138.68.103.136

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
138.68.103.102	attackbotsspam	Jul 24 20:04:51 firewall sshd[16533]: Invalid user jimmy from 138.68.103.102 Jul 24 20:04:53 firewall sshd[16533]: Failed password for invalid user jimmy from 138.68.103.102 port 43864 ssh2 Jul 24 20:09:09 firewall sshd[16654]: Invalid user grid from 138.68.103.102 ...	2020-07-25 07:20:57
138.68.103.102	attackbotsspam	Invalid user shane from 138.68.103.102 port 59032	2020-07-23 01:26:47

类型

评论内容

时间

138.68.103.102

attackbotsspam

Jul 24 20:04:51 firewall sshd[16533]: Invalid user jimmy from 138.68.103.102
Jul 24 20:04:53 firewall sshd[16533]: Failed password for invalid user jimmy from 138.68.103.102 port 43864 ssh2
Jul 24 20:09:09 firewall sshd[16654]: Invalid user grid from 138.68.103.102
...

2020-07-25 07:20:57

138.68.103.102

attackbotsspam

Invalid user shane from 138.68.103.102 port 59032

2020-07-23 01:26:47

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.103.136
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35555
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.68.103.136.			IN	A

;; AUTHORITY SECTION:
.			252	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022061102 1800 900 604800 86400

;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 12 12:18:58 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 136.103.68.138.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 136.103.68.138.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
206.189.229.112	attackspam	Dec 26 22:47:10 server sshd\[1045\]: Invalid user admin from 206.189.229.112 Dec 26 22:47:10 server sshd\[1045\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.229.112 Dec 26 22:47:12 server sshd\[1045\]: Failed password for invalid user admin from 206.189.229.112 port 37110 ssh2 Dec 27 13:20:51 server sshd\[24578\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.229.112 user=root Dec 27 13:20:53 server sshd\[24578\]: Failed password for root from 206.189.229.112 port 58004 ssh2 ...	2019-12-27 18:27:59
114.95.124.149	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 27-12-2019 06:25:16.	2019-12-27 18:48:25
49.235.212.247	attackspambots	Brute-force attempt banned	2019-12-27 18:14:24
182.180.142.71	attack	Dec 27 08:29:06 h2177944 sshd\[17630\]: Invalid user mitten from 182.180.142.71 port 35904 Dec 27 08:29:06 h2177944 sshd\[17630\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.180.142.71 Dec 27 08:29:09 h2177944 sshd\[17630\]: Failed password for invalid user mitten from 182.180.142.71 port 35904 ssh2 Dec 27 08:53:40 h2177944 sshd\[18892\]: Invalid user denise from 182.180.142.71 port 33106 ...	2019-12-27 18:27:41
92.118.38.39	attackbots	Dec 27 10:47:23 webserver postfix/smtpd\[29663\]: warning: unknown\[92.118.38.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 27 10:47:58 webserver postfix/smtpd\[28366\]: warning: unknown\[92.118.38.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 27 10:48:33 webserver postfix/smtpd\[29663\]: warning: unknown\[92.118.38.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 27 10:49:07 webserver postfix/smtpd\[28366\]: warning: unknown\[92.118.38.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 27 10:49:42 webserver postfix/smtpd\[29663\]: warning: unknown\[92.118.38.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-12-27 18:08:06
80.211.172.24	attackbots	Dec 27 05:33:21 aragorn sshd[11279]: Invalid user admin from 80.211.172.24 Dec 27 05:33:22 aragorn sshd[11281]: Invalid user admin from 80.211.172.24 Dec 27 05:33:22 aragorn sshd[11281]: Invalid user admin from 80.211.172.24 ...	2019-12-27 18:33:38
123.21.7.80	attackbots	Dec 27 10:25:41 localhost sshd\[31638\]: Invalid user admin from 123.21.7.80 port 42166 Dec 27 10:25:41 localhost sshd\[31638\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.21.7.80 Dec 27 10:25:43 localhost sshd\[31638\]: Failed password for invalid user admin from 123.21.7.80 port 42166 ssh2 ...	2019-12-27 18:36:01
188.165.250.228	attack	Dec 27 07:25:28 [host] sshd[4909]: Invalid user gjotterud from 188.165.250.228 Dec 27 07:25:28 [host] sshd[4909]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.165.250.228 Dec 27 07:25:30 [host] sshd[4909]: Failed password for invalid user gjotterud from 188.165.250.228 port 55167 ssh2	2019-12-27 18:36:44
183.111.104.197	attackbots	Host Scan	2019-12-27 18:34:14
115.159.65.195	attackbots	Dec 27 10:33:46 MK-Soft-Root1 sshd[23916]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.65.195 Dec 27 10:33:48 MK-Soft-Root1 sshd[23916]: Failed password for invalid user madison from 115.159.65.195 port 58248 ssh2 ...	2019-12-27 18:31:10
157.245.217.186	attack	157.245.217.186 - - \[27/Dec/2019:08:00:53 +0100\] "POST /wp-login.php HTTP/1.0" 200 3080 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 157.245.217.186 - - \[27/Dec/2019:08:00:55 +0100\] "POST /wp-login.php HTTP/1.0" 200 3039 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 157.245.217.186 - - \[27/Dec/2019:08:01:01 +0100\] "POST /wp-login.php HTTP/1.0" 200 3048 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-12-27 18:42:14
171.245.20.247	attack	Dec 27 07:25:57 vpn01 sshd[10180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.245.20.247 Dec 27 07:25:59 vpn01 sshd[10180]: Failed password for invalid user admin from 171.245.20.247 port 55048 ssh2 ...	2019-12-27 18:18:29
60.217.49.145	attack	[portscan] tcp/21 [FTP] [scan/connect: 3 time(s)] *(RWIN=65535)(12271226)	2019-12-27 18:19:41
85.93.20.70	attack	alert tcp $EXTERNAL_NET any -> $HOME_NET !3389 (msg:"ET SCAN MS Terminal Server Traffic on Non-standard Port"; flow:to_server,established; content:"\|03 00 00\|"; depth:3; content:"\|e0 00 00 00 00 00\|"; offset:5; depth:6; content:"Cookie\|3a\| mstshash="; fast_pattern; classtype:attempted-recon; sid:2023753; rev:2; metadata:affected_product Microsoft_Terminal_Server_RDP, attack_target Server, deployment Perimeter, signature_severity Major, created_at 2017_01_23, performance_impact Low, updated_at 2017_02_23;)	2019-12-27 18:44:29
202.72.204.226	attackspambots	Dec 27 10:33:53 lnxweb61 sshd[23941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.72.204.226 Dec 27 10:33:53 lnxweb61 sshd[23941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.72.204.226	2019-12-27 18:10:20

最近上报的IP列表

49.204.221.1	137.226.18.25	159.89.4.23	137.226.18.20
137.226.18.48	137.226.18.46	137.226.16.231	52.156.2.107
137.226.17.206	137.226.17.205	44.234.42.55	137.226.17.8
137.226.17.222	137.226.18.44	137.226.17.233	46.144.38.49
180.76.250.253	137.226.17.221	137.226.17.232	44.227.157.196