51.68.80.29 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): France

运营商(isp): OVH SAS

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	2019-10-19T12:41:47.174843shield sshd\[1914\]: Invalid user atlbitbucket from 51.68.80.29 port 55200 2019-10-19T12:41:47.180775shield sshd\[1914\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.80.29 2019-10-19T12:41:49.675617shield sshd\[1914\]: Failed password for invalid user atlbitbucket from 51.68.80.29 port 55200 ssh2 2019-10-19T12:42:06.800918shield sshd\[1952\]: Invalid user peter from 51.68.80.29 port 51624 2019-10-19T12:42:06.805102shield sshd\[1952\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.80.29	2019-10-20 00:21:01
attackspambots	2019-09-12T03:00:58.631158abusebot-8.cloudsearch.cf sshd\[3386\]: Invalid user csgo from 51.68.80.29 port 55968	2019-09-12 11:19:51

类型

评论内容

时间

attackspambots

2019-10-19T12:41:47.174843shield sshd\[1914\]: Invalid user atlbitbucket from 51.68.80.29 port 55200
2019-10-19T12:41:47.180775shield sshd\[1914\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.80.29
2019-10-19T12:41:49.675617shield sshd\[1914\]: Failed password for invalid user atlbitbucket from 51.68.80.29 port 55200 ssh2
2019-10-19T12:42:06.800918shield sshd\[1952\]: Invalid user peter from 51.68.80.29 port 51624
2019-10-19T12:42:06.805102shield sshd\[1952\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.80.29

2019-10-20 00:21:01

attackspambots

2019-09-12T03:00:58.631158abusebot-8.cloudsearch.cf sshd\[3386\]: Invalid user csgo from 51.68.80.29 port 55968

2019-09-12 11:19:51

相同子网IP讨论:

IP	类型	评论内容	时间
51.68.80.255	attackbotsspam	web-1 [ssh] SSH Attack	2020-08-26 01:24:43

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 51.68.80.29
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20392
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;51.68.80.29.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091102 1800 900 604800 86400

;; Query time: 82 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Sep 12 11:19:45 CST 2019
;; MSG SIZE  rcvd: 115

HOST信息:

Host 29.80.68.51.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 29.80.68.51.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
223.197.151.55	attack	2019-11-02T12:00:53.622979suse-nuc sshd[22372]: Invalid user warlocks from 223.197.151.55 port 42372 ...	2020-02-07 10:11:20
31.206.49.89	attackbotsspam	Feb 6 20:53:26 grey postfix/smtpd\[31309\]: NOQUEUE: reject: RCPT from unknown\[31.206.49.89\]: 554 5.7.1 Service unavailable\; Client host \[31.206.49.89\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[31.206.49.89\]\; from=\ to=\ proto=ESMTP helo=\<\[31.206.49.89\]\> ...	2020-02-07 10:16:01
36.66.154.143	attackspam	Feb 7 03:14:42 dcd-gentoo sshd[11872]: Invalid user toor from 36.66.154.143 port 56432 Feb 7 03:14:45 dcd-gentoo sshd[11881]: Invalid user toor from 36.66.154.143 port 57464 Feb 7 03:14:48 dcd-gentoo sshd[11890]: Invalid user toor from 36.66.154.143 port 58112 ...	2020-02-07 10:17:34
60.250.71.25	attackspam	lfd: (smtpauth) Failed SMTP AUTH login from 60.250.71.25 (60-250-71-25.HINET-IP.hinet.net): 5 in the last 3600 secs - Mon Dec 17 03:02:29 2018	2020-02-07 10:05:33
45.125.65.122	attack	Brute force blocker - service: exim2 - aantal: 25 - Sun Dec 16 11:20:15 2018	2020-02-07 10:08:12
103.134.0.52	attackspam	Feb 6 16:53:41 firewall sshd[1827]: Invalid user admin from 103.134.0.52 Feb 6 16:53:43 firewall sshd[1827]: Failed password for invalid user admin from 103.134.0.52 port 46765 ssh2 Feb 6 16:53:48 firewall sshd[1831]: Invalid user admin from 103.134.0.52 ...	2020-02-07 09:45:05
222.186.173.238	attack	Feb 7 01:43:37 124388 sshd[14842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.238 user=root Feb 7 01:43:39 124388 sshd[14842]: Failed password for root from 222.186.173.238 port 56954 ssh2 Feb 7 01:43:57 124388 sshd[14842]: error: maximum authentication attempts exceeded for root from 222.186.173.238 port 56954 ssh2 [preauth] Feb 7 01:44:02 124388 sshd[14844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.238 user=root Feb 7 01:44:04 124388 sshd[14844]: Failed password for root from 222.186.173.238 port 45800 ssh2	2020-02-07 09:55:34
108.162.210.233	attack	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-02-07 10:15:40
94.233.233.166	attack	lfd: (smtpauth) Failed SMTP AUTH login from 94.233.233.166 (-): 5 in the last 3600 secs - Sun Dec 16 14:33:43 2018	2020-02-07 10:03:11
112.85.42.178	attackspambots	Feb 7 03:05:33 dedicated sshd[2945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.178 user=root Feb 7 03:05:35 dedicated sshd[2945]: Failed password for root from 112.85.42.178 port 2209 ssh2	2020-02-07 10:12:22
103.89.168.196	attack	Brute force attempt	2020-02-07 10:01:32
87.110.181.30	attackspambots	Feb 6 22:40:21 sd-53420 sshd\[7576\]: Invalid user jbk from 87.110.181.30 Feb 6 22:40:21 sd-53420 sshd\[7576\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.110.181.30 Feb 6 22:40:23 sd-53420 sshd\[7576\]: Failed password for invalid user jbk from 87.110.181.30 port 37370 ssh2 Feb 6 22:43:07 sd-53420 sshd\[7854\]: Invalid user mxr from 87.110.181.30 Feb 6 22:43:07 sd-53420 sshd\[7854\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.110.181.30 ...	2020-02-07 09:45:30
103.253.42.60	attackspambots	Brute force blocker - service: exim2 - aantal: 25 - Sun Dec 16 07:55:14 2018	2020-02-07 10:09:17
45.125.65.124	attackspam	Brute force blocker - service: exim2 - aantal: 25 - Sun Dec 16 11:25:15 2018	2020-02-07 10:06:54
114.223.211.181	attackbots	lfd: (smtpauth) Failed SMTP AUTH login from 114.223.211.181 (CN/China/181.211.223.114.broad.wx.js.dynamic.163data.com.cn): 5 in the last 3600 secs - Mon Dec 17 17:06:49 2018	2020-02-07 09:58:42

最近上报的IP列表

200.131.23.2	143.135.29.96	171.240.120.8	166.127.44.167
192.95.55.88	182.113.48.225	185.219.168.17	200.11.83.178
93.90.146.109	61.147.59.111	184.22.76.154	39.121.29.7
58.82.189.25	47.129.230.227	39.110.106.16	211.159.169.78
180.125.210.181	59.62.7.99	163.207.88.2	37.70.27.218