138.219.254.68

基本信息:

城市(city): Campo Novo

省份(region): Rio Grande do Sul

国家(country): Brazil

运营商(isp): Bohn e Welter Ltda

主机名(hostname): unknown

机构(organization): BOHN E WELTER LTDA

使用类型(Usage Type): Commercial

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Brute force SMTP login attempted. ...	2019-08-10 02:55:34

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.219.254.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6082
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.219.254.68.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019051800 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat May 18 23:38:28 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

68.254.219.138.in-addr.arpa domain name pointer 254.219.138.68-rev.arobanet.com.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
68.254.219.138.in-addr.arpa	name = 254.219.138.68-rev.arobanet.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
218.92.0.249	attackspam	Jul 13 15:13:52 localhost sshd[78572]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.249 user=root Jul 13 15:13:54 localhost sshd[78572]: Failed password for root from 218.92.0.249 port 62355 ssh2 Jul 13 15:13:58 localhost sshd[78572]: Failed password for root from 218.92.0.249 port 62355 ssh2 Jul 13 15:13:52 localhost sshd[78572]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.249 user=root Jul 13 15:13:54 localhost sshd[78572]: Failed password for root from 218.92.0.249 port 62355 ssh2 Jul 13 15:13:58 localhost sshd[78572]: Failed password for root from 218.92.0.249 port 62355 ssh2 Jul 13 15:13:52 localhost sshd[78572]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.249 user=root Jul 13 15:13:54 localhost sshd[78572]: Failed password for root from 218.92.0.249 port 62355 ssh2 Jul 13 15:13:58 localhost sshd[78572]: Failed password fo ...	2020-07-13 23:36:56
27.56.46.228	attackbotsspam	Email rejected due to spam filtering	2020-07-13 23:30:19
78.82.168.146	attackspam	Port scan denied	2020-07-13 23:17:35
103.205.5.157	attackspambots	Port scan denied	2020-07-13 23:31:50
188.166.77.159	attackbotsspam	Jul 13 16:02:20 debian-2gb-nbg1-2 kernel: \[16907514.682574\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=188.166.77.159 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=50333 PROTO=TCP SPT=59161 DPT=18520 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-13 23:34:35
114.35.219.16	attack	Port scan denied	2020-07-13 23:35:44
162.243.129.58	attackspambots	scans once in preceeding hours on the ports (in chronological order) 1521 resulting in total of 19 scans from 162.243.0.0/16 block.	2020-07-13 23:16:44
88.218.17.103	attack	Port scan denied	2020-07-13 23:04:51
46.188.90.27	attack	(sshd) Failed SSH login from 46.188.90.27 (RU/Russia/broadband-46-188-90-27.2com.net): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 13 15:16:33 s1 sshd[2296]: Invalid user conta from 46.188.90.27 port 47948 Jul 13 15:16:35 s1 sshd[2296]: Failed password for invalid user conta from 46.188.90.27 port 47948 ssh2 Jul 13 15:23:05 s1 sshd[2582]: Invalid user oradev from 46.188.90.27 port 33958 Jul 13 15:23:07 s1 sshd[2582]: Failed password for invalid user oradev from 46.188.90.27 port 33958 ssh2 Jul 13 15:24:49 s1 sshd[2660]: Invalid user zimbra from 46.188.90.27 port 32834	2020-07-13 23:36:04
218.92.0.208	attackspambots	Jul 13 16:59:25 server sshd[32710]: Failed password for root from 218.92.0.208 port 47182 ssh2 Jul 13 16:59:27 server sshd[32710]: Failed password for root from 218.92.0.208 port 47182 ssh2 Jul 13 16:59:29 server sshd[32710]: Failed password for root from 218.92.0.208 port 47182 ssh2	2020-07-13 23:06:48
187.170.165.19	attackspambots	Port scan denied	2020-07-13 23:18:19
159.203.34.76	attackspambots	scans once in preceeding hours on the ports (in chronological order) 30675 resulting in total of 4 scans from 159.203.0.0/16 block.	2020-07-13 23:01:55
114.236.94.67	attack	2020-07-13T08:26:17.023979linuxbox-skyline sshd[938713]: Invalid user www from 114.236.94.67 port 2176 ...	2020-07-13 23:29:45
192.35.169.44	attack	TCP (SYN) 192.35.169.44:58583 -> port 8991, len 44	2020-07-13 23:00:54
193.106.29.75	attackbotsspam	Port scan denied	2020-07-13 23:37:30

最近上报的IP列表

110.182.241.20	111.26.118.135	47.165.182.242	142.69.102.245
2.132.45.229	203.2.240.30	114.115.200.81	150.89.134.177
37.32.30.103	114.106.130.184	117.176.57.147	53.183.221.44
171.216.16.33	80.26.69.143	114.101.183.177	75.140.91.236
57.221.47.234	213.32.113.159	185.52.86.114	86.218.69.31