39.68.116.41 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Shandong Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Fail2Ban - FTP Abuse Attempt	2020-01-30 13:19:03

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 39.68.116.41
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29126
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;39.68.116.41.			IN	A

;; AUTHORITY SECTION:
.			438	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020013000 1800 900 604800 86400

;; Query time: 123 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 30 13:19:00 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 41.116.68.39.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 41.116.68.39.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
112.85.42.172	attack	May 2 06:45:07 santamaria sshd\[19397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.172 user=root May 2 06:45:08 santamaria sshd\[19397\]: Failed password for root from 112.85.42.172 port 11323 ssh2 May 2 06:45:20 santamaria sshd\[19397\]: Failed password for root from 112.85.42.172 port 11323 ssh2 ...	2020-05-02 12:49:08
211.253.24.250	attackbotsspam	May 2 05:57:54 nextcloud sshd\[32372\]: Invalid user william from 211.253.24.250 May 2 05:57:54 nextcloud sshd\[32372\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.253.24.250 May 2 05:57:56 nextcloud sshd\[32372\]: Failed password for invalid user william from 211.253.24.250 port 41944 ssh2	2020-05-02 12:47:47
212.67.0.150	attackbotsspam	Dovecot Invalid User Login Attempt.	2020-05-02 12:53:05
111.230.236.93	attackbotsspam	May 2 06:36:34 host sshd[30321]: Invalid user miner from 111.230.236.93 port 45380 ...	2020-05-02 12:37:50
185.234.217.48	attack	May 2 05:32:18 web01.agentur-b-2.de postfix/smtpd[976089]: warning: unknown[185.234.217.48]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 2 05:32:18 web01.agentur-b-2.de postfix/smtpd[976089]: lost connection after AUTH from unknown[185.234.217.48] May 2 05:35:23 web01.agentur-b-2.de postfix/smtpd[976089]: warning: unknown[185.234.217.48]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 2 05:35:23 web01.agentur-b-2.de postfix/smtpd[976089]: lost connection after AUTH from unknown[185.234.217.48] May 2 05:41:32 web01.agentur-b-2.de postfix/smtpd[978764]: warning: unknown[185.234.217.48]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 May 2 05:41:32 web01.agentur-b-2.de postfix/smtpd[978764]: lost connection after AUTH from unknown[185.234.217.48]	2020-05-02 12:19:46
49.232.129.191	attackspambots	May 1 18:20:16 php1 sshd\[9417\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.129.191 user=root May 1 18:20:18 php1 sshd\[9417\]: Failed password for root from 49.232.129.191 port 43774 ssh2 May 1 18:21:53 php1 sshd\[9512\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.129.191 user=root May 1 18:21:55 php1 sshd\[9512\]: Failed password for root from 49.232.129.191 port 60468 ssh2 May 1 18:28:14 php1 sshd\[10040\]: Invalid user ching from 49.232.129.191	2020-05-02 12:47:20
177.189.244.193	attack	May 2 06:27:29 MainVPS sshd[23507]: Invalid user info from 177.189.244.193 port 44932 May 2 06:27:29 MainVPS sshd[23507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.189.244.193 May 2 06:27:29 MainVPS sshd[23507]: Invalid user info from 177.189.244.193 port 44932 May 2 06:27:31 MainVPS sshd[23507]: Failed password for invalid user info from 177.189.244.193 port 44932 ssh2 May 2 06:34:27 MainVPS sshd[29998]: Invalid user zak from 177.189.244.193 port 59809 ...	2020-05-02 12:37:07
169.38.96.39	attackbots	May 1 12:49:46 ntop sshd[4737]: Did not receive identification string from 169.38.96.39 port 44906 May 1 12:51:48 ntop sshd[5687]: User r.r from 169.38.96.39 not allowed because not listed in AllowUsers May 1 12:51:48 ntop sshd[5687]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=169.38.96.39 user=r.r May 1 12:51:50 ntop sshd[5687]: Failed password for invalid user r.r from 169.38.96.39 port 59478 ssh2 May 1 12:51:51 ntop sshd[5687]: Received disconnect from 169.38.96.39 port 59478:11: Normal Shutdown, Thank you for playing [preauth] May 1 12:51:51 ntop sshd[5687]: Disconnected from invalid user r.r 169.38.96.39 port 59478 [preauth] May 1 12:54:51 ntop sshd[7443]: User r.r from 169.38.96.39 not allowed because not listed in AllowUsers May 1 12:54:51 ntop sshd[7443]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=169.38.96.39 user=r.r May 1 12:54:53 ntop sshd[7443]: Failed passw........ -------------------------------	2020-05-02 12:54:19
156.96.56.140	spam	Sending out 419 type spam emails from IP 156.96.56.140 "Do you need a loan to finance your project? Do you need an urgent loan to pay off your debts? Do you need a loan to expand or create your own business? Do you need a personal loan during this pandemic? We offer All kinds of loans at 5% interest for a period of 1-25 years.We also grant a one year period of grace before repayment begins. If you are interested, please feel free to contact us by Email:"	2020-05-02 12:35:43
163.172.183.250	attack	2020-05-02T06:08:09.254313vps773228.ovh.net sshd[7561]: Invalid user mei from 163.172.183.250 port 35126 2020-05-02T06:08:09.268350vps773228.ovh.net sshd[7561]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.183.250 2020-05-02T06:08:09.254313vps773228.ovh.net sshd[7561]: Invalid user mei from 163.172.183.250 port 35126 2020-05-02T06:08:11.498571vps773228.ovh.net sshd[7561]: Failed password for invalid user mei from 163.172.183.250 port 35126 ssh2 2020-05-02T06:09:08.318932vps773228.ovh.net sshd[7563]: Invalid user valere from 163.172.183.250 port 50642 ...	2020-05-02 12:16:45
103.195.238.155	attack	port scan and connect, tcp 1433 (ms-sql-s)	2020-05-02 12:41:44
151.80.141.109	attack	SSH Bruteforce attack	2020-05-02 12:45:00
121.17.210.61	attackbots	CPHulk brute force detection (a)	2020-05-02 12:43:50
185.173.35.25	attackspambots	05/01/2020-23:58:09.766283 185.173.35.25 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-05-02 12:36:31
123.206.9.241	attackspam	21 attempts against mh-ssh on cloud	2020-05-02 12:41:17

最近上报的IP列表

183.161.227.43	182.110.117.218	182.110.117.83	182.34.37.222
4.72.24.1	180.106.197.120	133.186.82.225	122.236.215.68
121.205.177.104	117.71.169.184	117.71.165.77	117.63.26.168
116.149.193.5	112.123.40.216	101.205.151.170	101.205.148.109
60.172.75.63	59.168.113.60	59.33.116.221	58.241.203.205