80.103.70.124 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Spain

运营商(isp): Orange Espagne SA

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Mobile ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Portscan detected	2020-02-16 13:42:59

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 80.103.70.124
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1150
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;80.103.70.124.			IN	A

;; AUTHORITY SECTION:
.			346	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021600 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 16 13:42:53 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

124.70.103.80.in-addr.arpa domain name pointer 124.pool80-103-70.dynamic.orange.es.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
124.70.103.80.in-addr.arpa	name = 124.pool80-103-70.dynamic.orange.es.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
160.16.219.28	attackspam	Lines containing failures of 160.16.219.28 (max 1000) Nov 11 17:26:27 localhost sshd[8875]: Invalid user franken from 160.16.219.28 port 58610 Nov 11 17:26:27 localhost sshd[8875]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.16.219.28 Nov 11 17:26:29 localhost sshd[8875]: Failed password for invalid user franken from 160.16.219.28 port 58610 ssh2 Nov 11 17:26:32 localhost sshd[8875]: Received disconnect from 160.16.219.28 port 58610:11: Bye Bye [preauth] Nov 11 17:26:32 localhost sshd[8875]: Disconnected from invalid user franken 160.16.219.28 port 58610 [preauth] Nov 11 17:37:39 localhost sshd[15350]: Invalid user pppppppp from 160.16.219.28 port 50754 Nov 11 17:37:39 localhost sshd[15350]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.16.219.28 Nov 11 17:37:41 localhost sshd[15350]: Failed password for invalid user pppppppp from 160.16.219.28 port 50754 ssh2 Nov 11 17:37:42 ........ ------------------------------	2019-11-12 19:00:16
130.162.66.249	attack	2019-11-12T06:57:38.991289abusebot-5.cloudsearch.cf sshd\[11621\]: Invalid user backup from 130.162.66.249 port 46237	2019-11-12 18:58:52
144.135.85.184	attack	Nov 12 00:38:26 php1 sshd\[15669\]: Invalid user jan from 144.135.85.184 Nov 12 00:38:26 php1 sshd\[15669\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.135.85.184 Nov 12 00:38:28 php1 sshd\[15669\]: Failed password for invalid user jan from 144.135.85.184 port 35708 ssh2 Nov 12 00:43:17 php1 sshd\[16163\]: Invalid user webadmin from 144.135.85.184 Nov 12 00:43:17 php1 sshd\[16163\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.135.85.184	2019-11-12 19:00:44
158.69.250.183	attackspambots	Nov 12 11:20:58 SilenceServices sshd[14051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.250.183 Nov 12 11:21:00 SilenceServices sshd[14051]: Failed password for invalid user mpt from 158.69.250.183 port 40266 ssh2 Nov 12 11:23:49 SilenceServices sshd[14951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.250.183	2019-11-12 18:39:53
51.38.68.83	attackspam	Wordpress bruteforce	2019-11-12 18:42:42
5.188.10.9	attack	no comment	2019-11-12 18:43:57
45.133.9.2	attack	Nov 12 10:47:24 lnxded63 sshd[12719]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.133.9.2	2019-11-12 19:19:09
45.82.153.133	attackspambots	45.82.153.133 was recorded 5 times by 2 hosts attempting to connect to the following ports: 465,25,587. Incident counter (4h, 24h, all-time): 5, 17, 105	2019-11-12 18:39:37
52.187.17.107	attack	SSH Brute Force, server-1 sshd[29557]: Failed password for invalid user rotering from 52.187.17.107 port 58358 ssh2	2019-11-12 19:12:00
213.230.96.243	attack	213.230.96.243 - - \[12/Nov/2019:10:34:40 +0100\] "POST /wp-login.php HTTP/1.0" 200 5707 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 213.230.96.243 - - \[12/Nov/2019:10:34:42 +0100\] "POST /wp-login.php HTTP/1.0" 200 5707 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 213.230.96.243 - - \[12/Nov/2019:10:34:43 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 802 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-11-12 18:46:28
42.51.42.109	attackspam	Nov 12 09:05:45 ns382633 sshd\[28794\]: Invalid user blocker from 42.51.42.109 port 52293 Nov 12 09:05:45 ns382633 sshd\[28794\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.51.42.109 Nov 12 09:05:47 ns382633 sshd\[28794\]: Failed password for invalid user blocker from 42.51.42.109 port 52293 ssh2 Nov 12 09:22:34 ns382633 sshd\[31868\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.51.42.109 user=root Nov 12 09:22:36 ns382633 sshd\[31868\]: Failed password for root from 42.51.42.109 port 39216 ssh2	2019-11-12 18:40:37
209.97.191.8	attackspambots	Portscan or hack attempt detected by psad/fwsnort	2019-11-12 18:58:05
185.143.223.214	attackbotsspam	Port scan on 5 port(s): 37012 37218 37398 37583 37625	2019-11-12 18:52:32
77.202.192.113	attack	Nov 12 15:05:32 itv-usvr-01 sshd[13037]: Invalid user pi from 77.202.192.113 Nov 12 15:05:33 itv-usvr-01 sshd[13039]: Invalid user pi from 77.202.192.113 Nov 12 15:05:33 itv-usvr-01 sshd[13037]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.202.192.113 Nov 12 15:05:32 itv-usvr-01 sshd[13037]: Invalid user pi from 77.202.192.113 Nov 12 15:05:34 itv-usvr-01 sshd[13037]: Failed password for invalid user pi from 77.202.192.113 port 49958 ssh2	2019-11-12 19:10:04
1.193.160.164	attack	Nov 12 16:57:16 itv-usvr-01 sshd[18249]: Invalid user jq from 1.193.160.164 Nov 12 16:57:16 itv-usvr-01 sshd[18249]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.193.160.164 Nov 12 16:57:16 itv-usvr-01 sshd[18249]: Invalid user jq from 1.193.160.164 Nov 12 16:57:18 itv-usvr-01 sshd[18249]: Failed password for invalid user jq from 1.193.160.164 port 34138 ssh2 Nov 12 17:02:04 itv-usvr-01 sshd[18487]: Invalid user nfs from 1.193.160.164	2019-11-12 18:51:42

最近上报的IP列表

14.139.93.50	176.121.207.67	115.148.72.251	176.121.195.11
180.244.136.156	171.245.197.122	64.225.45.204	34.87.19.185
176.121.192.98	124.190.142.161	200.89.178.140	188.99.221.36
221.144.61.3	176.121.12.129	180.94.71.38	50.62.208.106
176.120.54.119	171.38.147.46	193.27.19.140	111.229.48.106