139.217.234.68

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Microsoft (China) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Feb 7 19:51:20 sachi sshd\[28001\]: Invalid user yow from 139.217.234.68 Feb 7 19:51:20 sachi sshd\[28001\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68 Feb 7 19:51:22 sachi sshd\[28001\]: Failed password for invalid user yow from 139.217.234.68 port 43118 ssh2 Feb 7 19:54:51 sachi sshd\[28255\]: Invalid user qxh from 139.217.234.68 Feb 7 19:54:51 sachi sshd\[28255\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68	2020-02-08 16:44:15
attack	Feb 6 15:42:51 ncomp sshd[19168]: Invalid user tcq from 139.217.234.68 Feb 6 15:42:51 ncomp sshd[19168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68 Feb 6 15:42:51 ncomp sshd[19168]: Invalid user tcq from 139.217.234.68 Feb 6 15:42:53 ncomp sshd[19168]: Failed password for invalid user tcq from 139.217.234.68 port 52212 ssh2	2020-02-07 01:35:54
attackspam	Unauthorized connection attempt detected from IP address 139.217.234.68 to port 2220 [J]	2020-01-16 06:51:45
attack	Dec 21 09:54:46 tux-35-217 sshd\[5136\]: Invalid user heraleen from 139.217.234.68 port 50914 Dec 21 09:54:46 tux-35-217 sshd\[5136\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68 Dec 21 09:54:49 tux-35-217 sshd\[5136\]: Failed password for invalid user heraleen from 139.217.234.68 port 50914 ssh2 Dec 21 10:01:10 tux-35-217 sshd\[5163\]: Invalid user dn from 139.217.234.68 port 56964 Dec 21 10:01:10 tux-35-217 sshd\[5163\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68 ...	2019-12-21 17:43:59
attackspambots	Dec 16 23:19:29 h2812830 sshd[5725]: Invalid user uucp from 139.217.234.68 port 35908 Dec 16 23:19:29 h2812830 sshd[5725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68 Dec 16 23:19:29 h2812830 sshd[5725]: Invalid user uucp from 139.217.234.68 port 35908 Dec 16 23:19:31 h2812830 sshd[5725]: Failed password for invalid user uucp from 139.217.234.68 port 35908 ssh2 Dec 16 23:31:38 h2812830 sshd[5915]: Invalid user guest from 139.217.234.68 port 36944 ...	2019-12-17 06:46:22
attack	Dec 15 07:13:46 icinga sshd[59253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68 Dec 15 07:13:48 icinga sshd[59253]: Failed password for invalid user godlewski from 139.217.234.68 port 59772 ssh2 Dec 15 07:27:57 icinga sshd[7176]: Failed password for root from 139.217.234.68 port 39394 ssh2 ...	2019-12-15 17:25:02
attackbotsspam	2019-12-04 11:48:03,525 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 139.217.234.68 2019-12-04 12:22:00,696 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 139.217.234.68 2019-12-04 12:56:38,047 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 139.217.234.68 2019-12-04 13:31:23,532 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 139.217.234.68 2019-12-04 14:06:16,465 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 139.217.234.68 ...	2019-12-09 02:55:29
attackbots	Nov 26 00:04:09 tdfoods sshd\[14839\]: Invalid user test from 139.217.234.68 Nov 26 00:04:09 tdfoods sshd\[14839\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68 Nov 26 00:04:11 tdfoods sshd\[14839\]: Failed password for invalid user test from 139.217.234.68 port 45266 ssh2 Nov 26 00:11:51 tdfoods sshd\[15603\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68 user=www-data Nov 26 00:11:53 tdfoods sshd\[15603\]: Failed password for www-data from 139.217.234.68 port 54224 ssh2	2019-11-26 19:04:30
attackspambots	Nov 10 00:07:47 game-panel sshd[6865]: Failed password for root from 139.217.234.68 port 36082 ssh2 Nov 10 00:12:52 game-panel sshd[7102]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68 Nov 10 00:12:55 game-panel sshd[7102]: Failed password for invalid user cms from 139.217.234.68 port 48050 ssh2	2019-11-10 08:25:19
attack	Nov 9 19:12:34 server sshd\[20134\]: Invalid user oracledb from 139.217.234.68 Nov 9 19:12:34 server sshd\[20134\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68 Nov 9 19:12:36 server sshd\[20134\]: Failed password for invalid user oracledb from 139.217.234.68 port 40982 ssh2 Nov 9 19:19:35 server sshd\[21711\]: Invalid user legal3 from 139.217.234.68 Nov 9 19:19:35 server sshd\[21711\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68 ...	2019-11-10 02:08:36
attack	$f2bV_matches	2019-11-09 01:56:24
attackspambots	Oct 30 06:19:13 server sshd\[3699\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68 user=root Oct 30 06:19:15 server sshd\[3699\]: Failed password for root from 139.217.234.68 port 40486 ssh2 Oct 30 06:43:51 server sshd\[9645\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.217.234.68 user=root Oct 30 06:43:53 server sshd\[9645\]: Failed password for root from 139.217.234.68 port 41480 ssh2 Oct 30 06:48:25 server sshd\[10786\]: Invalid user odoo from 139.217.234.68 ...	2019-10-30 18:31:50

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 139.217.234.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47398
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;139.217.234.68.			IN	A

;; AUTHORITY SECTION:
.			529	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019103000 1800 900 604800 86400

;; Query time: 118 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 30 18:31:47 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 68.234.217.139.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 68.234.217.139.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
45.66.35.35	attack	CMS (WordPress or Joomla) login attempt.	2020-06-07 04:53:34
66.181.164.159	attack	Unauthorized connection attempt from IP address 66.181.164.159 on Port 445(SMB)	2020-06-07 05:10:41
165.22.35.21	attack	165.22.35.21 - - [06/Jun/2020:17:54:14 +0200] "GET /wp-login.php HTTP/1.1" 200 6183 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.35.21 - - [06/Jun/2020:17:54:15 +0200] "POST /wp-login.php HTTP/1.1" 200 6434 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.35.21 - - [06/Jun/2020:17:54:16 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-07 04:43:11
45.88.104.99	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 29 - port: 1211 proto: TCP cat: Misc Attack	2020-06-07 04:42:29
210.105.82.53	attackbotsspam	Jun 6 22:34:57 ourumov-web sshd\[24879\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.105.82.53 user=root Jun 6 22:35:00 ourumov-web sshd\[24879\]: Failed password for root from 210.105.82.53 port 55994 ssh2 Jun 6 22:42:18 ourumov-web sshd\[25407\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.105.82.53 user=root ...	2020-06-07 04:43:57
193.84.76.23	attack	Jun 6 22:45:39 vmd26974 sshd[28062]: Failed password for root from 193.84.76.23 port 38984 ssh2 ...	2020-06-07 04:51:36
218.78.35.157	attack	2020-06-06T22:44:25.033713sd-86998 sshd[2814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.78.35.157 user=root 2020-06-06T22:44:27.332609sd-86998 sshd[2814]: Failed password for root from 218.78.35.157 port 48416 ssh2 2020-06-06T22:47:19.005639sd-86998 sshd[3731]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.78.35.157 user=root 2020-06-06T22:47:20.857978sd-86998 sshd[3731]: Failed password for root from 218.78.35.157 port 37710 ssh2 2020-06-06T22:50:16.095307sd-86998 sshd[4414]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.78.35.157 user=root 2020-06-06T22:50:18.915782sd-86998 sshd[4414]: Failed password for root from 218.78.35.157 port 55238 ssh2 ...	2020-06-07 05:18:05
14.161.16.70	attackspambots	Unauthorized connection attempt from IP address 14.161.16.70 on Port 445(SMB)	2020-06-07 05:04:25
104.131.71.105	attackbots	Fail2Ban	2020-06-07 05:03:53
122.51.186.86	attackbotsspam	Jun 7 05:12:13 web1 sshd[29223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.186.86 user=root Jun 7 05:12:15 web1 sshd[29223]: Failed password for root from 122.51.186.86 port 40250 ssh2 Jun 7 05:15:53 web1 sshd[30149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.186.86 user=root Jun 7 05:15:55 web1 sshd[30149]: Failed password for root from 122.51.186.86 port 46780 ssh2 Jun 7 05:17:02 web1 sshd[30418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.186.86 user=root Jun 7 05:17:04 web1 sshd[30418]: Failed password for root from 122.51.186.86 port 57384 ssh2 Jun 7 05:18:43 web1 sshd[30818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.186.86 user=root Jun 7 05:18:45 web1 sshd[30818]: Failed password for root from 122.51.186.86 port 39758 ssh2 Jun 7 05:19:47 web1 sshd[31078]: pa ...	2020-06-07 04:44:17
61.190.74.75	attack	scan z	2020-06-07 05:09:14
181.129.165.139	attackspambots	Jun 6 22:42:01 * sshd[23991]: Failed password for root from 181.129.165.139 port 44746 ssh2	2020-06-07 05:12:41
41.221.86.21	attackspam	SSH Brute-Force attacks	2020-06-07 05:02:12
138.255.148.35	attack	Jun 7 03:37:26 itv-usvr-02 sshd[18149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.255.148.35 user=root Jun 7 03:41:37 itv-usvr-02 sshd[18337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.255.148.35 user=root Jun 7 03:45:46 itv-usvr-02 sshd[18440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.255.148.35 user=root	2020-06-07 05:07:59
83.48.101.184	attackspambots	2020-06-06T19:15:47.375902abusebot-3.cloudsearch.cf sshd[12127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.red-83-48-101.staticip.rima-tde.net user=root 2020-06-06T19:15:49.276745abusebot-3.cloudsearch.cf sshd[12127]: Failed password for root from 83.48.101.184 port 26769 ssh2 2020-06-06T19:19:06.401620abusebot-3.cloudsearch.cf sshd[12316]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.red-83-48-101.staticip.rima-tde.net user=root 2020-06-06T19:19:08.290006abusebot-3.cloudsearch.cf sshd[12316]: Failed password for root from 83.48.101.184 port 17773 ssh2 2020-06-06T19:22:28.100666abusebot-3.cloudsearch.cf sshd[12517]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.red-83-48-101.staticip.rima-tde.net user=root 2020-06-06T19:22:29.715760abusebot-3.cloudsearch.cf sshd[12517]: Failed password for root from 83.48.101.184 port 17542 ssh2 2020-06-06T19 ...	2020-06-07 04:49:27

最近上报的IP列表

248.126.101.235	125.170.223.254	61.231.86.191	71.54.113.207
92.1.49.48	1.224.249.119	232.111.24.248	237.47.202.241
84.80.202.119	228.238.175.8	35.66.130.32	214.107.39.205
182.200.74.32	152.250.135.171	159.202.248.101	50.53.42.185
110.163.226.170	158.52.155.142	27.33.244.209	21.153.126.124