104.152.138.165

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.152.138.165
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6661
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.152.138.165.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012901 1800 900 604800 86400

;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 30 04:36:57 CST 2025
;; MSG SIZE  rcvd: 108

HOST信息:

Host 165.138.152.104.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 165.138.152.104.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
173.236.144.82	attack	173.236.144.82 - - [04/Aug/2020:05:56:30 +0200] "POST /xmlrpc.php HTTP/1.1" 403 8488 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 173.236.144.82 - - [04/Aug/2020:05:56:49 +0200] "POST /xmlrpc.php HTTP/1.1" 403 12424 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-04 14:00:19
80.82.64.114	attackspambots	Aug 4 07:22:31 dcd-gentoo sshd[11754]: User root from 80.82.64.114 not allowed because none of user's groups are listed in AllowGroups Aug 4 07:22:41 dcd-gentoo sshd[11760]: Invalid user oracle from 80.82.64.114 port 53664 Aug 4 07:22:51 dcd-gentoo sshd[11766]: User root from 80.82.64.114 not allowed because none of user's groups are listed in AllowGroups ...	2020-08-04 13:45:27
121.42.49.168	attack	121.42.49.168 - - [04/Aug/2020:04:56:58 +0100] "POST /wp-login.php HTTP/1.1" 200 2178 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 121.42.49.168 - - [04/Aug/2020:04:57:03 +0100] "POST /wp-login.php HTTP/1.1" 200 2154 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 121.42.49.168 - - [04/Aug/2020:04:57:08 +0100] "POST /wp-login.php HTTP/1.1" 200 2202 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-04 13:45:52
185.220.103.5	attack	fail2ban/Aug 4 05:56:49 h1962932 sshd[30366]: Invalid user admin from 185.220.103.5 port 49902 Aug 4 05:56:49 h1962932 sshd[30366]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=chelseamanning.tor-exit.calyxinstitute.org Aug 4 05:56:49 h1962932 sshd[30366]: Invalid user admin from 185.220.103.5 port 49902 Aug 4 05:56:51 h1962932 sshd[30366]: Failed password for invalid user admin from 185.220.103.5 port 49902 ssh2 Aug 4 05:56:52 h1962932 sshd[30370]: Invalid user admin from 185.220.103.5 port 50122	2020-08-04 13:56:03
212.129.152.27	attackspambots	Aug 4 05:49:37 marvibiene sshd[18918]: Failed password for root from 212.129.152.27 port 57738 ssh2	2020-08-04 14:23:33
106.12.204.81	attackspambots	Aug 4 05:53:24 vps639187 sshd\[8366\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 user=root Aug 4 05:53:26 vps639187 sshd\[8366\]: Failed password for root from 106.12.204.81 port 39270 ssh2 Aug 4 05:56:46 vps639187 sshd\[8394\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.204.81 user=root ...	2020-08-04 14:01:17
185.153.196.230	attackbotsspam	Aug 4 06:49:33 vps2 sshd[2775412]: Disconnecting invalid user 22 185.153.196.230 port 62980: Change of username or service not allowed: (22,ssh-connection) -> (101,ssh-connection) [preauth] Aug 4 06:49:41 vps2 sshd[2775452]: Invalid user 101 from 185.153.196.230 port 34259 Aug 4 06:49:41 vps2 sshd[2775452]: Invalid user 101 from 185.153.196.230 port 34259 Aug 4 06:49:43 vps2 sshd[2775452]: Disconnecting invalid user 101 185.153.196.230 port 34259: Change of username or service not allowed: (101,ssh-connection) -> (123,ssh-connection) [preauth] Aug 4 06:49:45 vps2 sshd[2775492]: Invalid user 123 from 185.153.196.230 port 10357 Aug 4 06:49:45 vps2 sshd[2775492]: Invalid user 123 from 185.153.196.230 port 10357 Aug 4 06:49:46 vps2 sshd[2775492]: Disconnecting invalid user 123 185.153.196.230 port 10357: Change of username or service not allowed: (123,ssh-connection) -> (1111,ssh-connection) [preauth] Aug 4 06:49:54 vps2 sshd[2775512]: Invalid user 1111 from 185.153.196.230 port 44 ...	2020-08-04 13:53:41
210.179.249.45	attackbotsspam	Aug 4 06:39:24 inter-technics sshd[9465]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.179.249.45 user=root Aug 4 06:39:26 inter-technics sshd[9465]: Failed password for root from 210.179.249.45 port 39510 ssh2 Aug 4 06:43:54 inter-technics sshd[9693]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.179.249.45 user=root Aug 4 06:43:56 inter-technics sshd[9693]: Failed password for root from 210.179.249.45 port 52730 ssh2 Aug 4 06:48:20 inter-technics sshd[9968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.179.249.45 user=root Aug 4 06:48:22 inter-technics sshd[9968]: Failed password for root from 210.179.249.45 port 37722 ssh2 ...	2020-08-04 14:22:07
115.78.7.102	attack	20/8/3@23:56:09: FAIL: Alarm-Network address from=115.78.7.102 20/8/3@23:56:09: FAIL: Alarm-Network address from=115.78.7.102 ...	2020-08-04 14:24:04
222.186.42.57	attack	Aug 4 08:19:00 vpn01 sshd[13893]: Failed password for root from 222.186.42.57 port 31669 ssh2 ...	2020-08-04 14:21:51
164.132.110.238	attackbotsspam	Aug 4 07:50:54 buvik sshd[11590]: Failed password for root from 164.132.110.238 port 60840 ssh2 Aug 4 07:54:58 buvik sshd[12091]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.110.238 user=root Aug 4 07:55:01 buvik sshd[12091]: Failed password for root from 164.132.110.238 port 44570 ssh2 ...	2020-08-04 14:07:15
106.246.92.234	attackspam	Aug 4 01:43:55 ny01 sshd[25509]: Failed password for root from 106.246.92.234 port 60574 ssh2 Aug 4 01:48:38 ny01 sshd[26137]: Failed password for root from 106.246.92.234 port 45106 ssh2	2020-08-04 14:08:45
101.99.15.57	attackbots	101.99.15.57 - - [04/Aug/2020:06:52:59 +0100] "POST /wp-login.php HTTP/1.1" 200 1861 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 101.99.15.57 - - [04/Aug/2020:06:53:01 +0100] "POST /wp-login.php HTTP/1.1" 200 1856 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 101.99.15.57 - - [04/Aug/2020:06:53:04 +0100] "POST /wp-login.php HTTP/1.1" 200 1835 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-04 14:15:55
62.234.130.87	attack	Aug 4 03:36:35 scw-tender-jepsen sshd[19385]: Failed password for root from 62.234.130.87 port 34248 ssh2	2020-08-04 13:52:54
85.209.0.101	attackbots	Aug 4 06:05:14 cdc sshd[6282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.209.0.101 user=root Aug 4 06:05:16 cdc sshd[6282]: Failed password for invalid user root from 85.209.0.101 port 36804 ssh2	2020-08-04 13:51:06

最近上报的IP列表

83.47.119.72	231.78.13.109	242.209.48.71	35.134.169.167
5.37.246.135	237.71.114.239	230.207.143.105	46.151.11.50
14.18.127.170	86.14.145.98	202.47.225.24	52.30.94.185
87.134.109.187	5.108.239.244	63.187.118.51	52.99.88.21
165.238.200.224	15.243.72.224	146.141.196.149	174.223.177.41