138.68.208.196

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	port scan and connect, tcp 465 (smtps)	2019-09-10 14:05:23

相同子网IP讨论:

IP	类型	评论内容	时间
138.68.208.8	proxy	aggressive VPN	2023-03-02 13:44:21
138.68.208.39	attackspambots	port scan and connect, tcp 27019 (mongodb-cluster-alt)	2019-09-12 10:38:27
138.68.208.175	attack	Hits on port : 4786	2019-09-10 14:01:28
138.68.208.157	attack	09/09/2019-21:20:20.000896 138.68.208.157 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-09-10 12:42:27
138.68.208.97	attackspam	firewall-block, port(s): 50000/tcp	2019-09-10 02:50:47
138.68.208.190	attackbotsspam	Portscan or hack attempt detected by psad/fwsnort	2019-09-09 18:11:54
138.68.208.157	attackbots	135/tcp 5672/tcp 5632/udp... [2019-09-06/08]5pkt,4pt.(tcp),1pt.(udp)	2019-09-09 12:12:58
138.68.208.175	attackspam	587/tcp 2362/udp 808/tcp [2019-09-06/08]3pkt	2019-09-09 12:10:41
138.68.208.152	attackspambots	port scan and connect, tcp 5432 (postgresql)	2019-09-09 12:05:11
138.68.208.25	attackspam	8080/tcp 995/tcp 8123/tcp... [2019-09-06/08]4pkt,4pt.(tcp)	2019-09-09 12:01:28
138.68.208.69	attackbotsspam	port scan and connect, tcp 2638 (sql-anywhere)	2019-09-09 11:37:28
138.68.208.159	attack	SASL Brute Force	2019-09-09 11:31:02
138.68.208.45	attackbotsspam	SASL Brute Force	2019-09-09 06:13:41
138.68.208.48	attackbots	Lines containing failures of 138.68.208.48 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=138.68.208.48	2019-09-09 04:16:38
138.68.208.149	attackbots	992/tcp 465/tcp 9042/tcp... [2019-09-06/07]5pkt,5pt.(tcp)	2019-09-08 20:47:03

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.208.196
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21445
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.68.208.196.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091000 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Sep 10 14:05:18 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

196.208.68.138.in-addr.arpa domain name pointer zg-0905a-76.stretchoid.com.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
196.208.68.138.in-addr.arpa	name = zg-0905a-76.stretchoid.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
110.77.135.229	attackbotsspam	TCP src-port=36231 dst-port=25 abuseat-org barracuda zen-spamhaus (749)	2019-08-29 06:34:19
109.88.38.3	attackspam	Aug 28 10:44:09 sachi sshd\[21936\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host-109-88-38-3.dynamic.voo.be user=root Aug 28 10:44:11 sachi sshd\[21936\]: Failed password for root from 109.88.38.3 port 34388 ssh2 Aug 28 10:48:19 sachi sshd\[22287\]: Invalid user cent from 109.88.38.3 Aug 28 10:48:19 sachi sshd\[22287\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host-109-88-38-3.dynamic.voo.be Aug 28 10:48:21 sachi sshd\[22287\]: Failed password for invalid user cent from 109.88.38.3 port 51442 ssh2	2019-08-29 06:24:05
5.196.23.137	attackspambots	WordPress brute force	2019-08-29 06:18:21
92.249.236.156	attack	Aug 28 15:22:51 plesk sshd[1528]: Invalid user bartek from 92.249.236.156 Aug 28 15:22:51 plesk sshd[1528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92-249-236-156.pool.digikabel.hu Aug 28 15:22:53 plesk sshd[1528]: Failed password for invalid user bartek from 92.249.236.156 port 36919 ssh2 Aug 28 15:22:53 plesk sshd[1528]: Received disconnect from 92.249.236.156: 11: Bye Bye [preauth] Aug 28 15:38:15 plesk sshd[2092]: Invalid user student from 92.249.236.156 Aug 28 15:38:15 plesk sshd[2092]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92-249-236-156.pool.digikabel.hu Aug 28 15:38:18 plesk sshd[2092]: Failed password for invalid user student from 92.249.236.156 port 50604 ssh2 Aug 28 15:38:18 plesk sshd[2092]: Received disconnect from 92.249.236.156: 11: Bye Bye [preauth] Aug 28 15:42:45 plesk sshd[2248]: Invalid user ghostname from 92.249.236.156 Aug 28 15:42:45 plesk sshd[2248........ -------------------------------	2019-08-29 06:29:34
82.68.4.160	attackspambots	Spam Timestamp : 28-Aug-19 14:13 BlockList Provider barracudacentral (750)	2019-08-29 06:30:38
54.37.136.170	attackspam	Aug 28 09:31:39 auw2 sshd\[13153\]: Invalid user mz from 54.37.136.170 Aug 28 09:31:39 auw2 sshd\[13153\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.ip-54-37-136.eu Aug 28 09:31:41 auw2 sshd\[13153\]: Failed password for invalid user mz from 54.37.136.170 port 43816 ssh2 Aug 28 09:35:46 auw2 sshd\[13566\]: Invalid user dixie from 54.37.136.170 Aug 28 09:35:46 auw2 sshd\[13566\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.ip-54-37-136.eu	2019-08-29 06:37:54
157.230.16.197	attack	Aug 28 22:56:00 vpn01 sshd\[4687\]: Invalid user sya from 157.230.16.197 Aug 28 22:56:00 vpn01 sshd\[4687\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.16.197 Aug 28 22:56:03 vpn01 sshd\[4687\]: Failed password for invalid user sya from 157.230.16.197 port 45895 ssh2	2019-08-29 06:45:10
42.115.138.180	attackbotsspam	Aug 29 00:34:25 vps647732 sshd[6936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.115.138.180 Aug 29 00:34:27 vps647732 sshd[6936]: Failed password for invalid user service from 42.115.138.180 port 34538 ssh2 ...	2019-08-29 06:38:25
185.70.186.139	attackspam	Hits on port 445	2019-08-29 06:53:00
178.62.33.38	attackbots	Aug 29 00:32:34 icinga sshd[23180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.33.38 Aug 29 00:32:36 icinga sshd[23180]: Failed password for invalid user donald from 178.62.33.38 port 50364 ssh2 ...	2019-08-29 06:42:57
23.129.64.206	attack	Invalid user user from 23.129.64.206 port 11325	2019-08-29 07:01:47
189.58.154.72	attackbots	$f2bV_matches	2019-08-29 06:47:52
118.97.188.105	attack	Aug 28 23:36:40 tux-35-217 sshd\[19103\]: Invalid user guan from 118.97.188.105 port 32930 Aug 28 23:36:40 tux-35-217 sshd\[19103\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.97.188.105 Aug 28 23:36:42 tux-35-217 sshd\[19103\]: Failed password for invalid user guan from 118.97.188.105 port 32930 ssh2 Aug 28 23:41:22 tux-35-217 sshd\[19146\]: Invalid user server from 118.97.188.105 port 51034 Aug 28 23:41:22 tux-35-217 sshd\[19146\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.97.188.105 ...	2019-08-29 06:21:09
200.34.227.145	attackspambots	Aug 28 22:09:31 MK-Soft-VM3 sshd\[15523\]: Invalid user worldwideweb from 200.34.227.145 port 45118 Aug 28 22:09:31 MK-Soft-VM3 sshd\[15523\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.34.227.145 Aug 28 22:09:33 MK-Soft-VM3 sshd\[15523\]: Failed password for invalid user worldwideweb from 200.34.227.145 port 45118 ssh2 ...	2019-08-29 06:52:35
203.129.213.98	attack	Aug 28 09:46:30 eola sshd[17364]: Invalid user ts from 203.129.213.98 port 43008 Aug 28 09:46:30 eola sshd[17364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.129.213.98 Aug 28 09:46:32 eola sshd[17364]: Failed password for invalid user ts from 203.129.213.98 port 43008 ssh2 Aug 28 09:46:32 eola sshd[17364]: Received disconnect from 203.129.213.98 port 43008:11: Bye Bye [preauth] Aug 28 09:46:32 eola sshd[17364]: Disconnected from 203.129.213.98 port 43008 [preauth] Aug 28 09:51:20 eola sshd[17558]: Invalid user polycom from 203.129.213.98 port 32880 Aug 28 09:51:20 eola sshd[17558]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.129.213.98 Aug 28 09:51:22 eola sshd[17558]: Failed password for invalid user polycom from 203.129.213.98 port 32880 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=203.129.213.98	2019-08-29 06:56:17

最近上报的IP列表

158.114.142.132	151.128.221.244	49.250.25.130	188.29.165.173
69.244.251.129	77.247.110.113	177.238.248.101	45.187.228.229
169.201.183.133	122.63.45.133	146.109.126.116	148.178.45.32
56.235.194.86	62.229.72.134	114.35.123.76	81.199.145.213
45.119.127.243	104.168.145.196	32.54.218.193	205.122.2.130