138.204.234.14

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Brazil

运营商(isp): Nossarede Telecom Ltda ME

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Icarus honeypot on github	2020-08-29 07:50:08
attack	Unauthorized connection attempt from IP address 138.204.234.14 on Port 445(SMB)	2020-06-04 04:41:20
attack	Unauthorized connection attempt from IP address 138.204.234.14 on Port 445(SMB)	2019-12-20 04:59:36
attackbotsspam	Unauthorized connection attempt from IP address 138.204.234.14 on Port 445(SMB)	2019-11-27 00:32:35

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.11.4-P2-RedHat-9.11.4-9.P2.el7 <<>> 138.204.234.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58280
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.204.234.14.			IN	A

;; AUTHORITY SECTION:
.			10800	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112600 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 100.100.2.136#53(100.100.2.136)
;; WHEN: Wed Nov 27 00:38:03 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

14.234.204.138.in-addr.arpa domain name pointer static-14.nossaredetelecom.com.br.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
14.234.204.138.in-addr.arpa	name = static-14.nossaredetelecom.com.br.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
51.75.16.138	attackspambots	Apr 4 20:37:09 itv-usvr-01 sshd[3102]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.16.138 user=root Apr 4 20:37:12 itv-usvr-01 sshd[3102]: Failed password for root from 51.75.16.138 port 52673 ssh2 Apr 4 20:41:09 itv-usvr-01 sshd[3376]: Invalid user sa from 51.75.16.138	2020-04-04 22:41:04
119.183.177.135	attack	Apr 4 15:27:56 mxgate1 postfix/postscreen[1042]: CONNECT from [119.183.177.135]:11074 to [176.31.12.44]:25 Apr 4 15:27:57 mxgate1 postfix/dnsblog[1046]: addr 119.183.177.135 listed by domain zen.spamhaus.org as 127.0.0.11 Apr 4 15:27:57 mxgate1 postfix/dnsblog[1046]: addr 119.183.177.135 listed by domain zen.spamhaus.org as 127.0.0.3 Apr 4 15:27:57 mxgate1 postfix/dnsblog[1046]: addr 119.183.177.135 listed by domain zen.spamhaus.org as 127.0.0.4 Apr 4 15:27:57 mxgate1 postfix/dnsblog[1043]: addr 119.183.177.135 listed by domain cbl.abuseat.org as 127.0.0.2 Apr 4 15:28:02 mxgate1 postfix/postscreen[1042]: DNSBL rank 3 for [119.183.177.135]:11074 Apr x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=119.183.177.135	2020-04-04 22:45:03
157.230.37.16	attackspam	Apr 4 11:42:08 vps46666688 sshd[8265]: Failed password for root from 157.230.37.16 port 59268 ssh2 ...	2020-04-04 23:26:16
119.236.159.180	attackspambots	Honeypot attack, port: 5555, PTR: n119236159180.netvigator.com.	2020-04-04 22:33:31
120.92.85.179	attackbots	Apr 4 16:10:59 [host] sshd[31814]: pam_unix(sshd: Apr 4 16:11:00 [host] sshd[31814]: Failed passwor Apr 4 16:16:45 [host] sshd[32233]: pam_unix(sshd:	2020-04-04 23:03:08
217.182.252.63	attack	Apr 4 21:11:29 webhost01 sshd[9178]: Failed password for root from 217.182.252.63 port 40918 ssh2 ...	2020-04-04 22:58:49
23.95.233.18	attack	Apr 4 15:31:30 MainVPS sshd[5852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.95.233.18 user=root Apr 4 15:31:32 MainVPS sshd[5852]: Failed password for root from 23.95.233.18 port 60614 ssh2 Apr 4 15:40:26 MainVPS sshd[23412]: Invalid user nagios from 23.95.233.18 port 59770 Apr 4 15:40:26 MainVPS sshd[23412]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.95.233.18 Apr 4 15:40:26 MainVPS sshd[23412]: Invalid user nagios from 23.95.233.18 port 59770 Apr 4 15:40:28 MainVPS sshd[23412]: Failed password for invalid user nagios from 23.95.233.18 port 59770 ssh2 ...	2020-04-04 23:38:12
117.50.34.131	attackspam	Automatic report BANNED IP	2020-04-04 23:27:00
113.88.4.74	attack	Brute force attempt	2020-04-04 23:20:27
218.92.0.179	attack	Apr 4 17:33:43 server sshd[5548]: Failed none for root from 218.92.0.179 port 62199 ssh2 Apr 4 17:33:46 server sshd[5548]: Failed password for root from 218.92.0.179 port 62199 ssh2 Apr 4 17:33:52 server sshd[5548]: Failed password for root from 218.92.0.179 port 62199 ssh2	2020-04-04 23:36:20
125.117.248.53	attackbotsspam	2020-04-04 15:24:56 H=(tophancy.net) [125.117.248.53]:49268 I=[10.100.18.25]:25 sender verify fail for : Unrouteable address 2020-04-04 x@x 2020-04-04 15:24:56 unexpected disconnection while reading SMTP command from (tophancy.net) [125.117.248.53]:49268 I=[10.100.18.25]:25 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=125.117.248.53	2020-04-04 22:40:35
149.56.100.237	attackbotsspam	Apr 4 16:03:33 srv01 sshd[11857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.100.237 user=root Apr 4 16:03:35 srv01 sshd[11857]: Failed password for root from 149.56.100.237 port 58370 ssh2 Apr 4 16:06:29 srv01 sshd[12026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.100.237 user=root Apr 4 16:06:32 srv01 sshd[12026]: Failed password for root from 149.56.100.237 port 46550 ssh2 Apr 4 16:09:23 srv01 sshd[12274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.100.237 user=root Apr 4 16:09:24 srv01 sshd[12274]: Failed password for root from 149.56.100.237 port 34732 ssh2 ...	2020-04-04 22:41:33
200.150.127.84	attackbotsspam	2020-04-04 15:20:48 plain_virtual_exim authenticator failed for ([127.0.0.1]) [200.150.127.84]: 535 Incorrect authentication data ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=200.150.127.84	2020-04-04 22:31:38
35.247.129.195	attack	35.247.129.195 - - [04/Apr/2020:15:40:55 +0200] "GET /wp-login.php HTTP/1.1" 200 5879 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.247.129.195 - - [04/Apr/2020:15:40:59 +0200] "POST /wp-login.php HTTP/1.1" 200 6778 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.247.129.195 - - [04/Apr/2020:15:41:01 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-04 22:51:20
181.57.168.174	attackbots	20 attempts against mh-ssh on cloud	2020-04-04 23:07:20

最近上报的IP列表

68.242.150.153	185.53.1.85	46.191.249.212	190.199.213.147
1.175.74.25	115.74.72.159	159.203.122.168	167.172.246.115
78.138.184.127	27.73.82.241	174.109.171.206	157.37.184.28
213.6.72.254	116.239.105.95	41.218.117.46	202.186.44.106
181.121.221.184	83.130.135.67	54.172.123.205	39.79.153.62