138.68.124.126

基本信息:

城市(city): Frankfurt am Main

省份(region): Hesse

国家(country): Germany

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	http	2019-07-29 03:35:56

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.124.126
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4534
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.68.124.126.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072801 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 29 03:35:51 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 126.124.68.138.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 126.124.68.138.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
109.95.42.42	attackbots	May 26 03:52:41 vps sshd[471384]: Failed password for root from 109.95.42.42 port 48904 ssh2 May 26 03:56:17 vps sshd[491577]: Invalid user developer from 109.95.42.42 port 55186 May 26 03:56:17 vps sshd[491577]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.95.42.42 May 26 03:56:19 vps sshd[491577]: Failed password for invalid user developer from 109.95.42.42 port 55186 ssh2 May 26 04:00:01 vps sshd[505059]: Invalid user pppp from 109.95.42.42 port 33226 ...	2020-05-26 10:11:31
49.232.39.21	attackbotsspam	SSH brutforce	2020-05-26 09:39:36
172.58.63.185	attack	Hacking	2020-05-26 09:44:21
139.59.7.177	attack	2020-05-26T01:18:28.552754sd-86998 sshd[21771]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.7.177 user=root 2020-05-26T01:18:31.173111sd-86998 sshd[21771]: Failed password for root from 139.59.7.177 port 41738 ssh2 2020-05-26T01:22:30.755696sd-86998 sshd[22249]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.7.177 user=root 2020-05-26T01:22:32.598327sd-86998 sshd[22249]: Failed password for root from 139.59.7.177 port 48140 ssh2 2020-05-26T01:26:32.075432sd-86998 sshd[22726]: Invalid user joy from 139.59.7.177 port 54542 ...	2020-05-26 09:54:46
180.241.47.160	attackspam	[portscan] Port scan	2020-05-26 09:55:37
36.133.27.239	attack	May 19 03:51:44 localhost sshd[1298332]: Invalid user aqj from 36.133.27.239 port 56314 May 19 03:51:44 localhost sshd[1298332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.133.27.239 May 19 03:51:44 localhost sshd[1298332]: Invalid user aqj from 36.133.27.239 port 56314 May 19 03:51:45 localhost sshd[1298332]: Failed password for invalid user aqj from 36.133.27.239 port 56314 ssh2 May 19 03:55:22 localhost sshd[1299378]: Invalid user aqj from 36.133.27.239 port 32862 May 19 03:55:22 localhost sshd[1299378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.133.27.239 May 19 03:55:22 localhost sshd[1299378]: Invalid user aqj from 36.133.27.239 port 32862 May 19 03:55:25 localhost sshd[1299378]: Failed password for invalid user aqj from 36.133.27.239 port 32862 ssh2 May 19 04:06:41 localhost sshd[1301955]: Invalid user pfx from 36.133.27.239 port 55894 ........ ----------------------------------------------- https://www	2020-05-26 09:36:45
183.136.239.178	attackspambots	Ssh brute force	2020-05-26 09:46:35
174.138.64.163	attackspam	May 26 03:20:10 sip sshd[409836]: Failed password for root from 174.138.64.163 port 37172 ssh2 May 26 03:23:58 sip sshd[409864]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.64.163 user=root May 26 03:24:01 sip sshd[409864]: Failed password for root from 174.138.64.163 port 42720 ssh2 ...	2020-05-26 10:16:07
222.186.30.167	attack	May 25 21:03:51 debian sshd[21960]: Unable to negotiate with 222.186.30.167 port 29876: no matching key exchange method found. Their offer: ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] May 25 22:01:47 debian sshd[24705]: Unable to negotiate with 222.186.30.167 port 52819: no matching key exchange method found. Their offer: ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] ...	2020-05-26 10:04:20
123.20.117.240	attackbots	2020-05-2601:26:051jdMTs-0008W7-Am\<=info@whatsup2013.chH=\(localhost\)[123.20.250.5]:60384P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2185id=DBDE683B30E4CB88545118A06498980A@whatsup2013.chT="Idecidedtotakethe1ststepwithinourconversation"forecristian495@gmail.com2020-05-2601:25:321jdMTL-0008UJ-EQ\<=info@whatsup2013.chH=\(localhost\)[197.50.31.63]:35835P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2138id=1D18AEFDF6220D4E9297DE66A29BF5EA@whatsup2013.chT="Iwouldwishtolocateamanforaseriousrelationship"forcasumrch@gmail.com2020-05-2601:25:161jdMT5-0008TL-FA\<=info@whatsup2013.chH=\(localhost\)[218.84.125.8]:46497P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2211id=B9BC0A595286A9EA36337AC2064CE53E@whatsup2013.chT="Idecidedtotakethe1ststepwithinourconversation"forkatoaarmol@gmail.com2020-05-2601:25:491jdMTc-0008VB-0e\<=info@whatsup2013.chH=\(localhost\)[123.20.117.240]:40874P	2020-05-26 09:58:15
36.133.84.2	attack	May 21 03:10:46 localhost sshd[2272705]: Invalid user xwf from 36.133.84.2 port 36990 May 21 03:10:46 localhost sshd[2272705]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.133.84.2 May 21 03:10:46 localhost sshd[2272705]: Invalid user xwf from 36.133.84.2 port 36990 May 21 03:10:47 localhost sshd[2272705]: Failed password for invalid user xwf from 36.133.84.2 port 36990 ssh2 May 21 03:33:04 localhost sshd[2277342]: Invalid user qu from 36.133.84.2 port 44768 May 21 03:33:04 localhost sshd[2277342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.133.84.2 May 21 03:33:04 localhost sshd[2277342]: Invalid user qu from 36.133.84.2 port 44768 May 21 03:33:06 localhost sshd[2277342]: Failed password for invalid user qu from 36.133.84.2 port 44768 ssh2 May 21 03:36:59 localhost sshd[2278400]: Invalid user pfe from 36.133.84.2 port 54978 ........ ----------------------------------------------- https://www.blocklist.de/en/view	2020-05-26 09:45:17
162.214.76.170	attackspambots	phising sender	2020-05-26 10:01:28
222.186.30.59	attack	May 26 02:31:26 ajax sshd[11985]: Failed password for root from 222.186.30.59 port 19459 ssh2 May 26 02:31:30 ajax sshd[11985]: Failed password for root from 222.186.30.59 port 19459 ssh2	2020-05-26 09:49:51
189.27.76.50	attackspambots	Invalid user gmotor from 189.27.76.50 port 48344	2020-05-26 09:39:18
36.133.97.82	attackspambots	Lines containing failures of 36.133.97.82 May 25 11:01:59 kmh-vmh-003-fsn07 sshd[12743]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.133.97.82 user=r.r May 25 11:02:02 kmh-vmh-003-fsn07 sshd[12743]: Failed password for r.r from 36.133.97.82 port 52918 ssh2 May 25 11:02:03 kmh-vmh-003-fsn07 sshd[12743]: Received disconnect from 36.133.97.82 port 52918:11: Bye Bye [preauth] May 25 11:02:03 kmh-vmh-003-fsn07 sshd[12743]: Disconnected from authenticating user r.r 36.133.97.82 port 52918 [preauth] May 25 11:24:18 kmh-vmh-003-fsn07 sshd[16739]: Invalid user kjh from 36.133.97.82 port 54636 May 25 11:24:18 kmh-vmh-003-fsn07 sshd[16739]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.133.97.82 May 25 11:24:20 kmh-vmh-003-fsn07 sshd[16739]: Failed password for invalid user kjh from 36.133.97.82 port 54636 ssh2 May 25 11:24:22 kmh-vmh-003-fsn07 sshd[16739]: Received disconnect from 36.133......... ------------------------------	2020-05-26 09:43:46

最近上报的IP列表

103.139.77.31	24.97.38.75	79.41.172.149	199.135.185.156
129.87.145.166	220.242.133.164	119.202.3.89	152.136.214.176
95.56.196.136	156.248.45.230	158.48.9.178	180.56.16.42
51.68.143.26	136.79.225.214	146.120.120.235	223.115.189.65
146.120.110.235	55.179.93.172	129.211.98.123	90.251.65.36