138.68.16.14 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	UTC: 2019-11-30 port: 22/tcp	2019-12-01 19:34:19

相同子网IP讨论:

IP	类型	评论内容	时间
138.68.16.40	attackspam	invalid login attempt (elasticsearch)	2020-05-07 06:10:25
138.68.16.40	attackbots	5x Failed Password	2020-04-30 06:41:12
138.68.16.40	attackspambots	$f2bV_matches	2020-04-26 12:28:35
138.68.16.40	attack	DATE:2020-04-24 19:34:45, IP:138.68.16.40, PORT:ssh SSH brute force auth (docker-dc)	2020-04-25 02:25:43
138.68.16.40	attackspam	Invalid user sql from 138.68.16.40 port 53650	2020-04-18 08:00:40
138.68.16.40	attack	Invalid user asimov from 138.68.16.40 port 52156	2020-04-12 02:16:26
138.68.168.137	attackspambots	2020-03-24T18:24:04.338629shield sshd\[1720\]: Invalid user testuser from 138.68.168.137 port 41348 2020-03-24T18:24:04.342343shield sshd\[1720\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137 2020-03-24T18:24:06.326852shield sshd\[1720\]: Failed password for invalid user testuser from 138.68.168.137 port 41348 ssh2 2020-03-24T18:31:58.513381shield sshd\[3346\]: Invalid user jeanie from 138.68.168.137 port 59402 2020-03-24T18:31:58.516640shield sshd\[3346\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137	2020-03-25 02:52:35
138.68.168.137	attackspambots	2020-03-24T18:07:52.907199shield sshd\[30137\]: Invalid user gy from 138.68.168.137 port 33476 2020-03-24T18:07:52.913682shield sshd\[30137\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137 2020-03-24T18:07:55.128671shield sshd\[30137\]: Failed password for invalid user gy from 138.68.168.137 port 33476 ssh2 2020-03-24T18:11:50.402980shield sshd\[31146\]: Invalid user office from 138.68.168.137 port 42502 2020-03-24T18:11:50.410060shield sshd\[31146\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137	2020-03-25 02:18:32
138.68.168.137	attackbotsspam	2020-03-23T15:38:43.121143abusebot-7.cloudsearch.cf sshd[19459]: Invalid user newsletter from 138.68.168.137 port 35472 2020-03-23T15:38:43.126340abusebot-7.cloudsearch.cf sshd[19459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137 2020-03-23T15:38:43.121143abusebot-7.cloudsearch.cf sshd[19459]: Invalid user newsletter from 138.68.168.137 port 35472 2020-03-23T15:38:44.916504abusebot-7.cloudsearch.cf sshd[19459]: Failed password for invalid user newsletter from 138.68.168.137 port 35472 ssh2 2020-03-23T15:47:18.433090abusebot-7.cloudsearch.cf sshd[20039]: Invalid user vix from 138.68.168.137 port 51306 2020-03-23T15:47:18.438580abusebot-7.cloudsearch.cf sshd[20039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137 2020-03-23T15:47:18.433090abusebot-7.cloudsearch.cf sshd[20039]: Invalid user vix from 138.68.168.137 port 51306 2020-03-23T15:47:20.595192abusebot-7.cloudsearch.cf s ...	2020-03-24 02:02:33
138.68.16.40	attack	Invalid user genedimen from 138.68.16.40 port 33510	2020-03-18 07:54:51
138.68.16.40	attackbotsspam	SSH brute-force attempt	2020-03-17 04:25:31
138.68.168.137	attack	Mar 12 16:58:35 lanister sshd[28250]: Failed password for invalid user paul from 138.68.168.137 port 37160 ssh2 Mar 12 17:11:50 lanister sshd[28520]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137 user=root Mar 12 17:11:53 lanister sshd[28520]: Failed password for root from 138.68.168.137 port 39500 ssh2 Mar 12 17:16:49 lanister sshd[28595]: Invalid user jira from 138.68.168.137	2020-03-13 05:41:53
138.68.16.40	attackspambots	(sshd) Failed SSH login from 138.68.16.40 (US/United States/-): 10 in the last 3600 secs	2020-03-13 04:40:23
138.68.16.40	attackbotsspam	Mar 11 00:18:30 firewall sshd[28892]: Invalid user P4sswOrd from 138.68.16.40 Mar 11 00:18:33 firewall sshd[28892]: Failed password for invalid user P4sswOrd from 138.68.16.40 port 36674 ssh2 Mar 11 00:22:41 firewall sshd[28968]: Invalid user password from 138.68.16.40 ...	2020-03-11 11:28:14
138.68.168.137	attackbots	Mar 4 17:26:34 hcbbdb sshd\[8947\]: Invalid user plegrand from 138.68.168.137 Mar 4 17:26:34 hcbbdb sshd\[8947\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137 Mar 4 17:26:37 hcbbdb sshd\[8947\]: Failed password for invalid user plegrand from 138.68.168.137 port 53114 ssh2 Mar 4 17:35:44 hcbbdb sshd\[9933\]: Invalid user sshvpn from 138.68.168.137 Mar 4 17:35:44 hcbbdb sshd\[9933\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137	2020-03-05 01:43:06

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.16.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15506
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.68.16.14.			IN	A

;; AUTHORITY SECTION:
.			531	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120100 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 01 19:34:15 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 14.16.68.138.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 14.16.68.138.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
123.59.195.245	attackspam	$f2bV_matches	2020-06-28 07:10:13
218.92.0.219	attackbots	Jun 27 23:06:41 scw-6657dc sshd[24539]: Failed password for root from 218.92.0.219 port 15089 ssh2 Jun 27 23:06:41 scw-6657dc sshd[24539]: Failed password for root from 218.92.0.219 port 15089 ssh2 Jun 27 23:06:44 scw-6657dc sshd[24539]: Failed password for root from 218.92.0.219 port 15089 ssh2 ...	2020-06-28 07:07:04
34.68.127.147	attack	Jun 27 22:45:14 fhem-rasp sshd[16894]: Invalid user test2 from 34.68.127.147 port 35075 ...	2020-06-28 06:59:28
106.52.135.88	attackspam	Jun 28 00:48:53 lukav-desktop sshd\[12426\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.135.88 user=root Jun 28 00:48:54 lukav-desktop sshd\[12426\]: Failed password for root from 106.52.135.88 port 57848 ssh2 Jun 28 00:52:51 lukav-desktop sshd\[12478\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.135.88 user=root Jun 28 00:52:53 lukav-desktop sshd\[12478\]: Failed password for root from 106.52.135.88 port 46664 ssh2 Jun 28 00:56:54 lukav-desktop sshd\[12551\]: Invalid user rdp from 106.52.135.88	2020-06-28 06:39:35
45.236.111.72	attackspam	Unauthorized connection attempt from IP address 45.236.111.72 on Port 445(SMB)	2020-06-28 07:04:46
159.89.170.154	attack	Invalid user elli from 159.89.170.154 port 49126	2020-06-28 07:02:49
51.15.190.82	attack	1331. On Jun 27 2020 experienced a Brute Force SSH login attempt -> 1 unique times by 51.15.190.82.	2020-06-28 06:46:34
218.14.156.209	attack	2020-06-28T03:41:51.006745billing sshd[8060]: Invalid user git from 218.14.156.209 port 56518 2020-06-28T03:41:52.684166billing sshd[8060]: Failed password for invalid user git from 218.14.156.209 port 56518 ssh2 2020-06-28T03:47:23.787589billing sshd[19082]: Invalid user stephan from 218.14.156.209 port 41668 ...	2020-06-28 07:16:56
211.24.105.114	attackbots	Tried our host z.	2020-06-28 06:52:22
222.186.175.217	attackbotsspam	Jun 28 00:36:25 abendstille sshd\[11394\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root Jun 28 00:36:27 abendstille sshd\[11394\]: Failed password for root from 222.186.175.217 port 36298 ssh2 Jun 28 00:36:31 abendstille sshd\[11394\]: Failed password for root from 222.186.175.217 port 36298 ssh2 Jun 28 00:36:34 abendstille sshd\[11394\]: Failed password for root from 222.186.175.217 port 36298 ssh2 Jun 28 00:36:44 abendstille sshd\[11603\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root ...	2020-06-28 06:57:47
101.116.81.170	attackbotsspam	WordPress brute force	2020-06-28 06:42:28
103.68.32.99	attack	WordPress brute force	2020-06-28 06:40:19
88.249.243.203	attackspambots	Unauthorized connection attempt from IP address 88.249.243.203 on Port 445(SMB)	2020-06-28 07:01:24
112.243.125.176	attack	Jun 27 22:44:55 prod4 vsftpd\[31745\]: \[anonymous\] FAIL LOGIN: Client "112.243.125.176" Jun 27 22:45:03 prod4 vsftpd\[31756\]: \[www\] FAIL LOGIN: Client "112.243.125.176" Jun 27 22:45:11 prod4 vsftpd\[32116\]: \[www\] FAIL LOGIN: Client "112.243.125.176" Jun 27 22:45:24 prod4 vsftpd\[32129\]: \[www\] FAIL LOGIN: Client "112.243.125.176" Jun 27 22:45:28 prod4 vsftpd\[32151\]: \[www\] FAIL LOGIN: Client "112.243.125.176" ...	2020-06-28 06:41:34
112.196.9.88	attack	Invalid user rustserver from 112.196.9.88 port 52468	2020-06-28 07:10:42

最近上报的IP列表

160.197.212.187	114.255.82.107	44.33.236.140	66.109.153.234
149.71.51.137	140.129.236.31	35.249.114.191	174.206.166.76
41.117.144.50	135.196.110.175	189.244.124.207	124.180.111.128
112.119.104.121	87.52.235.71	76.33.59.19	206.78.139.94
1.30.137.36	13.22.53.86	190.153.222.250	159.26.167.99