138.68.226.42 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	email spam	2019-12-17 16:23:44

相同子网IP讨论:

IP	类型	评论内容	时间
138.68.226.175	attack	k+ssh-bruteforce	2020-10-11 03:58:06
138.68.226.175	attackbots	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "test" at 2020-10-10T10:41:46Z	2020-10-10 19:52:49
138.68.226.234	attackspambots	2020-09-22T21:25:12.592896hostname sshd[12805]: Failed password for invalid user diego from 138.68.226.234 port 43930 ssh2 ...	2020-09-23 02:38:45
138.68.226.234	attackbotsspam	TCP ports : 16483 / 29795	2020-09-22 18:44:20
138.68.226.234	attackspam	TCP port : 22600	2020-09-19 21:23:47
138.68.226.234	attackbotsspam	(sshd) Failed SSH login from 138.68.226.234 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 19 00:00:53 optimus sshd[23873]: Invalid user user3 from 138.68.226.234 Sep 19 00:00:53 optimus sshd[23873]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.226.234 Sep 19 00:00:55 optimus sshd[23873]: Failed password for invalid user user3 from 138.68.226.234 port 41596 ssh2 Sep 19 00:05:49 optimus sshd[25393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.226.234 user=root Sep 19 00:05:51 optimus sshd[25393]: Failed password for root from 138.68.226.234 port 51150 ssh2	2020-09-19 13:16:53
138.68.226.234	attackbots	" "	2020-09-19 04:55:25
138.68.226.175	attackbotsspam	frenzy	2020-09-11 21:42:37
138.68.226.175	attackbotsspam	Sep 11 07:31:35 inter-technics sshd[20686]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.226.175 user=root Sep 11 07:31:37 inter-technics sshd[20686]: Failed password for root from 138.68.226.175 port 37212 ssh2 Sep 11 07:35:51 inter-technics sshd[20881]: Invalid user oracle from 138.68.226.175 port 50748 Sep 11 07:35:51 inter-technics sshd[20881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.226.175 Sep 11 07:35:51 inter-technics sshd[20881]: Invalid user oracle from 138.68.226.175 port 50748 Sep 11 07:35:53 inter-technics sshd[20881]: Failed password for invalid user oracle from 138.68.226.175 port 50748 ssh2 ...	2020-09-11 13:50:55
138.68.226.175	attack	Sep 10 17:53:29 gospond sshd[23088]: Failed password for root from 138.68.226.175 port 41844 ssh2 Sep 10 17:57:36 gospond sshd[23141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.226.175 user=root Sep 10 17:57:38 gospond sshd[23141]: Failed password for root from 138.68.226.175 port 45474 ssh2 ...	2020-09-11 01:23:18
138.68.226.175	attackspambots	2020-09-10T14:51:20.840025hostname sshd[60951]: Failed password for root from 138.68.226.175 port 45896 ssh2 2020-09-10T14:55:12.194179hostname sshd[61411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.226.175 user=root 2020-09-10T14:55:14.149557hostname sshd[61411]: Failed password for root from 138.68.226.175 port 51478 ssh2 ...	2020-09-10 16:42:49
138.68.226.175	attackspam	Unauthorized SSH login attempts	2020-09-10 07:18:29
138.68.226.175	attackbotsspam	Sep 9 21:10:58 dhoomketu sshd[2978251]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.226.175 Sep 9 21:10:58 dhoomketu sshd[2978251]: Invalid user dstat from 138.68.226.175 port 60758 Sep 9 21:10:59 dhoomketu sshd[2978251]: Failed password for invalid user dstat from 138.68.226.175 port 60758 ssh2 Sep 9 21:13:19 dhoomketu sshd[2978267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.226.175 user=root Sep 9 21:13:21 dhoomketu sshd[2978267]: Failed password for root from 138.68.226.175 port 40910 ssh2 ...	2020-09-09 23:57:49
138.68.226.175	attackbotsspam	...	2020-09-09 17:29:17
138.68.226.175	attack	Invalid user test from 138.68.226.175 port 35506	2020-09-05 21:09:45

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.226.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27960
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.68.226.42.			IN	A

;; AUTHORITY SECTION:
.			457	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121700 1800 900 604800 86400

;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 17 16:23:38 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

42.226.68.138.in-addr.arpa has no PTR record

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
42.226.68.138.in-addr.arpa	name = katrinden.ewaldweb.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
103.253.107.43	attackspam	SSH Brute Force	2019-10-09 03:42:51
54.36.182.244	attack	Oct 8 21:59:43 SilenceServices sshd[26209]: Failed password for root from 54.36.182.244 port 59832 ssh2 Oct 8 22:02:59 SilenceServices sshd[27100]: Failed password for root from 54.36.182.244 port 41342 ssh2	2019-10-09 04:22:02
148.70.84.130	attackbots	Automatic report - Banned IP Access	2019-10-09 04:06:04
123.126.34.54	attack	Oct 8 08:22:01 sachi sshd\[17821\]: Invalid user Man@2017 from 123.126.34.54 Oct 8 08:22:01 sachi sshd\[17821\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.126.34.54 Oct 8 08:22:04 sachi sshd\[17821\]: Failed password for invalid user Man@2017 from 123.126.34.54 port 36092 ssh2 Oct 8 08:26:02 sachi sshd\[18176\]: Invalid user Haslo123456 from 123.126.34.54 Oct 8 08:26:02 sachi sshd\[18176\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.126.34.54	2019-10-09 03:51:51
159.203.198.34	attackspambots	Oct 8 21:23:17 MK-Soft-VM4 sshd[30037]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.198.34 Oct 8 21:23:19 MK-Soft-VM4 sshd[30037]: Failed password for invalid user C3ntos@2018 from 159.203.198.34 port 59404 ssh2 ...	2019-10-09 03:53:31
106.12.70.126	attackbotsspam	Oct 8 19:03:26 dedicated sshd[907]: Invalid user P4$$2017 from 106.12.70.126 port 42632	2019-10-09 03:52:46
222.186.52.124	attackbots	Oct 8 10:04:58 kapalua sshd\[14309\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.52.124 user=root Oct 8 10:05:00 kapalua sshd\[14309\]: Failed password for root from 222.186.52.124 port 19458 ssh2 Oct 8 10:05:02 kapalua sshd\[14309\]: Failed password for root from 222.186.52.124 port 19458 ssh2 Oct 8 10:05:04 kapalua sshd\[14309\]: Failed password for root from 222.186.52.124 port 19458 ssh2 Oct 8 10:07:16 kapalua sshd\[14504\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.52.124 user=root	2019-10-09 04:07:25
212.129.53.177	attackbotsspam	Oct 9 02:18:18 webhost01 sshd[4471]: Failed password for root from 212.129.53.177 port 46043 ssh2 ...	2019-10-09 03:42:21
40.73.59.55	attackspambots	2019-10-08T07:27:03.5647871495-001 sshd\[1292\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.59.55 user=root 2019-10-08T07:27:05.4493161495-001 sshd\[1292\]: Failed password for root from 40.73.59.55 port 51866 ssh2 2019-10-08T07:31:56.0812471495-001 sshd\[1673\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.59.55 user=root 2019-10-08T07:31:57.8554571495-001 sshd\[1673\]: Failed password for root from 40.73.59.55 port 59560 ssh2 2019-10-08T07:36:36.0356011495-001 sshd\[2003\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.59.55 user=root 2019-10-08T07:36:37.7797731495-001 sshd\[2003\]: Failed password for root from 40.73.59.55 port 38980 ssh2 ...	2019-10-09 03:59:24
5.39.77.117	attackbots	Oct 8 18:52:39 vps647732 sshd[13315]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.39.77.117 Oct 8 18:52:40 vps647732 sshd[13315]: Failed password for invalid user Grande123 from 5.39.77.117 port 59462 ssh2 ...	2019-10-09 04:03:29
106.13.38.227	attackspam	Oct 8 21:15:22 bouncer sshd\[1420\]: Invalid user P4ssw0rd@2017 from 106.13.38.227 port 59458 Oct 8 21:15:22 bouncer sshd\[1420\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.38.227 Oct 8 21:15:24 bouncer sshd\[1420\]: Failed password for invalid user P4ssw0rd@2017 from 106.13.38.227 port 59458 ssh2 ...	2019-10-09 03:38:37
222.186.175.220	attackbots	Oct 8 19:56:11 *** sshd[30170]: User root from 222.186.175.220 not allowed because not listed in AllowUsers	2019-10-09 04:02:10
35.222.149.161	attackbotsspam	Oct 8 11:44:23 TCP Attack: SRC=35.222.149.161 DST=[Masked] LEN=40 TOS=0x00 PREC=0x00 TTL=119 PROTO=TCP SPT=35445 DPT=1000 WINDOW=65535 RES=0x00 SYN URGP=0	2019-10-09 03:39:30
148.70.65.31	attack	2019-10-08T16:27:17.843707shield sshd\[21237\]: Invalid user Wolf@2017 from 148.70.65.31 port 46909 2019-10-08T16:27:17.849916shield sshd\[21237\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.65.31 2019-10-08T16:27:19.742248shield sshd\[21237\]: Failed password for invalid user Wolf@2017 from 148.70.65.31 port 46909 ssh2 2019-10-08T16:33:22.787053shield sshd\[21923\]: Invalid user Photo2017 from 148.70.65.31 port 29148 2019-10-08T16:33:22.791361shield sshd\[21923\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.65.31	2019-10-09 03:46:58
206.189.92.150	attackbotsspam	Oct 8 13:59:28 ns381471 sshd[20437]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.92.150 Oct 8 13:59:31 ns381471 sshd[20437]: Failed password for invalid user Windows2017 from 206.189.92.150 port 38386 ssh2 Oct 8 14:03:52 ns381471 sshd[20587]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.92.150	2019-10-09 03:37:58

最近上报的IP列表

200.29.109.112	191.6.135.86	190.52.168.20	188.214.104.95
188.18.54.242	187.95.149.26	5.66.135.175	126.208.157.152
49.100.10.161	162.144.126.34	246.123.165.47	229.127.1.219
139.219.28.13	208.131.5.150	106.242.204.100	103.233.122.180
88.75.146.125	80.64.172.68	76.80.210.138	69.12.75.16