138.68.216.55 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	" "	2019-08-31 09:47:00

相同子网IP讨论:

IP	类型	评论内容	时间
138.68.216.178	attackbotsspam	Port Scan detected from 138.68.216.178 (US/United States/zg-0905a-123.stretchoid.com). 4 hits in the last 165 seconds	2019-09-12 06:54:53
138.68.216.74	attackspam	port scan and connect, tcp 9200 (elasticsearch)	2019-09-08 15:30:11
138.68.216.141	attackbots	1 pkts, ports: TCP:5432	2019-09-07 22:17:39
138.68.216.254	attackspambots	scan z	2019-09-06 04:20:38
138.68.216.242	attackbots	failed_logins	2019-09-05 23:36:09
138.68.216.31	attack	Scanning random ports - tries to find possible vulnerable services	2019-09-01 16:43:45
138.68.216.47	attackbots	Scanning random ports - tries to find possible vulnerable services	2019-09-01 16:43:17
138.68.216.236	attack	Scanning random ports - tries to find possible vulnerable services	2019-09-01 16:41:47
138.68.216.232	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-31 00:15:26
138.68.216.47	attack	5672/tcp [2019-08-29]1pkt	2019-08-30 12:13:00

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.216.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59708
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.68.216.55.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019083001 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 31 09:46:53 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

55.216.68.138.in-addr.arpa domain name pointer zg-0829b-265.stretchoid.com.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
55.216.68.138.in-addr.arpa	name = zg-0829b-265.stretchoid.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
113.162.244.30	attack	Unauthorized connection attempt from IP address 113.162.244.30 on Port 445(SMB)	2020-07-15 19:32:07
147.135.253.94	attack	[2020-07-15 07:24:47] NOTICE[1150] chan_sip.c: Registration from '' failed for '147.135.253.94:51958' - Wrong password [2020-07-15 07:24:47] SECURITY[1167] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-07-15T07:24:47.951-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="758",SessionID="0x7fcb4c0aaa48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/147.135.253.94/51958",Challenge="58ac98b8",ReceivedChallenge="58ac98b8",ReceivedHash="ea07f7a6728667cdb6c6e805f656f6d0" [2020-07-15 07:25:54] NOTICE[1150] chan_sip.c: Registration from '' failed for '147.135.253.94:49289' - Wrong password [2020-07-15 07:25:54] SECURITY[1167] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-07-15T07:25:54.077-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="759",SessionID="0x7fcb4c2700b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/147.135.253.94 ...	2020-07-15 19:28:06
118.201.155.178	attackbotsspam	Unauthorized connection attempt from IP address 118.201.155.178 on Port 445(SMB)	2020-07-15 19:12:41
188.163.35.5	attackspam	Unauthorized connection attempt from IP address 188.163.35.5 on Port 445(SMB)	2020-07-15 19:27:50
114.31.9.194	attackspam	Unauthorized connection attempt from IP address 114.31.9.194 on Port 445(SMB)	2020-07-15 19:00:20
5.135.165.51	attackbots	Jul 15 13:16:50 rancher-0 sshd[336016]: Invalid user student from 5.135.165.51 port 52460 ...	2020-07-15 19:23:34
14.98.44.238	attack	Unauthorized connection attempt from IP address 14.98.44.238 on Port 445(SMB)	2020-07-15 18:59:20
51.132.11.195	attackspam	SSH Brute Force	2020-07-15 19:22:54
51.141.2.81	attack	Invalid user admin from 51.141.2.81 port 27252	2020-07-15 18:53:54
148.70.68.36	attackspambots	2020-07-15T05:16:03.589751morrigan.ad5gb.com sshd[3200956]: Failed password for invalid user leonardo from 148.70.68.36 port 36844 ssh2 2020-07-15T05:16:03.924319morrigan.ad5gb.com sshd[3200956]: Disconnected from invalid user leonardo 148.70.68.36 port 36844 [preauth]	2020-07-15 19:26:39
185.143.73.142	attackbotsspam	Jul 15 12:17:28 blackbee postfix/smtpd[9189]: warning: unknown[185.143.73.142]: SASL LOGIN authentication failed: authentication failure Jul 15 12:17:54 blackbee postfix/smtpd[9155]: warning: unknown[185.143.73.142]: SASL LOGIN authentication failed: authentication failure Jul 15 12:18:17 blackbee postfix/smtpd[9189]: warning: unknown[185.143.73.142]: SASL LOGIN authentication failed: authentication failure Jul 15 12:18:38 blackbee postfix/smtpd[9590]: warning: unknown[185.143.73.142]: SASL LOGIN authentication failed: authentication failure Jul 15 12:19:01 blackbee postfix/smtpd[9155]: warning: unknown[185.143.73.142]: SASL LOGIN authentication failed: authentication failure ...	2020-07-15 19:21:39
212.2.213.21	attackspambots	Unauthorized connection attempt from IP address 212.2.213.21 on Port 445(SMB)	2020-07-15 19:34:07
85.106.96.18	attackspambots	1594811540 - 07/15/2020 13:12:20 Host: 85.106.96.18/85.106.96.18 Port: 445 TCP Blocked	2020-07-15 19:24:03
20.52.37.203	attackbots	2020-07-15T12:52:28.7526421240 sshd\[24085\]: Invalid user admin from 20.52.37.203 port 17639 2020-07-15T12:52:28.7566671240 sshd\[24085\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.52.37.203 2020-07-15T12:52:30.5818931240 sshd\[24085\]: Failed password for invalid user admin from 20.52.37.203 port 17639 ssh2 ...	2020-07-15 19:00:49
52.242.125.203	attackspam	2020-07-15T12:43:15.007233ks3355764 sshd[21533]: Invalid user admin from 52.242.125.203 port 19868 2020-07-15T12:43:16.933447ks3355764 sshd[21533]: Failed password for invalid user admin from 52.242.125.203 port 19868 ssh2 ...	2020-07-15 18:58:07

最近上报的IP列表

185.205.218.28	27.186.143.150	114.237.109.160	82.64.77.30
218.64.35.235	120.85.56.219	113.215.188.144	49.89.252.130
61.176.227.135	74.27.162.29	180.249.41.39	134.255.220.223
185.150.2.234	177.92.27.30	23.100.62.210	149.56.218.47
83.189.179.32	232.34.121.2	34.74.99.116	140.208.83.34