68.94.156.58 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): AT&T

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

b'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 68.94.156.58
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50991
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;68.94.156.58.			IN	A

;; Query time: 1 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Sat Jun 26 17:42:58 CST 2021
;; MSG SIZE  rcvd: 41

'

HOST信息:

Host 58.156.94.68.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 58.156.94.68.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
116.196.124.159	attackbots	Oct 5 14:25:45 mockhub sshd[554323]: Failed password for root from 116.196.124.159 port 41889 ssh2 Oct 5 14:28:31 mockhub sshd[554420]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.124.159 user=root Oct 5 14:28:33 mockhub sshd[554420]: Failed password for root from 116.196.124.159 port 37371 ssh2 ...	2020-10-06 14:34:30
103.83.38.233	attack	Automatic report BANNED IP	2020-10-06 14:30:22
108.188.199.237	attackspambots	Automatic report - Banned IP Access	2020-10-06 14:37:20
183.136.225.45	attackbots	srvr2: (mod_security) mod_security (id:920350) triggered by 183.136.225.45 (US/-/-): 1 in the last 600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/10/06 08:27:34 [error] 680602#0: 454946 [client 183.136.225.45] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "160196565460.143806"] [ref "o0,16v21,16"], client: 183.136.225.45, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-10-06 14:36:16
103.223.8.129	attack	DATE:2020-10-05 22:40:16, IP:103.223.8.129, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-10-06 14:01:16
188.166.247.82	attackbotsspam	Failed password for root from 188.166.247.82 port 58982 ssh2	2020-10-06 14:32:25
132.232.232.182	attack	Lines containing failures of 132.232.232.182 Oct 5 21:11:15 shared12 sshd[9944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.232.182 user=r.r Oct 5 21:11:17 shared12 sshd[9944]: Failed password for r.r from 132.232.232.182 port 39152 ssh2 Oct 5 21:11:17 shared12 sshd[9944]: Received disconnect from 132.232.232.182 port 39152:11: Bye Bye [preauth] Oct 5 21:11:17 shared12 sshd[9944]: Disconnected from authenticating user r.r 132.232.232.182 port 39152 [preauth] Oct 5 22:07:48 shared12 sshd[32535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.232.182 user=r.r Oct 5 22:07:50 shared12 sshd[32535]: Failed password for r.r from 132.232.232.182 port 46052 ssh2 Oct 5 22:07:51 shared12 sshd[32535]: Received disconnect from 132.232.232.182 port 46052:11: Bye Bye [preauth] Oct 5 22:07:51 shared12 sshd[32535]: Disconnected from authenticating user r.r 132.232.232.182 port ........ ------------------------------	2020-10-06 14:34:15
49.232.83.75	attack	[SID2] Fail2ban detected 5 failed SSH login attempts within 30 minutes. This report was submitted automatically.	2020-10-06 14:26:29
113.111.62.235	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-10-06 14:43:21
201.220.156.103	attack	$f2bV_matches	2020-10-06 14:05:58
112.216.39.234	attackbotsspam	Oct 6 08:11:04 PorscheCustomer sshd[14891]: Failed password for root from 112.216.39.234 port 48020 ssh2 Oct 6 08:15:33 PorscheCustomer sshd[14979]: Failed password for root from 112.216.39.234 port 52958 ssh2 ...	2020-10-06 14:23:46
122.194.229.122	attack	Oct 6 08:21:00 nopemail auth.info sshd[17966]: Unable to negotiate with 122.194.229.122 port 41056: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] ...	2020-10-06 14:21:27
138.118.166.15	attack	xmlrpc attack	2020-10-06 14:36:47
193.169.253.108	attackbots	Brute forcing email accounts	2020-10-06 14:27:48
113.131.183.21	attackbots	Port probing on unauthorized port 23	2020-10-06 14:32:51

最近上报的IP列表

121.214.229.144	185.50.107.103	125.17.100.207	223.178.149.254
10.20.192.1	212.3.192.230	94.199.122.171	111.90.50.172
94.2.165.164	94.2.165.64	80.6.162.234	91.183.130.229
105.160.112.250	197.235.205.231	177.241.53.92	37.30.50.0
212.180.184.0	185.11.69.7	46.215.192.0	77.115.157.0