147.139.137.68

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): Alibaba.com LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	147.139.137.68 (ID/Indonesia/-), 12 distributed sshd attacks on account [root] in the last 3600 secs	2020-08-12 15:38:00

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 147.139.137.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45652
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;147.139.137.68.			IN	A

;; AUTHORITY SECTION:
.			414	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081200 1800 900 604800 86400

;; Query time: 208 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Aug 12 15:37:54 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 68.137.139.147.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 68.137.139.147.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
23.237.4.26	attackspambots	[Mon Jun 01 06:02:55.710730 2020] [authz_core:error] [pid 17921:tid 140175572813568] [client 23.237.4.26:17242] AH01630: client denied by server configuration: /home/vestibte/public_html/PreventFalls.com/ [Mon Jun 01 06:02:55.716179 2020] [authz_core:error] [pid 17921:tid 140175572813568] [client 23.237.4.26:17242] AH01630: client denied by server configuration: /home/vestibte/public_rsrc/ErrDocs/error.php [Mon Jun 01 06:02:56.079765 2020] [authz_core:error] [pid 17921:tid 140175409653504] [client 23.237.4.26:42374] AH01630: client denied by server configuration: /home/vestibte/public_html/PreventFalls.com/ ...	2020-06-02 03:36:25
177.68.60.8	attackspambots	Unauthorized connection attempt from IP address 177.68.60.8 on Port 445(SMB)	2020-06-02 03:20:17
45.55.80.186	attackbotsspam	(sshd) Failed SSH login from 45.55.80.186 (US/United States/vm1.confme.xyz): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 1 17:56:47 s1 sshd[6833]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.80.186 user=root Jun 1 17:56:49 s1 sshd[6833]: Failed password for root from 45.55.80.186 port 42574 ssh2 Jun 1 18:05:09 s1 sshd[6987]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.80.186 user=root Jun 1 18:05:11 s1 sshd[6987]: Failed password for root from 45.55.80.186 port 41084 ssh2 Jun 1 18:12:43 s1 sshd[7163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.80.186 user=root	2020-06-02 03:54:07
179.185.104.250	attack	$f2bV_matches	2020-06-02 03:34:19
106.13.183.215	attack	Jun 1 09:50:54 xxxxxxx sshd[17811]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.183.215 user=r.r Jun 1 09:50:56 xxxxxxx sshd[17811]: Failed password for r.r from 106.13.183.215 port 57336 ssh2 Jun 1 09:50:56 xxxxxxx sshd[17811]: Received disconnect from 106.13.183.215: 11: Bye Bye [preauth] Jun 1 10:04:59 xxxxxxx sshd[23057]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.183.215 user=r.r Jun 1 10:05:01 xxxxxxx sshd[23057]: Failed password for r.r from 106.13.183.215 port 60758 ssh2 Jun 1 10:05:01 xxxxxxx sshd[23057]: Received disconnect from 106.13.183.215: 11: Bye Bye [preauth] Jun 1 10:09:26 xxxxxxx sshd[25712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.183.215 user=r.r Jun 1 10:09:28 xxxxxxx sshd[25712]: Failed password for r.r from 106.13.183.215 port 58266 ssh2 Jun 1 10:09:28 xxxxxxx sshd[25712]: Receiv........ -------------------------------	2020-06-02 03:50:38
59.124.90.231	attackspam	59.124.90.231 (TW/Taiwan/59-124-90-231.HINET-IP.hinet.net), 12 distributed sshd attacks on account [root] in the last 3600 secs	2020-06-02 03:28:45
49.235.11.137	attackbots	Jun 1 17:43:38 * sshd[31426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.11.137 user=r.r Jun 1 17:43:40 * sshd[31426]: Failed password for r.r from 49.235.11.137 port 42064 ssh2 Jun 1 17:43:40 * sshd[31426]: Received disconnect from 49.235.11.137: 11: Bye Bye [preauth] Jun 1 17:53:48 * sshd[32184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.11.137 user=r.r Jun 1 17:53:50 * sshd[32184]: Failed password for r.r from 49.235.11.137 port 46672 ssh2 Jun 1 17:53:50 * sshd[32184]: Received disconnect from 49.235.11.137: 11: Bye Bye [preauth] Jun 1 17:55:40 * sshd[32330]: Did not receive identification string from 49.235.11.137 Jun 1 17:57:26 * sshd[32504]: Connection closed by 49.235.11.137 [preauth] Jun 1 17:58:59 *** sshd[32619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.11.137 user=r.r Jun 1 ........ -------------------------------	2020-06-02 03:53:40
125.21.227.181	attackspam	Jun 1 20:21:12 melroy-server sshd[21999]: Failed password for root from 125.21.227.181 port 46948 ssh2 ...	2020-06-02 03:20:34
187.191.96.60	attackspam	5x Failed Password	2020-06-02 03:55:01
183.89.214.29	attack	Dovecot Invalid User Login Attempt.	2020-06-02 03:32:53
103.75.34.242	attackspam	Unauthorized connection attempt from IP address 103.75.34.242 on Port 445(SMB)	2020-06-02 03:19:46
58.27.99.112	attack	Failed password for root from 58.27.99.112 port 36242 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.27.99.112 user=root Failed password for root from 58.27.99.112 port 40660 ssh2 pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.27.99.112 user=root Failed password for root from 58.27.99.112 port 45352 ssh2	2020-06-02 03:52:31
156.231.45.78	attackspambots	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-06-02 03:37:11
111.231.54.212	attackspam	2020-06-01T13:30:47.177521shield sshd\[12910\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.54.212 user=root 2020-06-01T13:30:48.915270shield sshd\[12910\]: Failed password for root from 111.231.54.212 port 54246 ssh2 2020-06-01T13:34:27.806530shield sshd\[13624\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.54.212 user=root 2020-06-01T13:34:30.081022shield sshd\[13624\]: Failed password for root from 111.231.54.212 port 38120 ssh2 2020-06-01T13:38:15.747456shield sshd\[14315\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.54.212 user=root	2020-06-02 03:39:43
94.139.164.180	attackbotsspam	Unauthorized connection attempt from IP address 94.139.164.180 on Port 445(SMB)	2020-06-02 03:27:28

最近上报的IP列表

219.167.188.247	116.177.233.5	208.185.240.119	189.78.27.20
25.122.196.226	91.144.192.134	49.235.204.59	172.105.15.93
25.201.70.12	239.36.110.210	220.132.219.246	208.6.160.155
167.62.172.38	117.248.144.101	3.61.197.89	189.180.16.190
110.137.75.148	192.241.235.137	203.247.241.51	208.91.199.218