750\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.47.171 user=root ...	2020-10-14 03:08:10
111.231.89.190	attackspam	Oct 13 16:42:54 ip-172-31-16-56 sshd\[31582\]: Invalid user ann from 111.231.89.190\ Oct 13 16:42:56 ip-172-31-16-56 sshd\[31582\]: Failed password for invalid user ann from 111.231.89.190 port 49790 ssh2\ Oct 13 16:47:13 ip-172-31-16-56 sshd\[31663\]: Invalid user Aba from 111.231.89.190\ Oct 13 16:47:14 ip-172-31-16-56 sshd\[31663\]: Failed password for invalid user Aba from 111.231.89.190 port 41182 ssh2\ Oct 13 16:51:37 ip-172-31-16-56 sshd\[31730\]: Invalid user dfk from 111.231.89.190\	2020-10-14 03:19:11
165.22.101.100	attackbotsspam	165.22.101.100 - - \[13/Oct/2020:19:56:15 +0200\] "POST /wp-login.php HTTP/1.0" 200 8625 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 165.22.101.100 - - \[13/Oct/2020:19:56:17 +0200\] "POST /wp-login.php HTTP/1.0" 200 8409 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 165.22.101.100 - - \[13/Oct/2020:19:56:18 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-10-14 03:35:10
195.204.16.82	attack	Oct 13 20:19:26 icinga sshd[30719]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.204.16.82 Oct 13 20:19:28 icinga sshd[30719]: Failed password for invalid user rk from 195.204.16.82 port 55186 ssh2 Oct 13 20:25:15 icinga sshd[39520]: Failed password for root from 195.204.16.82 port 54132 ssh2 ...	2020-10-14 03:42:54
212.83.162.123	attackspambots	[portscan] tcp/22 [SSH] [scan/connect: 6 time(s)] in blocklist.de:'listed [ssh]' *(RWIN=64240)(10130956)	2020-10-14 03:09:03
46.228.93.242	attackspam	Oct 13 20:34:12 [host] sshd[13460]: Invalid user e Oct 13 20:34:12 [host] sshd[13460]: pam_unix(sshd: Oct 13 20:34:14 [host] sshd[13460]: Failed passwor	2020-10-14 03:43:45
134.175.32.95	attackspam	Oct 13 16:44:46 santamaria sshd\[8874\]: Invalid user sniper from 134.175.32.95 Oct 13 16:44:46 santamaria sshd\[8874\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.32.95 Oct 13 16:44:48 santamaria sshd\[8874\]: Failed password for invalid user sniper from 134.175.32.95 port 35412 ssh2 ...	2020-10-14 03:32:22
4.17.231.207	attack	various type of attack	2020-10-14 03:15:11
41.36.98.53	attackbots	1602535449 - 10/13/2020 03:44:09 Host: host-41.36.98.53.tedata.net/41.36.98.53 Port: 23 TCP Blocked ...	2020-10-14 03:37:02
187.177.89.41	attack	Automatic report - Port Scan Attack	2020-10-14 03:27:46
220.186.188.228	attack	$f2bV_matches	2020-10-14 03:38:20
173.249.18.190	attack	Automatic Fail2ban report - Trying login SSH	2020-10-14 03:25:22
74.80.25.197	attack	74.80.25.197 (US/United States/74-80-25-197.bead.dyn.lusfiber.net), 3 distributed sshd attacks on account [admin] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Oct 12 16:20:59 internal2 sshd[23733]: Invalid user admin from 209.141.33.122 port 43372 Oct 12 16:20:59 internal2 sshd[23738]: Invalid user admin from 209.141.33.122 port 44146 Oct 12 16:43:59 internal2 sshd[31242]: Invalid user admin from 74.80.25.197 port 51271 IP Addresses Blocked: 209.141.33.122 (US/United States/speedscan.ddns.net)	2020-10-14 03:42:32
165.227.50.84	attackbots	2020-10-13T16:05:54.185448paragon sshd[927957]: Invalid user yaysa from 165.227.50.84 port 45788 2020-10-13T16:05:54.189215paragon sshd[927957]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.50.84 2020-10-13T16:05:54.185448paragon sshd[927957]: Invalid user yaysa from 165.227.50.84 port 45788 2020-10-13T16:05:55.919872paragon sshd[927957]: Failed password for invalid user yaysa from 165.227.50.84 port 45788 ssh2 2020-10-13T16:08:45.163856paragon sshd[928045]: Invalid user cipy from 165.227.50.84 port 36492 ...	2020-10-14 03:03:56

最近上报的IP列表

86.87.173.13	9.124.235.79	172.17.135.115	196.227.190.165
170.191.1.67	241.42.158.92	48.128.161.3	67.244.71.81
208.159.160.207	11.195.230.32	117.12.14.66	22.37.212.203
24.228.204.160	209.11.235.4	14.254.204.201	108.169.120.58
55.236.230.50	159.205.153.207	169.144.60.163	191.40.174.180