103.1.12.68 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): ReadySpace Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Sep 13 18:46:42 mail.srvfarm.net postfix/smtpd[1233117]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 13 18:51:09 mail.srvfarm.net postfix/smtpd[1233117]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 13 18:51:09 mail.srvfarm.net postfix/smtpd[1234121]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 13 18:51:16 mail.srvfarm.net postfix/smtpd[1232282]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= p	2020-09-14 01:43:17
attack	Sep 13 10:36:42 mail.srvfarm.net postfix/smtpd[1046010]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 13 10:41:16 mail.srvfarm.net postfix/smtpd[1045058]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 13 10:41:16 mail.srvfarm.net postfix/smtpd[1048113]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 13 10:41:30 mail.srvfarm.net postfix/smtpd[1048113]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= p	2020-09-13 17:39:40

类型

评论内容

时间

attackbotsspam

Sep 13 18:46:42 mail.srvfarm.net postfix/smtpd[1233117]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo=
Sep 13 18:51:09 mail.srvfarm.net postfix/smtpd[1233117]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo=
Sep 13 18:51:09 mail.srvfarm.net postfix/smtpd[1234121]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo=
Sep 13 18:51:16 mail.srvfarm.net postfix/smtpd[1232282]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= p

2020-09-14 01:43:17

attack

Sep 13 10:36:42 mail.srvfarm.net postfix/smtpd[1046010]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo=
Sep 13 10:41:16 mail.srvfarm.net postfix/smtpd[1045058]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo=
Sep 13 10:41:16 mail.srvfarm.net postfix/smtpd[1048113]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo=
Sep 13 10:41:30 mail.srvfarm.net postfix/smtpd[1048113]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= p

2020-09-13 17:39:40

相同子网IP讨论:

IP	类型	评论内容	时间
103.1.12.55	attackbots	Sep 15 16:58:43 mail.srvfarm.net postfix/smtpd[2773188]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 15 16:58:43 mail.srvfarm.net postfix/smtpd[2774637]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 15 16:58:44 mail.srvfarm.net postfix/smtpd[2773189]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 15 16:58:44 mail.srvfarm.net postfix/smtpd[2773179]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP h	2020-09-15 23:08:07
103.1.12.55	attackspambots	Sep 15 07:38:42 mail.srvfarm.net postfix/smtpd[2536028]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 15 07:38:42 mail.srvfarm.net postfix/smtpd[2536034]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 15 07:38:42 mail.srvfarm.net postfix/smtpd[2536039]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 15 07:38:43 mail.srvfarm.net postfix/smtpd[2536050]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP	2020-09-15 15:01:08
103.1.12.55	attack	Sep 15 00:38:42 mail.srvfarm.net postfix/smtpd[2376116]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 15 00:38:42 mail.srvfarm.net postfix/smtpd[2376113]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 15 00:38:42 mail.srvfarm.net postfix/smtpd[2373865]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 15 00:38:42 mail.srvfarm.net postfix/smtpd[2376119]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP h	2020-09-15 07:08:26
103.1.12.55	attackspam	Sep 9 07:53:45 mail.srvfarm.net postfix/smtpd[2257918]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 9 07:58:43 mail.srvfarm.net postfix/smtpd[2257918]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 9 07:58:43 mail.srvfarm.net postfix/smtpd[2257920]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 9 07:58:50 mail.srvfarm.net postfix/smtpd[2257597]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep	2020-09-12 02:12:09
103.1.12.55	attack	Sep 9 07:53:45 mail.srvfarm.net postfix/smtpd[2257918]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 9 07:58:43 mail.srvfarm.net postfix/smtpd[2257918]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 9 07:58:43 mail.srvfarm.net postfix/smtpd[2257920]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 9 07:58:50 mail.srvfarm.net postfix/smtpd[2257597]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep	2020-09-11 18:04:53

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.1.12.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11080
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.1.12.68.			IN	A

;; AUTHORITY SECTION:
.			287	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020091300 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 13 17:39:33 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 68.12.1.103.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 68.12.1.103.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
5.2.60.37	attack	20 attempts against mh_ha-misbehave-ban on pole	2020-06-30 12:47:39
60.167.180.160	attackspam	Jun 30 05:55:44 mailserver sshd\[29232\]: Invalid user admin1 from 60.167.180.160 ...	2020-06-30 13:09:58
11.91.122.119	attackbotsspam		2020-06-30 13:08:25
129.226.114.41	attack	2020-06-30T05:55:37+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)	2020-06-30 13:19:36
93.38.114.55	attack	Jun 30 05:22:31 cdc sshd[7200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.38.114.55 Jun 30 05:22:33 cdc sshd[7200]: Failed password for invalid user gold from 93.38.114.55 port 24262 ssh2	2020-06-30 13:24:44
222.186.180.142	attackspam	2020-06-30T06:46:41.573234vps751288.ovh.net sshd\[2076\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.142 user=root 2020-06-30T06:46:43.564903vps751288.ovh.net sshd\[2076\]: Failed password for root from 222.186.180.142 port 61038 ssh2 2020-06-30T06:46:45.438434vps751288.ovh.net sshd\[2076\]: Failed password for root from 222.186.180.142 port 61038 ssh2 2020-06-30T06:46:47.589403vps751288.ovh.net sshd\[2076\]: Failed password for root from 222.186.180.142 port 61038 ssh2 2020-06-30T06:46:51.119068vps751288.ovh.net sshd\[2078\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.142 user=root	2020-06-30 12:51:37
49.82.192.192	attackspam		2020-06-30 13:10:32
123.24.46.70	attackspambots	2020-06-30T05:55:54.2780741240 sshd\[25352\]: Invalid user sniffer from 123.24.46.70 port 59352 2020-06-30T05:55:54.4817851240 sshd\[25352\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.24.46.70 2020-06-30T05:55:56.8399831240 sshd\[25352\]: Failed password for invalid user sniffer from 123.24.46.70 port 59352 ssh2 ...	2020-06-30 12:56:06
20.44.216.74	attackspam	2020-06-30T05:07:30.581228shield sshd\[32568\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.44.216.74 user=root 2020-06-30T05:07:33.039101shield sshd\[32568\]: Failed password for root from 20.44.216.74 port 57552 ssh2 2020-06-30T05:11:04.256828shield sshd\[1320\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.44.216.74 user=root 2020-06-30T05:11:06.092452shield sshd\[1320\]: Failed password for root from 20.44.216.74 port 34292 ssh2 2020-06-30T05:14:41.728989shield sshd\[2713\]: Invalid user db2fenc1 from 20.44.216.74 port 39362	2020-06-30 13:27:58
177.74.238.218	attack	Jun 30 08:08:11 journals sshd\[102916\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.74.238.218 user=root Jun 30 08:08:13 journals sshd\[102916\]: Failed password for root from 177.74.238.218 port 44882 ssh2 Jun 30 08:12:06 journals sshd\[103426\]: Invalid user xc from 177.74.238.218 Jun 30 08:12:06 journals sshd\[103426\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.74.238.218 Jun 30 08:12:08 journals sshd\[103426\]: Failed password for invalid user xc from 177.74.238.218 port 23214 ssh2 ...	2020-06-30 13:27:03
159.65.255.153	attackbotsspam	Jun 30 05:11:14 onepixel sshd[2300267]: Failed password for invalid user odoo from 159.65.255.153 port 47486 ssh2 Jun 30 05:14:54 onepixel sshd[2302150]: Invalid user yed from 159.65.255.153 port 46544 Jun 30 05:14:54 onepixel sshd[2302150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.255.153 Jun 30 05:14:54 onepixel sshd[2302150]: Invalid user yed from 159.65.255.153 port 46544 Jun 30 05:14:56 onepixel sshd[2302150]: Failed password for invalid user yed from 159.65.255.153 port 46544 ssh2	2020-06-30 13:32:00
119.96.94.136	attackspambots	Jun 30 06:24:36 srv-ubuntu-dev3 sshd[25803]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.96.94.136 user=root Jun 30 06:24:38 srv-ubuntu-dev3 sshd[25803]: Failed password for root from 119.96.94.136 port 36696 ssh2 Jun 30 06:27:55 srv-ubuntu-dev3 sshd[30113]: Invalid user default from 119.96.94.136 Jun 30 06:27:55 srv-ubuntu-dev3 sshd[30113]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.96.94.136 Jun 30 06:27:55 srv-ubuntu-dev3 sshd[30113]: Invalid user default from 119.96.94.136 Jun 30 06:27:56 srv-ubuntu-dev3 sshd[30113]: Failed password for invalid user default from 119.96.94.136 port 52118 ssh2 Jun 30 06:31:20 srv-ubuntu-dev3 sshd[33490]: Invalid user dsv from 119.96.94.136 Jun 30 06:31:20 srv-ubuntu-dev3 sshd[33490]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.96.94.136 Jun 30 06:31:20 srv-ubuntu-dev3 sshd[33490]: Invalid user dsv from 119. ...	2020-06-30 13:05:13
52.26.64.212	attack	Invalid user ccs from 52.26.64.212 port 50348	2020-06-30 13:24:58
180.244.121.211	attack	20/6/29@23:55:38: FAIL: Alarm-Network address from=180.244.121.211 ...	2020-06-30 13:19:01
168.63.150.222	attackspambots	" "	2020-06-30 13:08:58

最近上报的IP列表

233.67.163.152	185.239.242.77	92.108.10.97	13.233.251.113
68.183.122.167	52.167.159.139	14.165.90.124	45.173.36.19
47.91.20.190	190.37.198.74	79.125.160.114	179.109.161.69
27.4.169.146	185.253.96.18	13.77.79.167	62.148.2.12
187.162.28.166	45.155.173.186	138.36.110.170	79.28.255.179