Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
No discussion about this IP yet. Click above link to make one.
Comments on same subnet:
IP Type Details Datetime
81.68.239.140 attackbotsspam
fail2ban detected bruce force on ssh iptables
2020-10-12 07:55:12
81.68.239.140 attackspambots
SSH login attempts.
2020-10-12 00:12:02
81.68.239.140 attackspambots
Lines containing failures of 81.68.239.140
Oct  6 17:24:45 mellenthin sshd[30324]: User r.r from 81.68.239.140 not allowed because not listed in AllowUsers
Oct  6 17:24:45 mellenthin sshd[30324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.239.140  user=r.r
Oct  6 17:24:47 mellenthin sshd[30324]: Failed password for invalid user r.r from 81.68.239.140 port 40446 ssh2
Oct  6 17:24:47 mellenthin sshd[30324]: Received disconnect from 81.68.239.140 port 40446:11: Bye Bye [preauth]
Oct  6 17:24:47 mellenthin sshd[30324]: Disconnected from invalid user r.r 81.68.239.140 port 40446 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=81.68.239.140
2020-10-11 16:10:42
81.68.239.140 attackspam
Oct 10 21:51:07 ip-172-31-61-156 sshd[31911]: Invalid user apache2 from 81.68.239.140
Oct 10 21:51:09 ip-172-31-61-156 sshd[31911]: Failed password for invalid user apache2 from 81.68.239.140 port 60266 ssh2
Oct 10 21:51:07 ip-172-31-61-156 sshd[31911]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.239.140
Oct 10 21:51:07 ip-172-31-61-156 sshd[31911]: Invalid user apache2 from 81.68.239.140
Oct 10 21:51:09 ip-172-31-61-156 sshd[31911]: Failed password for invalid user apache2 from 81.68.239.140 port 60266 ssh2
...
2020-10-11 09:29:21
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 81.68.239.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6944
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;81.68.239.55.			IN	A

;; AUTHORITY SECTION:
.			182	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 11:49:44 CST 2022
;; MSG SIZE  rcvd: 105
Host info
Host 55.239.68.81.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 55.239.68.81.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
187.247.158.247 attack
Unauthorized connection attempt from IP address 187.247.158.247 on Port 445(SMB)
2020-09-24 03:01:04
178.62.241.56 attackspambots
" "
2020-09-24 03:11:38
31.186.8.90 attack
[WedSep2311:01:47.6891612020][:error][pid30354:tid47240936216320][client31.186.8.90:57362][client31.186.8.90]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"wp-content/uploads/.\*\\\\\\\\.ph\(\?:p\|tml\|t\)"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/99_asl_jitp.conf"][line"5804"][id"382238"][rev"2"][msg"Atomicorp.comWAFRules-VirtualJustInTimePatch:PHPfileexecutioninuploadsdirectorydenied"][data"wp-content/uploads/2020/07/ups.php"][severity"CRITICAL"][hostname"safeoncloud.ch"][uri"/wp-content/uploads/2020/07/ups.php"][unique_id"X2sO@8iWkCfbdoSDmAQ@yAAAANY"]\,referer:http://site.ru[WedSep2311:01:57.8890192020][:error][pid30354:tid47240894191360][client31.186.8.90:58314][client31.186.8.90]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"wp-content/uploads/.\*\\\\\\\\.ph\(\?:p\|tml\|t\)"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/99_asl_jitp.conf"][line"5804"][id"382238"][rev"2"][msg"Atomicorp.comWAFRules-VirtualJustInTimePatch:PHP
2020-09-24 03:10:33
46.101.245.176 attack
Sep 23 23:36:46 itv-usvr-02 sshd[25886]: Invalid user nginx from 46.101.245.176 port 34088
Sep 23 23:36:46 itv-usvr-02 sshd[25886]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.245.176
Sep 23 23:36:46 itv-usvr-02 sshd[25886]: Invalid user nginx from 46.101.245.176 port 34088
Sep 23 23:36:48 itv-usvr-02 sshd[25886]: Failed password for invalid user nginx from 46.101.245.176 port 34088 ssh2
Sep 23 23:44:41 itv-usvr-02 sshd[26267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.245.176  user=root
Sep 23 23:44:43 itv-usvr-02 sshd[26267]: Failed password for root from 46.101.245.176 port 40152 ssh2
2020-09-24 03:07:27
144.34.248.219 attack
Invalid user opentsp from 144.34.248.219 port 53918
2020-09-24 02:55:18
106.12.33.134 attackbots
Sep 23 15:31:50 *** sshd[30359]: Invalid user sunil from 106.12.33.134
2020-09-24 03:19:16
203.77.43.79 attack
1600794042 - 09/22/2020 19:00:42 Host: 203.77.43.79/203.77.43.79 Port: 445 TCP Blocked
2020-09-24 02:52:44
104.236.72.182 attack
ET CINS Active Threat Intelligence Poor Reputation IP group 93 - port: 18590 proto: tcp cat: Misc Attackbytes: 60
2020-09-24 03:24:28
154.125.171.75 attack
Email rejected due to spam filtering
2020-09-24 03:14:18
92.154.95.236 attackbots
Port scan on 5 port(s): 3372 5061 5801 7512 16993
2020-09-24 03:15:11
157.55.39.136 attackbots
Automatic report - Banned IP Access
2020-09-24 03:18:07
91.207.249.243 attackspam
Unauthorized connection attempt from IP address 91.207.249.243 on Port 445(SMB)
2020-09-24 03:24:43
164.52.35.120 attackbots
Unauthorized connection attempt from IP address 164.52.35.120 on Port 445(SMB)
2020-09-24 03:16:22
206.189.91.244 attack
2020-09-22T14:31:14.510365hostname sshd[7476]: Failed password for invalid user guest from 206.189.91.244 port 34078 ssh2
...
2020-09-24 02:49:33
118.89.245.202 attackbotsspam
Sep 23 09:06:46 lanister sshd[29884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.245.202
Sep 23 09:06:46 lanister sshd[29884]: Invalid user oracle from 118.89.245.202
Sep 23 09:06:48 lanister sshd[29884]: Failed password for invalid user oracle from 118.89.245.202 port 43064 ssh2
Sep 23 09:12:21 lanister sshd[29996]: Invalid user dm from 118.89.245.202
2020-09-24 03:18:25

Recently Reported IPs

81.68.68.30 81.69.220.102 81.70.101.27 81.70.243.74
81.70.97.48 81.71.96.250 81.88.144.194 81.82.38.60
81.90.244.146 81.71.83.120 81.71.41.235 81.91.189.244
81.91.132.6 81.91.140.3 81.83.10.240 81.95.183.26
81.99.102.74 82.11.185.35 82.112.187.60 82.117.152.130