148.70.68.20 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	REQUESTED PAGE: /webdav/	2019-10-26 16:12:07

相同子网IP讨论:

IP	类型	评论内容	时间
148.70.68.36	attack	Total attacks: 2	2020-08-29 00:57:47
148.70.68.36	attackbotsspam	Jul 23 13:57:29 sip sshd[1050768]: Invalid user user from 148.70.68.36 port 44306 Jul 23 13:57:31 sip sshd[1050768]: Failed password for invalid user user from 148.70.68.36 port 44306 ssh2 Jul 23 14:02:52 sip sshd[1050815]: Invalid user anna from 148.70.68.36 port 47218 ...	2020-07-23 21:28:01
148.70.68.36	attackspam	Jul 23 05:56:26 vps-51d81928 sshd[47677]: Invalid user testuser from 148.70.68.36 port 42832 Jul 23 05:56:26 vps-51d81928 sshd[47677]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.68.36 Jul 23 05:56:26 vps-51d81928 sshd[47677]: Invalid user testuser from 148.70.68.36 port 42832 Jul 23 05:56:28 vps-51d81928 sshd[47677]: Failed password for invalid user testuser from 148.70.68.36 port 42832 ssh2 Jul 23 05:59:00 vps-51d81928 sshd[47805]: Invalid user lorna from 148.70.68.36 port 39866 ...	2020-07-23 15:22:46
148.70.68.36	attack	firewall-block, port(s): 41/tcp	2020-07-22 17:25:48
148.70.68.36	attack	Jul 17 10:34:22 rotator sshd\[1509\]: Invalid user ubuntu from 148.70.68.36Jul 17 10:34:24 rotator sshd\[1509\]: Failed password for invalid user ubuntu from 148.70.68.36 port 40070 ssh2Jul 17 10:40:36 rotator sshd\[3092\]: Invalid user mysql from 148.70.68.36Jul 17 10:40:38 rotator sshd\[3092\]: Failed password for invalid user mysql from 148.70.68.36 port 44824 ssh2Jul 17 10:43:10 rotator sshd\[3110\]: Invalid user sphinx from 148.70.68.36Jul 17 10:43:11 rotator sshd\[3110\]: Failed password for invalid user sphinx from 148.70.68.36 port 43616 ssh2 ...	2020-07-17 17:58:07
148.70.68.36	attackspambots	2020-07-15T05:16:03.589751morrigan.ad5gb.com sshd[3200956]: Failed password for invalid user leonardo from 148.70.68.36 port 36844 ssh2 2020-07-15T05:16:03.924319morrigan.ad5gb.com sshd[3200956]: Disconnected from invalid user leonardo 148.70.68.36 port 36844 [preauth]	2020-07-15 19:26:39
148.70.68.36	attackspam	Brute-force attempt banned	2020-07-13 04:03:49
148.70.68.36	attackspam	2020-07-09T14:04:59.854052vps773228.ovh.net sshd[12350]: Invalid user evan from 148.70.68.36 port 41908 2020-07-09T14:04:59.865739vps773228.ovh.net sshd[12350]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.68.36 2020-07-09T14:04:59.854052vps773228.ovh.net sshd[12350]: Invalid user evan from 148.70.68.36 port 41908 2020-07-09T14:05:01.718440vps773228.ovh.net sshd[12350]: Failed password for invalid user evan from 148.70.68.36 port 41908 ssh2 2020-07-09T14:09:43.744607vps773228.ovh.net sshd[12425]: Invalid user scott from 148.70.68.36 port 38020 ...	2020-07-09 20:19:18
148.70.68.36	attackspam	Invalid user shaun from 148.70.68.36 port 43938	2020-07-01 01:25:24
148.70.68.36	attackspambots	Jun 24 19:01:39 home sshd[23220]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.68.36 Jun 24 19:01:41 home sshd[23220]: Failed password for invalid user angel from 148.70.68.36 port 54194 ssh2 Jun 24 19:05:03 home sshd[23569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.68.36 ...	2020-06-25 01:07:44
148.70.68.36	attackbotsspam	Jun 19 10:55:29 l03 sshd[6371]: Invalid user sftpuser from 148.70.68.36 port 53302 ...	2020-06-19 18:44:35
148.70.68.36	attackbots	SSH bruteforce	2020-06-17 03:51:00
148.70.68.36	attackbotsspam	Jun 15 09:49:26 ny01 sshd[4226]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.68.36 Jun 15 09:49:28 ny01 sshd[4226]: Failed password for invalid user uftp from 148.70.68.36 port 48202 ssh2 Jun 15 09:54:15 ny01 sshd[4815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.68.36	2020-06-15 21:58:16
148.70.68.36	attack	ssh brute force	2020-06-13 19:17:04
148.70.68.36	attackbots	$f2bV_matches	2020-06-09 21:52:27

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.70.68.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10490
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;148.70.68.20.			IN	A

;; AUTHORITY SECTION:
.			272	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102600 1800 900 604800 86400

;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 26 16:12:02 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 20.68.70.148.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 20.68.70.148.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
194.116.134.6	attack	Apr 16 14:00:54 ip-172-31-62-245 sshd\[20117\]: Invalid user usuario from 194.116.134.6\ Apr 16 14:00:55 ip-172-31-62-245 sshd\[20117\]: Failed password for invalid user usuario from 194.116.134.6 port 58962 ssh2\ Apr 16 14:04:18 ip-172-31-62-245 sshd\[20143\]: Failed password for root from 194.116.134.6 port 60765 ssh2\ Apr 16 14:07:46 ip-172-31-62-245 sshd\[20173\]: Invalid user ps from 194.116.134.6\ Apr 16 14:07:48 ip-172-31-62-245 sshd\[20173\]: Failed password for invalid user ps from 194.116.134.6 port 34333 ssh2\	2020-04-17 02:00:40
78.25.22.178	attackbots	20/4/16@08:10:16: FAIL: Alarm-Network address from=78.25.22.178 ...	2020-04-17 02:09:21
49.135.37.121	attack	Invalid user admin from 49.135.37.121 port 50254	2020-04-17 01:45:13
54.165.231.250	attackspambots	16.04.2020 12:10:38 Recursive DNS scan	2020-04-17 01:47:50
183.80.106.33	attackspambots	$f2bV_matches	2020-04-17 02:04:10
51.77.150.118	attackbots	Apr 17 00:42:54 webhost01 sshd[12785]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.150.118 Apr 17 00:42:57 webhost01 sshd[12785]: Failed password for invalid user ftpu from 51.77.150.118 port 40220 ssh2 ...	2020-04-17 01:48:04
186.67.71.253	attackspam	Apr 16 16:05:29 XXXXXX sshd[42205]: Invalid user webadmin from 186.67.71.253 port 29961	2020-04-17 01:59:14
118.24.149.173	attack	Apr 16 18:09:43 h1745522 sshd[25554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.149.173 user=root Apr 16 18:09:45 h1745522 sshd[25554]: Failed password for root from 118.24.149.173 port 42174 ssh2 Apr 16 18:12:12 h1745522 sshd[25744]: Invalid user b from 118.24.149.173 port 36854 Apr 16 18:12:12 h1745522 sshd[25744]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.149.173 Apr 16 18:12:12 h1745522 sshd[25744]: Invalid user b from 118.24.149.173 port 36854 Apr 16 18:12:14 h1745522 sshd[25744]: Failed password for invalid user b from 118.24.149.173 port 36854 ssh2 Apr 16 18:14:41 h1745522 sshd[25810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.149.173 user=root Apr 16 18:14:41 h1745522 sshd[25810]: Failed password for root from 118.24.149.173 port 59768 ssh2 Apr 16 18:16:46 h1745522 sshd[25905]: pam_unix(sshd:auth): authentication failur ...	2020-04-17 01:58:36
89.29.128.101	attack	Unauthorized connection attempt detected from IP address 89.29.128.101 to port 8971	2020-04-17 02:19:37
222.186.175.215	attackspam	Apr 16 18:04:14 game-panel sshd[31849]: Failed password for root from 222.186.175.215 port 8866 ssh2 Apr 16 18:04:17 game-panel sshd[31849]: Failed password for root from 222.186.175.215 port 8866 ssh2 Apr 16 18:04:20 game-panel sshd[31849]: Failed password for root from 222.186.175.215 port 8866 ssh2 Apr 16 18:04:23 game-panel sshd[31849]: Failed password for root from 222.186.175.215 port 8866 ssh2	2020-04-17 02:16:44
128.199.142.204	attack	firewall-block, port(s): 2048/tcp	2020-04-17 02:12:37
58.186.50.159	attack	port scan and connect, tcp 1433 (ms-sql-s)	2020-04-17 01:41:12
156.96.61.113	attackspam	Bad Postfix AUTH attempts	2020-04-17 02:12:10
185.153.198.240	attackspambots	firewall-block, port(s): 20420/tcp	2020-04-17 02:05:34
184.105.247.228	attack	firewall-block, port(s): 5555/tcp	2020-04-17 02:08:50

最近上报的IP列表

117.69.146.138	179.49.15.149	83.220.168.182	42.227.171.24
174.76.35.28	94.19.138.90	115.84.88.205	175.180.202.246
104.244.75.244	103.245.198.101	59.175.86.142	61.52.73.169
62.225.61.221	71.213.143.171	62.210.129.248	36.68.5.71
1.54.34.59	27.199.86.52	45.179.189.39	213.148.194.75