必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): unknown

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
138.68.57.143 attackspambots
Exploited Host.
2020-07-26 02:41:26
138.68.57.194 attack
2020-05-28T00:37:16.710772hessvillage.com sshd\[15279\]: Invalid user 987456321 from 138.68.57.194
2020-05-28T00:39:41.488181hessvillage.com sshd\[15283\]: Invalid user 987456321 from 138.68.57.194
2020-05-28T00:42:09.221948hessvillage.com sshd\[15294\]: Invalid user 987456321 from 138.68.57.194
2020-05-28T00:44:29.266230hessvillage.com sshd\[15297\]: Invalid user sammy from 138.68.57.194
2020-05-28T00:47:08.525522hessvillage.com sshd\[15307\]: Invalid user sammy from 138.68.57.194
...
2020-05-28 18:01:09
138.68.57.143 attack
Invalid user webstaff from 138.68.57.143 port 53974
2020-05-23 12:16:18
138.68.57.143 attack
Invalid user lqr from 138.68.57.143 port 39488
2020-05-22 02:00:33
138.68.57.207 attackbots
138.68.57.207 - - [26/Apr/2020:05:56:10 +0200] "GET /wp-login.php HTTP/1.1" 200 5686 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
138.68.57.207 - - [26/Apr/2020:05:56:13 +0200] "POST /wp-login.php HTTP/1.1" 200 5937 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
138.68.57.207 - - [26/Apr/2020:05:56:14 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-04-26 12:50:39
138.68.57.207 attackbotsspam
138.68.57.207 - - [17/Apr/2020:22:50:40 +0200] "GET /wp-login.php HTTP/1.1" 200 6463 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
138.68.57.207 - - [17/Apr/2020:22:50:42 +0200] "POST /wp-login.php HTTP/1.1" 200 7362 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
138.68.57.207 - - [17/Apr/2020:22:50:44 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-04-18 05:14:46
138.68.57.207 attackbots
CMS (WordPress or Joomla) login attempt.
2020-04-15 15:06:46
138.68.57.207 attackspam
Automatic report - XMLRPC Attack
2020-04-10 12:53:04
138.68.57.207 attackspam
xmlrpc attack
2020-04-03 00:50:30
138.68.57.207 attackspam
BURG,WP GET /wp-login.php
2020-03-13 22:35:18
138.68.57.207 attackspambots
138.68.57.207 - - [08/Jan/2020:09:48:40 +0000] "POST /wp-login.php HTTP/1.1" 200 6409 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
138.68.57.207 - - [08/Jan/2020:09:48:41 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-01-08 20:14:41
138.68.57.207 attack
xmlrpc attack
2019-12-14 16:23:09
138.68.57.207 attackbotsspam
138.68.57.207 - - \[20/Nov/2019:22:06:41 +0100\] "POST /wp-login.php HTTP/1.0" 200 4404 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
138.68.57.207 - - \[20/Nov/2019:22:06:44 +0100\] "POST /wp-login.php HTTP/1.0" 200 4236 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
138.68.57.207 - - \[20/Nov/2019:22:06:45 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2019-11-21 05:39:12
138.68.57.99 attackbots
Nov 18 21:15:04 venus sshd\[29451\]: Invalid user yellowst from 138.68.57.99 port 40374
Nov 18 21:15:04 venus sshd\[29451\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.57.99
Nov 18 21:15:06 venus sshd\[29451\]: Failed password for invalid user yellowst from 138.68.57.99 port 40374 ssh2
...
2019-11-19 06:21:10
138.68.57.207 attack
138.68.57.207 - - \[17/Nov/2019:07:29:39 +0100\] "POST /wp-login.php HTTP/1.0" 200 4404 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
138.68.57.207 - - \[17/Nov/2019:07:29:42 +0100\] "POST /wp-login.php HTTP/1.0" 200 4236 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
138.68.57.207 - - \[17/Nov/2019:07:29:44 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2019-11-17 14:53:48
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.57.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4999
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.68.57.48.			IN	A

;; AUTHORITY SECTION:
.			254	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 07:53:21 CST 2022
;; MSG SIZE  rcvd: 105
HOST信息:
Host 48.57.68.138.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 48.57.68.138.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
213.174.20.109 attackbotsspam
 TCP (SYN) 213.174.20.109:44648 -> port 1433, len 44
2020-10-02 01:30:29
1.209.110.88 attack
Oct  1 16:44:00 vpn01 sshd[4522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.209.110.88
Oct  1 16:44:02 vpn01 sshd[4522]: Failed password for invalid user alarm from 1.209.110.88 port 53078 ssh2
...
2020-10-02 01:28:55
190.104.245.164 attackbots
Oct  1 17:03:01 *** sshd[23407]: Invalid user testing from 190.104.245.164
2020-10-02 01:09:34
122.51.246.97 attack
user     ssh:notty    122.51.246.97    2020-10-01T10:37:19-03:00 - 2020-10-01T10:37:19-03:00  (00:00)
...
2020-10-02 01:14:39
13.82.56.239 attackspambots
" "
2020-10-02 01:32:16
118.163.97.19 attackbotsspam
2020-05-07 11:53:54,111 fail2ban.actions        [2360]: NOTICE  [dovecot] Ban 118.163.97.19
2020-05-07 22:58:08,351 fail2ban.actions        [2360]: NOTICE  [dovecot] Ban 118.163.97.19
2020-10-02 01:41:36
201.242.125.180 attackbotsspam
Icarus honeypot on github
2020-10-02 01:10:04
181.48.139.118 attackbotsspam
$f2bV_matches
2020-10-02 01:19:01
190.152.211.174 attackbotsspam
20/9/30@16:36:20: FAIL: Alarm-Network address from=190.152.211.174
20/9/30@16:36:20: FAIL: Alarm-Network address from=190.152.211.174
...
2020-10-02 01:21:00
203.183.68.135 attack
Invalid user backup2 from 203.183.68.135 port 43130
2020-10-02 01:40:58
190.134.177.201 attack
Brute force attempt
2020-10-02 01:38:25
43.226.147.118 attackspam
Oct  1 19:01:43 h2779839 sshd[29193]: Invalid user paulo from 43.226.147.118 port 53944
Oct  1 19:01:43 h2779839 sshd[29193]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.226.147.118
Oct  1 19:01:43 h2779839 sshd[29193]: Invalid user paulo from 43.226.147.118 port 53944
Oct  1 19:01:45 h2779839 sshd[29193]: Failed password for invalid user paulo from 43.226.147.118 port 53944 ssh2
Oct  1 19:06:14 h2779839 sshd[29300]: Invalid user it from 43.226.147.118 port 51332
Oct  1 19:06:14 h2779839 sshd[29300]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.226.147.118
Oct  1 19:06:14 h2779839 sshd[29300]: Invalid user it from 43.226.147.118 port 51332
Oct  1 19:06:16 h2779839 sshd[29300]: Failed password for invalid user it from 43.226.147.118 port 51332 ssh2
Oct  1 19:10:53 h2779839 sshd[29373]: Invalid user xiaoming from 43.226.147.118 port 48718
...
2020-10-02 01:30:12
94.153.224.202 attackspambots
94.153.224.202 - - [01/Oct/2020:15:15:04 +0100] "POST /wp-login.php HTTP/1.1" 200 2307 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
94.153.224.202 - - [01/Oct/2020:15:15:06 +0100] "POST /wp-login.php HTTP/1.1" 200 2311 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
94.153.224.202 - - [01/Oct/2020:15:15:07 +0100] "POST /wp-login.php HTTP/1.1" 200 2307 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-10-02 01:08:55
54.38.36.210 attackspam
Invalid user alan from 54.38.36.210 port 59812
2020-10-02 01:42:06
211.80.102.190 attack
Oct  1 13:09:07 ws26vmsma01 sshd[158573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.80.102.190
Oct  1 13:09:09 ws26vmsma01 sshd[158573]: Failed password for invalid user ftpuser from 211.80.102.190 port 11022 ssh2
...
2020-10-02 01:28:24

最近上报的IP列表

138.68.58.169 138.68.58.138 138.68.57.87 118.183.76.182
138.68.58.205 138.68.58.46 138.68.6.212 138.68.58.62
138.68.60.153 138.68.60.210 138.68.6.61 118.183.79.11
138.68.61.186 138.68.6.253 138.68.61.139 138.68.61.240
138.68.61.169 138.68.61.252 138.68.61.255 138.68.63.125