81.68.239.140 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	fail2ban detected bruce force on ssh iptables	2020-10-12 07:55:12
attackspambots	SSH login attempts.	2020-10-12 00:12:02
attackspambots	Lines containing failures of 81.68.239.140 Oct 6 17:24:45 mellenthin sshd[30324]: User r.r from 81.68.239.140 not allowed because not listed in AllowUsers Oct 6 17:24:45 mellenthin sshd[30324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.239.140 user=r.r Oct 6 17:24:47 mellenthin sshd[30324]: Failed password for invalid user r.r from 81.68.239.140 port 40446 ssh2 Oct 6 17:24:47 mellenthin sshd[30324]: Received disconnect from 81.68.239.140 port 40446:11: Bye Bye [preauth] Oct 6 17:24:47 mellenthin sshd[30324]: Disconnected from invalid user r.r 81.68.239.140 port 40446 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=81.68.239.140	2020-10-11 16:10:42
attackspam	Oct 10 21:51:07 ip-172-31-61-156 sshd[31911]: Invalid user apache2 from 81.68.239.140 Oct 10 21:51:09 ip-172-31-61-156 sshd[31911]: Failed password for invalid user apache2 from 81.68.239.140 port 60266 ssh2 Oct 10 21:51:07 ip-172-31-61-156 sshd[31911]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.239.140 Oct 10 21:51:07 ip-172-31-61-156 sshd[31911]: Invalid user apache2 from 81.68.239.140 Oct 10 21:51:09 ip-172-31-61-156 sshd[31911]: Failed password for invalid user apache2 from 81.68.239.140 port 60266 ssh2 ...	2020-10-11 09:29:21

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 81.68.239.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32150
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;81.68.239.140.			IN	A

;; AUTHORITY SECTION:
.			547	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020101002 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 11 09:29:13 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 140.239.68.81.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 140.239.68.81.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
198.60.183.15	attackbots	Jun 1 14:28:39 server1 sshd\[5767\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.60.183.15 user=root Jun 1 14:28:41 server1 sshd\[5767\]: Failed password for root from 198.60.183.15 port 35908 ssh2 Jun 1 14:31:40 server1 sshd\[6656\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.60.183.15 user=root Jun 1 14:31:42 server1 sshd\[6656\]: Failed password for root from 198.60.183.15 port 55454 ssh2 Jun 1 14:34:45 server1 sshd\[7549\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.60.183.15 user=root ...	2020-06-02 05:27:15
185.97.116.165	attack	Jun 1 23:10:37 vps687878 sshd\[6814\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.97.116.165 user=root Jun 1 23:10:39 vps687878 sshd\[6814\]: Failed password for root from 185.97.116.165 port 55726 ssh2 Jun 1 23:14:36 vps687878 sshd\[7124\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.97.116.165 user=root Jun 1 23:14:38 vps687878 sshd\[7124\]: Failed password for root from 185.97.116.165 port 60436 ssh2 Jun 1 23:18:36 vps687878 sshd\[7555\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.97.116.165 user=root ...	2020-06-02 05:28:36
185.116.92.194	attackbots	Lines containing failures of 185.116.92.194 Jun 1 19:55:49 shared06 sshd[8266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.116.92.194 user=r.r Jun 1 19:55:50 shared06 sshd[8266]: Failed password for r.r from 185.116.92.194 port 37594 ssh2 Jun 1 19:55:51 shared06 sshd[8266]: Received disconnect from 185.116.92.194 port 37594:11: Bye Bye [preauth] Jun 1 19:55:51 shared06 sshd[8266]: Disconnected from authenticating user r.r 185.116.92.194 port 37594 [preauth] Jun 1 19:57:44 shared06 sshd[9091]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.116.92.194 user=r.r Jun 1 19:57:46 shared06 sshd[9091]: Failed password for r.r from 185.116.92.194 port 57674 ssh2 Jun 1 19:57:46 shared06 sshd[9091]: Received disconnect from 185.116.92.194 port 57674:11: Bye Bye [preauth] Jun 1 19:57:46 shared06 sshd[9091]: Disconnected from authenticating user r.r 185.116.92.194 port 57674 [preaut........ ------------------------------	2020-06-02 05:21:43
206.81.10.104	attackbots	Jun 1 17:30:59 NPSTNNYC01T sshd[18335]: Failed password for root from 206.81.10.104 port 34778 ssh2 Jun 1 17:34:43 NPSTNNYC01T sshd[18571]: Failed password for root from 206.81.10.104 port 39864 ssh2 ...	2020-06-02 05:48:55
116.112.64.98	attackspambots	Jun 1 22:12:15 minden010 sshd[14934]: Failed password for root from 116.112.64.98 port 55526 ssh2 Jun 1 22:15:41 minden010 sshd[17205]: Failed password for root from 116.112.64.98 port 51330 ssh2 ...	2020-06-02 05:53:24
222.244.146.232	attack	SSH invalid-user multiple login attempts	2020-06-02 05:56:21
190.60.94.189	attack	Jun 1 22:13:00 v22019038103785759 sshd\[19608\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.60.94.189 user=root Jun 1 22:13:03 v22019038103785759 sshd\[19608\]: Failed password for root from 190.60.94.189 port 21584 ssh2 Jun 1 22:17:22 v22019038103785759 sshd\[19901\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.60.94.189 user=root Jun 1 22:17:24 v22019038103785759 sshd\[19901\]: Failed password for root from 190.60.94.189 port 28927 ssh2 Jun 1 22:19:51 v22019038103785759 sshd\[20024\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.60.94.189 user=root ...	2020-06-02 05:23:17
62.210.215.25	attackspambots	Jun 1 22:18:56 ns3164893 sshd[10412]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.210.215.25 user=root Jun 1 22:18:58 ns3164893 sshd[10412]: Failed password for root from 62.210.215.25 port 47786 ssh2 ...	2020-06-02 05:57:36
117.102.197.53	attack	Jun 1 22:10:35 vps687878 sshd\[354\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.102.197.53 user=root Jun 1 22:10:37 vps687878 sshd\[354\]: Failed password for root from 117.102.197.53 port 40098 ssh2 Jun 1 22:14:59 vps687878 sshd\[644\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.102.197.53 user=root Jun 1 22:15:01 vps687878 sshd\[644\]: Failed password for root from 117.102.197.53 port 43144 ssh2 Jun 1 22:19:19 vps687878 sshd\[1171\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.102.197.53 user=root ...	2020-06-02 05:18:38
62.4.48.234	attack	Unauthorized connection attempt detected from IP address 62.4.48.234 to port 23	2020-06-02 05:57:01
112.125.24.231	attackbots	SSH brute force attempt	2020-06-02 05:31:47
80.244.179.6	attack	Jun 1 22:24:40 ourumov-web sshd\[14760\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.244.179.6 user=root Jun 1 22:24:42 ourumov-web sshd\[14760\]: Failed password for root from 80.244.179.6 port 56502 ssh2 Jun 1 22:28:10 ourumov-web sshd\[14967\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.244.179.6 user=root ...	2020-06-02 05:39:37
188.19.123.71	attackbotsspam	Dovecot Invalid User Login Attempt.	2020-06-02 05:56:02
159.65.255.153	attackspam	SSH Brute-Force reported by Fail2Ban	2020-06-02 05:31:09
79.137.72.171	attack	Jun 1 21:34:41 game-panel sshd[30817]: Failed password for root from 79.137.72.171 port 48995 ssh2 Jun 1 21:37:32 game-panel sshd[30917]: Failed password for root from 79.137.72.171 port 33924 ssh2	2020-06-02 05:50:03

最近上报的IP列表

177.46.133.60	190.207.249.177	195.154.232.205	174.221.14.160
51.223.146.4	190.12.77.32	118.24.243.53	103.81.114.103
74.120.14.77	60.149.7.253	207.154.199.63	111.4.121.189
190.90.191.45	180.183.232.50	59.46.13.137	207.154.242.155
114.42.207.37	83.227.11.180	189.86.186.70	81.70.22.100