103.1.12.68 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): ReadySpace Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Sep 13 18:46:42 mail.srvfarm.net postfix/smtpd[1233117]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 13 18:51:09 mail.srvfarm.net postfix/smtpd[1233117]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 13 18:51:09 mail.srvfarm.net postfix/smtpd[1234121]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 13 18:51:16 mail.srvfarm.net postfix/smtpd[1232282]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= p	2020-09-14 01:43:17
attack	Sep 13 10:36:42 mail.srvfarm.net postfix/smtpd[1046010]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 13 10:41:16 mail.srvfarm.net postfix/smtpd[1045058]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 13 10:41:16 mail.srvfarm.net postfix/smtpd[1048113]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 13 10:41:30 mail.srvfarm.net postfix/smtpd[1048113]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= p	2020-09-13 17:39:40

类型

评论内容

时间

attackbotsspam

Sep 13 18:46:42 mail.srvfarm.net postfix/smtpd[1233117]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo=
Sep 13 18:51:09 mail.srvfarm.net postfix/smtpd[1233117]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo=
Sep 13 18:51:09 mail.srvfarm.net postfix/smtpd[1234121]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo=
Sep 13 18:51:16 mail.srvfarm.net postfix/smtpd[1232282]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= p

2020-09-14 01:43:17

attack

Sep 13 10:36:42 mail.srvfarm.net postfix/smtpd[1046010]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo=
Sep 13 10:41:16 mail.srvfarm.net postfix/smtpd[1045058]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo=
Sep 13 10:41:16 mail.srvfarm.net postfix/smtpd[1048113]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo=
Sep 13 10:41:30 mail.srvfarm.net postfix/smtpd[1048113]: NOQUEUE: reject: RCPT from unknown[103.1.12.68]: 450 4.7.1 : Helo command rejected: Host not found; from= to= p

2020-09-13 17:39:40

相同子网IP讨论:

IP	类型	评论内容	时间
103.1.12.55	attackbots	Sep 15 16:58:43 mail.srvfarm.net postfix/smtpd[2773188]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 15 16:58:43 mail.srvfarm.net postfix/smtpd[2774637]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 15 16:58:44 mail.srvfarm.net postfix/smtpd[2773189]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 15 16:58:44 mail.srvfarm.net postfix/smtpd[2773179]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP h	2020-09-15 23:08:07
103.1.12.55	attackspambots	Sep 15 07:38:42 mail.srvfarm.net postfix/smtpd[2536028]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 15 07:38:42 mail.srvfarm.net postfix/smtpd[2536034]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 15 07:38:42 mail.srvfarm.net postfix/smtpd[2536039]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 15 07:38:43 mail.srvfarm.net postfix/smtpd[2536050]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP	2020-09-15 15:01:08
103.1.12.55	attack	Sep 15 00:38:42 mail.srvfarm.net postfix/smtpd[2376116]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 15 00:38:42 mail.srvfarm.net postfix/smtpd[2376113]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 15 00:38:42 mail.srvfarm.net postfix/smtpd[2373865]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 15 00:38:42 mail.srvfarm.net postfix/smtpd[2376119]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP h	2020-09-15 07:08:26
103.1.12.55	attackspam	Sep 9 07:53:45 mail.srvfarm.net postfix/smtpd[2257918]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 9 07:58:43 mail.srvfarm.net postfix/smtpd[2257918]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 9 07:58:43 mail.srvfarm.net postfix/smtpd[2257920]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 9 07:58:50 mail.srvfarm.net postfix/smtpd[2257597]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep	2020-09-12 02:12:09
103.1.12.55	attack	Sep 9 07:53:45 mail.srvfarm.net postfix/smtpd[2257918]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 9 07:58:43 mail.srvfarm.net postfix/smtpd[2257918]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 9 07:58:43 mail.srvfarm.net postfix/smtpd[2257920]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep 9 07:58:50 mail.srvfarm.net postfix/smtpd[2257597]: NOQUEUE: reject: RCPT from unknown[103.1.12.55]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Sep	2020-09-11 18:04:53

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 103.1.12.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11080
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;103.1.12.68.			IN	A

;; AUTHORITY SECTION:
.			287	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020091300 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 13 17:39:33 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 68.12.1.103.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 68.12.1.103.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
89.248.172.85	attackbotsspam	3418/tcp 5424/tcp 6606/tcp... [2019-09-30/11-30]961pkt,267pt.(tcp)	2019-12-01 05:18:21
101.0.32.62	attackbots	Unauthorised access (Nov 30) SRC=101.0.32.62 LEN=48 TTL=108 ID=2505 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-01 05:26:09
184.105.139.94	attack	3389BruteforceFW21	2019-12-01 05:26:34
49.146.42.193	attackbots	Unauthorized connection attempt from IP address 49.146.42.193 on Port 445(SMB)	2019-12-01 05:04:58
188.93.21.146	attackbots	[portscan] Port scan	2019-12-01 05:12:48
116.105.241.127	attackspam	Unauthorised access (Nov 30) SRC=116.105.241.127 LEN=48 TTL=110 ID=8815 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-01 05:38:36
89.42.252.124	attackbots	Nov 30 11:42:34 lanister sshd[19178]: Failed password for invalid user chrisf from 89.42.252.124 port 11412 ssh2 Nov 30 11:59:27 lanister sshd[19417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.42.252.124 user=news Nov 30 11:59:29 lanister sshd[19417]: Failed password for news from 89.42.252.124 port 52201 ssh2 Nov 30 12:03:31 lanister sshd[19481]: Invalid user bonobo from 89.42.252.124 ...	2019-12-01 05:31:18
60.214.131.42	attackbotsspam	SPAM Delivery Attempt	2019-12-01 05:04:13
138.197.21.218	attackbotsspam	Nov 30 17:09:52 OPSO sshd\[23179\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.21.218 user=operator Nov 30 17:09:54 OPSO sshd\[23179\]: Failed password for operator from 138.197.21.218 port 37496 ssh2 Nov 30 17:12:54 OPSO sshd\[23806\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.21.218 user=root Nov 30 17:12:57 OPSO sshd\[23806\]: Failed password for root from 138.197.21.218 port 44316 ssh2 Nov 30 17:15:56 OPSO sshd\[24513\]: Invalid user cn from 138.197.21.218 port 51134 Nov 30 17:15:56 OPSO sshd\[24513\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.21.218	2019-12-01 05:41:01
159.89.231.172	attack	$f2bV_matches	2019-12-01 05:28:06
129.211.75.184	attackbotsspam	Nov 30 19:31:11 server sshd\[29872\]: Invalid user rosenbalm from 129.211.75.184 Nov 30 19:31:11 server sshd\[29872\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.75.184 Nov 30 19:31:13 server sshd\[29872\]: Failed password for invalid user rosenbalm from 129.211.75.184 port 55110 ssh2 Nov 30 19:52:06 server sshd\[2644\]: Invalid user vana from 129.211.75.184 Nov 30 19:52:06 server sshd\[2644\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.75.184 ...	2019-12-01 05:34:03
222.186.175.182	attack	Nov 30 22:08:19 v22018076622670303 sshd\[20127\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root Nov 30 22:08:21 v22018076622670303 sshd\[20127\]: Failed password for root from 222.186.175.182 port 58642 ssh2 Nov 30 22:08:25 v22018076622670303 sshd\[20127\]: Failed password for root from 222.186.175.182 port 58642 ssh2 ...	2019-12-01 05:11:16
178.62.64.107	attackspambots	Nov 30 21:38:25 MK-Soft-VM6 sshd[18176]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.64.107 Nov 30 21:38:27 MK-Soft-VM6 sshd[18176]: Failed password for invalid user lilian from 178.62.64.107 port 49092 ssh2 ...	2019-12-01 05:16:02
85.209.0.90	attackbotsspam	Triggered: repeated knocking on closed ports.	2019-12-01 05:09:03
104.200.134.160	attackbotsspam	port scan and connect, tcp 22 (ssh)	2019-12-01 05:15:23

最近上报的IP列表

233.67.163.152	185.239.242.77	92.108.10.97	13.233.251.113
68.183.122.167	52.167.159.139	14.165.90.124	45.173.36.19
47.91.20.190	190.37.198.74	79.125.160.114	179.109.161.69
27.4.169.146	185.253.96.18	13.77.79.167	62.148.2.12
187.162.28.166	45.155.173.186	138.36.110.170	79.28.255.179