138.68.142.52 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): unknown

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
138.68.142.122	attack	2019-05-07 11:08:35 1hNw5T-0007K7-NU SMTP connection from jeans.bridgecoaa.com \(null.technoandy.icu\) \[138.68.142.122\]:41731 I=\[193.107.90.29\]:25 closed by DROP in ACL 2019-05-07 11:09:14 1hNw66-0007Mr-Kd SMTP connection from jeans.bridgecoaa.com \(cats.technoandy.icu\) \[138.68.142.122\]:51735 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-05-07 11:10:28 1hNw7I-0007Py-G4 SMTP connection from jeans.bridgecoaa.com \(shaken.technoandy.icu\) \[138.68.142.122\]:56823 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-02-05 01:13:30

类型

评论内容

时间

138.68.142.122

attack

2019-05-07 11:08:35 1hNw5T-0007K7-NU SMTP connection from jeans.bridgecoaa.com \(null.technoandy.icu\) \[138.68.142.122\]:41731 I=\[193.107.90.29\]:25 closed by DROP in ACL
2019-05-07 11:09:14 1hNw66-0007Mr-Kd SMTP connection from jeans.bridgecoaa.com \(cats.technoandy.icu\) \[138.68.142.122\]:51735 I=\[193.107.88.166\]:25 closed by DROP in ACL
2019-05-07 11:10:28 1hNw7I-0007Py-G4 SMTP connection from jeans.bridgecoaa.com \(shaken.technoandy.icu\) \[138.68.142.122\]:56823 I=\[193.107.88.166\]:25 closed by DROP in ACL
...

2020-02-05 01:13:30

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.142.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42339
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.68.142.52.			IN	A

;; AUTHORITY SECTION:
.			517	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 07:51:28 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 52.142.68.138.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 52.142.68.138.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
114.232.194.235	attack	2019-06-22T04:54:45.057084 X postfix/smtpd[20410]: warning: unknown[114.232.194.235]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-22T05:04:20.379396 X postfix/smtpd[22300]: warning: unknown[114.232.194.235]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-22T06:33:25.161298 X postfix/smtpd[34046]: warning: unknown[114.232.194.235]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-06-22 15:21:39
86.100.246.46	attack	Automatic report - Multiple web server 400 error code	2019-06-22 15:05:34
58.242.82.7	attackspambots	Triggered by Fail2Ban at Vostok web server	2019-06-22 15:21:01
114.232.42.110	attackspambots	2019-06-22T06:31:45.349312 X postfix/smtpd[34046]: warning: unknown[114.232.42.110]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-22T06:32:02.462843 X postfix/smtpd[34089]: warning: unknown[114.232.42.110]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-22T06:34:04.328082 X postfix/smtpd[34059]: warning: unknown[114.232.42.110]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-06-22 15:07:40
36.82.98.11	attackbotsspam	Unauthorized connection attempt from IP address 36.82.98.11 on Port 445(SMB)	2019-06-22 15:30:50
116.255.174.29	attack	POST //Config_Shell.php HTTP/1.1 etc.	2019-06-22 15:07:05
50.63.162.9	attackbotsspam	My Google account was trying to be accessed by the person in that ip address	2019-06-22 15:17:02
199.249.230.76	attackspam	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.249.230.76 user=root Failed password for root from 199.249.230.76 port 9015 ssh2 Failed password for root from 199.249.230.76 port 9015 ssh2 Failed password for root from 199.249.230.76 port 9015 ssh2 Failed password for root from 199.249.230.76 port 9015 ssh2	2019-06-22 15:10:23
103.119.66.56	attackbotsspam	Unauthorized connection attempt from IP address 103.119.66.56 on Port 445(SMB)	2019-06-22 15:44:02
14.161.19.54	attackspambots	Unauthorised access (Jun 22) SRC=14.161.19.54 LEN=52 TTL=117 ID=19375 DF TCP DPT=445 WINDOW=8192 SYN	2019-06-22 15:22:21
178.151.245.174	attackspambots	20 attempts against mh-misbehave-ban on pluto.magehost.pro	2019-06-22 15:25:46
109.252.25.181	attackspambots	Unauthorized connection attempt from IP address 109.252.25.181 on Port 445(SMB)	2019-06-22 15:23:56
121.232.0.250	attackspambots	2019-06-22T04:53:31.075959 X postfix/smtpd[20409]: warning: unknown[121.232.0.250]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-22T05:03:53.302949 X postfix/smtpd[22316]: warning: unknown[121.232.0.250]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-06-22T06:33:09.321501 X postfix/smtpd[34089]: warning: unknown[121.232.0.250]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-06-22 15:29:17
78.123.55.150	attackspam	Jun 21 23:19:49 cac1d2 sshd\[6143\]: Invalid user admin from 78.123.55.150 port 51451 Jun 21 23:19:49 cac1d2 sshd\[6143\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.123.55.150 Jun 21 23:19:51 cac1d2 sshd\[6143\]: Failed password for invalid user admin from 78.123.55.150 port 51451 ssh2 ...	2019-06-22 15:51:22
218.92.0.205	attack	Automatic report - Web App Attack	2019-06-22 15:14:53

最近上报的IP列表

138.68.142.129	138.68.142.107	118.179.38.86	138.68.143.103
138.68.143.100	138.68.142.190	138.68.143.12	138.68.143.126
138.68.143.142	138.68.143.44	138.68.143.187	138.68.143.25
138.68.143.212	138.68.143.72	138.68.143.9	138.68.143.47
138.68.144.111	138.68.144.139	118.179.42.19	138.68.144.173