51.68.198.139 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United Kingdom of Great Britain and Northern Ireland

运营商(isp): OVH SAS

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Invalid user maria from 51.68.198.139 port 54886	2020-06-17 03:12:13

相同子网IP讨论:

IP	类型	评论内容	时间
51.68.198.75	attackbotsspam	Sep 25 02:21:00 email sshd\[18385\]: Invalid user tanya from 51.68.198.75 Sep 25 02:21:00 email sshd\[18385\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.198.75 Sep 25 02:21:01 email sshd\[18385\]: Failed password for invalid user tanya from 51.68.198.75 port 49284 ssh2 Sep 25 02:24:44 email sshd\[19062\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.198.75 user=root Sep 25 02:24:46 email sshd\[19062\]: Failed password for root from 51.68.198.75 port 59714 ssh2 ...	2020-09-25 10:33:58
51.68.198.75	attackspam	(sshd) Failed SSH login from 51.68.198.75 (FR/France/75.ip-51-68-198.eu): 5 in the last 3600 secs	2020-09-21 20:49:08
51.68.198.75	attackspambots	20 attempts against mh-ssh on echoip	2020-09-21 12:39:47
51.68.198.75	attackbotsspam	Sep 20 14:02:49 ny01 sshd[27178]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.198.75 Sep 20 14:02:51 ny01 sshd[27178]: Failed password for invalid user oracle from 51.68.198.75 port 47394 ssh2 Sep 20 14:05:40 ny01 sshd[27668]: Failed password for root from 51.68.198.75 port 41550 ssh2	2020-09-21 04:31:05
51.68.198.75	attack	Automatic Fail2ban report - Trying login SSH	2020-09-19 20:25:39
51.68.198.75	attack	Sep 18 15:23:39 NPSTNNYC01T sshd[25899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.198.75 Sep 18 15:23:41 NPSTNNYC01T sshd[25899]: Failed password for invalid user ufw from 51.68.198.75 port 49880 ssh2 Sep 18 15:27:21 NPSTNNYC01T sshd[26325]: Failed password for root from 51.68.198.75 port 33172 ssh2 ...	2020-09-19 12:23:03
51.68.198.75	attackbotsspam	Sep 18 15:23:39 NPSTNNYC01T sshd[25899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.198.75 Sep 18 15:23:41 NPSTNNYC01T sshd[25899]: Failed password for invalid user ufw from 51.68.198.75 port 49880 ssh2 Sep 18 15:27:21 NPSTNNYC01T sshd[26325]: Failed password for root from 51.68.198.75 port 33172 ssh2 ...	2020-09-19 04:00:31
51.68.198.113	attackspambots	2020-09-13T22:29:23.162397hostname sshd[2150]: Failed password for root from 51.68.198.113 port 60192 ssh2 2020-09-13T22:33:13.400696hostname sshd[3738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.ip-51-68-198.eu user=root 2020-09-13T22:33:16.194956hostname sshd[3738]: Failed password for root from 51.68.198.113 port 36146 ssh2 ...	2020-09-14 01:05:27
51.68.198.113	attackspambots	51.68.198.113 (GB/United Kingdom/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 13 02:11:44 jbs1 sshd[14846]: Failed password for root from 51.68.198.113 port 45610 ssh2 Sep 13 02:11:05 jbs1 sshd[14594]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.207.139.203 user=root Sep 13 02:12:02 jbs1 sshd[14910]: Failed password for root from 151.80.77.132 port 36126 ssh2 Sep 13 02:12:34 jbs1 sshd[15125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.227.65 user=root Sep 13 02:11:59 jbs1 sshd[14910]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.77.132 user=root Sep 13 02:11:07 jbs1 sshd[14594]: Failed password for root from 114.207.139.203 port 54824 ssh2 IP Addresses Blocked:	2020-09-13 16:58:19
51.68.198.113	attack	51.68.198.113 (GB/United Kingdom/-), 7 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 9 09:33:26 jbs1 sshd[12794]: Failed password for root from 51.68.198.113 port 41102 ssh2 Sep 9 09:30:22 jbs1 sshd[11559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.175.126 user=root Sep 9 09:30:24 jbs1 sshd[11559]: Failed password for root from 106.13.175.126 port 35562 ssh2 Sep 9 09:31:05 jbs1 sshd[11912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.211.192 user=root Sep 9 09:31:08 jbs1 sshd[11912]: Failed password for root from 142.93.211.192 port 38564 ssh2 Sep 9 09:27:35 jbs1 sshd[10504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.167.200.10 user=root Sep 9 09:27:37 jbs1 sshd[10504]: Failed password for root from 109.167.200.10 port 51156 ssh2 IP Addresses Blocked:	2020-09-09 22:54:57
51.68.198.113	attackspam	Sep 8 22:26:14 web1 sshd\[13596\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.198.113 user=root Sep 8 22:26:16 web1 sshd\[13596\]: Failed password for root from 51.68.198.113 port 49106 ssh2 Sep 8 22:29:55 web1 sshd\[13836\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.198.113 user=root Sep 8 22:29:56 web1 sshd\[13836\]: Failed password for root from 51.68.198.113 port 53364 ssh2 Sep 8 22:33:30 web1 sshd\[14088\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.198.113 user=root	2020-09-09 16:38:06
51.68.198.113	attackbotsspam	Sep 5 13:48:21 santamaria sshd\[3181\]: Invalid user zihang from 51.68.198.113 Sep 5 13:48:21 santamaria sshd\[3181\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.198.113 Sep 5 13:48:23 santamaria sshd\[3181\]: Failed password for invalid user zihang from 51.68.198.113 port 60372 ssh2 ...	2020-09-05 22:43:39
51.68.198.113	attack	Bruteforce detected by fail2ban	2020-09-05 14:19:17
51.68.198.113	attack	SSH Bruteforce attack	2020-09-05 07:01:30
51.68.198.75	attackbots	Invalid user sambauser from 51.68.198.75 port 44260	2020-08-29 15:18:45

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 51.68.198.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62871
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;51.68.198.139.			IN	A

;; AUTHORITY SECTION:
.			315	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061601 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jun 17 03:12:10 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

139.198.68.51.in-addr.arpa domain name pointer vps-94e68f15.vps.ovh.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
139.198.68.51.in-addr.arpa	name = vps-94e68f15.vps.ovh.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
171.235.227.98	attackspambots	Honeypot attack, port: 445, PTR: dynamic-ip-adsl.viettel.vn.	2020-02-11 17:23:14
174.138.44.30	attackspam	Feb 11 06:39:25 dedicated sshd[20713]: Invalid user bpe from 174.138.44.30 port 60572	2020-02-11 17:22:34
139.59.22.169	attackbots	Feb 11 08:04:45 mout sshd[30769]: Invalid user rat from 139.59.22.169 port 53612	2020-02-11 17:08:10
79.113.13.253	attackbotsspam	Honeypot attack, port: 81, PTR: 79-113-13-253.rdsnet.ro.	2020-02-11 17:11:53
123.25.115.243	attack	1581396789 - 02/11/2020 05:53:09 Host: 123.25.115.243/123.25.115.243 Port: 445 TCP Blocked	2020-02-11 17:04:12
180.245.216.24	attack	1581396769 - 02/11/2020 05:52:49 Host: 180.245.216.24/180.245.216.24 Port: 445 TCP Blocked	2020-02-11 17:20:34
122.228.19.80	attackspam	[portscan] tcp/1433 [MsSQL] in DroneBL:'listed [IRC Drone]' *(RWIN=29200)(02111130)	2020-02-11 17:02:34
34.69.178.47	attackbots	Feb 10 19:13:31 hanapaa sshd\[28625\]: Invalid user ts from 34.69.178.47 Feb 10 19:13:31 hanapaa sshd\[28625\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.178.69.34.bc.googleusercontent.com Feb 10 19:13:33 hanapaa sshd\[28625\]: Failed password for invalid user ts from 34.69.178.47 port 39504 ssh2 Feb 10 19:13:39 hanapaa sshd\[28631\]: Invalid user teamspeak3 from 34.69.178.47 Feb 10 19:13:39 hanapaa sshd\[28631\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.178.69.34.bc.googleusercontent.com	2020-02-11 17:02:04
187.74.109.113	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 11-02-2020 08:10:42.	2020-02-11 17:21:22
68.34.108.83	attackbotsspam	" "	2020-02-11 17:10:55
190.40.157.78	attackspambots	Feb 11 06:02:13 master sshd[6069]: Failed password for invalid user hrg from 190.40.157.78 port 59726 ssh2	2020-02-11 17:03:48
200.236.121.89	attackspam	Automatic report - Port Scan Attack	2020-02-11 16:56:36
128.199.167.233	attack	Feb 11 09:37:28 silence02 sshd[3916]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.167.233 Feb 11 09:37:30 silence02 sshd[3916]: Failed password for invalid user nbf from 128.199.167.233 port 47794 ssh2 Feb 11 09:42:03 silence02 sshd[4299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.167.233	2020-02-11 17:05:17
155.4.70.10	attack	Feb 11 10:10:32 legacy sshd[2810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=155.4.70.10 Feb 11 10:10:34 legacy sshd[2810]: Failed password for invalid user vsa from 155.4.70.10 port 62260 ssh2 Feb 11 10:13:52 legacy sshd[2928]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=155.4.70.10 ...	2020-02-11 17:24:24
159.138.132.25	attack	Wordpress_xmlrpc_attack	2020-02-11 17:15:55

最近上报的IP列表

77.67.20.130	85.93.182.34	203.190.34.91	2.49.203.0
62.148.157.215	46.32.96.43	8.25.1.148	178.175.239.63
171.248.50.28	206.97.123.90	0.4.53.80	203.187.238.188
53.22.251.159	14.232.176.154	124.123.166.208	178.47.140.45
109.169.240.98	41.233.66.10	103.110.42.25	118.160.206.250