138.68.13.226 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Unauthorized connection attempt from IP address 138.68.13.226 on port 3389	2020-05-28 23:04:26

相同子网IP讨论:

IP	类型	评论内容	时间
138.68.134.188	attack	Invalid user peter from 138.68.134.188 port 52192	2020-07-19 02:24:51
138.68.134.188	attack	leo_www	2020-07-13 22:04:41
138.68.134.188	attackbots	Jul 13 00:03:37 PorscheCustomer sshd[9091]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.134.188 Jul 13 00:03:40 PorscheCustomer sshd[9091]: Failed password for invalid user sergi from 138.68.134.188 port 58318 ssh2 Jul 13 00:06:49 PorscheCustomer sshd[9221]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.134.188 ...	2020-07-13 06:15:48
138.68.134.188	attackspambots	DATE:2020-07-11 06:11:54,IP:138.68.134.188,MATCHES:11,PORT:ssh	2020-07-11 12:32:39
138.68.134.188	attackbots	$f2bV_matches	2020-07-04 04:10:04
138.68.137.20	attack	Unauthorized connection attempt detected from IP address 138.68.137.20 to port 6765 [T]	2020-04-12 16:10:23
138.68.137.20	attackbots	Brute force attempt	2020-04-09 18:16:43
138.68.13.76	attackbots	Port 22 Scan, PTR: None	2020-04-08 02:35:46
138.68.137.20	attack	Apr 4 06:51:24 site3 sshd\[187581\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.137.20 user=root Apr 4 06:51:26 site3 sshd\[187581\]: Failed password for root from 138.68.137.20 port 55852 ssh2 Apr 4 06:52:29 site3 sshd\[187593\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.137.20 user=root Apr 4 06:52:32 site3 sshd\[187593\]: Failed password for root from 138.68.137.20 port 42846 ssh2 Apr 4 06:53:44 site3 sshd\[187603\]: Invalid user admin from 138.68.137.20 ...	2020-04-04 17:59:15
138.68.136.152	attackbotsspam	$f2bV_matches	2020-03-18 13:00:56
138.68.136.152	attackbots	Wordpress login scanning	2020-03-18 01:18:28
138.68.13.73	attack	phpunit attack	2020-03-13 18:41:11
138.68.13.73	attackbotsspam	Digital Ocean - should be called Digital Cesspool //vendor/phpunit/phpunit/phpunit.xsd	2020-03-13 04:51:54
138.68.13.73	attack	Web bot without proper user agent declaration scraping website pages	2020-03-11 12:41:24
138.68.136.152	attack	xmlrpc attack	2020-02-21 16:55:11

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.13.226
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44848
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.68.13.226.			IN	A

;; AUTHORITY SECTION:
.			233	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052800 1800 900 604800 86400

;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 28 23:04:18 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 226.13.68.138.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 226.13.68.138.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
221.130.130.238	attack	ILLEGAL ACCESS imap	2019-12-22 14:12:03
106.12.36.173	attack	Dec 22 06:58:49 legacy sshd[5447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.36.173 Dec 22 06:58:51 legacy sshd[5447]: Failed password for invalid user info from 106.12.36.173 port 46892 ssh2 Dec 22 07:05:15 legacy sshd[5721]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.36.173 ...	2019-12-22 14:18:40
222.186.169.192	attackspam	Dec 22 06:16:54 sigma sshd\[32188\]: Failed password for root from 222.186.169.192 port 64730 ssh2Dec 22 06:16:57 sigma sshd\[32188\]: Failed password for root from 222.186.169.192 port 64730 ssh2 ...	2019-12-22 14:17:52
51.91.100.236	attackbots	Invalid user ts2 from 51.91.100.236 port 51188	2019-12-22 14:14:38
197.248.16.118	attack	Dec 22 07:24:01 ns381471 sshd[14365]: Failed password for root from 197.248.16.118 port 60462 ssh2	2019-12-22 14:43:54
93.64.183.162	attack	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2019-12-22 14:18:58
185.175.93.18	attack	ET DROP Dshield Block Listed Source group 1 - port: 45589 proto: TCP cat: Misc Attack	2019-12-22 14:26:04
144.217.89.55	attackbots	Invalid user galanakis from 144.217.89.55 port 34818 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.89.55 Failed password for invalid user galanakis from 144.217.89.55 port 34818 ssh2 Invalid user test from 144.217.89.55 port 36004 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.89.55	2019-12-22 14:48:12
187.190.236.88	attackbots	Invalid user ballard from 187.190.236.88 port 59360	2019-12-22 14:25:27
209.150.76.87	attackbots	Honeypot attack, port: 23, PTR: 209-150-76-87.netptc.net.	2019-12-22 14:28:02
167.172.239.155	attack	10 attempts against mh-misc-ban on cell.magehost.pro	2019-12-22 14:47:33
193.70.33.75	attackbotsspam	Dec 21 20:24:49 hanapaa sshd\[8568\]: Invalid user ts2 from 193.70.33.75 Dec 21 20:24:49 hanapaa sshd\[8568\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3059199.ip-193-70-33.eu Dec 21 20:24:51 hanapaa sshd\[8568\]: Failed password for invalid user ts2 from 193.70.33.75 port 58394 ssh2 Dec 21 20:30:01 hanapaa sshd\[9030\]: Invalid user 00 from 193.70.33.75 Dec 21 20:30:01 hanapaa sshd\[9030\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3059199.ip-193-70-33.eu	2019-12-22 15:00:17
180.76.53.114	attack	Dec 22 06:52:07 localhost sshd\[17967\]: Invalid user saroj from 180.76.53.114 port 54210 Dec 22 06:52:07 localhost sshd\[17967\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.53.114 Dec 22 06:52:09 localhost sshd\[17967\]: Failed password for invalid user saroj from 180.76.53.114 port 54210 ssh2 Dec 22 06:58:31 localhost sshd\[18094\]: Invalid user 1qaz2ws from 180.76.53.114 port 46092 Dec 22 06:58:31 localhost sshd\[18094\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.53.114 ...	2019-12-22 15:02:21
223.200.155.28	attack	Dec 22 01:56:39 TORMINT sshd\[9332\]: Invalid user carolee from 223.200.155.28 Dec 22 01:56:39 TORMINT sshd\[9332\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.200.155.28 Dec 22 01:56:41 TORMINT sshd\[9332\]: Failed password for invalid user carolee from 223.200.155.28 port 48736 ssh2 ...	2019-12-22 14:56:43
111.193.97.180	attack	Automatic report - Port Scan	2019-12-22 14:51:16

最近上报的IP列表

93.74.2.117	73.37.26.198	2.60.85.191	188.43.245.225
1.220.226.173	49.247.135.74	8.88.199.22	14.191.45.37
210.2.88.34	103.29.198.20	109.130.89.118	46.177.63.122
145.208.130.124	111.18.215.40	129.192.208.232	70.196.51.129
42.98.234.220	225.232.25.214	182.40.159.172	123.249.247.82