52.68.160.111 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Japan

运营商(isp): Amazon Data Services Japan

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Port probing on unauthorized port 3389	2020-06-18 01:27:47

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.68.160.111
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46889
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;52.68.160.111.			IN	A

;; AUTHORITY SECTION:
.			243	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061701 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 18 01:27:41 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

111.160.68.52.in-addr.arpa domain name pointer ec2-52-68-160-111.ap-northeast-1.compute.amazonaws.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
111.160.68.52.in-addr.arpa	name = ec2-52-68-160-111.ap-northeast-1.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
36.89.146.252	attackspam	Aug 27 10:59:23 dev0-dcfr-rnet sshd[4189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.89.146.252 Aug 27 10:59:25 dev0-dcfr-rnet sshd[4189]: Failed password for invalid user spam from 36.89.146.252 port 61864 ssh2 Aug 27 11:04:24 dev0-dcfr-rnet sshd[4236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.89.146.252	2019-08-28 00:00:34
37.139.21.75	attackspam	Aug 27 16:48:48 ArkNodeAT sshd\[12264\]: Invalid user marketing1 from 37.139.21.75 Aug 27 16:48:48 ArkNodeAT sshd\[12264\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.21.75 Aug 27 16:48:51 ArkNodeAT sshd\[12264\]: Failed password for invalid user marketing1 from 37.139.21.75 port 51834 ssh2	2019-08-27 23:02:27
27.254.137.144	attack	Aug 27 03:32:11 php1 sshd\[520\]: Invalid user git from 27.254.137.144 Aug 27 03:32:11 php1 sshd\[520\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.137.144 Aug 27 03:32:13 php1 sshd\[520\]: Failed password for invalid user git from 27.254.137.144 port 43112 ssh2 Aug 27 03:37:07 php1 sshd\[902\]: Invalid user squid from 27.254.137.144 Aug 27 03:37:07 php1 sshd\[902\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.137.144	2019-08-27 23:45:19
2.139.176.35	attackbots	Aug 27 15:33:15 mail sshd\[15213\]: Failed password for invalid user nagios from 2.139.176.35 port 53101 ssh2 Aug 27 15:49:32 mail sshd\[15461\]: Invalid user msmith from 2.139.176.35 port 32265 ...	2019-08-27 22:55:35
201.116.244.177	attackbots	Unauthorized connection attempt from IP address 201.116.244.177 on Port 445(SMB)	2019-08-27 23:17:37
98.13.12.86	attack	naichi ping	2019-08-27 23:24:12
132.232.181.252	attackbots	Aug 27 15:24:55 microserver sshd[28758]: Invalid user fanadmin from 132.232.181.252 port 40972 Aug 27 15:24:55 microserver sshd[28758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.181.252 Aug 27 15:24:58 microserver sshd[28758]: Failed password for invalid user fanadmin from 132.232.181.252 port 40972 ssh2 Aug 27 15:31:18 microserver sshd[29911]: Invalid user ser from 132.232.181.252 port 57810 Aug 27 15:31:18 microserver sshd[29911]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.181.252 Aug 27 15:43:24 microserver sshd[31344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.181.252 user=root Aug 27 15:43:26 microserver sshd[31344]: Failed password for root from 132.232.181.252 port 34950 ssh2 Aug 27 15:49:10 microserver sshd[31994]: Invalid user sofia from 132.232.181.252 port 51746 Aug 27 15:49:10 microserver sshd[31994]: pam_unix(sshd:auth): authentication f	2019-08-27 23:52:30
222.254.247.145	attack	Unauthorized connection attempt from IP address 222.254.247.145 on Port 445(SMB)	2019-08-27 22:47:02
209.97.163.62	attackspam	Aug 27 01:21:08 php1 sshd\[21671\]: Invalid user jaimie from 209.97.163.62 Aug 27 01:21:08 php1 sshd\[21671\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.163.62 Aug 27 01:21:09 php1 sshd\[21671\]: Failed password for invalid user jaimie from 209.97.163.62 port 37926 ssh2 Aug 27 01:26:06 php1 sshd\[22222\]: Invalid user ds from 209.97.163.62 Aug 27 01:26:06 php1 sshd\[22222\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.163.62	2019-08-27 23:10:04
223.27.104.8	attack	Unauthorized connection attempt from IP address 223.27.104.8 on Port 445(SMB)	2019-08-27 23:34:08
200.196.249.170	attackbots	Aug 27 04:26:50 tdfoods sshd\[5497\]: Invalid user nagios from 200.196.249.170 Aug 27 04:26:50 tdfoods sshd\[5497\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.196.249.170 Aug 27 04:26:52 tdfoods sshd\[5497\]: Failed password for invalid user nagios from 200.196.249.170 port 47406 ssh2 Aug 27 04:32:10 tdfoods sshd\[5927\]: Invalid user kasia from 200.196.249.170 Aug 27 04:32:10 tdfoods sshd\[5927\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.196.249.170	2019-08-27 23:24:55
211.159.157.252	attackbots	404 NOT FOUND	2019-08-27 22:56:20
27.0.141.4	attackspambots	Aug 27 12:37:08 SilenceServices sshd[18783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.0.141.4 Aug 27 12:37:10 SilenceServices sshd[18783]: Failed password for invalid user mel from 27.0.141.4 port 33592 ssh2 Aug 27 12:41:46 SilenceServices sshd[20666]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.0.141.4	2019-08-27 23:26:49
183.215.121.30	attackspambots	port scan and connect, tcp 1433 (ms-sql-s)	2019-08-27 22:53:34
219.140.198.51	attack	(sshd) Failed SSH login from 219.140.198.51 (-): 5 in the last 3600 secs	2019-08-27 22:58:37

最近上报的IP列表

203.80.21.38	134.90.169.7	17.254.15.27	197.36.214.12
11.1.230.125	190.233.206.175	242.23.22.74	0.127.162.33
190.226.244.10	185.243.56.121	184.22.140.186	172.247.178.85
152.136.30.149	151.245.193.223	139.219.57.221	137.117.67.63
114.188.40.129	113.161.176.157	54.186.248.126	49.14.109.153