39.68.63.169 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Shandong Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorised access (Sep 7) SRC=39.68.63.169 LEN=40 TTL=49 ID=38370 TCP DPT=8080 WINDOW=47184 SYN Unauthorised access (Sep 6) SRC=39.68.63.169 LEN=40 TTL=49 ID=3226 TCP DPT=8080 WINDOW=52768 SYN Unauthorised access (Sep 4) SRC=39.68.63.169 LEN=40 TTL=49 ID=42592 TCP DPT=8080 WINDOW=52768 SYN Unauthorised access (Sep 4) SRC=39.68.63.169 LEN=40 TTL=49 ID=6109 TCP DPT=8080 WINDOW=47184 SYN Unauthorised access (Sep 4) SRC=39.68.63.169 LEN=40 TTL=46 ID=10812 TCP DPT=8080 WINDOW=52768 SYN Unauthorised access (Sep 3) SRC=39.68.63.169 LEN=40 TTL=49 ID=8190 TCP DPT=8080 WINDOW=47184 SYN Unauthorised access (Sep 3) SRC=39.68.63.169 LEN=40 TTL=49 ID=8338 TCP DPT=8080 WINDOW=52768 SYN	2019-09-07 15:20:37

类型

评论内容

时间

attack

Unauthorised access (Sep  7) SRC=39.68.63.169 LEN=40 TTL=49 ID=38370 TCP DPT=8080 WINDOW=47184 SYN 
Unauthorised access (Sep  6) SRC=39.68.63.169 LEN=40 TTL=49 ID=3226 TCP DPT=8080 WINDOW=52768 SYN 
Unauthorised access (Sep  4) SRC=39.68.63.169 LEN=40 TTL=49 ID=42592 TCP DPT=8080 WINDOW=52768 SYN 
Unauthorised access (Sep  4) SRC=39.68.63.169 LEN=40 TTL=49 ID=6109 TCP DPT=8080 WINDOW=47184 SYN 
Unauthorised access (Sep  4) SRC=39.68.63.169 LEN=40 TTL=46 ID=10812 TCP DPT=8080 WINDOW=52768 SYN 
Unauthorised access (Sep  3) SRC=39.68.63.169 LEN=40 TTL=49 ID=8190 TCP DPT=8080 WINDOW=47184 SYN 
Unauthorised access (Sep  3) SRC=39.68.63.169 LEN=40 TTL=49 ID=8338 TCP DPT=8080 WINDOW=52768 SYN

2019-09-07 15:20:37

相同子网IP讨论:

IP	类型	评论内容	时间
39.68.63.117	attackspambots	firewall-block, port(s): 8080/tcp	2019-08-15 17:33:53

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 39.68.63.169
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39164
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;39.68.63.169.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Sep 07 15:20:27 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 169.63.68.39.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 169.63.68.39.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
15.206.38.76	attackspam	ssh brute force	2020-01-24 19:49:25
124.43.17.89	attackspambots	20/1/23@23:52:21: FAIL: Alarm-Network address from=124.43.17.89 ...	2020-01-24 19:49:40
49.88.160.22	attack	Jan 24 05:52:18 grey postfix/smtpd\[13054\]: NOQUEUE: reject: RCPT from unknown\[49.88.160.22\]: 554 5.7.1 Service unavailable\; Client host \[49.88.160.22\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[49.88.160.22\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-01-24 19:52:12
106.12.178.82	attackbotsspam	Unauthorized connection attempt detected from IP address 106.12.178.82 to port 2220 [J]	2020-01-24 19:37:35
152.136.37.135	attack	SSH Brute Force	2020-01-24 19:55:47
106.12.21.212	attack	Unauthorized connection attempt detected from IP address 106.12.21.212 to port 2220 [J]	2020-01-24 19:20:56
222.186.175.217	attackspambots	Jan 24 12:11:59 srv206 sshd[15779]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root Jan 24 12:12:00 srv206 sshd[15779]: Failed password for root from 222.186.175.217 port 42108 ssh2 ...	2020-01-24 19:20:06
201.244.64.146	attackbots	Jan 23 21:07:23 mockhub sshd[18489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.244.64.146 Jan 23 21:07:25 mockhub sshd[18489]: Failed password for invalid user thomas from 201.244.64.146 port 54263 ssh2 ...	2020-01-24 19:49:55
159.65.5.173	attackspam	ssh bruteforce [3 failed attempts]	2020-01-24 19:35:12
191.110.136.26	attackbotsspam	port scan and connect, tcp 23 (telnet)	2020-01-24 19:37:17
95.110.226.103	attackbots	Invalid user master from 95.110.226.103 port 46252	2020-01-24 19:29:30
51.79.84.138	attackspambots	Jan 24 12:20:46 sd-53420 sshd\[4933\]: User root from 51.79.84.138 not allowed because none of user's groups are listed in AllowGroups Jan 24 12:20:46 sd-53420 sshd\[4933\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.84.138 user=root Jan 24 12:20:48 sd-53420 sshd\[4933\]: Failed password for invalid user root from 51.79.84.138 port 33646 ssh2 Jan 24 12:25:24 sd-53420 sshd\[5700\]: User root from 51.79.84.138 not allowed because none of user's groups are listed in AllowGroups Jan 24 12:25:24 sd-53420 sshd\[5700\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.84.138 user=root ...	2020-01-24 19:27:05
45.82.34.212	attack	Autoban 45.82.34.212 AUTH/CONNECT	2020-01-24 19:16:41
121.121.58.21	attack	TCP port 1347: Scan and connection	2020-01-24 19:55:29
222.184.101.98	attackbots	Jan 24 11:16:51 sigma sshd\[13003\]: Invalid user ftpuser from 222.184.101.98Jan 24 11:16:54 sigma sshd\[13003\]: Failed password for invalid user ftpuser from 222.184.101.98 port 12527 ssh2 ...	2020-01-24 19:25:45

最近上报的IP列表

221.131.94.144	203.49.174.159	206.239.201.38	117.193.42.200
195.34.235.202	102.120.179.97	49.83.95.96	80.211.247.136
86.55.243.203	72.59.104.111	17.79.99.68	201.44.229.37
74.97.53.55	202.205.60.216	1.162.191.87	16.105.4.34
140.86.95.170	126.139.232.186	108.189.174.168	36.177.33.82