148.70.68.20 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	REQUESTED PAGE: /webdav/	2019-10-26 16:12:07

相同子网IP讨论:

IP	类型	评论内容	时间
148.70.68.36	attack	Total attacks: 2	2020-08-29 00:57:47
148.70.68.36	attackbotsspam	Jul 23 13:57:29 sip sshd[1050768]: Invalid user user from 148.70.68.36 port 44306 Jul 23 13:57:31 sip sshd[1050768]: Failed password for invalid user user from 148.70.68.36 port 44306 ssh2 Jul 23 14:02:52 sip sshd[1050815]: Invalid user anna from 148.70.68.36 port 47218 ...	2020-07-23 21:28:01
148.70.68.36	attackspam	Jul 23 05:56:26 vps-51d81928 sshd[47677]: Invalid user testuser from 148.70.68.36 port 42832 Jul 23 05:56:26 vps-51d81928 sshd[47677]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.68.36 Jul 23 05:56:26 vps-51d81928 sshd[47677]: Invalid user testuser from 148.70.68.36 port 42832 Jul 23 05:56:28 vps-51d81928 sshd[47677]: Failed password for invalid user testuser from 148.70.68.36 port 42832 ssh2 Jul 23 05:59:00 vps-51d81928 sshd[47805]: Invalid user lorna from 148.70.68.36 port 39866 ...	2020-07-23 15:22:46
148.70.68.36	attack	firewall-block, port(s): 41/tcp	2020-07-22 17:25:48
148.70.68.36	attack	Jul 17 10:34:22 rotator sshd\[1509\]: Invalid user ubuntu from 148.70.68.36Jul 17 10:34:24 rotator sshd\[1509\]: Failed password for invalid user ubuntu from 148.70.68.36 port 40070 ssh2Jul 17 10:40:36 rotator sshd\[3092\]: Invalid user mysql from 148.70.68.36Jul 17 10:40:38 rotator sshd\[3092\]: Failed password for invalid user mysql from 148.70.68.36 port 44824 ssh2Jul 17 10:43:10 rotator sshd\[3110\]: Invalid user sphinx from 148.70.68.36Jul 17 10:43:11 rotator sshd\[3110\]: Failed password for invalid user sphinx from 148.70.68.36 port 43616 ssh2 ...	2020-07-17 17:58:07
148.70.68.36	attackspambots	2020-07-15T05:16:03.589751morrigan.ad5gb.com sshd[3200956]: Failed password for invalid user leonardo from 148.70.68.36 port 36844 ssh2 2020-07-15T05:16:03.924319morrigan.ad5gb.com sshd[3200956]: Disconnected from invalid user leonardo 148.70.68.36 port 36844 [preauth]	2020-07-15 19:26:39
148.70.68.36	attackspam	Brute-force attempt banned	2020-07-13 04:03:49
148.70.68.36	attackspam	2020-07-09T14:04:59.854052vps773228.ovh.net sshd[12350]: Invalid user evan from 148.70.68.36 port 41908 2020-07-09T14:04:59.865739vps773228.ovh.net sshd[12350]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.68.36 2020-07-09T14:04:59.854052vps773228.ovh.net sshd[12350]: Invalid user evan from 148.70.68.36 port 41908 2020-07-09T14:05:01.718440vps773228.ovh.net sshd[12350]: Failed password for invalid user evan from 148.70.68.36 port 41908 ssh2 2020-07-09T14:09:43.744607vps773228.ovh.net sshd[12425]: Invalid user scott from 148.70.68.36 port 38020 ...	2020-07-09 20:19:18
148.70.68.36	attackspam	Invalid user shaun from 148.70.68.36 port 43938	2020-07-01 01:25:24
148.70.68.36	attackspambots	Jun 24 19:01:39 home sshd[23220]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.68.36 Jun 24 19:01:41 home sshd[23220]: Failed password for invalid user angel from 148.70.68.36 port 54194 ssh2 Jun 24 19:05:03 home sshd[23569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.68.36 ...	2020-06-25 01:07:44
148.70.68.36	attackbotsspam	Jun 19 10:55:29 l03 sshd[6371]: Invalid user sftpuser from 148.70.68.36 port 53302 ...	2020-06-19 18:44:35
148.70.68.36	attackbots	SSH bruteforce	2020-06-17 03:51:00
148.70.68.36	attackbotsspam	Jun 15 09:49:26 ny01 sshd[4226]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.68.36 Jun 15 09:49:28 ny01 sshd[4226]: Failed password for invalid user uftp from 148.70.68.36 port 48202 ssh2 Jun 15 09:54:15 ny01 sshd[4815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.68.36	2020-06-15 21:58:16
148.70.68.36	attack	ssh brute force	2020-06-13 19:17:04
148.70.68.36	attackbots	$f2bV_matches	2020-06-09 21:52:27

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.70.68.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10490
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;148.70.68.20.			IN	A

;; AUTHORITY SECTION:
.			272	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102600 1800 900 604800 86400

;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 26 16:12:02 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 20.68.70.148.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 20.68.70.148.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
92.207.166.44	attackbots	$f2bV_matches	2019-10-17 12:58:51
183.102.114.59	attackbots	Oct 17 07:13:15 ns381471 sshd[12642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.102.114.59 Oct 17 07:13:17 ns381471 sshd[12642]: Failed password for invalid user !@#$%^&* from 183.102.114.59 port 59542 ssh2 Oct 17 07:17:29 ns381471 sshd[12729]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.102.114.59	2019-10-17 13:23:53
198.143.133.154	attackbotsspam	Unauthorized SSH login attempts	2019-10-17 13:18:05
91.121.211.34	attack	Oct 17 07:04:51 vps691689 sshd[12599]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.211.34 Oct 17 07:04:53 vps691689 sshd[12599]: Failed password for invalid user garrysmod from 91.121.211.34 port 57608 ssh2 ...	2019-10-17 13:14:02
124.160.83.138	attackspam	$f2bV_matches	2019-10-17 13:48:49
117.69.31.204	attack	Brute force attempt	2019-10-17 13:19:06
129.211.130.37	attackspambots	2019-10-17T04:44:57.193825shield sshd\[11599\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.130.37 user=root 2019-10-17T04:44:58.935631shield sshd\[11599\]: Failed password for root from 129.211.130.37 port 57030 ssh2 2019-10-17T04:49:34.086183shield sshd\[12518\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.130.37 user=root 2019-10-17T04:49:35.853481shield sshd\[12518\]: Failed password for root from 129.211.130.37 port 48362 ssh2 2019-10-17T04:54:13.819131shield sshd\[13188\]: Invalid user lucifer from 129.211.130.37 port 39698	2019-10-17 13:12:09
107.172.80.103	attackspambots	(From shortraquel040@gmail.com) Hi! There are some issues on your website that needs to be fixed in order for your website to move up in the rankings in Google and the other search engines. Would you be interested in getting a free consultation to learn a little more about how search engine optimization (SEO) can help make your website more profitable? I'm a freelancer who provides search engine optimization services, and I'm seeking new clients that have good businesses, but are struggling with their search engine rankings. I'd like to bring more traffic/sales to your site, so please let me know about your preferred contact number and the best time for a call. Talk to you soon! Thanks! Raquel Short	2019-10-17 13:04:22
45.136.110.11	attackspam	Excessive Port-Scanning	2019-10-17 13:20:50
2604:a880:400:d0::20:2001	attackbots	WordPress login Brute force / Web App Attack on client site.	2019-10-17 13:03:30
51.68.123.198	attack	Oct 17 06:11:05 SilenceServices sshd[15894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.123.198 Oct 17 06:11:06 SilenceServices sshd[15894]: Failed password for invalid user kiosk from 51.68.123.198 port 37460 ssh2 Oct 17 06:14:51 SilenceServices sshd[16851]: Failed password for root from 51.68.123.198 port 48636 ssh2	2019-10-17 13:17:00
149.56.96.78	attackspambots	Automatic report - Banned IP Access	2019-10-17 13:41:33
210.16.103.127	attack	WordPress wp-login brute force :: 210.16.103.127 0.052 BYPASS [17/Oct/2019:15:46:43 1100] [censored_4] "POST /wp-login.php HTTP/1.1" 200 3989 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-17 13:23:21
49.37.194.87	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 17-10-2019 04:55:26.	2019-10-17 13:27:55
73.189.112.132	attackbotsspam	Invalid user oracle from 73.189.112.132 port 47100	2019-10-17 13:49:32

最近上报的IP列表

117.69.146.138	179.49.15.149	83.220.168.182	42.227.171.24
174.76.35.28	94.19.138.90	115.84.88.205	175.180.202.246
104.244.75.244	103.245.198.101	59.175.86.142	61.52.73.169
62.225.61.221	71.213.143.171	62.210.129.248	36.68.5.71
1.54.34.59	27.199.86.52	45.179.189.39	213.148.194.75