必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Hong Kong Broadband Network Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:
类型 评论内容 时间
attackbots
port scan and connect, tcp 23 (telnet)
2020-05-24 16:31:00
attackbots
DATE:2020-03-30 05:47:26, IP:138.19.164.135, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)
2020-03-30 17:33:09
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.19.164.135
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13417
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.19.164.135.			IN	A

;; AUTHORITY SECTION:
.			473	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020033000 1800 900 604800 86400

;; Query time: 117 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 30 17:33:04 CST 2020
;; MSG SIZE  rcvd: 118
HOST信息:
135.164.19.138.in-addr.arpa domain name pointer 138019164135.ctinets.com.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
135.164.19.138.in-addr.arpa	name = 138019164135.ctinets.com.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
103.69.68.6 attack
Sep  6 18:20:59 cumulus sshd[19143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.69.68.6  user=r.r
Sep  6 18:21:01 cumulus sshd[19143]: Failed password for r.r from 103.69.68.6 port 41425 ssh2
Sep  6 18:21:01 cumulus sshd[19143]: Received disconnect from 103.69.68.6 port 41425:11: Bye Bye [preauth]
Sep  6 18:21:01 cumulus sshd[19143]: Disconnected from 103.69.68.6 port 41425 [preauth]
Sep  6 18:38:30 cumulus sshd[20660]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.69.68.6  user=r.r
Sep  6 18:38:31 cumulus sshd[20660]: Failed password for r.r from 103.69.68.6 port 34637 ssh2
Sep  6 18:38:32 cumulus sshd[20660]: Received disconnect from 103.69.68.6 port 34637:11: Bye Bye [preauth]
Sep  6 18:38:32 cumulus sshd[20660]: Disconnected from 103.69.68.6 port 34637 [preauth]
Sep  6 18:39:32 cumulus sshd[20847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ........
-------------------------------
2020-09-07 21:08:51
218.164.111.166 attackspam
Honeypot attack, port: 445, PTR: 218-164-111-166.dynamic-ip.hinet.net.
2020-09-07 21:38:19
178.120.239.111 attackbots
Unauthorized connection attempt detected, IP banned.
2020-09-07 21:29:21
171.221.150.182 attackspambots
Honeypot attack, port: 445, PTR: PTR record not found
2020-09-07 21:14:48
222.186.175.216 attack
2020-09-07T15:01:17.576747centos sshd[19660]: Failed password for root from 222.186.175.216 port 28242 ssh2
2020-09-07T15:01:21.996027centos sshd[19660]: Failed password for root from 222.186.175.216 port 28242 ssh2
2020-09-07T15:01:27.483886centos sshd[19660]: Failed password for root from 222.186.175.216 port 28242 ssh2
...
2020-09-07 21:05:46
119.81.113.242 attack
Unauthorised login to NAS
2020-09-07 21:24:28
141.98.9.165 attackbots
2020-09-07T12:16:17.843935abusebot-4.cloudsearch.cf sshd[18456]: Invalid user user from 141.98.9.165 port 43491
2020-09-07T12:16:17.850510abusebot-4.cloudsearch.cf sshd[18456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.9.165
2020-09-07T12:16:17.843935abusebot-4.cloudsearch.cf sshd[18456]: Invalid user user from 141.98.9.165 port 43491
2020-09-07T12:16:20.026228abusebot-4.cloudsearch.cf sshd[18456]: Failed password for invalid user user from 141.98.9.165 port 43491 ssh2
2020-09-07T12:16:38.783367abusebot-4.cloudsearch.cf sshd[18512]: Invalid user guest from 141.98.9.165 port 34761
2020-09-07T12:16:38.788883abusebot-4.cloudsearch.cf sshd[18512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.9.165
2020-09-07T12:16:38.783367abusebot-4.cloudsearch.cf sshd[18512]: Invalid user guest from 141.98.9.165 port 34761
2020-09-07T12:16:41.180435abusebot-4.cloudsearch.cf sshd[18512]: Failed password 
...
2020-09-07 21:05:21
116.247.81.99 attack
Sep  7 06:01:31 dignus sshd[1999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.247.81.99  user=root
Sep  7 06:01:33 dignus sshd[1999]: Failed password for root from 116.247.81.99 port 58101 ssh2
Sep  7 06:06:11 dignus sshd[2279]: Invalid user apache from 116.247.81.99 port 57338
Sep  7 06:06:11 dignus sshd[2279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.247.81.99
Sep  7 06:06:13 dignus sshd[2279]: Failed password for invalid user apache from 116.247.81.99 port 57338 ssh2
...
2020-09-07 21:10:39
189.80.37.70 attackspambots
SSH login attempts.
2020-09-07 21:14:15
36.80.97.187 attackbots
Port probing on unauthorized port 445
2020-09-07 21:15:36
173.252.95.35 attack
Port Scan: TCP/80
2020-09-07 21:32:14
190.211.240.227 attackbotsspam
Honeypot attack, port: 445, PTR: fujikura.com.py.
2020-09-07 21:05:07
181.18.24.98 attackbots
20/9/6@12:54:29: FAIL: Alarm-Intrusion address from=181.18.24.98
...
2020-09-07 21:06:15
185.51.213.53 attack
1599411238 - 09/06/2020 18:53:58 Host: 185.51.213.53/185.51.213.53 Port: 445 TCP Blocked
2020-09-07 21:27:29
192.71.38.71 attack
Brute force attack stopped by firewall
2020-09-07 21:39:45

最近上报的IP列表

51.81.119.1 203.113.0.233 186.234.80.21 85.203.44.125
202.181.24.138 162.250.98.200 124.78.131.82 47.137.224.128
23.129.64.197 206.233.24.165 93.207.34.48 197.244.91.141
223.206.234.31 189.88.241.142 199.96.8.28 53.19.143.58
169.123.198.207 39.180.223.126 23.216.174.253 97.13.218.44