111.68.102.73 - IPInfo

基本信息:

城市(city): Lahore

省份(region): Punjab

国家(country): Pakistan

运营商(isp): IP Allocation 1 Nca

主机名(hostname): unknown

机构(organization): PERN AS Content Servie Provider, Islamabad, Pakistan

使用类型(Usage Type): University/College/School

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorised access (Nov 18) SRC=111.68.102.73 LEN=40 TTL=241 ID=15651 TCP DPT=1433 WINDOW=1024 SYN	2019-11-19 06:22:09
attackbots	firewall-block, port(s): 445/tcp	2019-09-15 07:39:19
attackbotsspam	SMB Server BruteForce Attack	2019-07-29 03:21:39

相同子网IP讨论:

IP	类型	评论内容	时间
111.68.102.26	attackbots	Unauthorized connection attempt from IP address 111.68.102.26 on Port 445(SMB)	2020-02-17 02:41:18
111.68.102.66	attackbotsspam	Unauthorized connection attempt from IP address 111.68.102.66 on Port 445(SMB)	2019-09-19 19:36:14
111.68.102.66	attackbotsspam	firewall-block, port(s): 445/tcp	2019-09-11 11:32:12

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 111.68.102.73
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51691
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;111.68.102.73.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072801 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 29 03:21:34 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

73.102.68.111.in-addr.arpa domain name pointer nca.edu.pk.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
73.102.68.111.in-addr.arpa	name = nca.edu.pk.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
118.21.111.124	attackspam	Jul 17 01:25:52 MK-Soft-VM7 sshd\[9766\]: Invalid user bp from 118.21.111.124 port 62976 Jul 17 01:25:52 MK-Soft-VM7 sshd\[9766\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.21.111.124 Jul 17 01:25:54 MK-Soft-VM7 sshd\[9766\]: Failed password for invalid user bp from 118.21.111.124 port 62976 ssh2 ...	2019-07-17 10:56:58
128.199.52.45	attackbots	Jul 17 04:13:49 rpi sshd[9097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.52.45 Jul 17 04:13:51 rpi sshd[9097]: Failed password for invalid user wcsuser from 128.199.52.45 port 52456 ssh2	2019-07-17 10:43:36
118.24.219.111	attackbotsspam	May 8 10:56:21 server sshd\[221659\]: Invalid user oracle from 118.24.219.111 May 8 10:56:21 server sshd\[221659\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.219.111 May 8 10:56:22 server sshd\[221659\]: Failed password for invalid user oracle from 118.24.219.111 port 33632 ssh2 ...	2019-07-17 10:42:05
111.73.45.137	attackbotsspam	Portscan or hack attempt detected by psad/fwsnort	2019-07-17 10:44:33
117.66.243.77	attackspambots	Jul 17 00:45:28 tuxlinux sshd[13810]: Invalid user user from 117.66.243.77 port 52137 Jul 17 00:45:28 tuxlinux sshd[13810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.66.243.77 Jul 17 00:45:28 tuxlinux sshd[13810]: Invalid user user from 117.66.243.77 port 52137 Jul 17 00:45:28 tuxlinux sshd[13810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.66.243.77 ...	2019-07-17 11:20:39
92.222.84.34	attack	Jul 17 04:31:05 SilenceServices sshd[7844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.84.34 Jul 17 04:31:07 SilenceServices sshd[7844]: Failed password for invalid user game from 92.222.84.34 port 57370 ssh2 Jul 17 04:35:33 SilenceServices sshd[10655]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.84.34	2019-07-17 10:41:44
118.144.139.219	attackspam	May 24 21:15:27 server sshd\[188535\]: Invalid user allotest from 118.144.139.219 May 24 21:15:27 server sshd\[188535\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.144.139.219 May 24 21:15:29 server sshd\[188535\]: Failed password for invalid user allotest from 118.144.139.219 port 8868 ssh2 ...	2019-07-17 11:13:27
118.24.131.236	attackbotsspam	May 27 06:06:43 server sshd\[33290\]: Invalid user winer from 118.24.131.236 May 27 06:06:43 server sshd\[33290\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.131.236 May 27 06:06:45 server sshd\[33290\]: Failed password for invalid user winer from 118.24.131.236 port 35958 ssh2 ...	2019-07-17 10:47:37
132.232.42.181	attackspam	Jul 17 04:28:23 localhost sshd\[11429\]: Invalid user kg from 132.232.42.181 port 57510 Jul 17 04:28:23 localhost sshd\[11429\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.42.181 Jul 17 04:28:25 localhost sshd\[11429\]: Failed password for invalid user kg from 132.232.42.181 port 57510 ssh2	2019-07-17 10:50:38
219.255.154.230	attackspambots	TCP 60 49921 → personal-agent(5555) [SYN] Seq=0 Win=55334 Len=0	2019-07-17 11:25:32
107.179.116.226	attack	Jul 17 04:53:02 vps647732 sshd[19323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.179.116.226 Jul 17 04:53:04 vps647732 sshd[19323]: Failed password for invalid user aa from 107.179.116.226 port 41188 ssh2 ...	2019-07-17 11:09:43
180.250.162.9	attack	16.07.2019 22:16:35 SSH access blocked by firewall	2019-07-17 11:19:35
141.98.81.81	attackbotsspam	2019-07-17T02:33:34.562459abusebot-7.cloudsearch.cf sshd\[13572\]: Invalid user admin from 141.98.81.81 port 42374	2019-07-17 10:40:46
118.175.58.12	attackspambots	Jul 17 03:43:58 [munged] sshd[15135]: Invalid user yl from 118.175.58.12 port 42940 Jul 17 03:43:58 [munged] sshd[15135]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.175.58.12	2019-07-17 10:52:12
118.193.80.106	attackspam	May 5 01:12:57 server sshd\[101781\]: Invalid user ix from 118.193.80.106 May 5 01:12:57 server sshd\[101781\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.193.80.106 May 5 01:13:00 server sshd\[101781\]: Failed password for invalid user ix from 118.193.80.106 port 50510 ssh2 ...	2019-07-17 10:58:38

最近上报的IP列表

134.171.239.206	84.87.235.90	67.74.3.242	196.34.110.50
45.8.162.160	108.57.234.191	87.228.196.229	152.78.244.139
113.134.193.1	145.158.135.86	186.104.91.42	202.124.175.67
128.142.99.240	24.18.38.136	214.133.0.198	179.166.152.238
223.94.41.236	153.244.220.191	2a02:4780:1:8::38	188.167.28.91