172.68.130.141

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 172.68.130.141
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8463
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;172.68.130.141.			IN	A

;; AUTHORITY SECTION:
.			478	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 20:40:36 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 141.130.68.172.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 141.130.68.172.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
85.209.0.251	attackbotsspam	Sep 10 14:58:04 tor-proxy-02 sshd\[22016\]: User root from 85.209.0.251 not allowed because not listed in AllowUsers Sep 10 14:58:04 tor-proxy-02 sshd\[22015\]: User root from 85.209.0.251 not allowed because not listed in AllowUsers Sep 10 14:58:04 tor-proxy-02 sshd\[22016\]: Connection closed by 85.209.0.251 port 64826 \[preauth\] ...	2020-09-10 21:01:15
174.138.27.165	attack	2020-09-10T11:45:49.392965vps1033 sshd[15550]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.27.165 2020-09-10T11:45:49.387630vps1033 sshd[15550]: Invalid user tomcat from 174.138.27.165 port 39180 2020-09-10T11:45:51.592138vps1033 sshd[15550]: Failed password for invalid user tomcat from 174.138.27.165 port 39180 ssh2 2020-09-10T11:49:51.067598vps1033 sshd[23864]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.27.165 user=root 2020-09-10T11:49:53.163294vps1033 sshd[23864]: Failed password for root from 174.138.27.165 port 40106 ssh2 ...	2020-09-10 21:26:35
222.186.175.217	attackbots	Sep 10 02:45:01 web9 sshd\[19465\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root Sep 10 02:45:04 web9 sshd\[19465\]: Failed password for root from 222.186.175.217 port 10202 ssh2 Sep 10 02:45:08 web9 sshd\[19465\]: Failed password for root from 222.186.175.217 port 10202 ssh2 Sep 10 02:45:11 web9 sshd\[19465\]: Failed password for root from 222.186.175.217 port 10202 ssh2 Sep 10 02:45:15 web9 sshd\[19465\]: Failed password for root from 222.186.175.217 port 10202 ssh2	2020-09-10 20:45:36
218.92.0.250	attack	detected by Fail2Ban	2020-09-10 20:51:58
222.186.30.35	attack	2020-09-10T15:53:52.158291lavrinenko.info sshd[22790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.35 user=root 2020-09-10T15:53:53.885355lavrinenko.info sshd[22790]: Failed password for root from 222.186.30.35 port 33373 ssh2 2020-09-10T15:53:52.158291lavrinenko.info sshd[22790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.35 user=root 2020-09-10T15:53:53.885355lavrinenko.info sshd[22790]: Failed password for root from 222.186.30.35 port 33373 ssh2 2020-09-10T15:53:56.087285lavrinenko.info sshd[22790]: Failed password for root from 222.186.30.35 port 33373 ssh2 ...	2020-09-10 20:59:26
58.59.17.74	attackspambots	Sep 10 19:56:04 webhost01 sshd[29314]: Failed password for root from 58.59.17.74 port 45996 ssh2 ...	2020-09-10 21:08:29
203.195.67.17	attackspam	TCP (SYN) 203.195.67.17:46826 -> port 17721, len 44	2020-09-10 21:27:42
54.37.71.204	attackspam	Triggered by Fail2Ban at Ares web server	2020-09-10 21:23:56
121.207.58.0	attackbotsspam	Sep 9 18:50:45 HOST sshd[23745]: reveeclipse mapping checking getaddrinfo for 0.58.207.121.broad.qz.fj.dynamic.163data.com.cn [121.207.58.0] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 9 18:50:45 HOST sshd[23745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.207.58.0 user=r.r Sep 9 18:50:47 HOST sshd[23745]: Failed password for r.r from 121.207.58.0 port 42218 ssh2 Sep 9 18:50:47 HOST sshd[23745]: Received disconnect from 121.207.58.0: 11: Bye Bye [preauth] Sep 9 18:56:20 HOST sshd[23863]: reveeclipse mapping checking getaddrinfo for 0.58.207.121.broad.qz.fj.dynamic.163data.com.cn [121.207.58.0] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 9 18:56:20 HOST sshd[23863]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.207.58.0 user=r.r Sep 9 18:56:22 HOST sshd[23863]: Failed password for r.r from 121.207.58.0 port 45517 ssh2 Sep 9 18:56:22 HOST sshd[23863]: Received disconnect from ........ -------------------------------	2020-09-10 20:54:40
157.245.54.200	attackspambots	Sep 10 10:25:30 root sshd[15315]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.54.200 ...	2020-09-10 21:07:38
218.92.0.224	attackspam	Sep 10 13:56:13 ajax sshd[32262]: Failed password for root from 218.92.0.224 port 33546 ssh2 Sep 10 13:56:17 ajax sshd[32262]: Failed password for root from 218.92.0.224 port 33546 ssh2	2020-09-10 21:05:16
35.200.180.182	attackbotsspam	35.200.180.182 - - [10/Sep/2020:10:33:56 +0200] "GET /wp-login.php HTTP/1.1" 200 9061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.200.180.182 - - [10/Sep/2020:10:33:59 +0200] "POST /wp-login.php HTTP/1.1" 200 9312 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.200.180.182 - - [10/Sep/2020:10:34:03 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-10 21:01:33
181.48.79.178	attack	$f2bV_matches	2020-09-10 21:09:22
218.92.0.173	attack	Sep 10 09:32:19 vps46666688 sshd[17920]: Failed password for root from 218.92.0.173 port 11312 ssh2 Sep 10 09:32:34 vps46666688 sshd[17920]: error: maximum authentication attempts exceeded for root from 218.92.0.173 port 11312 ssh2 [preauth] ...	2020-09-10 20:46:25
141.98.80.188	attackspam	Sep 10 14:55:08 relay postfix/smtpd\[14306\]: warning: unknown\[141.98.80.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 10 14:55:08 relay postfix/smtpd\[3956\]: warning: unknown\[141.98.80.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 10 14:55:08 relay postfix/smtpd\[4020\]: warning: unknown\[141.98.80.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 10 14:55:16 relay postfix/smtpd\[14304\]: warning: unknown\[141.98.80.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 10 14:55:16 relay postfix/smtpd\[4019\]: warning: unknown\[141.98.80.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 10 14:55:16 relay postfix/smtpd\[14305\]: warning: unknown\[141.98.80.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-10 20:57:08

最近上报的IP列表

128.199.102.212	36.7.81.165	177.43.39.39	179.0.123.186
42.230.212.134	149.34.63.62	187.216.81.183	201.194.149.180
197.255.128.125	43.129.43.11	125.99.220.253	115.76.181.162
176.57.64.199	203.205.141.111	221.14.172.166	14.184.169.14
220.198.204.178	111.22.246.9	54.219.62.66	36.37.224.52