138.68.100.139

基本信息:

城市(city): Frankfurt am Main

省份(region): Hessen

国家(country): Germany

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
138.68.100.102	attackbotsspam	Lines containing failures of 138.68.100.102 Oct 8 08:42:23 newdogma sshd[22234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.100.102 user=r.r Oct 8 08:42:25 newdogma sshd[22234]: Failed password for r.r from 138.68.100.102 port 36538 ssh2 Oct 8 08:42:26 newdogma sshd[22234]: Received disconnect from 138.68.100.102 port 36538:11: Bye Bye [preauth] Oct 8 08:42:26 newdogma sshd[22234]: Disconnected from authenticating user r.r 138.68.100.102 port 36538 [preauth] Oct 8 08:58:51 newdogma sshd[22800]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.100.102 user=r.r Oct 8 08:58:53 newdogma sshd[22800]: Failed password for r.r from 138.68.100.102 port 37066 ssh2 Oct 8 08:58:55 newdogma sshd[22800]: Received disconnect from 138.68.100.102 port 37066:11: Bye Bye [preauth] Oct 8 08:58:55 newdogma sshd[22800]: Disconnected from authenticating user r.r 138.68.100.102 port 37066........ ------------------------------	2020-10-10 02:09:51
138.68.100.102	attackbotsspam	Lines containing failures of 138.68.100.102 Oct 8 08:42:23 newdogma sshd[22234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.100.102 user=r.r Oct 8 08:42:25 newdogma sshd[22234]: Failed password for r.r from 138.68.100.102 port 36538 ssh2 Oct 8 08:42:26 newdogma sshd[22234]: Received disconnect from 138.68.100.102 port 36538:11: Bye Bye [preauth] Oct 8 08:42:26 newdogma sshd[22234]: Disconnected from authenticating user r.r 138.68.100.102 port 36538 [preauth] Oct 8 08:58:51 newdogma sshd[22800]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.100.102 user=r.r Oct 8 08:58:53 newdogma sshd[22800]: Failed password for r.r from 138.68.100.102 port 37066 ssh2 Oct 8 08:58:55 newdogma sshd[22800]: Received disconnect from 138.68.100.102 port 37066:11: Bye Bye [preauth] Oct 8 08:58:55 newdogma sshd[22800]: Disconnected from authenticating user r.r 138.68.100.102 port 37066........ ------------------------------	2020-10-09 17:54:43
138.68.100.212	attack	Brute-force attempt banned	2020-09-07 20:26:45
138.68.100.212	attackbotsspam	Sep 7 04:03:16 *** sshd[24427]: Did not receive identification string from 138.68.100.212	2020-09-07 12:11:36
138.68.100.212	attackbotsspam	2020-09-06T22:49:23.908027amanda2.illicoweb.com sshd\[40741\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.100.212 user=root 2020-09-06T22:49:25.914967amanda2.illicoweb.com sshd\[40741\]: Failed password for root from 138.68.100.212 port 53432 ssh2 2020-09-06T22:49:47.395516amanda2.illicoweb.com sshd\[40757\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.100.212 user=root 2020-09-06T22:49:49.698429amanda2.illicoweb.com sshd\[40757\]: Failed password for root from 138.68.100.212 port 60480 ssh2 2020-09-06T22:50:12.493685amanda2.illicoweb.com sshd\[40767\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.100.212 user=root ...	2020-09-07 04:55:20
138.68.100.204	attack	Jul 26 13:58:49 localhost sshd[2093694]: Unable to negotiate with 138.68.100.204 port 42368: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] ...	2020-07-26 12:58:39

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.100.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48149
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.68.100.139.			IN	A

;; AUTHORITY SECTION:
.			117	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023010600 1800 900 604800 86400

;; Query time: 25 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 06 15:53:25 CST 2023
;; MSG SIZE  rcvd: 107

HOST信息:

Host 139.100.68.138.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.100.68.138.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
13.70.199.80	attack	13.70.199.80 - - [01/Sep/2020:13:29:29 +0100] "POST /wp-login.php HTTP/1.1" 200 1966 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 13.70.199.80 - - [01/Sep/2020:13:29:30 +0100] "POST /wp-login.php HTTP/1.1" 200 1951 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 13.70.199.80 - - [01/Sep/2020:13:29:31 +0100] "POST /wp-login.php HTTP/1.1" 200 1947 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-02 02:33:24
49.233.182.23	attackspam	Sep 1 20:00:02 h2779839 sshd[21903]: Invalid user ftpupload from 49.233.182.23 port 45132 Sep 1 20:00:02 h2779839 sshd[21903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.182.23 Sep 1 20:00:02 h2779839 sshd[21903]: Invalid user ftpupload from 49.233.182.23 port 45132 Sep 1 20:00:04 h2779839 sshd[21903]: Failed password for invalid user ftpupload from 49.233.182.23 port 45132 ssh2 Sep 1 20:03:45 h2779839 sshd[22000]: Invalid user marieke from 49.233.182.23 port 58676 Sep 1 20:03:45 h2779839 sshd[22000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.182.23 Sep 1 20:03:45 h2779839 sshd[22000]: Invalid user marieke from 49.233.182.23 port 58676 Sep 1 20:03:47 h2779839 sshd[22000]: Failed password for invalid user marieke from 49.233.182.23 port 58676 ssh2 Sep 1 20:07:31 h2779839 sshd[22068]: Invalid user admin from 49.233.182.23 port 43984 ...	2020-09-02 02:14:24
189.188.93.148	attackbots	Sep 1 15:45:15 jane sshd[30008]: Failed password for root from 189.188.93.148 port 34886 ssh2 Sep 1 15:45:19 jane sshd[30008]: Failed password for root from 189.188.93.148 port 34886 ssh2 ...	2020-09-02 02:16:19
35.200.241.227	attackbotsspam	(sshd) Failed SSH login from 35.200.241.227 (-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 1 17:25:26 server sshd[18626]: Invalid user gilles from 35.200.241.227 Sep 1 17:25:28 server sshd[18626]: Failed password for invalid user gilles from 35.200.241.227 port 44172 ssh2 Sep 1 17:31:41 server sshd[19663]: Invalid user gdb from 35.200.241.227 Sep 1 17:31:44 server sshd[19663]: Failed password for invalid user gdb from 35.200.241.227 port 57974 ssh2 Sep 1 17:33:36 server sshd[20099]: Invalid user supervisor from 35.200.241.227	2020-09-02 02:34:35
119.198.248.87	attackbots	Port Scan detected! ...	2020-09-02 02:36:05
222.220.87.7	attackspam	Multiple failed SASL logins	2020-09-02 02:29:15
139.59.174.107	attackbotsspam	139.59.174.107 - - [01/Sep/2020:15:23:20 +0100] "POST /wp-login.php HTTP/1.1" 200 1801 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.174.107 - - [01/Sep/2020:15:23:20 +0100] "POST /wp-login.php HTTP/1.1" 200 1779 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.174.107 - - [01/Sep/2020:15:23:21 +0100] "POST /wp-login.php HTTP/1.1" 200 1781 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-02 02:11:16
109.205.45.246	attackspam	2020-09-01T16:05:04.897492mail.standpoint.com.ua sshd[5319]: Failed password for root from 109.205.45.246 port 42032 ssh2 2020-09-01T16:09:13.346019mail.standpoint.com.ua sshd[5808]: Invalid user ss3server from 109.205.45.246 port 45506 2020-09-01T16:09:13.348674mail.standpoint.com.ua sshd[5808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.205.45.246 2020-09-01T16:09:13.346019mail.standpoint.com.ua sshd[5808]: Invalid user ss3server from 109.205.45.246 port 45506 2020-09-01T16:09:14.910042mail.standpoint.com.ua sshd[5808]: Failed password for invalid user ss3server from 109.205.45.246 port 45506 ssh2 ...	2020-09-02 02:43:47
190.226.244.9	attack	2020-09-01T17:26:24.664032lavrinenko.info sshd[32506]: Invalid user qwt from 190.226.244.9 port 36904 2020-09-01T17:26:24.671304lavrinenko.info sshd[32506]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.226.244.9 2020-09-01T17:26:24.664032lavrinenko.info sshd[32506]: Invalid user qwt from 190.226.244.9 port 36904 2020-09-01T17:26:26.653729lavrinenko.info sshd[32506]: Failed password for invalid user qwt from 190.226.244.9 port 36904 ssh2 2020-09-01T17:30:48.307726lavrinenko.info sshd[32603]: Invalid user shawnding from 190.226.244.9 port 38548 ...	2020-09-02 02:24:08
192.241.234.244	attack	1598963371 - 09/01/2020 14:29:31 Host: 192.241.234.244/192.241.234.244 Port: 22 TCP Blocked ...	2020-09-02 02:33:54
46.41.64.251	attackspambots	1598963360 - 09/01/2020 14:29:20 Host: 46.41.64.251/46.41.64.251 Port: 445 TCP Blocked	2020-09-02 02:40:17
119.45.54.7	attackbotsspam	2020-09-01T17:01:27.310952paragon sshd[1087328]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.54.7 2020-09-01T17:01:27.308337paragon sshd[1087328]: Invalid user dac from 119.45.54.7 port 53172 2020-09-01T17:01:29.234179paragon sshd[1087328]: Failed password for invalid user dac from 119.45.54.7 port 53172 ssh2 2020-09-01T17:05:40.577227paragon sshd[1087626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.54.7 user=root 2020-09-01T17:05:42.564995paragon sshd[1087626]: Failed password for root from 119.45.54.7 port 46370 ssh2 ...	2020-09-02 02:29:34
207.237.148.14	attack	Unauthorized IMAP connection attempt	2020-09-02 02:42:50
23.129.64.191	attack	Sep 1 20:10:34 rotator sshd\[21040\]: Failed password for root from 23.129.64.191 port 58866 ssh2Sep 1 20:10:37 rotator sshd\[21040\]: Failed password for root from 23.129.64.191 port 58866 ssh2Sep 1 20:10:39 rotator sshd\[21040\]: Failed password for root from 23.129.64.191 port 58866 ssh2Sep 1 20:10:42 rotator sshd\[21040\]: Failed password for root from 23.129.64.191 port 58866 ssh2Sep 1 20:10:45 rotator sshd\[21040\]: Failed password for root from 23.129.64.191 port 58866 ssh2Sep 1 20:10:47 rotator sshd\[21040\]: Failed password for root from 23.129.64.191 port 58866 ssh2 ...	2020-09-02 02:14:12
51.83.213.155	attackbots	Postfix attempt blocked due to public blacklist entry	2020-09-02 02:24:55

最近上报的IP列表

4.119.224.209	38.72.53.106	4.140.6.60	37.74.230.50
35.164.86.47	31.216.125.231	3.169.105.143	30.76.78.13
45.79.125.94	2605:6000:151f:c8bf:adc4:9788:c878:85f5	252.167.157.226	253.48.133.187
253.120.238.66	249.76.235.81	248.149.33.178	242.195.221.192
242.36.35.37	241.59.150.81	242.218.131.86	239.249.153.90