138.68.218.43 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Hits on port : 5672	2019-08-30 12:10:53

相同子网IP讨论:

IP	类型	评论内容	时间
138.68.218.135	attack	" "	2020-01-11 00:39:21
138.68.218.135	attack	Fail2Ban Ban Triggered	2019-12-04 06:26:47
138.68.218.135	attackbots	138.68.218.135 was recorded 5 times by 5 hosts attempting to connect to the following ports: 2380. Incident counter (4h, 24h, all-time): 5, 7, 52	2019-11-12 00:49:08
138.68.218.135	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-07 12:11:46
138.68.218.135	attackbots	Honeypot hit.	2019-10-02 07:14:22
138.68.218.135	attackbotsspam	Port scan attempt detected by AWS-CCS, CTS, India	2019-09-22 18:16:47
138.68.218.135	attackspam	Hits on port : 8080	2019-09-15 17:40:19

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.218.43
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36967
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.68.218.43.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082901 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 30 12:10:48 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

43.218.68.138.in-addr.arpa domain name pointer zg-0829b-67.stretchoid.com.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
43.218.68.138.in-addr.arpa	name = zg-0829b-67.stretchoid.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
51.38.113.45	attackbots	Oct 28 20:37:01 php1 sshd\[12410\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.ip-51-38-113.eu user=root Oct 28 20:37:03 php1 sshd\[12410\]: Failed password for root from 51.38.113.45 port 59588 ssh2 Oct 28 20:40:52 php1 sshd\[12969\]: Invalid user db2inst4 from 51.38.113.45 Oct 28 20:40:52 php1 sshd\[12969\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.ip-51-38-113.eu Oct 28 20:40:54 php1 sshd\[12969\]: Failed password for invalid user db2inst4 from 51.38.113.45 port 42454 ssh2	2019-10-29 16:08:07
222.186.175.148	attackbots	Oct 29 03:40:33 TORMINT sshd\[15405\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root Oct 29 03:40:34 TORMINT sshd\[15405\]: Failed password for root from 222.186.175.148 port 30344 ssh2 Oct 29 03:40:39 TORMINT sshd\[15405\]: Failed password for root from 222.186.175.148 port 30344 ssh2 ...	2019-10-29 15:45:09
69.171.79.217	attack	2019-10-29T04:22:40.541588abusebot-6.cloudsearch.cf sshd\[24408\]: Invalid user Qwerty654321 from 69.171.79.217 port 37570	2019-10-29 16:05:46
185.175.93.105	attackbots	Scanning (more than 2 packets) random ports - tries to find possible vulnerable services	2019-10-29 15:47:04
113.141.189.247	attackspambots	10/29/2019-04:52:41.145211 113.141.189.247 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-10-29 15:40:02
83.14.199.49	attack	Oct 29 06:50:20 microserver sshd[27812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.14.199.49 user=root Oct 29 06:50:22 microserver sshd[27812]: Failed password for root from 83.14.199.49 port 57298 ssh2 Oct 29 06:54:22 microserver sshd[28024]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.14.199.49 user=root Oct 29 06:54:24 microserver sshd[28024]: Failed password for root from 83.14.199.49 port 40100 ssh2 Oct 29 06:58:18 microserver sshd[28623]: Invalid user ubuntu from 83.14.199.49 port 51136 Oct 29 07:09:57 microserver sshd[30063]: Invalid user web8p2 from 83.14.199.49 port 55994 Oct 29 07:09:57 microserver sshd[30063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.14.199.49 Oct 29 07:10:00 microserver sshd[30063]: Failed password for invalid user web8p2 from 83.14.199.49 port 55994 ssh2 Oct 29 07:13:59 microserver sshd[30705]: Invalid user onie from 83.14.199.49 port	2019-10-29 15:44:35
114.234.147.26	attackspambots	port scan and connect, tcp 23 (telnet)	2019-10-29 16:07:21
134.175.154.93	attackbots	Oct 29 08:18:04 venus sshd\[27521\]: Invalid user songv from 134.175.154.93 port 46360 Oct 29 08:18:04 venus sshd\[27521\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.154.93 Oct 29 08:18:06 venus sshd\[27521\]: Failed password for invalid user songv from 134.175.154.93 port 46360 ssh2 ...	2019-10-29 16:20:22
188.112.196.200	attackspam	[portscan] Port scan	2019-10-29 16:05:22
185.234.216.189	attack	this ip is attempting to access my server control panel	2019-10-29 15:41:51
49.88.112.67	attack	Oct 29 07:45:04 game-panel sshd[22745]: Failed password for root from 49.88.112.67 port 37702 ssh2 Oct 29 07:45:51 game-panel sshd[22773]: Failed password for root from 49.88.112.67 port 51352 ssh2	2019-10-29 15:54:11
54.38.142.117	attackspambots	Oct 29 08:20:39 ns381471 sshd[2549]: Failed password for root from 54.38.142.117 port 58446 ssh2	2019-10-29 16:04:41
178.128.90.40	attack	Oct 28 13:43:53 venus sshd[12337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.90.40 user=r.r Oct 28 13:43:55 venus sshd[12337]: Failed password for r.r from 178.128.90.40 port 47168 ssh2 Oct 28 13:48:28 venus sshd[12978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.90.40 user=r.r Oct 28 13:48:30 venus sshd[12978]: Failed password for r.r from 178.128.90.40 port 58110 ssh2 Oct 28 13:52:58 venus sshd[13721]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.90.40 user=r.r Oct 28 13:53:00 venus sshd[13721]: Failed password for r.r from 178.128.90.40 port 40824 ssh2 Oct 28 13:57:29 venus sshd[14359]: Invalid user prs from 178.128.90.40 port 51766 Oct 28 13:57:29 venus sshd[14359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.90.40 Oct 28 13:57:31 venus sshd[14359]: Failed p........ ------------------------------	2019-10-29 16:14:53
190.121.195.219	attackbotsspam	namecheap spam	2019-10-29 16:05:03
198.245.63.94	attack	Oct 29 08:08:57 venus sshd\[27360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.245.63.94 user=root Oct 29 08:08:59 venus sshd\[27360\]: Failed password for root from 198.245.63.94 port 50796 ssh2 Oct 29 08:13:26 venus sshd\[27428\]: Invalid user com from 198.245.63.94 port 43026 ...	2019-10-29 16:14:40

最近上报的IP列表

21.34.61.17	132.246.197.34	188.175.159.104	243.81.119.57
67.246.7.21	236.206.248.29	118.145.155.126	213.149.68.164
185.247.79.125	24.108.175.137	242.143.136.80	51.38.64.134
91.147.224.29	95.219.213.54	31.168.196.56	186.15.77.199
177.16.117.248	45.37.147.45	163.172.182.255	217.198.124.177