102.68.1.5 - IPInfo

基本信息:

城市(city): George

省份(region): Western Cape

国家(country): South Africa

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
102.68.137.139	attackspambots	TCP (SYN) 102.68.137.139:54121 -> port 20592, len 44	2020-09-07 04:24:54
102.68.137.139	attackbots	TCP ports : 1615 / 2295 / 12969 / 15156 / 27429 / 29179	2020-09-06 20:00:58
102.68.110.108	attackspambots	Jul 14 20:24:46 mellenthin postfix/smtpd[15429]: NOQUEUE: reject: RCPT from unknown[102.68.110.108]: 554 5.7.1 Service unavailable; Client host [102.68.110.108] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/102.68.110.108 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=<[102.68.110.108]>	2020-07-15 07:57:58
102.68.135.234	attack	Port scanning	2020-07-12 17:50:48
102.68.130.109	attackspambots	Unauthorized connection attempt from IP address 102.68.130.109 on Port 445(SMB)	2020-06-21 22:04:34
102.68.17.48	attackbots	May 28 03:23:09 NPSTNNYC01T sshd[21311]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.68.17.48 May 28 03:23:10 NPSTNNYC01T sshd[21311]: Failed password for invalid user test1 from 102.68.17.48 port 36604 ssh2 May 28 03:27:16 NPSTNNYC01T sshd[21685]: Failed password for root from 102.68.17.48 port 54444 ssh2 ...	2020-05-28 18:23:18
102.68.17.138	attackspam	Icarus honeypot on github	2020-05-26 11:50:18
102.68.17.48	attack	May 22 15:06:56 l02a sshd[2038]: Invalid user eeg from 102.68.17.48 May 22 15:06:56 l02a sshd[2038]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.68.17.48 May 22 15:06:56 l02a sshd[2038]: Invalid user eeg from 102.68.17.48 May 22 15:06:58 l02a sshd[2038]: Failed password for invalid user eeg from 102.68.17.48 port 43006 ssh2	2020-05-23 03:10:31
102.68.109.97	attack	Invalid user dircreate from 102.68.109.97 port 53255	2020-05-22 03:39:40
102.68.17.48	attackbots	Invalid user yh from 102.68.17.48 port 52032	2020-05-01 15:50:49
102.68.17.48	attackspam	SSH brute force attempt	2020-04-27 01:01:30
102.68.17.48	attackspam	Apr 20 08:17:42 mail sshd[30021]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.68.17.48 user=root Apr 20 08:17:45 mail sshd[30021]: Failed password for root from 102.68.17.48 port 34032 ssh2 ...	2020-04-20 16:20:04
102.68.17.48	attack	Apr 14 10:58:31 vpn01 sshd[26903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.68.17.48 Apr 14 10:58:33 vpn01 sshd[26903]: Failed password for invalid user mis from 102.68.17.48 port 45534 ssh2 ...	2020-04-14 18:36:47
102.68.17.48	attack	Apr 11 14:01:21 ourumov-web sshd\[18424\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.68.17.48 user=root Apr 11 14:01:23 ourumov-web sshd\[18424\]: Failed password for root from 102.68.17.48 port 52110 ssh2 Apr 11 14:17:27 ourumov-web sshd\[19568\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.68.17.48 user=root ...	2020-04-11 23:54:13
102.68.17.48	attackbots	Apr 9 14:21:06 localhost sshd[117748]: Invalid user norbert from 102.68.17.48 port 59082 Apr 9 14:21:06 localhost sshd[117748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.68.17.48 Apr 9 14:21:06 localhost sshd[117748]: Invalid user norbert from 102.68.17.48 port 59082 Apr 9 14:21:08 localhost sshd[117748]: Failed password for invalid user norbert from 102.68.17.48 port 59082 ssh2 Apr 9 14:27:58 localhost sshd[118383]: Invalid user oraprod from 102.68.17.48 port 58402 ...	2020-04-10 04:31:58

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 102.68.1.5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64723
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;102.68.1.5.			IN	A

;; AUTHORITY SECTION:
.			358	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110201 1800 900 604800 86400

;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Nov 03 03:52:49 CST 2019
;; MSG SIZE  rcvd: 114

HOST信息:

Host 5.1.68.102.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 5.1.68.102.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
81.22.45.133	attackbotsspam	11/15/2019-03:09:03.998147 81.22.45.133 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-15 16:23:57
68.183.211.196	attack	68.183.211.196 - - \[15/Nov/2019:07:28:14 +0100\] "POST /wp-login.php HTTP/1.0" 200 5598 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 68.183.211.196 - - \[15/Nov/2019:07:28:20 +0100\] "POST /wp-login.php HTTP/1.0" 200 5594 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 68.183.211.196 - - \[15/Nov/2019:07:28:23 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 1028 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-11-15 16:21:40
213.138.73.250	attackspam	Nov 15 06:58:27 thevastnessof sshd[11264]: Failed password for root from 213.138.73.250 port 39540 ssh2 ...	2019-11-15 15:57:35
112.230.97.113	attack	failed_logins	2019-11-15 16:31:37
5.45.6.66	attackspam	Nov 14 21:22:15 wbs sshd\[29957\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=066-006-045-005.ip-addr.inexio.net user=root Nov 14 21:22:17 wbs sshd\[29957\]: Failed password for root from 5.45.6.66 port 49896 ssh2 Nov 14 21:28:38 wbs sshd\[30462\]: Invalid user damian from 5.45.6.66 Nov 14 21:28:38 wbs sshd\[30462\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=066-006-045-005.ip-addr.inexio.net Nov 14 21:28:40 wbs sshd\[30462\]: Failed password for invalid user damian from 5.45.6.66 port 59002 ssh2	2019-11-15 15:53:37
188.131.224.32	attackspambots	Nov 15 07:28:24 serwer sshd\[3620\]: Invalid user ac from 188.131.224.32 port 48844 Nov 15 07:28:24 serwer sshd\[3620\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.224.32 Nov 15 07:28:26 serwer sshd\[3620\]: Failed password for invalid user ac from 188.131.224.32 port 48844 ssh2 ...	2019-11-15 16:19:47
116.106.88.27	attack	Automatic report - Port Scan Attack	2019-11-15 16:14:26
132.148.148.21	attackbotsspam	WordPress wp-login brute force :: 132.148.148.21 0.068 BYPASS [15/Nov/2019:06:50:17 0000] [censored_4] "POST /wp-login.php HTTP/1.1" 200 2134 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-11-15 16:04:56
115.231.218.110	attack	115.231.218.110 was recorded 5 times by 5 hosts attempting to connect to the following ports: 8080. Incident counter (4h, 24h, all-time): 5, 5, 6	2019-11-15 16:09:04
157.230.55.177	attack	www.eintrachtkultkellerfulda.de 157.230.55.177 \[15/Nov/2019:08:00:24 +0100\] "POST /wp-login.php HTTP/1.1" 200 2705 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" www.eintrachtkultkellerfulda.de 157.230.55.177 \[15/Nov/2019:08:00:24 +0100\] "POST /wp-login.php HTTP/1.1" 200 2670 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" www.eintrachtkultkellerfulda.de 157.230.55.177 \[15/Nov/2019:08:00:25 +0100\] "POST /xmlrpc.php HTTP/1.1" 200 426 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-11-15 16:34:30
54.37.17.251	attackspambots	Nov 15 08:37:37 ns41 sshd[30096]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.17.251 Nov 15 08:37:37 ns41 sshd[30096]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.17.251	2019-11-15 15:53:12
101.89.150.73	attack	$f2bV_matches	2019-11-15 16:09:18
142.93.215.102	attack	2019-11-15T08:06:48.097150abusebot-5.cloudsearch.cf sshd\[14255\]: Invalid user dj from 142.93.215.102 port 52616	2019-11-15 16:26:14
106.12.189.2	attack	Nov 15 07:28:46 MK-Soft-VM7 sshd[31069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.189.2 Nov 15 07:28:49 MK-Soft-VM7 sshd[31069]: Failed password for invalid user hinkle from 106.12.189.2 port 50830 ssh2 ...	2019-11-15 16:06:37
64.213.148.59	attackspam	Nov 15 07:58:30 meumeu sshd[22362]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.213.148.59 Nov 15 07:58:32 meumeu sshd[22362]: Failed password for invalid user teamspeak from 64.213.148.59 port 42187 ssh2 Nov 15 08:02:54 meumeu sshd[23124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.213.148.59 ...	2019-11-15 16:24:48

最近上报的IP列表

86.87.173.13	9.124.235.79	172.17.135.115	196.227.190.165
170.191.1.67	241.42.158.92	48.128.161.3	67.244.71.81
208.159.160.207	11.195.230.32	117.12.14.66	22.37.212.203
24.228.204.160	209.11.235.4	14.254.204.201	108.169.120.58
55.236.230.50	159.205.153.207	169.144.60.163	191.40.174.180