必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): unknown

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
点此参与IP信息讨论
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
138.68.136.152 attackbotsspam 
$f2bV_matches
 2020-03-18 13:00:56
138.68.136.152 attackbots 
Wordpress login scanning
 2020-03-18 01:18:28
138.68.136.152 attack 
xmlrpc attack
 2020-02-21 16:55:11
138.68.136.152 attack 
Automatic report - Banned IP Access
 2020-02-11 13:34:27
138.68.136.152 attackspam 
Automatic report - Banned IP Access
 2019-12-30 05:47:05
138.68.136.152 attack 
blogonese.net 138.68.136.152 \[19/Nov/2019:07:28:37 +0100\] "POST /wp-login.php HTTP/1.1" 200 6376 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
blogonese.net 138.68.136.152 \[19/Nov/2019:07:28:38 +0100\] "POST /wp-login.php HTTP/1.1" 200 6340 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
blogonese.net 138.68.136.152 \[19/Nov/2019:07:28:38 +0100\] "POST /xmlrpc.php HTTP/1.1" 200 4085 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
 2019-11-19 15:34:03
138.68.136.152 attackspam 
\[Sun Nov 17 15:39:23.191526 2019\] \[authz_core:error\] \[pid 18326\] \[client 138.68.136.152:36356\] AH01630: client denied by server configuration: /var/www/michele/xmlrpc.php
...
 2019-11-18 03:40:42
138.68.136.152 attackbots 
138.68.136.152 - - \[10/Nov/2019:07:24:00 +0100\] "POST /wp-login.php HTTP/1.0" 200 5269 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
138.68.136.152 - - \[10/Nov/2019:07:24:05 +0100\] "POST /wp-login.php HTTP/1.0" 200 5099 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
138.68.136.152 - - \[10/Nov/2019:07:24:09 +0100\] "POST /wp-login.php HTTP/1.0" 200 5093 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
 2019-11-10 20:29:37
138.68.136.152 attackbots 
138.68.136.152 - - [08/Nov/2019:15:36:26 +0100] "GET /wp-login.php HTTP/1.1" 200 1238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
138.68.136.152 - - [08/Nov/2019:15:36:26 +0100] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
138.68.136.152 - - [08/Nov/2019:15:36:26 +0100] "GET /wp-login.php HTTP/1.1" 200 1238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
138.68.136.152 - - [08/Nov/2019:15:36:27 +0100] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
138.68.136.152 - - [08/Nov/2019:15:36:28 +0100] "GET /wp-login.php HTTP/1.1" 200 1238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
138.68.136.152 - - [08/Nov/2019:15:36:30 +0100] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
138.68.
 2019-11-09 02:24:02
138.68.136.152 attackbots 
Brute forcing Wordpress login
 2019-11-05 14:10:34
138.68.136.152 attackbots 
WordPress wp-login brute force :: 138.68.136.152 0.060 BYPASS [05/Oct/2019:21:40:21  1000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 4630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
 2019-10-05 20:47:51
138.68.136.152 attackspambots 
WordPress wp-login brute force :: 138.68.136.152 0.128 BYPASS [05/Oct/2019:06:25:24  1000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
 2019-10-05 06:39:02
138.68.136.152 attack 
Automatic report - XMLRPC Attack
 2019-10-04 21:01:38
138.68.136.152 attackbots 
xmlrpc attack
 2019-09-28 08:34:40
138.68.136.152 attackspam 
WordPress wp-login brute force :: 138.68.136.152 0.040 BYPASS [25/Sep/2019:22:23:43  1000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 4630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
 2019-09-25 20:39:50
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.136.212
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49891
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.68.136.212.			IN	A

;; AUTHORITY SECTION:
.			565	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 07:51:18 CST 2022
;; MSG SIZE  rcvd: 107
HOST信息:
Host 212.136.68.138.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 212.136.68.138.in-addr.arpa: NXDOMAIN
相关IP信息:
138.68.136.248
138.68.136.191
138.68.136.176
138.68.136.96
138.68.136.206
138.68.136.215
138.68.136.226
138.68.136.99
138.68.136.115
138.68.136.32
138.68.136.76
138.68.136.66
138.68.136.235
138.68.136.104
138.68.136.102
138.68.136.88
138.68.136.162
138.68.136.7
138.68.136.31
138.68.136.130
138.68.136.19
138.68.136.93
138.68.136.64
138.68.136.153
138.68.136.199
138.68.136.54
138.68.136.126
138.68.136.29
138.68.136.110
138.68.136.113
138.68.136.134
138.68.136.108
138.68.136.171
138.68.136.58
138.68.136.89
138.68.136.41
138.68.136.224
138.68.136.65
138.68.136.212
138.68.136.83
138.68.136.243
138.68.136.50
138.68.136.213
138.68.136.223
138.68.136.45
138.68.136.62
138.68.136.227
138.68.136.231
138.68.136.84
138.68.136.77
138.68.136.246
138.68.136.111
138.68.136.114
138.68.136.129
138.68.136.5
138.68.136.133
138.68.136.148
138.68.136.204
138.68.136.85
138.68.136.239
138.68.136.167
138.68.136.123
138.68.136.202
138.68.136.154
138.68.136.71
138.68.136.173
138.68.136.98
138.68.136.35
138.68.136.166
138.68.136.149
138.68.136.147
138.68.136.34
138.68.136.146
138.68.136.3
138.68.136.80
138.68.136.254
138.68.136.232
138.68.136.17
138.68.136.87
138.68.136.228
138.68.136.222
138.68.136.106
138.68.136.159
138.68.136.139
138.68.136.78
138.68.136.44
138.68.136.253
138.68.136.15
138.68.136.94
138.68.136.46
138.68.136.210
138.68.136.141
138.68.136.47
138.68.136.187
138.68.136.117
138.68.136.195
138.68.136.145
138.68.136.200
138.68.136.11
138.68.136.155
138.68.136.178
138.68.136.207
138.68.136.128
138.68.136.172
138.68.136.189
138.68.136.39
138.68.136.112
138.68.136.36
138.68.136.33
138.68.136.238
138.68.136.61
138.68.136.51
138.68.136.165
138.68.136.219
138.68.136.13
138.68.136.181
138.68.136.14
138.68.136.160
138.68.136.48
138.68.136.209
138.68.136.236
138.68.136.157
138.68.136.230
138.68.136.23
138.68.136.86
138.68.136.156
138.68.136.72
138.68.136.69
138.68.136.27
138.68.136.60
138.68.136.24
138.68.136.208
138.68.136.175
138.68.136.109
138.68.136.168
138.68.136.70
138.68.136.97
138.68.136.95
138.68.136.164
138.68.136.197
138.68.136.144
138.68.136.52
138.68.136.26
138.68.136.221
138.68.136.16
138.68.136.74
138.68.136.193
138.68.136.91
138.68.136.180
138.68.136.30
138.68.136.124
138.68.136.240
138.68.136.233
138.68.136.218
138.68.136.152
138.68.136.169
138.68.136.37
138.68.136.2
138.68.136.196
138.68.136.214
138.68.136.73
138.68.136.55
138.68.136.190
138.68.136.161
138.68.136.250
138.68.136.136
138.68.136.249
138.68.136.49
138.68.136.107
138.68.136.120
138.68.136.131
138.68.136.137
138.68.136.241
138.68.136.22
138.68.136.205
138.68.136.25
138.68.136.150
138.68.136.182
138.68.136.6
138.68.136.56
138.68.136.163
138.68.136.143
138.68.136.79
138.68.136.252
138.68.136.158
138.68.136.42
138.68.136.63
138.68.136.105
138.68.136.192
138.68.136.245
138.68.136.59
138.68.136.18
138.68.136.103
138.68.136.38
138.68.136.237
138.68.136.40
138.68.136.188
138.68.136.57
138.68.136.142
138.68.136.20
138.68.136.247
138.68.136.225
138.68.136.170
138.68.136.125
138.68.136.151
138.68.136.43
138.68.136.118
138.68.136.220
138.68.136.122
138.68.136.119
138.68.136.185
138.68.136.138
138.68.136.82
138.68.136.4
138.68.136.68
138.68.136.198
138.68.136.10
138.68.136.184
138.68.136.127
138.68.136.194
138.68.136.211
138.68.136.242
138.68.136.183
138.68.136.121
138.68.136.100
138.68.136.186
138.68.136.229
138.68.136.75
138.68.136.234
138.68.136.92
138.68.136.12
138.68.136.201
138.68.136.132
138.68.136.116
138.68.136.81
138.68.136.8
138.68.136.203
138.68.136.90
138.68.136.217
138.68.136.140
138.68.136.174
138.68.136.67
138.68.136.179
138.68.136.101
138.68.136.28
138.68.136.177
138.68.136.244
138.68.136.9
138.68.136.135
138.68.136.1
138.68.136.21
138.68.136.216
138.68.136.53
138.68.136.251
最新评论:
IP 类型 评论内容 时间
103.99.113.62 attackbots 
Oct  3 05:00:25 XXX sshd[27883]: Invalid user react from 103.99.113.62 port 53112
 2019-10-03 12:08:07
90.131.132.180 attackbots 
IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/90.131.132.180/ 
 SE - 1H : (118)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : SE 
 NAME ASN : ASN1257 
 
 IP : 90.131.132.180 
 
 CIDR : 90.131.0.0/16 
 
 PREFIX COUNT : 263 
 
 UNIQUE IP COUNT : 4174848 
 
 
 WYKRYTE ATAKI Z ASN1257 :  
  1H - 1 
  3H - 4 
  6H - 6 
 12H - 7 
 24H - 12 
 
 DateTime : 2019-10-02 23:23:27 
 
 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN  - data recovery
 2019-10-03 09:59:43
128.199.129.27 attack 
WordPress wp-login brute force :: 128.199.129.27 0.152 BYPASS [03/Oct/2019:07:23:43  1000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
 2019-10-03 09:50:32
71.6.199.23 attackspam 
10/02/2019-23:23:25.147874 71.6.199.23 Protocol: 17 ET CINS Active Threat Intelligence Poor Reputation IP group 71
 2019-10-03 10:05:04
118.25.7.83 attack 
Oct  3 03:02:27 XXX sshd[58217]: Invalid user test from 118.25.7.83 port 55742
 2019-10-03 12:04:33
183.131.82.99 attack 
Oct  3 04:04:53 localhost sshd\[30752\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.131.82.99  user=root
Oct  3 04:04:54 localhost sshd\[30752\]: Failed password for root from 183.131.82.99 port 59113 ssh2
Oct  3 04:04:56 localhost sshd\[30752\]: Failed password for root from 183.131.82.99 port 59113 ssh2
...
 2019-10-03 12:05:55
78.220.206.53 attackbotsspam 
2019-09-30T17:19:04.5149971495-001 sshd[10473]: Invalid user user from 78.220.206.53 port 51138
2019-09-30T17:19:04.5187561495-001 sshd[10473]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=gon17-1-78-220-206-53.fbx.proxad.net
2019-09-30T17:19:06.5384791495-001 sshd[10473]: Failed password for invalid user user from 78.220.206.53 port 51138 ssh2
2019-09-30T17:22:32.0167951495-001 sshd[10779]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=gon17-1-78-220-206-53.fbx.proxad.net  user=r.r
2019-09-30T17:22:34.0128531495-001 sshd[10779]: Failed password for r.r from 78.220.206.53 port 34064 ssh2
2019-09-30T17:26:05.3010781495-001 sshd[11073]: Invalid user 123 from 78.220.206.53 port 45214
2019-09-30T17:26:05.3044491495-001 sshd[11073]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=gon17-1-78-220-206-53.fbx.proxad.net

........
-----------------------------------------------
https://www.blockl
 2019-10-03 09:55:07
109.196.129.92 attackbots 
B: Magento admin pass test (wrong country)
 2019-10-03 10:07:44
188.202.77.254 attackspambots 
Oct  2 21:21:37 *** sshd[20969]: Invalid user bz from 188.202.77.254
 2019-10-03 10:02:48
118.27.16.153 attack 
Oct  2 15:37:44 wbs sshd\[17909\]: Invalid user igor from 118.27.16.153
Oct  2 15:37:44 wbs sshd\[17909\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=v118-27-16-153.985k.static.cnode.io
Oct  2 15:37:46 wbs sshd\[17909\]: Failed password for invalid user igor from 118.27.16.153 port 51636 ssh2
Oct  2 15:42:08 wbs sshd\[18391\]: Invalid user Vision from 118.27.16.153
Oct  2 15:42:08 wbs sshd\[18391\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=v118-27-16-153.985k.static.cnode.io
 2019-10-03 09:46:10
220.225.126.55 attackspam 
Oct  3 02:52:59 MK-Soft-VM7 sshd[25757]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.225.126.55 
Oct  3 02:53:01 MK-Soft-VM7 sshd[25757]: Failed password for invalid user info from 220.225.126.55 port 38022 ssh2
...
 2019-10-03 09:45:11
193.32.160.145 attack 
MagicSpam Rule: Excessive Mail Rate Inbound; Spammer IP: 193.32.160.145
 2019-10-03 09:54:02
209.17.96.114 attackspam 
Portscan or hack attempt detected by psad/fwsnort
 2019-10-03 09:48:51
128.199.142.138 attack 
Oct  3 03:54:19 web8 sshd\[14582\]: Invalid user john from 128.199.142.138
Oct  3 03:54:19 web8 sshd\[14582\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.142.138
Oct  3 03:54:21 web8 sshd\[14582\]: Failed password for invalid user john from 128.199.142.138 port 33062 ssh2
Oct  3 03:59:58 web8 sshd\[17215\]: Invalid user test1 from 128.199.142.138
Oct  3 03:59:58 web8 sshd\[17215\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.142.138
 2019-10-03 12:07:36
69.142.63.26 attackspambots 
IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/69.142.63.26/ 
 US - 1H : (1404)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : US 
 NAME ASN : ASN7922 
 
 IP : 69.142.63.26 
 
 CIDR : 69.136.0.0/13 
 
 PREFIX COUNT : 1512 
 
 UNIQUE IP COUNT : 70992640 
 
 
 WYKRYTE ATAKI Z ASN7922 :  
  1H - 13 
  3H - 54 
  6H - 91 
 12H - 104 
 24H - 137 
 
 DateTime : 2019-10-02 23:23:27 
 
 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN  - data recovery
 2019-10-03 10:00:01

最近上报的IP列表

118.179.36.28 138.68.137.234 138.68.136.76 138.68.138.121
138.68.138.159 138.68.138.208 138.68.138.176 138.68.138.197
138.68.137.32 138.68.138.54 138.68.139.111 138.68.139.55
138.68.14.13 138.68.14.62 138.68.137.242 138.68.141.109
118.179.37.81 138.68.14.8 138.68.14.92 138.68.140.173