138.197.146.81

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
138.197.146.75	attack	Scan port	2023-10-18 12:53:52
138.197.146.75	attack	Scan port	2023-09-23 19:49:04
138.197.146.75	attack	Scan port	2023-07-27 12:45:30
138.197.146.75	attack	port scan	2023-02-03 13:47:17
138.197.146.75	attack	Port scan	2022-12-23 13:51:21
138.197.146.132	attackbots	138.197.146.132 - - [30/Sep/2020:23:11:08 +0200] "GET /wp-login.php HTTP/1.1" 200 9061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [30/Sep/2020:23:11:10 +0200] "POST /wp-login.php HTTP/1.1" 200 9312 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [30/Sep/2020:23:11:11 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-10-01 05:49:46
138.197.146.132	attackbotsspam	Wordpress framework attack - hard filter	2020-09-30 22:07:30
138.197.146.132	attack	138.197.146.132 - - [30/Sep/2020:04:04:40 +0200] "GET /wp-login.php HTTP/1.1" 200 1984 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [30/Sep/2020:04:04:40 +0200] "POST /wp-login.php HTTP/1.1" 200 2104 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [30/Sep/2020:04:04:46 +0200] "GET /wp-login.php HTTP/1.1" 200 1984 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [30/Sep/2020:04:04:47 +0200] "POST /wp-login.php HTTP/1.1" 200 2090 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [30/Sep/2020:04:04:47 +0200] "GET /wp-login.php HTTP/1.1" 200 1984 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [30/Sep/2020:04:04:53 +0200] "POST /wp-login.php HTTP/1.1" 200 2091 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/ ...	2020-09-30 14:40:08
138.197.146.132	attackspam	MYH,DEF GET /wp-login.php	2020-09-27 03:38:24
138.197.146.132	attackbots	138.197.146.132 - - [26/Sep/2020:11:29:07 +0100] "POST /wp-login.php HTTP/1.1" 200 2302 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [26/Sep/2020:11:29:08 +0100] "POST /wp-login.php HTTP/1.1" 200 2238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [26/Sep/2020:11:29:10 +0100] "POST /wp-login.php HTTP/1.1" 200 2234 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-26 19:37:03
138.197.146.132	attackbotsspam	138.197.146.132 - - [10/Sep/2020:10:56:20 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [10/Sep/2020:10:56:20 +0200] "POST /wp-login.php HTTP/1.1" 200 2698 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [10/Sep/2020:10:56:20 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [10/Sep/2020:10:56:21 +0200] "POST /wp-login.php HTTP/1.1" 200 2672 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [10/Sep/2020:10:56:26 +0200] "GET /wp-login.php HTTP/1.1" 200 2566 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.146.132 - - [10/Sep/2020:10:56:26 +0200] "POST /wp-login.php HTTP/1.1" 200 2673 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/ ...	2020-09-10 23:58:21
138.197.146.132	attackspam	CMS (WordPress or Joomla) login attempt.	2020-09-10 15:22:37
138.197.146.132	attack	Automatic report generated by Wazuh	2020-09-10 05:59:00
138.197.146.132	attack	WordPress wp-login brute force :: 138.197.146.132 0.068 BYPASS [25/Aug/2020:22:29:20 0000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 2573 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-26 07:21:11
138.197.146.132	attack	CMS (WordPress or Joomla) login attempt.	2020-07-27 14:51:04

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.146.81
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45229
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.197.146.81.			IN	A

;; AUTHORITY SECTION:
.			525	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 10:05:34 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 81.146.197.138.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 81.146.197.138.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
46.101.206.205	attackbotsspam	Feb 15 04:46:47 web9 sshd\[26998\]: Invalid user dwdev from 46.101.206.205 Feb 15 04:46:47 web9 sshd\[26998\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.206.205 Feb 15 04:46:49 web9 sshd\[26998\]: Failed password for invalid user dwdev from 46.101.206.205 port 55236 ssh2 Feb 15 04:49:33 web9 sshd\[27390\]: Invalid user deffer from 46.101.206.205 Feb 15 04:49:33 web9 sshd\[27390\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.206.205	2020-02-15 23:01:48
138.68.44.236	attack	Feb 15 05:02:38 hpm sshd\[6703\]: Invalid user dustin from 138.68.44.236 Feb 15 05:02:38 hpm sshd\[6703\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.44.236 Feb 15 05:02:40 hpm sshd\[6703\]: Failed password for invalid user dustin from 138.68.44.236 port 33048 ssh2 Feb 15 05:06:08 hpm sshd\[7118\]: Invalid user harman from 138.68.44.236 Feb 15 05:06:08 hpm sshd\[7118\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.44.236	2020-02-15 23:06:14
88.234.1.206	attackbots	/wp-login.php	2020-02-15 23:09:13
91.235.198.211	attackbots	Fail2Ban Ban Triggered	2020-02-15 23:18:10
222.186.175.151	attackbotsspam	Feb 15 15:55:57 legacy sshd[27586]: Failed password for root from 222.186.175.151 port 6352 ssh2 Feb 15 15:56:10 legacy sshd[27586]: error: maximum authentication attempts exceeded for root from 222.186.175.151 port 6352 ssh2 [preauth] Feb 15 15:56:17 legacy sshd[27598]: Failed password for root from 222.186.175.151 port 10570 ssh2 ...	2020-02-15 23:05:37
177.128.82.41	attackspambots	Automatic report - Port Scan Attack	2020-02-15 23:27:43
47.22.82.8	attack	Tried sshing with brute force.	2020-02-15 23:16:42
212.156.210.223	attackbotsspam	Jan 11 00:45:43 ms-srv sshd[41717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.156.210.223 Jan 11 00:45:44 ms-srv sshd[41717]: Failed password for invalid user nexus from 212.156.210.223 port 58602 ssh2	2020-02-15 23:30:26
118.43.189.54	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-15 23:28:43
61.177.172.128	attack	Feb 15 15:46:36 vps647732 sshd[8689]: Failed password for root from 61.177.172.128 port 47980 ssh2 Feb 15 15:46:39 vps647732 sshd[8689]: Failed password for root from 61.177.172.128 port 47980 ssh2 ...	2020-02-15 22:57:59
167.114.185.237	attackbotsspam	Feb 15 10:53:19 ws22vmsma01 sshd[94441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.185.237 Feb 15 10:53:22 ws22vmsma01 sshd[94441]: Failed password for invalid user test2 from 167.114.185.237 port 35446 ssh2 ...	2020-02-15 23:08:11
80.38.165.87	attackbots	2020-02-15T14:53:19.830126 sshd[9746]: Invalid user PRECISIONGLMGR from 80.38.165.87 port 43617 2020-02-15T14:53:19.844531 sshd[9746]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.38.165.87 2020-02-15T14:53:19.830126 sshd[9746]: Invalid user PRECISIONGLMGR from 80.38.165.87 port 43617 2020-02-15T14:53:22.163206 sshd[9746]: Failed password for invalid user PRECISIONGLMGR from 80.38.165.87 port 43617 ssh2 ...	2020-02-15 23:09:46
79.27.235.172	attackspambots	Feb 15 15:30:19 MK-Soft-VM8 sshd[1209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.27.235.172 Feb 15 15:30:22 MK-Soft-VM8 sshd[1209]: Failed password for invalid user informix from 79.27.235.172 port 37924 ssh2 ...	2020-02-15 23:37:38
217.182.74.125	attackspambots	Feb 15 05:10:51 auw2 sshd\[25409\]: Invalid user cstrike from 217.182.74.125 Feb 15 05:10:51 auw2 sshd\[25409\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.ip-217-182-74.eu Feb 15 05:10:52 auw2 sshd\[25409\]: Failed password for invalid user cstrike from 217.182.74.125 port 51900 ssh2 Feb 15 05:13:59 auw2 sshd\[25664\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.ip-217-182-74.eu user=root Feb 15 05:14:01 auw2 sshd\[25664\]: Failed password for root from 217.182.74.125 port 53346 ssh2	2020-02-15 23:16:04
70.226.21.36	attack	Feb 15 14:53:03 debian-2gb-nbg1-2 kernel: \[4034006.543457\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=70.226.21.36 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=48 ID=46551 PROTO=TCP SPT=4138 DPT=23 WINDOW=20896 RES=0x00 SYN URGP=0	2020-02-15 23:32:19

最近上报的IP列表

176.67.86.152	86.61.31.92	104.129.206.110	41.33.11.70
120.55.190.250	103.207.8.82	35.160.7.102	123.5.146.231
123.234.200.64	171.248.76.42	85.247.100.198	59.97.173.178
111.70.6.114	139.59.98.212	121.13.131.200	36.77.170.51
206.189.60.202	185.71.140.195	194.219.178.133	196.203.254.6

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表