2001:e68:506b:ed52:12be:f5ff:fe30:dff8

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Malaysia

运营商(isp): Telekom Malaysia Berhad

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2001:e68:506b:ed52:12be:f5ff:fe30:dff8
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31210
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2001:e68:506b:ed52:12be:f5ff:fe30:dff8.	IN A

;; AUTHORITY SECTION:
.			10800	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112000 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 100.100.2.136#53(100.100.2.136)
;; WHEN: Wed Nov 20 14:24:46 CST 2019
;; MSG SIZE  rcvd: 142

HOST信息:

Host 8.f.f.d.0.3.e.f.f.f.5.f.e.b.2.1.2.5.d.e.b.6.0.5.8.6.e.0.1.0.0.2.ip6.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 100.100.2.136, trying next server
;; Got SERVFAIL reply from 100.100.2.138, trying next server
Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 8.f.f.d.0.3.e.f.f.f.5.f.e.b.2.1.2.5.d.e.b.6.0.5.8.6.e.0.1.0.0.2.ip6.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
193.32.160.136	attackbots	SPAM Delivery Attempt	2019-09-08 06:00:55
218.98.26.169	attack	Sep 8 04:27:17 webhost01 sshd[2447]: Failed password for root from 218.98.26.169 port 40296 ssh2 ...	2019-09-08 05:28:09
183.167.238.124	attack	Brute force attempt	2019-09-08 05:52:42
192.160.102.169	attackbots	langenachtfulda.de:80 192.160.102.169 - - \[07/Sep/2019:12:39:07 +0200\] "POST /xmlrpc.php HTTP/1.0" 301 503 "-" "Mozilla/5.0 \(X11\; Linux x86_64\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/67.0.3396.99 Safari/537.36" langenachtfulda.de 192.160.102.169 \[07/Sep/2019:12:39:09 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 3777 "-" "Mozilla/5.0 \(X11\; Linux x86_64\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/67.0.3396.99 Safari/537.36"	2019-09-08 05:31:07
80.14.88.33	attackspambots	2019-09-07 05:34:03 H=lstlambert-656-1-221-33.w80-14.abo.wanadoo.fr [80.14.88.33]:37209 I=[192.147.25.65]:25 F=<0901dd06000171d2@schorch.de> rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.11) (https://www.spamhaus.org/query/ip/80.14.88.33) 2019-09-07 05:38:48 H=lstlambert-656-1-221-33.w80-14.abo.wanadoo.fr [80.14.88.33]:47352 I=[192.147.25.65]:25 sender verify fail for : Unrouteable address 2019-09-07 05:38:48 H=lstlambert-656-1-221-33.w80-14.abo.wanadoo.fr [80.14.88.33]:47352 I=[192.147.25.65]:25 F= rejected RCPT : Sender verify failed ...	2019-09-08 05:36:49
193.93.195.26	attack	NAME : BTT-Group-Finance-LTD-Network + e-mail abuse : abuse@pinspb.ru CIDR : 193.93.195.0/24 \| STATUS : 403 {Looking for resource vulnerabilities} DDoS Attack NL - block certain countries :) IP: 193.93.195.26 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-09-08 06:06:37
78.243.166.39	attackbots	Lines containing failures of 78.243.166.39 (max 1000) Sep 7 10:46:50 localhost sshd[22993]: Invalid user pi from 78.243.166.39 port 58166 Sep 7 10:46:50 localhost sshd[22995]: Invalid user pi from 78.243.166.39 port 58168 Sep 7 10:46:50 localhost sshd[22993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.243.166.39 Sep 7 10:46:51 localhost sshd[22995]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.243.166.39 Sep 7 10:46:53 localhost sshd[22993]: Failed password for invalid user pi from 78.243.166.39 port 58166 ssh2 Sep 7 10:46:54 localhost sshd[22995]: Failed password for invalid user pi from 78.243.166.39 port 58168 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=78.243.166.39	2019-09-08 05:37:14
221.202.195.40	attackspam	Sep 7 12:41:11 web1 sshd[22378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.202.195.40 user=r.r Sep 7 12:41:13 web1 sshd[22378]: Failed password for r.r from 221.202.195.40 port 34709 ssh2 Sep 7 12:41:15 web1 sshd[22378]: Failed password for r.r from 221.202.195.40 port 34709 ssh2 Sep 7 12:41:17 web1 sshd[22378]: Failed password for r.r from 221.202.195.40 port 34709 ssh2 Sep 7 12:41:20 web1 sshd[22378]: Failed password for r.r from 221.202.195.40 port 34709 ssh2 Sep 7 12:41:23 web1 sshd[22378]: Failed password for r.r from 221.202.195.40 port 34709 ssh2 Sep 7 12:41:25 web1 sshd[22378]: Failed password for r.r from 221.202.195.40 port 34709 ssh2 Sep 7 12:41:25 web1 sshd[22378]: PAM 5 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.202.195.40 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=221.202.195.40	2019-09-08 05:27:48
146.88.74.158	attack	2019-09-07T21:53:43.131906abusebot-2.cloudsearch.cf sshd\[520\]: Invalid user 12345 from 146.88.74.158 port 41375	2019-09-08 06:10:43
139.59.25.3	attackspam	Sep 7 17:48:59 xtremcommunity sshd\[53599\]: Invalid user support from 139.59.25.3 port 37836 Sep 7 17:48:59 xtremcommunity sshd\[53599\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.25.3 Sep 7 17:49:01 xtremcommunity sshd\[53599\]: Failed password for invalid user support from 139.59.25.3 port 37836 ssh2 Sep 7 17:53:59 xtremcommunity sshd\[53786\]: Invalid user ftp_test from 139.59.25.3 port 53614 Sep 7 17:53:59 xtremcommunity sshd\[53786\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.25.3 ...	2019-09-08 05:55:34
176.31.170.245	attackspam	Sep 7 23:49:51 OPSO sshd\[24214\]: Invalid user ts from 176.31.170.245 port 42904 Sep 7 23:49:51 OPSO sshd\[24214\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.170.245 Sep 7 23:49:54 OPSO sshd\[24214\]: Failed password for invalid user ts from 176.31.170.245 port 42904 ssh2 Sep 7 23:53:49 OPSO sshd\[24972\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.170.245 user=admin Sep 7 23:53:52 OPSO sshd\[24972\]: Failed password for admin from 176.31.170.245 port 60178 ssh2	2019-09-08 06:01:22
68.183.23.254	attackbotsspam	2019-09-07T20:21:25.403424abusebot-5.cloudsearch.cf sshd\[13999\]: Invalid user uftp@123 from 68.183.23.254 port 42030	2019-09-08 05:38:34
27.254.136.29	attackbots	Sep 7 21:48:32 hcbbdb sshd\[32580\]: Invalid user postgres from 27.254.136.29 Sep 7 21:48:32 hcbbdb sshd\[32580\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.136.29 Sep 7 21:48:34 hcbbdb sshd\[32580\]: Failed password for invalid user postgres from 27.254.136.29 port 50662 ssh2 Sep 7 21:53:50 hcbbdb sshd\[741\]: Invalid user ts3 from 27.254.136.29 Sep 7 21:53:50 hcbbdb sshd\[741\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.136.29	2019-09-08 06:03:53
201.6.98.14	attack	Sep 7 04:45:35 hanapaa sshd\[1631\]: Invalid user diradmin from 201.6.98.14 Sep 7 04:45:35 hanapaa sshd\[1631\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.6.98.14 Sep 7 04:45:38 hanapaa sshd\[1631\]: Failed password for invalid user diradmin from 201.6.98.14 port 31551 ssh2 Sep 7 04:52:11 hanapaa sshd\[2677\]: Invalid user vncuser123 from 201.6.98.14 Sep 7 04:52:11 hanapaa sshd\[2677\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.6.98.14	2019-09-08 05:30:39
37.73.170.113	attack	Sep 7 19:16:41 our-server-hostname postfix/smtpd[19630]: connect from unknown[37.73.170.113] Sep 7 19:16:47 our-server-hostname sqlgrey: grey: new: 37.73.170.113(37.73.170.113), x@x -> x@x Sep 7 19:16:47 our-server-hostname postfix/policy-spf[21472]: : Policy action=550 Please see hxxp://www.openspf.org/Why?s=mfrom;id=erock%40apex.net.au;ip=37.73.170.113;r=mx1.cbr.spam-filtering-appliance Sep x@x Sep 7 19:16:48 our-server-hostname postfix/smtpd[19630]: lost connection after DATA from unknown[37.73.170.113] Sep 7 19:16:48 our-server-hostname postfix/smtpd[19630]: disconnect from unknown[37.73.170.113] Sep 7 19:17:10 our-server-hostname postfix/smtpd[18959]: connect from unknown[37.73.170.113] Sep 7 19:17:11 our-server-hostname sqlgrey: grey: new: 37.73.170.113(37.73.170.113), x@x -> x@x Sep 7 19:17:12 our-server-hostname postfix/policy-spf[21724]: : Policy action=550 Please see hxxp://www.openspf.org/Why?s=mfrom;id=erocki%40apex.net.au;ip=37.73.170.113;r=mx1.cbr........ -------------------------------	2019-09-08 05:39:35

最近上报的IP列表

170.106.38.190	128.71.133.27	103.248.223.27	177.75.137.91
170.78.39.100	110.143.73.133	36.4.85.234	89.139.97.18
113.172.111.64	106.13.1.214	61.2.130.202	188.235.146.72
78.188.61.92	59.74.70.69	182.244.168.81	115.212.20.33
90.188.10.225	49.85.249.87	36.81.106.169	222.79.58.225