138.204.152.21

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Argentina

运营商(isp): Cooperativa Electrica de Servicios y Obras Publicas de Oncativo Ltda.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	20/8/8@16:26:56: FAIL: Alarm-Network address from=138.204.152.21 20/8/8@16:26:56: FAIL: Alarm-Network address from=138.204.152.21 ...	2020-08-09 06:10:06
attackspam	Unauthorized connection attempt detected from IP address 138.204.152.21 to port 445	2020-07-19 17:02:05
attackspambots	Unauthorized access or intrusion attempt detected from Thor banned IP	2020-07-09 17:21:27

类型

评论内容

时间

attackspambots

20/8/8@16:26:56: FAIL: Alarm-Network address from=138.204.152.21
20/8/8@16:26:56: FAIL: Alarm-Network address from=138.204.152.21
...

2020-08-09 06:10:06

attackspam

Unauthorized connection attempt detected from IP address 138.204.152.21 to port 445

2020-07-19 17:02:05

attackspambots

Unauthorized access or intrusion attempt detected from Thor banned IP

2020-07-09 17:21:27

相同子网IP讨论:

IP	类型	评论内容	时间
138.204.152.243	attack	TCP port 2323 (Telnet) attempt blocked by firewall. [2019-07-02 05:45:15]	2019-07-02 19:14:41

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.204.152.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39695
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.204.152.21.			IN	A

;; AUTHORITY SECTION:
.			156	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070900 1800 900 604800 86400

;; Query time: 378 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jul 09 17:21:24 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 21.152.204.138.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 21.152.204.138.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
162.243.129.133	attackspambots	Unauthorized SSH login attempts	2020-03-29 09:52:19
192.144.132.172	attackbotsspam	Mar 28 21:32:58 sshgateway sshd\[26939\]: Invalid user opg from 192.144.132.172 Mar 28 21:32:58 sshgateway sshd\[26939\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.132.172 Mar 28 21:33:00 sshgateway sshd\[26939\]: Failed password for invalid user opg from 192.144.132.172 port 36138 ssh2	2020-03-29 09:53:08
194.26.69.106	attack	Mar 29 03:33:49 debian-2gb-nbg1-2 kernel: \[7704693.417950\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=194.26.69.106 DST=195.201.40.59 LEN=40 TOS=0x08 PREC=0x00 TTL=241 ID=29942 PROTO=TCP SPT=49795 DPT=3379 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-29 09:40:49
200.52.80.34	attackspambots	$f2bV_matches	2020-03-29 09:32:16
188.158.135.189	attackspam	(imapd) Failed IMAP login from 188.158.135.189 (IR/Iran/adsl-188-158-135-189.sabanet.ir): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Mar 29 02:03:47 ir1 dovecot[566034]: imap-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=188.158.135.189, lip=5.63.12.44, session=	2020-03-29 09:21:03
123.206.65.183	attack	Fail2Ban Ban Triggered (2)	2020-03-29 09:28:01
185.236.42.122	attackproxy	Port scanning, SSH brute force attack, MySQL80 brute force attack	2020-03-29 10:01:41
219.147.74.48	attack	Invalid user sysadmin from 219.147.74.48 port 54622	2020-03-29 09:32:31
51.83.69.200	attackbots	Invalid user yth from 51.83.69.200 port 48878	2020-03-29 09:34:45
196.52.84.46	attackbots	(From geolfluthue@yahoo.co.id) Fаst and Вig mоneу on thе Internet frоm $8949 per wеek: http://nlhascsku.bengalinewsline.com/1a4b877d6	2020-03-29 09:46:59
88.147.117.133	attackbots	Automatic report - Port Scan Attack	2020-03-29 09:43:39
188.165.255.8	attackspambots	Invalid user mm from 188.165.255.8 port 36196	2020-03-29 09:45:49
182.61.40.158	attackbotsspam	Mar 29 03:09:03 ns392434 sshd[14148]: Invalid user kgm from 182.61.40.158 port 32942 Mar 29 03:09:03 ns392434 sshd[14148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.40.158 Mar 29 03:09:03 ns392434 sshd[14148]: Invalid user kgm from 182.61.40.158 port 32942 Mar 29 03:09:05 ns392434 sshd[14148]: Failed password for invalid user kgm from 182.61.40.158 port 32942 ssh2 Mar 29 03:17:36 ns392434 sshd[14521]: Invalid user isf from 182.61.40.158 port 47330 Mar 29 03:17:36 ns392434 sshd[14521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.40.158 Mar 29 03:17:36 ns392434 sshd[14521]: Invalid user isf from 182.61.40.158 port 47330 Mar 29 03:17:38 ns392434 sshd[14521]: Failed password for invalid user isf from 182.61.40.158 port 47330 ssh2 Mar 29 03:19:30 ns392434 sshd[14611]: Invalid user breanne from 182.61.40.158 port 40980	2020-03-29 09:53:23
117.2.108.130	attackspam	Automatic report - Port Scan Attack	2020-03-29 09:54:46
111.230.223.94	attack	Mar 28 21:46:34 firewall sshd[17406]: Invalid user ubuntu from 111.230.223.94 Mar 28 21:46:36 firewall sshd[17406]: Failed password for invalid user ubuntu from 111.230.223.94 port 43658 ssh2 Mar 28 21:53:24 firewall sshd[17781]: Invalid user lpv from 111.230.223.94 ...	2020-03-29 09:34:07

最近上报的IP列表

135.10.136.137	182.25.199.97	122.226.99.238	43.171.38.133
190.201.108.138	22.233.20.79	211.212.37.204	45.95.253.167
190.78.15.37	176.40.48.206	211.155.225.104	190.73.77.187
138.186.227.250	43.119.254.116	117.51.153.70	47.6.18.207
118.165.130.97	37.237.152.204	73.218.166.81	35.213.133.249