城市(city): Santa Clara
省份(region): California
国家(country): United States
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 138.68.45.164 | attack | Attempt to hack Wordpress Login, XMLRPC or other login |
2020-10-07 05:15:44 |
| 138.68.45.164 | attackspambots | 138.68.45.164 - - [06/Oct/2020:12:16:54 +0100] "POST /wp-login.php HTTP/1.1" 200 2426 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.45.164 - - [06/Oct/2020:12:17:01 +0100] "POST /wp-login.php HTTP/1.1" 200 2407 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.45.164 - - [06/Oct/2020:12:17:03 +0100] "POST /wp-login.php HTTP/1.1" 200 2405 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-10-06 21:24:16 |
| 138.68.45.164 | attackbotsspam | 138.68.45.164 - - [06/Oct/2020:06:45:09 +0200] "GET /wp-login.php HTTP/1.1" 200 9061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.45.164 - - [06/Oct/2020:06:45:13 +0200] "POST /wp-login.php HTTP/1.1" 200 9312 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.68.45.164 - - [06/Oct/2020:06:45:14 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" |
2020-10-06 13:06:21 |
| 138.68.45.170 | attack | Jul 28 23:16:57 mout sshd[30832]: Invalid user abcde12345^&* from 138.68.45.170 port 37182 |
2019-07-29 14:03:58 |
| 138.68.45.170 | attack | Jul 28 14:33:57 bouncer sshd\[27553\]: Invalid user caonima123456g from 138.68.45.170 port 56902 Jul 28 14:33:57 bouncer sshd\[27553\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.45.170 Jul 28 14:33:59 bouncer sshd\[27553\]: Failed password for invalid user caonima123456g from 138.68.45.170 port 56902 ssh2 ... |
2019-07-28 20:45:17 |
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 138.68.0.0 - 138.68.255.255
CIDR: 138.68.0.0/16
NetName: DIGITALOCEAN-138-68-0-0
NetHandle: NET-138-68-0-0-1
Parent: NET138 (NET-138-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: DigitalOcean, LLC (DO-13)
RegDate: 2016-01-26
Updated: 2025-03-01
Comment: Routing and Peering Policy can be found at https://www.as14061.net
Comment:
Comment: Please submit abuse reports at https://www.digitalocean.com/company/contact/#abuse
Ref: https://rdap.arin.net/registry/ip/138.68.0.0
OrgName: DigitalOcean, LLC
OrgId: DO-13
Address: 105 Edgeview Drive, Suite 425
City: Broomfield
StateProv: CO
PostalCode: 80021
Country: US
RegDate: 2012-05-14
Updated: 2025-04-11
Ref: https://rdap.arin.net/registry/entity/DO-13
OrgAbuseHandle: DIGIT19-ARIN
OrgAbuseName: DigitalOcean Abuse
OrgAbusePhone: +1-646-827-4366
OrgAbuseEmail: abuse@digitalocean.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/DIGIT19-ARIN
OrgNOCHandle: NOC32014-ARIN
OrgNOCName: Network Operations Center
OrgNOCPhone: +1-646-827-4366
OrgNOCEmail: noc@digitalocean.com
OrgNOCRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
OrgTechHandle: NOC32014-ARIN
OrgTechName: Network Operations Center
OrgTechPhone: +1-646-827-4366
OrgTechEmail: noc@digitalocean.com
OrgTechRef: https://rdap.arin.net/registry/entity/NOC32014-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.45.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60644
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;138.68.45.44. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026012300 1800 900 604800 86400
;; Query time: 30 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 23 21:04:37 CST 2026
;; MSG SIZE rcvd: 105Host 44.45.68.138.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 44.45.68.138.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 106.124.131.70 | attackspambots | ... |
2020-04-29 02:40:19 |
| 106.225.222.99 | attack | [Wed Apr 22 13:27:47 2020] - Syn Flood From IP: 106.225.222.99 Port: 6000 |
2020-04-29 02:45:24 |
| 63.239.129.138 | attack | Apr 28 15:57:19 work-partkepr sshd\[12734\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=63.239.129.138 user=root Apr 28 15:57:21 work-partkepr sshd\[12734\]: Failed password for root from 63.239.129.138 port 55152 ssh2 ... |
2020-04-29 02:21:48 |
| 106.12.31.186 | attack | 2020-04-28T14:22:07.907455amanda2.illicoweb.com sshd\[7382\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.31.186 user=root 2020-04-28T14:22:10.390991amanda2.illicoweb.com sshd\[7382\]: Failed password for root from 106.12.31.186 port 39164 ssh2 2020-04-28T14:25:08.505540amanda2.illicoweb.com sshd\[7533\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.31.186 user=root 2020-04-28T14:25:10.839274amanda2.illicoweb.com sshd\[7533\]: Failed password for root from 106.12.31.186 port 49942 ssh2 2020-04-28T14:28:29.379630amanda2.illicoweb.com sshd\[7876\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.31.186 user=root ... |
2020-04-29 02:49:32 |
| 73.81.227.19 | attackspam | Apr 28 12:14:47 firewall sshd[6548]: Invalid user guest from 73.81.227.19 Apr 28 12:14:48 firewall sshd[6548]: Failed password for invalid user guest from 73.81.227.19 port 53646 ssh2 Apr 28 12:18:49 firewall sshd[6613]: Invalid user deploy from 73.81.227.19 ... |
2020-04-29 02:26:15 |
| 194.58.121.62 | attackbots | wp enum attack |
2020-04-29 02:55:14 |
| 222.186.15.158 | attackspambots | Apr 28 20:56:19 vps sshd[94669]: Failed password for root from 222.186.15.158 port 32332 ssh2 Apr 28 20:56:21 vps sshd[94669]: Failed password for root from 222.186.15.158 port 32332 ssh2 Apr 28 20:56:22 vps sshd[95224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.158 user=root Apr 28 20:56:24 vps sshd[95224]: Failed password for root from 222.186.15.158 port 53645 ssh2 Apr 28 20:56:26 vps sshd[95224]: Failed password for root from 222.186.15.158 port 53645 ssh2 ... |
2020-04-29 02:57:03 |
| 104.248.45.204 | attackspambots | fail2ban -- 104.248.45.204 ... |
2020-04-29 03:01:12 |
| 88.247.206.135 | attackspam | Automatic report - Port Scan Attack |
2020-04-29 02:30:22 |
| 193.148.69.157 | attackspam | Apr 28 18:11:13 vmd26974 sshd[12151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.148.69.157 Apr 28 18:11:15 vmd26974 sshd[12151]: Failed password for invalid user cmp from 193.148.69.157 port 35944 ssh2 ... |
2020-04-29 02:26:59 |
| 172.94.14.185 | attackbotsspam | Honeypot attack, port: 445, PTR: PTR record not found |
2020-04-29 02:52:08 |
| 185.56.153.236 | attackspam | Apr 28 16:22:26 minden010 sshd[5819]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.56.153.236 Apr 28 16:22:28 minden010 sshd[5819]: Failed password for invalid user mn from 185.56.153.236 port 54992 ssh2 Apr 28 16:28:27 minden010 sshd[8536]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.56.153.236 ... |
2020-04-29 02:31:47 |
| 180.249.119.52 | attack | Automatic report - Port Scan Attack |
2020-04-29 02:47:19 |
| 162.243.50.8 | attackspam | Apr 28 23:42:50 itv-usvr-01 sshd[25662]: Invalid user mq from 162.243.50.8 |
2020-04-29 02:43:44 |
| 37.150.5.60 | attackspambots | Honeypot attack, port: 445, PTR: 37.150.5.60.megaline.telecom.kz. |
2020-04-29 02:44:43 |