138.68.19.249 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
138.68.191.85	attackproxy	Malicious IP / Malware	2024-04-26 12:55:20
138.68.19.73	attackbotsspam	Port 22 Scan, PTR: None	2020-04-05 05:16:55
138.68.191.198	attackbots	138.68.191.198 - - [07/Aug/2019:19:45:27 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.191.198 - - [07/Aug/2019:19:45:27 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.191.198 - - [07/Aug/2019:19:45:32 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.191.198 - - [07/Aug/2019:19:45:37 +0200] "POST /wp-login.php HTTP/1.1" 200 1489 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.191.198 - - [07/Aug/2019:19:45:38 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.191.198 - - [07/Aug/2019:19:45:39 +0200] "POST /wp-login.php HTTP/1.1" 200 1491 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-08-08 02:44:11
138.68.191.198	attack	xmlrpc attack	2019-06-23 20:38:01

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.19.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38424
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.68.19.249.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024120800 1800 900 604800 86400

;; Query time: 77 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 23:08:10 CST 2024
;; MSG SIZE  rcvd: 106

HOST信息:

249.19.68.138.in-addr.arpa domain name pointer testblog.thefunsizereader.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
249.19.68.138.in-addr.arpa	name = testblog.thefunsizereader.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
80.85.156.55	attack	80.85.156.55 - - [15/May/2020:14:24:14 +0200] "GET /wp-login.php HTTP/1.1" 200 6451 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 80.85.156.55 - - [15/May/2020:14:24:17 +0200] "POST /wp-login.php HTTP/1.1" 200 6702 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 80.85.156.55 - - [15/May/2020:14:24:19 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-16 00:28:41
185.175.93.23	attack	05/15/2020-11:42:56.749927 185.175.93.23 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-05-16 00:27:02
185.216.140.185	attack	SmallBizIT.US 2 packets to tcp(3389,5900)	2020-05-16 00:42:26
117.34.210.106	attackbots	2020-05-15T12:16:06.727350abusebot-7.cloudsearch.cf sshd[5852]: Invalid user lara from 117.34.210.106 port 53224 2020-05-15T12:16:06.734029abusebot-7.cloudsearch.cf sshd[5852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.34.210.106 2020-05-15T12:16:06.727350abusebot-7.cloudsearch.cf sshd[5852]: Invalid user lara from 117.34.210.106 port 53224 2020-05-15T12:16:08.652031abusebot-7.cloudsearch.cf sshd[5852]: Failed password for invalid user lara from 117.34.210.106 port 53224 ssh2 2020-05-15T12:20:02.412356abusebot-7.cloudsearch.cf sshd[6132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.34.210.106 user=root 2020-05-15T12:20:04.727208abusebot-7.cloudsearch.cf sshd[6132]: Failed password for root from 117.34.210.106 port 44000 ssh2 2020-05-15T12:24:17.059797abusebot-7.cloudsearch.cf sshd[6379]: Invalid user tester from 117.34.210.106 port 34774 ...	2020-05-16 00:31:30
185.104.29.10	attackbotsspam	/backup/	2020-05-16 00:31:10
222.186.175.182	attackspam	2020-05-15T13:07:18.916149xentho-1 sshd[514399]: Failed password for root from 222.186.175.182 port 53954 ssh2 2020-05-15T13:07:12.769799xentho-1 sshd[514399]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root 2020-05-15T13:07:14.466093xentho-1 sshd[514399]: Failed password for root from 222.186.175.182 port 53954 ssh2 2020-05-15T13:07:18.916149xentho-1 sshd[514399]: Failed password for root from 222.186.175.182 port 53954 ssh2 2020-05-15T13:07:23.566932xentho-1 sshd[514399]: Failed password for root from 222.186.175.182 port 53954 ssh2 2020-05-15T13:07:12.769799xentho-1 sshd[514399]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root 2020-05-15T13:07:14.466093xentho-1 sshd[514399]: Failed password for root from 222.186.175.182 port 53954 ssh2 2020-05-15T13:07:18.916149xentho-1 sshd[514399]: Failed password for root from 222.186.175.182 port 53954 ssh2 2020-0 ...	2020-05-16 01:12:10
63.240.240.74	attackbotsspam	"Unauthorized connection attempt on SSHD detected"	2020-05-16 00:51:29
186.193.222.22	attack	Automatic report - Banned IP Access	2020-05-16 01:01:44
123.16.138.48	attackbotsspam	May 14 11:34:37 scivo sshd[18830]: Address 123.16.138.48 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! May 14 11:34:37 scivo sshd[18830]: Invalid user adriana from 123.16.138.48 May 14 11:34:37 scivo sshd[18830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.16.138.48 May 14 11:34:39 scivo sshd[18830]: Failed password for invalid user adriana from 123.16.138.48 port 49030 ssh2 May 14 11:34:39 scivo sshd[18830]: Received disconnect from 123.16.138.48: 11: Bye Bye [preauth] May 14 11:47:59 scivo sshd[19655]: Address 123.16.138.48 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! May 14 11:47:59 scivo sshd[19655]: Invalid user test from 123.16.138.48 May 14 11:47:59 scivo sshd[19655]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.16.138.48 May 14 11:48:01 scivo sshd[19655]: Failed passwor........ -------------------------------	2020-05-16 00:31:57
178.62.0.138	attackspam	May 15 18:12:47 v22018086721571380 sshd[27017]: Failed password for invalid user radware from 178.62.0.138 port 43521 ssh2	2020-05-16 00:27:18
149.56.129.129	attackspambots	149.56.129.129 - - [15/May/2020:15:47:15 +0200] "GET /wp-login.php HTTP/1.1" 200 6539 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 149.56.129.129 - - [15/May/2020:15:47:16 +0200] "POST /wp-login.php HTTP/1.1" 200 6790 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 149.56.129.129 - - [15/May/2020:15:47:17 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-16 00:34:48
45.157.232.128	attack	Invalid user tbd from 45.157.232.128 port 54918	2020-05-16 00:26:32
197.218.165.45	attackspam	1589545402 - 05/15/2020 14:23:22 Host: 197.218.165.45/197.218.165.45 Port: 445 TCP Blocked	2020-05-16 01:08:11
67.205.135.65	attackspambots	May 15 17:23:40 gw1 sshd[7686]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.135.65 May 15 17:23:42 gw1 sshd[7686]: Failed password for invalid user psg from 67.205.135.65 port 33876 ssh2 ...	2020-05-16 00:53:31
46.165.245.154	attack	(mod_security) mod_security (id:210492) triggered by 46.165.245.154 (DE/Germany/-): 5 in the last 3600 secs	2020-05-16 01:07:21

最近上报的IP列表

205.186.153.132	79.219.198.221	238.162.5.5	160.15.245.75
224.220.116.56	146.136.211.12	103.109.56.79	8.210.57.174
124.106.1.235	15.109.219.241	127.178.151.113	199.117.212.112
172.171.126.66	83.178.103.139	200.152.222.46	211.119.221.224
9.44.75.141	71.253.57.105	14.34.101.25	181.145.16.130