138.197.14.168

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): unknown

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
138.197.146.75	attack	Scan port	2023-10-18 12:53:52
138.197.146.75	attack	Scan port	2023-09-23 19:49:04
138.197.146.75	attack	Scan port	2023-07-27 12:45:30
138.197.146.75	attack	port scan	2023-02-03 13:47:17
138.197.146.75	attack	Port scan	2022-12-23 13:51:21
138.197.146.132	attackbots	138.197.146.132 - - [30/Sep/2020:23:11:08 +0200] "GET /wp-login.php HTTP/1.1" 200 9061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [30/Sep/2020:23:11:10 +0200] "POST /wp-login.php HTTP/1.1" 200 9312 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [30/Sep/2020:23:11:11 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-01 05:49:46
138.197.146.132	attackbotsspam	Wordpress framework attack - hard filter	2020-09-30 22:07:30
138.197.146.132	attack	138.197.146.132 - - [30/Sep/2020:04:04:40 +0200] "GET /wp-login.php HTTP/1.1" 200 1984 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [30/Sep/2020:04:04:40 +0200] "POST /wp-login.php HTTP/1.1" 200 2104 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [30/Sep/2020:04:04:46 +0200] "GET /wp-login.php HTTP/1.1" 200 1984 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [30/Sep/2020:04:04:47 +0200] "POST /wp-login.php HTTP/1.1" 200 2090 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [30/Sep/2020:04:04:47 +0200] "GET /wp-login.php HTTP/1.1" 200 1984 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [30/Sep/2020:04:04:53 +0200] "POST /wp-login.php HTTP/1.1" 200 2091 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/ ...	2020-09-30 14:40:08
138.197.146.132	attackspam	MYH,DEF GET /wp-login.php	2020-09-27 03:38:24
138.197.146.132	attackbots	138.197.146.132 - - [26/Sep/2020:11:29:07 +0100] "POST /wp-login.php HTTP/1.1" 200 2302 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [26/Sep/2020:11:29:08 +0100] "POST /wp-login.php HTTP/1.1" 200 2238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [26/Sep/2020:11:29:10 +0100] "POST /wp-login.php HTTP/1.1" 200 2234 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-26 19:37:03
138.197.149.97	attack	Sep 10 20:00:19 ns308116 sshd[31485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.149.97 user=root Sep 10 20:00:21 ns308116 sshd[31485]: Failed password for root from 138.197.149.97 port 34136 ssh2 Sep 10 20:06:07 ns308116 sshd[4933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.149.97 user=root Sep 10 20:06:09 ns308116 sshd[4933]: Failed password for root from 138.197.149.97 port 40806 ssh2 Sep 10 20:09:31 ns308116 sshd[8395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.149.97 user=root ...	2020-09-11 03:27:57
138.197.146.132	attackbotsspam	138.197.146.132 - - [10/Sep/2020:10:56:20 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [10/Sep/2020:10:56:20 +0200] "POST /wp-login.php HTTP/1.1" 200 2698 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [10/Sep/2020:10:56:20 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [10/Sep/2020:10:56:21 +0200] "POST /wp-login.php HTTP/1.1" 200 2672 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [10/Sep/2020:10:56:26 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [10/Sep/2020:10:56:26 +0200] "POST /wp-login.php HTTP/1.1" 200 2673 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/ ...	2020-09-10 23:58:21
138.197.149.97	attack	$f2bV_matches	2020-09-10 18:58:20
138.197.146.132	attackspam	CMS (WordPress or Joomla) login attempt.	2020-09-10 15:22:37
138.197.146.132	attack	Automatic report generated by Wazuh	2020-09-10 05:59:00

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.14.168
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10384
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.197.14.168.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 07:34:05 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 168.14.197.138.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 168.14.197.138.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
106.12.28.36	attackbots	Sep 12 23:52:34 ny01 sshd[24578]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.28.36 Sep 12 23:52:35 ny01 sshd[24578]: Failed password for invalid user 123456 from 106.12.28.36 port 44194 ssh2 Sep 12 23:56:56 ny01 sshd[25672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.28.36	2019-09-13 15:05:22
51.83.153.87	attackbotsspam	40 attacks on PHP URLs: 51.83.153.87 - - [12/Sep/2019:04:32:07 +0100] "POST /administrator/index.php HTTP/1.1" 403 9	2019-09-13 15:00:47
167.71.40.125	attack	Sep 12 20:49:20 tdfoods sshd\[26812\]: Invalid user gitgit123 from 167.71.40.125 Sep 12 20:49:20 tdfoods sshd\[26812\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.40.125 Sep 12 20:49:22 tdfoods sshd\[26812\]: Failed password for invalid user gitgit123 from 167.71.40.125 port 58692 ssh2 Sep 12 20:53:00 tdfoods sshd\[27091\]: Invalid user guest123 from 167.71.40.125 Sep 12 20:53:00 tdfoods sshd\[27091\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.40.125	2019-09-13 15:13:54
219.93.106.33	attackbots	Sep 13 07:16:53 thevastnessof sshd[20241]: Failed password for root from 219.93.106.33 port 48915 ssh2 ...	2019-09-13 15:52:15
161.10.238.226	attack	Sep 13 07:23:01 vmanager6029 sshd\[27687\]: Invalid user tester from 161.10.238.226 port 52893 Sep 13 07:23:01 vmanager6029 sshd\[27687\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.10.238.226 Sep 13 07:23:03 vmanager6029 sshd\[27687\]: Failed password for invalid user tester from 161.10.238.226 port 52893 ssh2	2019-09-13 15:09:13
3.216.8.185	attack	Message ID Created at: Thu, Sep 12, 2019 at 2:44 PM (Delivered after 6337 seconds) From: Flat Belly Diet To: Subject: The 1 ancient & Only spice burns 1lb a day SPF: PASS with IP 3.216.8.185	2019-09-13 15:38:06
62.1.63.116	attackbotsspam	GR - 1H : (29) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : GR NAME ASN : ASN1241 IP : 62.1.63.116 CIDR : 62.1.48.0/20 PREFIX COUNT : 137 UNIQUE IP COUNT : 604672 WYKRYTE ATAKI Z ASN1241 : 1H - 1 3H - 1 6H - 3 12H - 4 24H - 5 INFO : SYN Flood DDoS Attack Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-09-13 15:42:15
159.65.131.134	attackspam	Sep 13 03:18:48 TORMINT sshd\[24366\]: Invalid user tomcat from 159.65.131.134 Sep 13 03:18:48 TORMINT sshd\[24366\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.131.134 Sep 13 03:18:51 TORMINT sshd\[24366\]: Failed password for invalid user tomcat from 159.65.131.134 port 49302 ssh2 ...	2019-09-13 15:27:19
183.157.168.200	attackbotsspam	22/tcp [2019-09-13]1pkt	2019-09-13 15:25:24
58.254.132.140	attackspambots	Sep 13 08:39:59 ns3110291 sshd\[5972\]: Invalid user oracle from 58.254.132.140 Sep 13 08:39:59 ns3110291 sshd\[5972\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.254.132.140 Sep 13 08:40:01 ns3110291 sshd\[5972\]: Failed password for invalid user oracle from 58.254.132.140 port 26408 ssh2 Sep 13 08:43:33 ns3110291 sshd\[7325\]: Invalid user accounts from 58.254.132.140 Sep 13 08:43:33 ns3110291 sshd\[7325\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.254.132.140 ...	2019-09-13 15:18:23
167.71.2.71	attackspam	Sep 13 09:27:55 mout sshd[25146]: Invalid user ts3srv from 167.71.2.71 port 31031	2019-09-13 15:48:57
167.99.76.71	attack	Sep 13 07:01:45 hcbbdb sshd\[30855\]: Invalid user deployer from 167.99.76.71 Sep 13 07:01:45 hcbbdb sshd\[30855\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.76.71 Sep 13 07:01:46 hcbbdb sshd\[30855\]: Failed password for invalid user deployer from 167.99.76.71 port 48892 ssh2 Sep 13 07:07:20 hcbbdb sshd\[31442\]: Invalid user git from 167.99.76.71 Sep 13 07:07:20 hcbbdb sshd\[31442\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.76.71	2019-09-13 15:14:29
196.41.123.182	attackbots	failed_logins	2019-09-13 15:34:17
49.88.112.78	attackspam	Sep 13 08:40:29 fr01 sshd[31208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.78 user=root Sep 13 08:40:31 fr01 sshd[31208]: Failed password for root from 49.88.112.78 port 60758 ssh2 ...	2019-09-13 15:00:13
146.88.240.4	attack	Scanning random ports - tries to find possible vulnerable services	2019-09-13 15:51:31

最近上报的IP列表

138.197.139.61	138.197.14.29	138.197.14.18	138.197.14.164
138.197.14.170	138.197.14.60	138.197.14.220	118.175.172.41
138.197.14.230	138.197.14.77	138.197.14.92	138.197.140.158
138.197.14.73	138.197.140.199	138.197.141.32	138.197.141.201
138.197.141.5	138.197.140.220	138.197.141.95	138.197.142.140

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表