138.68.106.90 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	1597895757 - 08/20/2020 05:55:57 Host: 138.68.106.90/138.68.106.90 Port: 8080 TCP Blocked	2020-08-20 12:15:19

相同子网IP讨论:

IP	类型	评论内容	时间
138.68.106.62	attack	[ssh] SSH attack	2020-10-01 02:37:08
138.68.106.62	attackspam	Brute force attempt	2020-09-30 18:46:41
138.68.106.62	attackbots	Sep 15 10:24:49 rush sshd[7492]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.106.62 Sep 15 10:24:51 rush sshd[7492]: Failed password for invalid user admin from 138.68.106.62 port 36192 ssh2 Sep 15 10:28:46 rush sshd[7607]: Failed password for root from 138.68.106.62 port 49178 ssh2 ...	2020-09-15 20:23:27
138.68.106.62	attackbots	Ssh brute force	2020-09-15 12:25:56
138.68.106.62	attack	Time: Mon Sep 14 19:52:07 2020 +0000 IP: 138.68.106.62 (DE/Germany/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 14 19:43:22 vps3 sshd[952]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.106.62 user=root Sep 14 19:43:24 vps3 sshd[952]: Failed password for root from 138.68.106.62 port 35864 ssh2 Sep 14 19:49:51 vps3 sshd[2500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.106.62 user=root Sep 14 19:49:53 vps3 sshd[2500]: Failed password for root from 138.68.106.62 port 35364 ssh2 Sep 14 19:52:03 vps3 sshd[2984]: Invalid user waps from 138.68.106.62 port 47338	2020-09-15 04:34:15
138.68.106.62	attack	<6 unauthorized SSH connections	2020-08-21 16:55:59
138.68.106.62	attackspambots	SSH Bruteforce attack	2020-08-19 14:35:04
138.68.106.62	attackbots	Port Scan detected from 138.68.106.62 (DE/Germany/Hesse/Frankfurt am Main/-). 4 hits in the last 90 seconds	2020-08-18 07:31:17
138.68.106.62	attackspambots	Aug 11 18:57:21 jane sshd[13485]: Failed password for root from 138.68.106.62 port 45976 ssh2 ...	2020-08-12 04:17:25
138.68.106.62	attackbots	Aug 2 05:09:13 mockhub sshd[11935]: Failed password for root from 138.68.106.62 port 49734 ssh2 ...	2020-08-02 22:28:54
138.68.106.62	attackbots	Invalid user autobacs from 138.68.106.62 port 43860	2020-07-28 13:33:35
138.68.106.62	attackbots	SSH Brute Force	2020-07-26 22:04:26
138.68.106.62	attack	Jul 25 23:56:04 NPSTNNYC01T sshd[20607]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.106.62 Jul 25 23:56:06 NPSTNNYC01T sshd[20607]: Failed password for invalid user jcm from 138.68.106.62 port 39762 ssh2 Jul 25 23:59:48 NPSTNNYC01T sshd[20955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.106.62 ...	2020-07-26 12:16:04
138.68.106.62	attackspambots	$f2bV_matches	2020-07-04 04:11:26
138.68.106.62	attackspambots	Jul 1 03:27:46 ip-172-31-62-245 sshd\[19501\]: Invalid user mine from 138.68.106.62\ Jul 1 03:27:48 ip-172-31-62-245 sshd\[19501\]: Failed password for invalid user mine from 138.68.106.62 port 45168 ssh2\ Jul 1 03:30:40 ip-172-31-62-245 sshd\[19575\]: Invalid user Justin from 138.68.106.62\ Jul 1 03:30:43 ip-172-31-62-245 sshd\[19575\]: Failed password for invalid user Justin from 138.68.106.62 port 45874 ssh2\ Jul 1 03:33:40 ip-172-31-62-245 sshd\[19638\]: Invalid user test from 138.68.106.62\	2020-07-02 08:49:28

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.106.90
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51629
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.68.106.90.			IN	A

;; AUTHORITY SECTION:
.			209	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081902 1800 900 604800 86400

;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Aug 20 12:15:11 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 90.106.68.138.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 90.106.68.138.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
123.189.104.45	attackspam	$f2bV_matches	2019-08-29 11:47:05
213.85.40.90	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-28 22:02:07,757 INFO [amun_request_handler] PortScan Detected on Port: 445 (213.85.40.90)	2019-08-29 12:20:38
131.100.219.3	attackbotsspam	Aug 29 05:44:44 plex sshd[16137]: Invalid user ben from 131.100.219.3 port 53952	2019-08-29 11:55:59
212.248.126.226	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-28 22:04:24,773 INFO [amun_request_handler] PortScan Detected on Port: 445 (212.248.126.226)	2019-08-29 12:11:23
223.223.188.109	attackspambots	SSH invalid-user multiple login try	2019-08-29 12:03:39
121.182.166.81	attackbotsspam	Aug 29 05:44:45 mail sshd\[30777\]: Invalid user prova from 121.182.166.81\ Aug 29 05:44:47 mail sshd\[30777\]: Failed password for invalid user prova from 121.182.166.81 port 29234 ssh2\ Aug 29 05:49:46 mail sshd\[30795\]: Invalid user teamspeak from 121.182.166.81\ Aug 29 05:49:47 mail sshd\[30795\]: Failed password for invalid user teamspeak from 121.182.166.81 port 18771 ssh2\ Aug 29 05:54:42 mail sshd\[30815\]: Invalid user john1 from 121.182.166.81\ Aug 29 05:54:44 mail sshd\[30815\]: Failed password for invalid user john1 from 121.182.166.81 port 64813 ssh2\	2019-08-29 12:05:24
92.223.159.3	attack	Aug 28 16:44:25 auw2 sshd\[22646\]: Invalid user alexandru from 92.223.159.3 Aug 28 16:44:25 auw2 sshd\[22646\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.223.159.3 Aug 28 16:44:26 auw2 sshd\[22646\]: Failed password for invalid user alexandru from 92.223.159.3 port 48746 ssh2 Aug 28 16:48:32 auw2 sshd\[22996\]: Invalid user ts3srv from 92.223.159.3 Aug 28 16:48:32 auw2 sshd\[22996\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.223.159.3	2019-08-29 12:00:56
167.71.203.151	attack	" "	2019-08-29 12:18:45
13.57.201.35	attackspam	Aug 28 17:56:18 auw2 sshd\[29591\]: Invalid user arpit from 13.57.201.35 Aug 28 17:56:18 auw2 sshd\[29591\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-13-57-201-35.us-west-1.compute.amazonaws.com Aug 28 17:56:20 auw2 sshd\[29591\]: Failed password for invalid user arpit from 13.57.201.35 port 39824 ssh2 Aug 28 18:01:28 auw2 sshd\[30113\]: Invalid user kerrie from 13.57.201.35 Aug 28 18:01:28 auw2 sshd\[30113\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-13-57-201-35.us-west-1.compute.amazonaws.com	2019-08-29 12:09:24
206.189.153.147	attackspambots	Automatic report - Banned IP Access	2019-08-29 11:48:42
178.128.54.223	attackspam	Aug 28 16:04:52 hanapaa sshd\[665\]: Invalid user asd from 178.128.54.223 Aug 28 16:04:52 hanapaa sshd\[665\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.54.223 Aug 28 16:04:54 hanapaa sshd\[665\]: Failed password for invalid user asd from 178.128.54.223 port 58734 ssh2 Aug 28 16:12:27 hanapaa sshd\[1461\]: Invalid user xie from 178.128.54.223 Aug 28 16:12:27 hanapaa sshd\[1461\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.54.223	2019-08-29 12:12:14
178.90.35.249	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-28 22:07:35,462 INFO [amun_request_handler] PortScan Detected on Port: 445 (178.90.35.249)	2019-08-29 11:41:33
51.75.255.166	attackspam	Failed password for invalid user manager from 51.75.255.166 port 38388 ssh2 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.255.166 user=gnats Failed password for gnats from 51.75.255.166 port 55274 ssh2 Invalid user flower from 51.75.255.166 port 43960 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.255.166	2019-08-29 12:23:29
79.7.206.177	attack	2019-08-29T02:24:00.716865hub.schaetter.us sshd\[9140\]: Invalid user foobar from 79.7.206.177 2019-08-29T02:24:00.751879hub.schaetter.us sshd\[9140\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host177-206-static.7-79-b.business.telecomitalia.it 2019-08-29T02:24:02.981259hub.schaetter.us sshd\[9140\]: Failed password for invalid user foobar from 79.7.206.177 port 53005 ssh2 2019-08-29T02:29:40.025428hub.schaetter.us sshd\[9197\]: Invalid user admin from 79.7.206.177 2019-08-29T02:29:40.071190hub.schaetter.us sshd\[9197\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host177-206-static.7-79-b.business.telecomitalia.it ...	2019-08-29 11:47:39
188.131.176.201	attack	Aug 29 05:23:17 vps691689 sshd[23165]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.176.201 Aug 29 05:23:19 vps691689 sshd[23165]: Failed password for invalid user gmodserver from 188.131.176.201 port 33962 ssh2 Aug 29 05:28:54 vps691689 sshd[23265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.176.201 ...	2019-08-29 12:04:50

最近上报的IP列表

51.192.188.178	82.47.190.172	210.91.219.239	232.242.9.209
231.58.177.249	94.187.233.195	175.5.71.86	120.92.43.228
124.167.165.128	34.74.42.227	41.230.127.79	157.245.132.242
2.187.101.1	79.117.160.160	128.211.64.21	47.103.113.73
252.2.169.146	243.132.253.77	40.196.141.47	218.42.92.107