41.243.20.68 - IPInfo

基本信息:

城市(city): Lubumbashi

省份(region): Haut-Katanga

国家(country): DR Congo

运营商(isp): Airtel

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.243.20.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43522
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;41.243.20.68.			IN	A

;; AUTHORITY SECTION:
.			185	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:08:56 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

68.20.243.41.in-addr.arpa domain name pointer 68-20-243-41.r.airtel.cd.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
68.20.243.41.in-addr.arpa	name = 68-20-243-41.r.airtel.cd.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
163.179.32.104	attack	Banned for posting to wp-login.php without referer {"testcookie":"1","redirect_to":"http:\/\/karenbataille.com\/wp-admin\/theme-install.php","wp-submit":"Log In","pwd":"admin","log":"admin"}	2019-07-07 12:04:39
167.99.161.15	attackspam	Jul 7 03:57:02 MK-Soft-VM6 sshd\[6199\]: Invalid user yaser from 167.99.161.15 port 38250 Jul 7 03:57:02 MK-Soft-VM6 sshd\[6199\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.161.15 Jul 7 03:57:04 MK-Soft-VM6 sshd\[6199\]: Failed password for invalid user yaser from 167.99.161.15 port 38250 ssh2 ...	2019-07-07 12:18:55
198.228.145.150	attack	Jul 7 02:44:36 pornomens sshd\[21602\]: Invalid user techsupport from 198.228.145.150 port 55626 Jul 7 02:44:36 pornomens sshd\[21602\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.228.145.150 Jul 7 02:44:38 pornomens sshd\[21602\]: Failed password for invalid user techsupport from 198.228.145.150 port 55626 ssh2 ...	2019-07-07 11:37:34
153.36.242.143	attackspam	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.143 user=root Failed password for root from 153.36.242.143 port 50906 ssh2 Failed password for root from 153.36.242.143 port 50906 ssh2 Failed password for root from 153.36.242.143 port 50906 ssh2 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.143 user=root	2019-07-07 12:25:51
183.131.82.99	attack	WordPress hacking :: 2019-07-06 20:42:38,891 fail2ban.actions [908]: NOTICE [sshd] Ban 183.131.82.99 2019-07-06 23:57:20,811 fail2ban.actions [908]: NOTICE [sshd] Ban 183.131.82.99 2019-07-07 00:34:02,475 fail2ban.actions [908]: NOTICE [sshd] Ban 183.131.82.99 2019-07-07 00:49:05,866 fail2ban.actions [908]: NOTICE [sshd] Ban 183.131.82.99 2019-07-07 05:21:24,303 fail2ban.actions [908]: NOTICE [sshd] Ban 183.131.82.99	2019-07-07 12:20:51
86.5.138.33	attackbots	Unauthorised access (Jul 7) SRC=86.5.138.33 LEN=44 TTL=53 ID=48020 TCP DPT=23 WINDOW=13875 SYN	2019-07-07 11:47:02
37.107.176.51	attack	Unauthorised access (Jul 7) SRC=37.107.176.51 LEN=40 TTL=53 ID=34924 TCP DPT=8080 WINDOW=15137 SYN Unauthorised access (Jul 7) SRC=37.107.176.51 LEN=40 TTL=53 ID=48502 TCP DPT=8080 WINDOW=15137 SYN Unauthorised access (Jul 7) SRC=37.107.176.51 LEN=40 TTL=53 ID=3738 TCP DPT=8080 WINDOW=15137 SYN	2019-07-07 12:14:24
147.135.207.193	attackspam	Automatic report - Web App Attack	2019-07-07 12:01:19
178.128.86.127	attack	detected by Fail2Ban	2019-07-07 12:26:17
111.230.66.65	attack	Jul 6 19:52:43 xb0 sshd[24757]: Failed password for invalid user ts3 from 111.230.66.65 port 34888 ssh2 Jul 6 19:52:44 xb0 sshd[24757]: Received disconnect from 111.230.66.65: 11: Bye Bye [preauth] Jul 6 20:05:48 xb0 sshd[17678]: Failed password for invalid user odoo from 111.230.66.65 port 40812 ssh2 Jul 6 20:05:48 xb0 sshd[17678]: Received disconnect from 111.230.66.65: 11: Bye Bye [preauth] Jul 6 20:12:41 xb0 sshd[23119]: Failed password for invalid user gerrhostname2 from 111.230.66.65 port 44956 ssh2 Jul 6 20:12:43 xb0 sshd[23119]: Received disconnect from 111.230.66.65: 11: Bye Bye [preauth] Jul 6 20:14:26 xb0 sshd[27792]: Connection closed by 111.230.66.65 [preauth] Jul 6 20:16:07 xb0 sshd[17615]: Connection closed by 111.230.66.65 [preauth] Jul 6 20:17:46 xb0 sshd[21450]: Failed password for invalid user qhsupport from 111.230.66.65 port 55082 ssh2 Jul 6 20:17:48 xb0 sshd[21450]: Received disconnect from 111.230.66.65: 11: Bye Bye [preauth] Jul 6 20:1........ -------------------------------	2019-07-07 11:32:15
176.10.54.34	attackbotsspam	2019-07-06T23:08:20.093Z CLOSE host=176.10.54.34 port=56526 fd=4 time=20.011 bytes=25 ...	2019-07-07 11:30:15
61.181.60.126	attack	DATE:2019-07-07 05:57:22, IP:61.181.60.126, PORT:1433 - MSSQL brute force auth on a honeypot server (epe-dc)	2019-07-07 12:13:56
185.254.122.23	attackbots	Jul 7 03:43:10 mail kernel: [2968840.114429] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=185.254.122.23 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=22388 PROTO=TCP SPT=45581 DPT=47881 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 7 03:43:26 mail kernel: [2968856.213313] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=185.254.122.23 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=17932 PROTO=TCP SPT=45581 DPT=36529 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 7 03:43:56 mail kernel: [2968885.925019] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=185.254.122.23 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=19677 PROTO=TCP SPT=45581 DPT=19186 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 7 03:45:00 mail kernel: [2968949.328506] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=185.254.122.23 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=46610 PROTO=TCP SPT=45581 DPT=57044 WINDOW=1024 RES=0	2019-07-07 12:21:43
62.86.180.77	attackspambots	DATE:2019-07-07 05:54:30, IP:62.86.180.77, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc-bis)	2019-07-07 12:18:25
95.182.120.138	attack	Unauthorized SSH login attempts	2019-07-07 11:46:15

最近上报的IP列表

139.162.22.61	139.162.220.221	139.162.220.59	139.162.220.25
139.162.220.32	139.162.221.108	139.162.220.46	139.162.221.49
139.162.220.72	139.162.222.118	139.162.222.155	139.162.221.57
118.212.107.203	139.162.222.231	139.162.223.208	139.162.223.156
139.162.223.6	139.162.223.163	118.212.107.204	139.162.222.66