必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): unknown

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
138.68.168.137 attackspambots
2020-03-24T18:24:04.338629shield sshd\[1720\]: Invalid user testuser from 138.68.168.137 port 41348
2020-03-24T18:24:04.342343shield sshd\[1720\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137
2020-03-24T18:24:06.326852shield sshd\[1720\]: Failed password for invalid user testuser from 138.68.168.137 port 41348 ssh2
2020-03-24T18:31:58.513381shield sshd\[3346\]: Invalid user jeanie from 138.68.168.137 port 59402
2020-03-24T18:31:58.516640shield sshd\[3346\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137
2020-03-25 02:52:35
138.68.168.137 attackspambots
2020-03-24T18:07:52.907199shield sshd\[30137\]: Invalid user gy from 138.68.168.137 port 33476
2020-03-24T18:07:52.913682shield sshd\[30137\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137
2020-03-24T18:07:55.128671shield sshd\[30137\]: Failed password for invalid user gy from 138.68.168.137 port 33476 ssh2
2020-03-24T18:11:50.402980shield sshd\[31146\]: Invalid user office from 138.68.168.137 port 42502
2020-03-24T18:11:50.410060shield sshd\[31146\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137
2020-03-25 02:18:32
138.68.168.137 attackbotsspam
2020-03-23T15:38:43.121143abusebot-7.cloudsearch.cf sshd[19459]: Invalid user newsletter from 138.68.168.137 port 35472
2020-03-23T15:38:43.126340abusebot-7.cloudsearch.cf sshd[19459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137
2020-03-23T15:38:43.121143abusebot-7.cloudsearch.cf sshd[19459]: Invalid user newsletter from 138.68.168.137 port 35472
2020-03-23T15:38:44.916504abusebot-7.cloudsearch.cf sshd[19459]: Failed password for invalid user newsletter from 138.68.168.137 port 35472 ssh2
2020-03-23T15:47:18.433090abusebot-7.cloudsearch.cf sshd[20039]: Invalid user vix from 138.68.168.137 port 51306
2020-03-23T15:47:18.438580abusebot-7.cloudsearch.cf sshd[20039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137
2020-03-23T15:47:18.433090abusebot-7.cloudsearch.cf sshd[20039]: Invalid user vix from 138.68.168.137 port 51306
2020-03-23T15:47:20.595192abusebot-7.cloudsearch.cf s
...
2020-03-24 02:02:33
138.68.168.137 attack
Mar 12 16:58:35 lanister sshd[28250]: Failed password for invalid user paul from 138.68.168.137 port 37160 ssh2
Mar 12 17:11:50 lanister sshd[28520]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137  user=root
Mar 12 17:11:53 lanister sshd[28520]: Failed password for root from 138.68.168.137 port 39500 ssh2
Mar 12 17:16:49 lanister sshd[28595]: Invalid user jira from 138.68.168.137
2020-03-13 05:41:53
138.68.168.137 attackbots
Mar  4 17:26:34 hcbbdb sshd\[8947\]: Invalid user plegrand from 138.68.168.137
Mar  4 17:26:34 hcbbdb sshd\[8947\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137
Mar  4 17:26:37 hcbbdb sshd\[8947\]: Failed password for invalid user plegrand from 138.68.168.137 port 53114 ssh2
Mar  4 17:35:44 hcbbdb sshd\[9933\]: Invalid user sshvpn from 138.68.168.137
Mar  4 17:35:44 hcbbdb sshd\[9933\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137
2020-03-05 01:43:06
138.68.168.137 attackspam
Feb 28 23:37:06 ns381471 sshd[5202]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137
Feb 28 23:37:08 ns381471 sshd[5202]: Failed password for invalid user php from 138.68.168.137 port 39826 ssh2
2020-02-29 06:46:39
138.68.168.137 attack
Feb 27 19:10:22 web1 sshd\[15937\]: Invalid user deployer from 138.68.168.137
Feb 27 19:10:22 web1 sshd\[15937\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137
Feb 27 19:10:24 web1 sshd\[15937\]: Failed password for invalid user deployer from 138.68.168.137 port 38600 ssh2
Feb 27 19:17:16 web1 sshd\[16908\]: Invalid user wangxue from 138.68.168.137
Feb 27 19:17:16 web1 sshd\[16908\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137
2020-02-28 13:29:17
138.68.168.137 attackspambots
Feb 11 14:48:11 nextcloud sshd\[20955\]: Invalid user sqn from 138.68.168.137
Feb 11 14:48:11 nextcloud sshd\[20955\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137
Feb 11 14:48:13 nextcloud sshd\[20955\]: Failed password for invalid user sqn from 138.68.168.137 port 37670 ssh2
2020-02-11 22:39:50
138.68.168.137 attack
Invalid user vidushi from 138.68.168.137 port 50096
2020-02-02 15:32:13
138.68.168.137 attackspam
Dec 19 03:24:30 dallas01 sshd[28204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137
Dec 19 03:24:32 dallas01 sshd[28204]: Failed password for invalid user guenter from 138.68.168.137 port 60208 ssh2
Dec 19 03:29:37 dallas01 sshd[31708]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137
2020-01-28 04:14:22
138.68.168.137 attackspam
Jan 24 05:52:15 vps691689 sshd[23745]: Failed password for root from 138.68.168.137 port 55866 ssh2
Jan 24 05:55:04 vps691689 sshd[23888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137
...
2020-01-24 13:08:12
138.68.168.137 attack
Dec 27 21:42:07 cavern sshd[31147]: Failed password for root from 138.68.168.137 port 50310 ssh2
2019-12-28 05:11:14
138.68.168.137 attackbots
Dec 22 20:00:47 server sshd\[5095\]: Invalid user traub from 138.68.168.137
Dec 22 20:00:47 server sshd\[5095\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137 
Dec 22 20:00:49 server sshd\[5095\]: Failed password for invalid user traub from 138.68.168.137 port 44168 ssh2
Dec 22 20:06:59 server sshd\[6636\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137  user=ftp
Dec 22 20:07:01 server sshd\[6636\]: Failed password for ftp from 138.68.168.137 port 36478 ssh2
...
2019-12-23 01:07:16
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.168.147
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14439
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.68.168.147.			IN	A

;; AUTHORITY SECTION:
.			479	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 25 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 07:51:55 CST 2022
;; MSG SIZE  rcvd: 107
HOST信息:
Host 147.168.68.138.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 147.168.68.138.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
186.4.156.9 attack
Unauthorized connection attempt detected from IP address 186.4.156.9 to port 445 [T]
2020-06-05 01:10:36
103.25.134.246 attackbots
Jun  4 13:57:21 mail.srvfarm.net postfix/smtps/smtpd[2498063]: warning: unknown[103.25.134.246]: SASL PLAIN authentication failed: 
Jun  4 13:57:21 mail.srvfarm.net postfix/smtps/smtpd[2498063]: lost connection after AUTH from unknown[103.25.134.246]
Jun  4 13:58:39 mail.srvfarm.net postfix/smtps/smtpd[2498764]: warning: unknown[103.25.134.246]: SASL PLAIN authentication failed: 
Jun  4 13:58:40 mail.srvfarm.net postfix/smtps/smtpd[2498764]: lost connection after AUTH from unknown[103.25.134.246]
Jun  4 14:03:01 mail.srvfarm.net postfix/smtps/smtpd[2515942]: warning: unknown[103.25.134.246]: SASL PLAIN authentication failed:
2020-06-05 01:23:03
117.50.126.15 attack
2020-06-04T15:14:09.686287vps773228.ovh.net sshd[24523]: Failed password for root from 117.50.126.15 port 39651 ssh2
2020-06-04T15:18:34.562059vps773228.ovh.net sshd[24583]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.126.15  user=root
2020-06-04T15:18:36.985633vps773228.ovh.net sshd[24583]: Failed password for root from 117.50.126.15 port 21944 ssh2
2020-06-04T15:23:07.861348vps773228.ovh.net sshd[24637]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.126.15  user=root
2020-06-04T15:23:09.763017vps773228.ovh.net sshd[24637]: Failed password for root from 117.50.126.15 port 4243 ssh2
...
2020-06-05 01:13:25
176.74.218.247 attackbots
Lines containing failures of 176.74.218.247
Jun  4 13:46:41 shared07 sshd[7896]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.74.218.247  user=r.r
Jun  4 13:46:43 shared07 sshd[7896]: Failed password for r.r from 176.74.218.247 port 49228 ssh2
Jun  4 13:46:43 shared07 sshd[7896]: Received disconnect from 176.74.218.247 port 49228:11: Bye Bye [preauth]
Jun  4 13:46:43 shared07 sshd[7896]: Disconnected from authenticating user r.r 176.74.218.247 port 49228 [preauth]
Jun  4 13:55:01 shared07 sshd[10263]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.74.218.247  user=r.r


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=176.74.218.247
2020-06-05 01:15:12
104.8.247.220 attack
tcp 23
2020-06-05 01:27:02
137.116.128.105 attack
SSH bruteforce
2020-06-05 01:14:29
5.142.81.18 attack
Jun  4 14:50:02 server5 sshd[24605]: User admin from 5.142.81.18 not allowed because not listed in AllowUsers
Jun  4 14:50:02 server5 sshd[24605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.142.81.18  user=admin
Jun  4 14:50:05 server5 sshd[24605]: Failed password for invalid user admin from 5.142.81.18 port 45429 ssh2
Jun  4 14:50:05 server5 sshd[24605]: Connection closed by 5.142.81.18 port 45429 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=5.142.81.18
2020-06-05 01:05:07
45.143.223.56 attackbotsspam
2020-06-04T14:04:26.983616 X postfix/smtpd[508289]: NOQUEUE: reject: RCPT from unknown[45.143.223.56]: 554 5.7.1 Service unavailable; Client host [45.143.223.56] blocked using zen.spamhaus.org; from= to= proto=ESMTP helo=
2020-06-05 01:12:46
113.88.144.102 attackspambots
Jun  4 18:30:19 mail.srvfarm.net postfix/smtpd[2613702]: NOQUEUE: reject: RCPT from unknown[113.88.144.102]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=SMTP helo=
Jun  4 18:30:20 mail.srvfarm.net postfix/smtpd[2613702]: lost connection after RCPT from unknown[113.88.144.102]
Jun  4 18:30:20 mail.srvfarm.net postfix/smtpd[2613724]: NOQUEUE: reject: RCPT from unknown[113.88.144.102]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=SMTP helo=
Jun  4 18:30:20 mail.srvfarm.net postfix/smtpd[2613724]: lost connection after RCPT from unknown[113.88.144.102]
Jun  4 18:30:57 mail.srvfarm.net postfix/smtpd[2613975]: NOQUEUE: reject: RCPT from unknown[113.88.144.102]: 450 4.1.8 : Sender address rejected: Domain not found; from= to=
2020-06-05 01:22:22
58.213.155.227 attackbotsspam
SSH Brute-Forcing (server1)
2020-06-05 01:20:53
222.186.15.62 attackbotsspam
Jun  4 19:21:50 abendstille sshd\[12811\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.62  user=root
Jun  4 19:21:52 abendstille sshd\[12811\]: Failed password for root from 222.186.15.62 port 53324 ssh2
Jun  4 19:21:58 abendstille sshd\[12886\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.62  user=root
Jun  4 19:22:00 abendstille sshd\[12886\]: Failed password for root from 222.186.15.62 port 22362 ssh2
Jun  4 19:22:03 abendstille sshd\[12886\]: Failed password for root from 222.186.15.62 port 22362 ssh2
...
2020-06-05 01:26:30
167.99.3.3 attackbots
$f2bV_matches
2020-06-05 01:17:43
45.249.94.208 attack
Jun  4 18:36:35 ns381471 sshd[16621]: Failed password for root from 45.249.94.208 port 39034 ssh2
2020-06-05 01:12:15
182.75.115.59 attackbotsspam
Jun  4 18:45:07 vps639187 sshd\[11087\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.75.115.59  user=root
Jun  4 18:45:09 vps639187 sshd\[11087\]: Failed password for root from 182.75.115.59 port 39690 ssh2
Jun  4 18:49:10 vps639187 sshd\[11108\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.75.115.59  user=root
...
2020-06-05 00:58:48
82.65.29.31 attackspam
prod11
...
2020-06-05 00:48:00

最近上报的IP列表

118.179.45.190 138.68.168.224 138.68.168.121 138.68.168.185
138.68.168.211 138.68.168.7 138.68.168.149 138.68.168.99
138.68.168.136 138.68.168.85 138.68.168.60 138.68.168.64
118.179.45.61 138.68.169.112 138.68.169.200 138.68.169.53
138.68.169.18 138.68.169.118 138.68.169.192 138.68.169.232