必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Microsoft (China) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:
类型 评论内容 时间
attack
Feb  7 19:51:20 sachi sshd\[28001\]: Invalid user yow from 139.217.234.68
Feb  7 19:51:20 sachi sshd\[28001\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68
Feb  7 19:51:22 sachi sshd\[28001\]: Failed password for invalid user yow from 139.217.234.68 port 43118 ssh2
Feb  7 19:54:51 sachi sshd\[28255\]: Invalid user qxh from 139.217.234.68
Feb  7 19:54:51 sachi sshd\[28255\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68
2020-02-08 16:44:15
attack
Feb  6 15:42:51 ncomp sshd[19168]: Invalid user tcq from 139.217.234.68
Feb  6 15:42:51 ncomp sshd[19168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68
Feb  6 15:42:51 ncomp sshd[19168]: Invalid user tcq from 139.217.234.68
Feb  6 15:42:53 ncomp sshd[19168]: Failed password for invalid user tcq from 139.217.234.68 port 52212 ssh2
2020-02-07 01:35:54
attackspam
Unauthorized connection attempt detected from IP address 139.217.234.68 to port 2220 [J]
2020-01-16 06:51:45
attack
Dec 21 09:54:46 tux-35-217 sshd\[5136\]: Invalid user heraleen from 139.217.234.68 port 50914
Dec 21 09:54:46 tux-35-217 sshd\[5136\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68
Dec 21 09:54:49 tux-35-217 sshd\[5136\]: Failed password for invalid user heraleen from 139.217.234.68 port 50914 ssh2
Dec 21 10:01:10 tux-35-217 sshd\[5163\]: Invalid user dn from 139.217.234.68 port 56964
Dec 21 10:01:10 tux-35-217 sshd\[5163\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68
...
2019-12-21 17:43:59
attackspambots
Dec 16 23:19:29 h2812830 sshd[5725]: Invalid user uucp from 139.217.234.68 port 35908
Dec 16 23:19:29 h2812830 sshd[5725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68
Dec 16 23:19:29 h2812830 sshd[5725]: Invalid user uucp from 139.217.234.68 port 35908
Dec 16 23:19:31 h2812830 sshd[5725]: Failed password for invalid user uucp from 139.217.234.68 port 35908 ssh2
Dec 16 23:31:38 h2812830 sshd[5915]: Invalid user guest from 139.217.234.68 port 36944
...
2019-12-17 06:46:22
attack
Dec 15 07:13:46 icinga sshd[59253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68 
Dec 15 07:13:48 icinga sshd[59253]: Failed password for invalid user godlewski from 139.217.234.68 port 59772 ssh2
Dec 15 07:27:57 icinga sshd[7176]: Failed password for root from 139.217.234.68 port 39394 ssh2
...
2019-12-15 17:25:02
attackbotsspam
2019-12-04 11:48:03,525 fail2ban.actions        \[14488\]: NOTICE  \[sshd\] Ban 139.217.234.68
2019-12-04 12:22:00,696 fail2ban.actions        \[14488\]: NOTICE  \[sshd\] Ban 139.217.234.68
2019-12-04 12:56:38,047 fail2ban.actions        \[14488\]: NOTICE  \[sshd\] Ban 139.217.234.68
2019-12-04 13:31:23,532 fail2ban.actions        \[14488\]: NOTICE  \[sshd\] Ban 139.217.234.68
2019-12-04 14:06:16,465 fail2ban.actions        \[14488\]: NOTICE  \[sshd\] Ban 139.217.234.68
...
2019-12-09 02:55:29
attackbots
Nov 26 00:04:09 tdfoods sshd\[14839\]: Invalid user test from 139.217.234.68
Nov 26 00:04:09 tdfoods sshd\[14839\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68
Nov 26 00:04:11 tdfoods sshd\[14839\]: Failed password for invalid user test from 139.217.234.68 port 45266 ssh2
Nov 26 00:11:51 tdfoods sshd\[15603\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68  user=www-data
Nov 26 00:11:53 tdfoods sshd\[15603\]: Failed password for www-data from 139.217.234.68 port 54224 ssh2
2019-11-26 19:04:30
attackspambots
Nov 10 00:07:47 game-panel sshd[6865]: Failed password for root from 139.217.234.68 port 36082 ssh2
Nov 10 00:12:52 game-panel sshd[7102]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68
Nov 10 00:12:55 game-panel sshd[7102]: Failed password for invalid user cms from 139.217.234.68 port 48050 ssh2
2019-11-10 08:25:19
attack
Nov  9 19:12:34 server sshd\[20134\]: Invalid user oracledb from 139.217.234.68
Nov  9 19:12:34 server sshd\[20134\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68 
Nov  9 19:12:36 server sshd\[20134\]: Failed password for invalid user oracledb from 139.217.234.68 port 40982 ssh2
Nov  9 19:19:35 server sshd\[21711\]: Invalid user legal3 from 139.217.234.68
Nov  9 19:19:35 server sshd\[21711\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68 
...
2019-11-10 02:08:36
attack
$f2bV_matches
2019-11-09 01:56:24
attackspambots
Oct 30 06:19:13 server sshd\[3699\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68  user=root
Oct 30 06:19:15 server sshd\[3699\]: Failed password for root from 139.217.234.68 port 40486 ssh2
Oct 30 06:43:51 server sshd\[9645\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68  user=root
Oct 30 06:43:53 server sshd\[9645\]: Failed password for root from 139.217.234.68 port 41480 ssh2
Oct 30 06:48:25 server sshd\[10786\]: Invalid user odoo from 139.217.234.68
...
2019-10-30 18:31:50
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.217.234.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47398
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.217.234.68.			IN	A

;; AUTHORITY SECTION:
.			529	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019103000 1800 900 604800 86400

;; Query time: 118 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 30 18:31:47 CST 2019
;; MSG SIZE  rcvd: 118
HOST信息:
Host 68.234.217.139.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 68.234.217.139.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
110.39.7.4 attack
Tried sshing with brute force.
2020-08-11 14:36:33
1.4.155.227 attackspam
1597118041 - 08/11/2020 05:54:01 Host: 1.4.155.227/1.4.155.227 Port: 445 TCP Blocked
2020-08-11 14:59:10
49.88.112.70 attack
Aug 11 08:32:37 eventyay sshd[1420]: Failed password for root from 49.88.112.70 port 40535 ssh2
Aug 11 08:35:01 eventyay sshd[1472]: Failed password for root from 49.88.112.70 port 56497 ssh2
Aug 11 08:35:04 eventyay sshd[1472]: Failed password for root from 49.88.112.70 port 56497 ssh2
...
2020-08-11 14:42:49
181.126.83.37 attackspambots
Bruteforce detected by fail2ban
2020-08-11 14:34:03
106.13.182.32 attackspambots
Aug 11 05:53:48 host sshd[5699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.182.32  user=root
Aug 11 05:53:50 host sshd[5699]: Failed password for root from 106.13.182.32 port 44478 ssh2
...
2020-08-11 15:05:29
106.54.87.169 attackspambots
Failed password for root from 106.54.87.169 port 43240 ssh2
2020-08-11 14:34:58
68.183.219.181 attackbots
$f2bV_matches
2020-08-11 15:01:20
178.210.55.85 attackspam
1597118054 - 08/11/2020 05:54:14 Host: 178.210.55.85/178.210.55.85 Port: 445 TCP Blocked
2020-08-11 14:50:14
64.227.38.225 attackbotsspam
Aug 11 08:07:39 buvik sshd[3269]: Failed password for root from 64.227.38.225 port 60542 ssh2
Aug 11 08:11:44 buvik sshd[3893]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.227.38.225  user=root
Aug 11 08:11:46 buvik sshd[3893]: Failed password for root from 64.227.38.225 port 43434 ssh2
...
2020-08-11 14:56:48
165.22.77.163 attackspam
Aug 10 20:12:02 php1 sshd\[22352\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.77.163  user=root
Aug 10 20:12:04 php1 sshd\[22352\]: Failed password for root from 165.22.77.163 port 43454 ssh2
Aug 10 20:15:33 php1 sshd\[22769\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.77.163  user=root
Aug 10 20:15:35 php1 sshd\[22769\]: Failed password for root from 165.22.77.163 port 41920 ssh2
Aug 10 20:19:03 php1 sshd\[23080\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.77.163  user=root
2020-08-11 14:33:06
190.210.62.45 attack
$f2bV_matches
2020-08-11 14:48:48
94.31.85.173 attackbots
Aug 11 08:49:54 relay dovecot: imap-login: Disconnected: Inactivity \(auth failed, 1 attempts in 180 secs\): user=\, method=PLAIN, rip=94.31.85.173, lip=5.9.254.190, session=\
Aug 11 08:56:06 relay dovecot: imap-login: Disconnected: Inactivity \(auth failed, 1 attempts in 180 secs\): user=\, method=PLAIN, rip=94.31.85.173, lip=5.9.254.190, session=\
Aug 11 08:56:08 relay dovecot: imap-login: Disconnected: Inactivity \(auth failed, 1 attempts in 180 secs\): user=\, method=PLAIN, rip=94.31.85.173, lip=5.9.254.190, session=\
Aug 11 08:56:55 relay dovecot: imap-login: Disconnected: Inactivity \(auth failed, 1 attempts in 180 secs\): user=\, method=PLAIN, rip=94.31.85.173, lip=5.9.254.190, session=\
Aug 11 09:01:57 relay dovecot: imap-login: Disconnected: Inactivity \(auth failed, 1 attempts in 180 secs\): user=\<
...
2020-08-11 15:06:40
59.126.200.217 attackbotsspam
Port Scan
...
2020-08-11 14:55:09
147.135.208.33 attackbotsspam
Bruteforce detected by fail2ban
2020-08-11 15:08:02
142.93.100.171 attack
SSH Brute Force
2020-08-11 14:47:35

最近上报的IP列表

248.126.101.235 125.170.223.254 61.231.86.191 71.54.113.207
92.1.49.48 1.224.249.119 232.111.24.248 237.47.202.241
84.80.202.119 228.238.175.8 35.66.130.32 214.107.39.205
182.200.74.32 152.250.135.171 159.202.248.101 50.53.42.185
110.163.226.170 158.52.155.142 27.33.244.209 21.153.126.124