必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): unknown

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
138.204.234.14 attackspambots
Icarus honeypot on github
2020-08-29 07:50:08
138.204.234.14 attack
Unauthorized connection attempt from IP address 138.204.234.14 on Port 445(SMB)
2020-06-04 04:41:20
138.204.235.170 attackbots
Honeypot attack, port: 445, PTR: static-170.nossaredetelecom.com.br.
2020-01-12 05:53:22
138.204.234.14 attack
Unauthorized connection attempt from IP address 138.204.234.14 on Port 445(SMB)
2019-12-20 04:59:36
138.204.234.14 attackbotsspam
Unauthorized connection attempt from IP address 138.204.234.14 on Port 445(SMB)
2019-11-27 00:32:35
138.204.235.30 attackspam
Nov  6 11:03:54 legacy sshd[25899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.204.235.30
Nov  6 11:03:55 legacy sshd[25899]: Failed password for invalid user connect from 138.204.235.30 port 39969 ssh2
Nov  6 11:08:41 legacy sshd[26039]: Failed password for root from 138.204.235.30 port 59516 ssh2
...
2019-11-06 19:44:26
138.204.235.30 attackbots
Nov  6 05:00:58 vtv3 sshd\[19402\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.204.235.30  user=root
Nov  6 05:01:00 vtv3 sshd\[19402\]: Failed password for root from 138.204.235.30 port 46213 ssh2
Nov  6 05:05:34 vtv3 sshd\[22298\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.204.235.30  user=root
Nov  6 05:05:36 vtv3 sshd\[22298\]: Failed password for root from 138.204.235.30 port 37500 ssh2
Nov  6 05:10:22 vtv3 sshd\[25215\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.204.235.30  user=root
Nov  6 05:24:30 vtv3 sshd\[1082\]: Invalid user cn from 138.204.235.30 port 59149
Nov  6 05:24:30 vtv3 sshd\[1082\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.204.235.30
Nov  6 05:24:32 vtv3 sshd\[1082\]: Failed password for invalid user cn from 138.204.235.30 port 59149 ssh2
Nov  6 05:29:16 vtv3 sshd\[4242\]: Invali
2019-11-06 13:29:38
138.204.235.30 attackspam
Lines containing failures of 138.204.235.30
Oct 29 01:42:35 shared11 sshd[7816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.204.235.30  user=r.r
Oct 29 01:42:38 shared11 sshd[7816]: Failed password for r.r from 138.204.235.30 port 51014 ssh2
Oct 29 01:42:38 shared11 sshd[7816]: Received disconnect from 138.204.235.30 port 51014:11: Bye Bye [preauth]
Oct 29 01:42:38 shared11 sshd[7816]: Disconnected from authenticating user r.r 138.204.235.30 port 51014 [preauth]
Oct 29 01:57:12 shared11 sshd[12485]: Invalid user asconex from 138.204.235.30 port 40713
Oct 29 01:57:12 shared11 sshd[12485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.204.235.30
Oct 29 01:57:14 shared11 sshd[12485]: Failed password for invalid user asconex from 138.204.235.30 port 40713 ssh2
Oct 29 01:57:14 shared11 sshd[12485]: Received disconnect from 138.204.235.30 port 40713:11: Bye Bye [preauth]
Oct 29 01:57........
------------------------------
2019-11-03 06:09:13
138.204.235.30 attackbotsspam
2019-11-02T04:43:21.134156shield sshd\[26264\]: Invalid user q1w2e3r4 from 138.204.235.30 port 48644
2019-11-02T04:43:21.142369shield sshd\[26264\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.204.235.30
2019-11-02T04:43:23.482582shield sshd\[26264\]: Failed password for invalid user q1w2e3r4 from 138.204.235.30 port 48644 ssh2
2019-11-02T04:47:58.576752shield sshd\[27482\]: Invalid user Blood123 from 138.204.235.30 port 39622
2019-11-02T04:47:58.582282shield sshd\[27482\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.204.235.30
2019-11-02 14:13:17
138.204.235.30 attackspam
Too many connections or unauthorized access detected from Arctic banned ip
2019-11-01 06:24:25
138.204.235.30 attackbotsspam
Lines containing failures of 138.204.235.30
Oct 29 01:42:35 shared11 sshd[7816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.204.235.30  user=r.r
Oct 29 01:42:38 shared11 sshd[7816]: Failed password for r.r from 138.204.235.30 port 51014 ssh2
Oct 29 01:42:38 shared11 sshd[7816]: Received disconnect from 138.204.235.30 port 51014:11: Bye Bye [preauth]
Oct 29 01:42:38 shared11 sshd[7816]: Disconnected from authenticating user r.r 138.204.235.30 port 51014 [preauth]
Oct 29 01:57:12 shared11 sshd[12485]: Invalid user asconex from 138.204.235.30 port 40713
Oct 29 01:57:12 shared11 sshd[12485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.204.235.30
Oct 29 01:57:14 shared11 sshd[12485]: Failed password for invalid user asconex from 138.204.235.30 port 40713 ssh2
Oct 29 01:57:14 shared11 sshd[12485]: Received disconnect from 138.204.235.30 port 40713:11: Bye Bye [preauth]
Oct 29 01:57........
------------------------------
2019-10-31 16:48:00
138.204.235.30 attack
Lines containing failures of 138.204.235.30
Oct 29 01:42:35 shared11 sshd[7816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.204.235.30  user=r.r
Oct 29 01:42:38 shared11 sshd[7816]: Failed password for r.r from 138.204.235.30 port 51014 ssh2
Oct 29 01:42:38 shared11 sshd[7816]: Received disconnect from 138.204.235.30 port 51014:11: Bye Bye [preauth]
Oct 29 01:42:38 shared11 sshd[7816]: Disconnected from authenticating user r.r 138.204.235.30 port 51014 [preauth]
Oct 29 01:57:12 shared11 sshd[12485]: Invalid user asconex from 138.204.235.30 port 40713
Oct 29 01:57:12 shared11 sshd[12485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.204.235.30
Oct 29 01:57:14 shared11 sshd[12485]: Failed password for invalid user asconex from 138.204.235.30 port 40713 ssh2
Oct 29 01:57:14 shared11 sshd[12485]: Received disconnect from 138.204.235.30 port 40713:11: Bye Bye [preauth]
Oct 29 01:57........
------------------------------
2019-10-31 00:04:51
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.204.23.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61644
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.204.23.1.			IN	A

;; AUTHORITY SECTION:
.			128	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 07:40:03 CST 2022
;; MSG SIZE  rcvd: 105
HOST信息:
1.23.204.138.in-addr.arpa domain name pointer 138.204.23.1.fontnet.net.br.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
1.23.204.138.in-addr.arpa	name = 138.204.23.1.fontnet.net.br.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
122.199.152.114 attack
$f2bV_matches
2019-10-08 02:08:58
159.203.201.108 attack
MultiHost/MultiPort Probe, Scan, Hack -
2019-10-08 02:35:31
167.114.145.139 attackbotsspam
Oct  7 12:47:49 xtremcommunity sshd\[280859\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.145.139  user=root
Oct  7 12:47:51 xtremcommunity sshd\[280859\]: Failed password for root from 167.114.145.139 port 49988 ssh2
Oct  7 12:51:23 xtremcommunity sshd\[280961\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.145.139  user=root
Oct  7 12:51:24 xtremcommunity sshd\[280961\]: Failed password for root from 167.114.145.139 port 32792 ssh2
Oct  7 12:55:07 xtremcommunity sshd\[281019\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.145.139  user=root
...
2019-10-08 02:27:12
81.22.45.133 attack
10/07/2019-20:16:25.998415 81.22.45.133 Protocol: 6 ET DROP Dshield Block Listed Source group 1
2019-10-08 02:27:46
37.59.6.106 attackbotsspam
Oct  7 19:29:29 nextcloud sshd\[30876\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.6.106  user=root
Oct  7 19:29:31 nextcloud sshd\[30876\]: Failed password for root from 37.59.6.106 port 44366 ssh2
Oct  7 19:33:38 nextcloud sshd\[6297\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.6.106  user=root
...
2019-10-08 02:00:56
101.255.52.171 attackbotsspam
$f2bV_matches
2019-10-08 02:25:42
120.92.89.35 attackbotsspam
Port Scan: TCP/80
2019-10-08 02:36:00
197.52.168.52 attackbotsspam
Chat Spam
2019-10-08 01:58:52
14.134.19.71 attackspambots
Trying ports that it shouldn't be.
2019-10-08 02:28:54
193.31.210.41 attackspam
Oct  7 16:12:33 h2177944 kernel: \[3333656.216892\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=193.31.210.41 DST=85.214.117.9 LEN=40 TOS=0x08 PREC=0x20 TTL=69 ID=28853 DF PROTO=TCP SPT=60997 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 
Oct  7 16:19:52 h2177944 kernel: \[3334095.663134\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=193.31.210.41 DST=85.214.117.9 LEN=40 TOS=0x08 PREC=0x20 TTL=75 ID=18305 DF PROTO=TCP SPT=55423 DPT=80 WINDOW=29200 RES=0x00 SYN URGP=0 
Oct  7 16:52:56 h2177944 kernel: \[3336078.756054\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=193.31.210.41 DST=85.214.117.9 LEN=40 TOS=0x08 PREC=0x20 TTL=76 ID=40369 DF PROTO=TCP SPT=63677 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 
Oct  7 17:08:00 h2177944 kernel: \[3336982.753537\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=193.31.210.41 DST=85.214.117.9 LEN=40 TOS=0x08 PREC=0x20 TTL=81 ID=23866 DF PROTO=TCP SPT=53096 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 
Oct  7 17:13:30 h2177944 kernel: \[3337312.358124\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=193.31.210.41 DST=85.214.1
2019-10-08 02:34:27
117.66.243.77 attack
Oct  7 17:25:37 MK-Soft-Root1 sshd[31913]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.66.243.77 
Oct  7 17:25:38 MK-Soft-Root1 sshd[31913]: Failed password for invalid user scs from 117.66.243.77 port 59670 ssh2
...
2019-10-08 02:09:24
41.230.88.168 attackspambots
IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/41.230.88.168/ 
 TN - 1H : (16)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : TN 
 NAME ASN : ASN2609 
 
 IP : 41.230.88.168 
 
 CIDR : 41.230.0.0/17 
 
 PREFIX COUNT : 159 
 
 UNIQUE IP COUNT : 840960 
 
 
 WYKRYTE ATAKI Z ASN2609 :  
  1H - 1 
  3H - 1 
  6H - 1 
 12H - 2 
 24H - 4 
 
 DateTime : 2019-10-07 13:38:56 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery
2019-10-08 02:09:57
90.150.180.66 attack
Dovecot Brute-Force
2019-10-08 02:28:06
118.174.45.29 attack
Oct  7 17:57:20 web8 sshd\[16296\]: Invalid user !QW@\#ER\$ from 118.174.45.29
Oct  7 17:57:20 web8 sshd\[16296\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.174.45.29
Oct  7 17:57:22 web8 sshd\[16296\]: Failed password for invalid user !QW@\#ER\$ from 118.174.45.29 port 47016 ssh2
Oct  7 18:02:32 web8 sshd\[18867\]: Invalid user 123Dallas from 118.174.45.29
Oct  7 18:02:32 web8 sshd\[18867\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.174.45.29
2019-10-08 02:11:51
192.169.189.120 attackbotsspam
Automatic report - Banned IP Access
2019-10-08 02:16:37

最近上报的IP列表

138.204.23.102 138.204.23.110 138.204.23.118 138.204.23.121
138.204.23.140 138.204.23.139 138.204.23.136 138.204.23.157
138.204.23.158 118.175.228.170 138.204.23.163 138.204.23.164
138.204.23.167 138.204.23.169 138.204.23.181 138.204.23.174
138.204.23.194 138.204.23.193 138.204.23.191 118.175.228.173