138.68.29.17 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
138.68.29.69	attackspambots	Apr 26 19:01:23 master sshd[32396]: Failed password for invalid user pmc2 from 138.68.29.69 port 53048 ssh2	2020-04-27 04:16:59
138.68.29.52	attack	Oct 1 02:23:11 hpm sshd\[14787\]: Invalid user alexander from 138.68.29.52 Oct 1 02:23:11 hpm sshd\[14787\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.29.52 Oct 1 02:23:14 hpm sshd\[14787\]: Failed password for invalid user alexander from 138.68.29.52 port 55570 ssh2 Oct 1 02:27:07 hpm sshd\[15092\]: Invalid user bianka from 138.68.29.52 Oct 1 02:27:07 hpm sshd\[15092\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.29.52	2019-10-02 03:50:16
138.68.29.52	attackspambots	[ssh] SSH attack	2019-09-30 06:56:04
138.68.29.52	attackbots	Sep 23 15:11:59 game-panel sshd[24868]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.29.52 Sep 23 15:12:02 game-panel sshd[24868]: Failed password for invalid user quagga from 138.68.29.52 port 38782 ssh2 Sep 23 15:15:53 game-panel sshd[24986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.29.52	2019-09-23 23:19:26
138.68.29.52	attackspambots	Sep 23 06:58:07 hcbbdb sshd\[19576\]: Invalid user yoko from 138.68.29.52 Sep 23 06:58:07 hcbbdb sshd\[19576\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.29.52 Sep 23 06:58:09 hcbbdb sshd\[19576\]: Failed password for invalid user yoko from 138.68.29.52 port 39198 ssh2 Sep 23 07:01:54 hcbbdb sshd\[20024\]: Invalid user ci from 138.68.29.52 Sep 23 07:01:54 hcbbdb sshd\[20024\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.29.52	2019-09-23 15:09:24
138.68.29.52	attackspambots	Automatic report - Banned IP Access	2019-09-17 07:01:42
138.68.29.52	attackbots	Sep 11 23:31:42 vps691689 sshd[4760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.29.52 Sep 11 23:31:44 vps691689 sshd[4760]: Failed password for invalid user 123456 from 138.68.29.52 port 32898 ssh2 ...	2019-09-12 05:49:34
138.68.29.52	attackbotsspam	Sep 7 05:00:30 site2 sshd\[6854\]: Invalid user usuario from 138.68.29.52Sep 7 05:00:32 site2 sshd\[6854\]: Failed password for invalid user usuario from 138.68.29.52 port 36966 ssh2Sep 7 05:04:14 site2 sshd\[7084\]: Invalid user ubuntu from 138.68.29.52Sep 7 05:04:15 site2 sshd\[7084\]: Failed password for invalid user ubuntu from 138.68.29.52 port 51432 ssh2Sep 7 05:08:09 site2 sshd\[7412\]: Invalid user esbuser from 138.68.29.52Sep 7 05:08:10 site2 sshd\[7412\]: Failed password for invalid user esbuser from 138.68.29.52 port 37690 ssh2 ...	2019-09-07 10:20:22
138.68.29.52	attack	Sep 3 19:13:13 tdfoods sshd\[5242\]: Invalid user chu from 138.68.29.52 Sep 3 19:13:13 tdfoods sshd\[5242\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.29.52 Sep 3 19:13:15 tdfoods sshd\[5242\]: Failed password for invalid user chu from 138.68.29.52 port 34500 ssh2 Sep 3 19:17:17 tdfoods sshd\[5658\]: Invalid user zq from 138.68.29.52 Sep 3 19:17:17 tdfoods sshd\[5658\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.29.52	2019-09-04 13:47:24
138.68.29.52	attackbotsspam	Aug 30 02:19:58 localhost sshd\[5924\]: Invalid user gerrit2 from 138.68.29.52 port 57218 Aug 30 02:19:58 localhost sshd\[5924\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.29.52 Aug 30 02:20:00 localhost sshd\[5924\]: Failed password for invalid user gerrit2 from 138.68.29.52 port 57218 ssh2	2019-08-30 08:56:40
138.68.29.52	attack	Aug 26 06:25:11 MK-Soft-Root2 sshd\[24665\]: Invalid user wangtao from 138.68.29.52 port 49090 Aug 26 06:25:11 MK-Soft-Root2 sshd\[24665\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.29.52 Aug 26 06:25:13 MK-Soft-Root2 sshd\[24665\]: Failed password for invalid user wangtao from 138.68.29.52 port 49090 ssh2 ...	2019-08-26 18:23:20
138.68.29.52	attackspambots	Aug 23 05:32:31 vps200512 sshd\[21938\]: Invalid user navneet from 138.68.29.52 Aug 23 05:32:31 vps200512 sshd\[21938\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.29.52 Aug 23 05:32:33 vps200512 sshd\[21938\]: Failed password for invalid user navneet from 138.68.29.52 port 33992 ssh2 Aug 23 05:36:40 vps200512 sshd\[22137\]: Invalid user veronica from 138.68.29.52 Aug 23 05:36:40 vps200512 sshd\[22137\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.29.52	2019-08-23 18:12:19
138.68.29.52	attackbots	Aug 19 19:54:03 MK-Soft-VM3 sshd\[9720\]: Invalid user mihai from 138.68.29.52 port 44354 Aug 19 19:54:03 MK-Soft-VM3 sshd\[9720\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.29.52 Aug 19 19:54:05 MK-Soft-VM3 sshd\[9720\]: Failed password for invalid user mihai from 138.68.29.52 port 44354 ssh2 ...	2019-08-20 10:52:40
138.68.29.52	attack	Aug 16 12:16:58 hpm sshd\[30356\]: Invalid user test from 138.68.29.52 Aug 16 12:16:58 hpm sshd\[30356\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.29.52 Aug 16 12:17:00 hpm sshd\[30356\]: Failed password for invalid user test from 138.68.29.52 port 60172 ssh2 Aug 16 12:21:16 hpm sshd\[30737\]: Invalid user yellow from 138.68.29.52 Aug 16 12:21:16 hpm sshd\[30737\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.29.52	2019-08-17 07:39:16
138.68.29.52	attack	Aug 8 03:51:34 dedicated sshd[24541]: Invalid user nagios from 138.68.29.52 port 35556	2019-08-08 09:56:24

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.29.17
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14774
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.68.29.17.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071500 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 15 13:36:31 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 17.29.68.138.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 17.29.68.138.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
211.43.13.243	attackbotsspam	web-1 [ssh] SSH Attack	2020-08-04 06:23:42
104.244.73.194	attackspambots	Aug 3 22:36:08 debian-2gb-nbg1-2 kernel: \[18745438.105322\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=104.244.73.194 DST=195.201.40.59 LEN=57 TOS=0x00 PREC=0x00 TTL=243 ID=54321 PROTO=UDP SPT=35968 DPT=53413 LEN=37	2020-08-04 05:57:28
164.90.214.5	attackbots	Aug 3 16:35:36 Tower sshd[11193]: Connection from 164.90.214.5 port 42216 on 192.168.10.220 port 22 rdomain "" Aug 3 16:35:38 Tower sshd[11193]: Failed password for root from 164.90.214.5 port 42216 ssh2 Aug 3 16:35:38 Tower sshd[11193]: Received disconnect from 164.90.214.5 port 42216:11: Bye Bye [preauth] Aug 3 16:35:38 Tower sshd[11193]: Disconnected from authenticating user root 164.90.214.5 port 42216 [preauth]	2020-08-04 06:16:42
176.193.64.187	attack	Aug 3 13:34:44 pixelmemory sshd[519606]: Failed password for root from 176.193.64.187 port 42930 ssh2 Aug 3 13:38:45 pixelmemory sshd[530252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.193.64.187 user=root Aug 3 13:38:46 pixelmemory sshd[530252]: Failed password for root from 176.193.64.187 port 55688 ssh2 Aug 3 13:42:48 pixelmemory sshd[557269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.193.64.187 user=root Aug 3 13:42:49 pixelmemory sshd[557269]: Failed password for root from 176.193.64.187 port 40218 ssh2 ...	2020-08-04 06:11:09
142.44.240.82	attackbots	Automatic report generated by Wazuh	2020-08-04 06:24:03
59.108.246.162	attack	Attempted connection to ports 22, 8886.	2020-08-04 05:53:26
125.220.213.225	attackspambots	W 5701,/var/log/auth.log,-,-	2020-08-04 06:12:58
35.228.46.165	attackbotsspam	INFO [apache-noscript] Found 35.228.46.165	2020-08-04 06:05:49
117.33.128.218	attackspam	Aug 3 17:45:59 host sshd\[2529\]: Failed password for root from 117.33.128.218 port 57558 ssh2 Aug 3 17:50:30 host sshd\[3594\]: Failed password for root from 117.33.128.218 port 58612 ssh2 Aug 3 17:54:46 host sshd\[3776\]: Failed password for root from 117.33.128.218 port 59672 ssh2 ...	2020-08-04 06:08:53
189.59.5.49	attack	(imapd) Failed IMAP login from 189.59.5.49 (BR/Brazil/orthosaude.static.gvt.net.br): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Aug 4 01:05:42 ir1 dovecot[3110802]: imap-login: Disconnected (auth failed, 1 attempts in 5 secs): user=, method=PLAIN, rip=189.59.5.49, lip=5.63.12.44, TLS, session=	2020-08-04 06:16:02
94.102.53.112	attack	Aug 4 00:11:39 debian-2gb-nbg1-2 kernel: \[18751168.418170\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=94.102.53.112 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=57306 PROTO=TCP SPT=44873 DPT=12513 WINDOW=1024 RES=0x00 SYN URGP=0	2020-08-04 06:14:45
116.109.21.46	attackbots	Telnetd brute force attack detected by fail2ban	2020-08-04 06:09:59
121.162.131.223	attack	Aug 3 22:28:40 inter-technics sshd[6985]: Invalid user qwert@!@#456 from 121.162.131.223 port 49801 Aug 3 22:28:40 inter-technics sshd[6985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.162.131.223 Aug 3 22:28:40 inter-technics sshd[6985]: Invalid user qwert@!@#456 from 121.162.131.223 port 49801 Aug 3 22:28:42 inter-technics sshd[6985]: Failed password for invalid user qwert@!@#456 from 121.162.131.223 port 49801 ssh2 Aug 3 22:35:46 inter-technics sshd[7438]: Invalid user qwerty1qaz from 121.162.131.223 port 54794 ...	2020-08-04 06:13:25
217.23.10.20	attack	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-08-03T20:13:00Z and 2020-08-03T21:01:15Z	2020-08-04 06:10:29
118.96.22.41	attackbots	Lines containing failures of 118.96.22.41 Aug 3 07:18:14 mailserver sshd[24524]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.96.22.41 user=r.r Aug 3 07:18:16 mailserver sshd[24524]: Failed password for r.r from 118.96.22.41 port 39812 ssh2 Aug 3 07:18:16 mailserver sshd[24524]: Received disconnect from 118.96.22.41 port 39812:11: Bye Bye [preauth] Aug 3 07:18:16 mailserver sshd[24524]: Disconnected from authenticating user r.r 118.96.22.41 port 39812 [preauth] Aug 3 07:38:09 mailserver sshd[26840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.96.22.41 user=r.r Aug 3 07:38:11 mailserver sshd[26840]: Failed password for r.r from 118.96.22.41 port 54096 ssh2 Aug 3 07:38:11 mailserver sshd[26840]: Received disconnect from 118.96.22.41 port 54096:11: Bye Bye [preauth] Aug 3 07:38:11 mailserver sshd[26840]: Disconnected from authenticating user r.r 118.96.22.41 port 54096 [........ ------------------------------	2020-08-04 06:02:04

最近上报的IP列表

117.103.88.35	157.130.172.218	123.207.27.133	92.104.188.215
193.34.145.6	168.228.150.99	146.111.165.90	49.83.119.3
43.240.217.48	112.232.129.154	82.85.233.94	67.203.38.44
211.159.160.214	90.109.221.14	68.169.51.205	176.239.150.211
84.215.163.107	201.175.149.236	178.211.94.25	108.247.64.158