81.68.239.140 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	fail2ban detected bruce force on ssh iptables	2020-10-12 07:55:12
attackspambots	SSH login attempts.	2020-10-12 00:12:02
attackspambots	Lines containing failures of 81.68.239.140 Oct 6 17:24:45 mellenthin sshd[30324]: User r.r from 81.68.239.140 not allowed because not listed in AllowUsers Oct 6 17:24:45 mellenthin sshd[30324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.239.140 user=r.r Oct 6 17:24:47 mellenthin sshd[30324]: Failed password for invalid user r.r from 81.68.239.140 port 40446 ssh2 Oct 6 17:24:47 mellenthin sshd[30324]: Received disconnect from 81.68.239.140 port 40446:11: Bye Bye [preauth] Oct 6 17:24:47 mellenthin sshd[30324]: Disconnected from invalid user r.r 81.68.239.140 port 40446 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=81.68.239.140	2020-10-11 16:10:42
attackspam	Oct 10 21:51:07 ip-172-31-61-156 sshd[31911]: Invalid user apache2 from 81.68.239.140 Oct 10 21:51:09 ip-172-31-61-156 sshd[31911]: Failed password for invalid user apache2 from 81.68.239.140 port 60266 ssh2 Oct 10 21:51:07 ip-172-31-61-156 sshd[31911]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.239.140 Oct 10 21:51:07 ip-172-31-61-156 sshd[31911]: Invalid user apache2 from 81.68.239.140 Oct 10 21:51:09 ip-172-31-61-156 sshd[31911]: Failed password for invalid user apache2 from 81.68.239.140 port 60266 ssh2 ...	2020-10-11 09:29:21

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 81.68.239.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32150
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;81.68.239.140.			IN	A

;; AUTHORITY SECTION:
.			547	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020101002 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 11 09:29:13 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 140.239.68.81.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 140.239.68.81.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
87.98.237.99	attackspam	Unauthorized connection attempt detected from IP address 87.98.237.99 to port 2220 [J]	2020-01-25 01:46:22
185.225.69.52	attackspambots	xmlrpc attack	2020-01-25 01:14:24
104.248.126.170	attackbotsspam	Jan 24 17:44:35 sd-53420 sshd\[14031\]: User root from 104.248.126.170 not allowed because none of user's groups are listed in AllowGroups Jan 24 17:44:35 sd-53420 sshd\[14031\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.126.170 user=root Jan 24 17:44:36 sd-53420 sshd\[14031\]: Failed password for invalid user root from 104.248.126.170 port 43922 ssh2 Jan 24 17:49:07 sd-53420 sshd\[15131\]: Invalid user cms from 104.248.126.170 Jan 24 17:49:07 sd-53420 sshd\[15131\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.126.170 ...	2020-01-25 01:11:12
51.91.136.174	attackspambots	SIP/5060 Probe, BF, Hack -	2020-01-25 01:05:42
157.245.52.27	attackspambots	Unauthorized connection attempt detected from IP address 157.245.52.27 to port 2220 [J]	2020-01-25 01:30:38
213.231.3.2	attackbotsspam	Unauthorized connection attempt detected from IP address 213.231.3.2 to port 5888 [J]	2020-01-25 01:09:30
212.64.114.156	attack	Jan 24 05:43:25 php1 sshd\[8767\]: Invalid user jd from 212.64.114.156 Jan 24 05:43:25 php1 sshd\[8767\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.114.156 Jan 24 05:43:27 php1 sshd\[8767\]: Failed password for invalid user jd from 212.64.114.156 port 55014 ssh2 Jan 24 05:46:21 php1 sshd\[9173\]: Invalid user sarah from 212.64.114.156 Jan 24 05:46:21 php1 sshd\[9173\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.114.156	2020-01-25 01:19:41
223.82.69.14	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-25 01:38:43
35.187.234.161	attackbotsspam	Unauthorized connection attempt detected from IP address 35.187.234.161 to port 2220 [J]	2020-01-25 01:36:35
212.69.160.58	attackbotsspam	port scan and connect, tcp 1433 (ms-sql-s)	2020-01-25 01:15:02
51.89.32.193	attack	" "	2020-01-25 01:14:47
51.77.202.172	attackspam	Jan 24 15:25:01 sd-53420 sshd\[4735\]: Invalid user jv from 51.77.202.172 Jan 24 15:25:01 sd-53420 sshd\[4735\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.202.172 Jan 24 15:25:03 sd-53420 sshd\[4735\]: Failed password for invalid user jv from 51.77.202.172 port 49062 ssh2 Jan 24 15:28:17 sd-53420 sshd\[5256\]: Invalid user b from 51.77.202.172 Jan 24 15:28:17 sd-53420 sshd\[5256\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.202.172 ...	2020-01-25 01:30:11
114.79.149.86	attack	Unauthorized connection attempt from IP address 114.79.149.86 on Port 445(SMB)	2020-01-25 01:40:46
212.144.102.107	attack	Unauthorized connection attempt detected from IP address 212.144.102.107 to port 2220 [J]	2020-01-25 01:07:55
192.210.189.176	attackbotsspam	(From eric@talkwithcustomer.com) Hi, Let’s take a quick trip to Tomorrow-land. I’m not talking about a theme park, I’m talking about your business’s future… Don’t worry, we won’t even need a crystal ball. Just imagine… … a future where the money you invest in driving traffic to your site wellnessfirstclinics.com pays off with tons of calls from qualified leads. And the difference between what you experienced in the past is staggering – you’re seeing 10X, 20X, 50X, even up to a 100X more leads coming from your website wellnessfirstclinics.com. Leads that are already engaged with what you have to offer and are ready to learn more and even open their wallets. Seeing all this taking place in your business, you think back: What did I do only a short time ago that made such a huge difference? And then it hits you: You took advantage of a free 14 day Test Drive of TalkWithCustomer. You installed TalkWithCustomer on wellnessfirstclinics.com – it was a snap. And practically overnig	2020-01-25 01:47:16

最近上报的IP列表

177.46.133.60	190.207.249.177	195.154.232.205	174.221.14.160
51.223.146.4	190.12.77.32	118.24.243.53	103.81.114.103
74.120.14.77	60.149.7.253	207.154.199.63	111.4.121.189
190.90.191.45	180.183.232.50	59.46.13.137	207.154.242.155
114.42.207.37	83.227.11.180	189.86.186.70	81.70.22.100