221.193.140.68

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Hebei Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	firewall-block, port(s): 23/tcp	2020-02-25 19:29:20

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 221.193.140.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58592
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;221.193.140.68.			IN	A

;; AUTHORITY SECTION:
.			330	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022500 1800 900 604800 86400

;; Query time: 142 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 25 19:29:14 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 68.140.193.221.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 68.140.193.221.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
185.211.245.170	attack	Feb 29 01:20:35 relay postfix/smtpd\[9131\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 29 01:20:42 relay postfix/smtpd\[5138\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 29 01:21:52 relay postfix/smtpd\[9131\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 29 01:21:59 relay postfix/smtpd\[10406\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 29 01:23:06 relay postfix/smtpd\[10401\]: warning: unknown\[185.211.245.170\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-02-29 08:27:53
159.89.165.36	attack	Feb 29 00:40:42 sd-53420 sshd\[7711\]: User mysql from 159.89.165.36 not allowed because none of user's groups are listed in AllowGroups Feb 29 00:40:42 sd-53420 sshd\[7711\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.165.36 user=mysql Feb 29 00:40:45 sd-53420 sshd\[7711\]: Failed password for invalid user mysql from 159.89.165.36 port 53720 ssh2 Feb 29 00:50:18 sd-53420 sshd\[8500\]: Invalid user ftpadmin from 159.89.165.36 Feb 29 00:50:18 sd-53420 sshd\[8500\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.165.36 ...	2020-02-29 08:00:11
185.176.27.122	attackspambots	Port 23498 scan denied	2020-02-29 08:11:11
222.186.175.183	attackspam	Feb 29 00:50:13 eventyay sshd[18495]: Failed password for root from 222.186.175.183 port 40156 ssh2 Feb 29 00:50:25 eventyay sshd[18495]: error: maximum authentication attempts exceeded for root from 222.186.175.183 port 40156 ssh2 [preauth] Feb 29 00:50:37 eventyay sshd[18498]: Failed password for root from 222.186.175.183 port 11214 ssh2 ...	2020-02-29 07:54:37
132.232.132.103	attackspam	Invalid user sonarqube from 132.232.132.103 port 40784	2020-02-29 08:19:03
218.92.0.184	attackspambots	Scanned 1 times in the last 24 hours on port 22	2020-02-29 08:09:01
122.51.133.238	attackspambots	Invalid user glassfish from 122.51.133.238 port 43806	2020-02-29 07:49:27
222.186.169.194	attackspam	Feb 29 00:47:56 eventyay sshd[18370]: Failed password for root from 222.186.169.194 port 34266 ssh2 Feb 29 00:48:06 eventyay sshd[18370]: Failed password for root from 222.186.169.194 port 34266 ssh2 Feb 29 00:48:09 eventyay sshd[18370]: Failed password for root from 222.186.169.194 port 34266 ssh2 Feb 29 00:48:09 eventyay sshd[18370]: error: maximum authentication attempts exceeded for root from 222.186.169.194 port 34266 ssh2 [preauth] ...	2020-02-29 07:52:23
109.94.123.183	attack	port scan and connect, tcp 80 (http)	2020-02-29 08:07:05
85.209.3.10	attackbotsspam	Port probing on unauthorized port 3520	2020-02-29 08:02:30
121.154.132.39	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 08:28:08
185.53.88.44	attackspam	[2020-02-28 19:18:38] NOTICE[1148] chan_sip.c: Registration from '"663" ' failed for '185.53.88.44:5417' - Wrong password [2020-02-28 19:18:38] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-02-28T19:18:38.307-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="663",SessionID="0x7fd82c6c07b8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.44/5417",Challenge="2dd725f3",ReceivedChallenge="2dd725f3",ReceivedHash="85943de243be61ca877e5d9269161de9" [2020-02-28 19:18:38] NOTICE[1148] chan_sip.c: Registration from '"663" ' failed for '185.53.88.44:5417' - Wrong password [2020-02-28 19:18:38] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-02-28T19:18:38.417-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="663",SessionID="0x7fd82c81c298",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.4 ...	2020-02-29 08:21:12
211.72.239.34	attackspambots	Invalid user test2 from 211.72.239.34 port 52712	2020-02-29 07:55:09
149.210.154.152	attackbotsspam	RDPBruteGSL24	2020-02-29 07:58:14
47.99.111.195	attack	Feb 28 22:56:59 debian-2gb-nbg1-2 kernel: \[5186209.275593\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=47.99.111.195 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=236 ID=55381 PROTO=TCP SPT=47017 DPT=2375 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-29 08:05:53

最近上报的IP列表

103.109.56.14	38.212.102.172	101.84.196.135	227.190.125.4
223.154.138.78	12.6.71.140	2401:2500:203:16:153:120:181:188	203.242.211.255
209.132.164.162	219.31.122.190	77.129.143.210	211.207.10.129
35.164.77.85	180.28.12.250	196.29.56.229	59.101.178.52
84.72.237.170	79.170.148.85	196.53.104.139	176.119.100.111