必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): unknown

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
138.68.57.143 attackspambots
Exploited Host.
2020-07-26 02:41:26
138.68.57.194 attack
2020-05-28T00:37:16.710772hessvillage.com sshd\[15279\]: Invalid user 987456321 from 138.68.57.194
2020-05-28T00:39:41.488181hessvillage.com sshd\[15283\]: Invalid user 987456321 from 138.68.57.194
2020-05-28T00:42:09.221948hessvillage.com sshd\[15294\]: Invalid user 987456321 from 138.68.57.194
2020-05-28T00:44:29.266230hessvillage.com sshd\[15297\]: Invalid user sammy from 138.68.57.194
2020-05-28T00:47:08.525522hessvillage.com sshd\[15307\]: Invalid user sammy from 138.68.57.194
...
2020-05-28 18:01:09
138.68.57.143 attack
Invalid user webstaff from 138.68.57.143 port 53974
2020-05-23 12:16:18
138.68.57.143 attack
Invalid user lqr from 138.68.57.143 port 39488
2020-05-22 02:00:33
138.68.57.207 attackbots
138.68.57.207 - - [26/Apr/2020:05:56:10 +0200] "GET /wp-login.php HTTP/1.1" 200 5686 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
138.68.57.207 - - [26/Apr/2020:05:56:13 +0200] "POST /wp-login.php HTTP/1.1" 200 5937 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
138.68.57.207 - - [26/Apr/2020:05:56:14 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-04-26 12:50:39
138.68.57.207 attackbotsspam
138.68.57.207 - - [17/Apr/2020:22:50:40 +0200] "GET /wp-login.php HTTP/1.1" 200 6463 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
138.68.57.207 - - [17/Apr/2020:22:50:42 +0200] "POST /wp-login.php HTTP/1.1" 200 7362 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
138.68.57.207 - - [17/Apr/2020:22:50:44 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-04-18 05:14:46
138.68.57.207 attackbots
CMS (WordPress or Joomla) login attempt.
2020-04-15 15:06:46
138.68.57.207 attackspam
Automatic report - XMLRPC Attack
2020-04-10 12:53:04
138.68.57.207 attackspam
xmlrpc attack
2020-04-03 00:50:30
138.68.57.207 attackspam
BURG,WP GET /wp-login.php
2020-03-13 22:35:18
138.68.57.207 attackspambots
138.68.57.207 - - [08/Jan/2020:09:48:40 +0000] "POST /wp-login.php HTTP/1.1" 200 6409 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
138.68.57.207 - - [08/Jan/2020:09:48:41 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-01-08 20:14:41
138.68.57.207 attack
xmlrpc attack
2019-12-14 16:23:09
138.68.57.207 attackbotsspam
138.68.57.207 - - \[20/Nov/2019:22:06:41 +0100\] "POST /wp-login.php HTTP/1.0" 200 4404 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
138.68.57.207 - - \[20/Nov/2019:22:06:44 +0100\] "POST /wp-login.php HTTP/1.0" 200 4236 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
138.68.57.207 - - \[20/Nov/2019:22:06:45 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2019-11-21 05:39:12
138.68.57.99 attackbots
Nov 18 21:15:04 venus sshd\[29451\]: Invalid user yellowst from 138.68.57.99 port 40374
Nov 18 21:15:04 venus sshd\[29451\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.57.99
Nov 18 21:15:06 venus sshd\[29451\]: Failed password for invalid user yellowst from 138.68.57.99 port 40374 ssh2
...
2019-11-19 06:21:10
138.68.57.207 attack
138.68.57.207 - - \[17/Nov/2019:07:29:39 +0100\] "POST /wp-login.php HTTP/1.0" 200 4404 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
138.68.57.207 - - \[17/Nov/2019:07:29:42 +0100\] "POST /wp-login.php HTTP/1.0" 200 4236 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
138.68.57.207 - - \[17/Nov/2019:07:29:44 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2019-11-17 14:53:48
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.68.57.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4999
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.68.57.48.			IN	A

;; AUTHORITY SECTION:
.			254	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 07:53:21 CST 2022
;; MSG SIZE  rcvd: 105
HOST信息:
Host 48.57.68.138.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 48.57.68.138.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
157.55.39.44 attack
Automatic report - Banned IP Access
2019-08-21 07:38:49
129.211.24.100 attackspambots
Aug 21 02:25:13 server sshd\[24841\]: Invalid user alfons from 129.211.24.100 port 35606
Aug 21 02:25:13 server sshd\[24841\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.24.100
Aug 21 02:25:15 server sshd\[24841\]: Failed password for invalid user alfons from 129.211.24.100 port 35606 ssh2
Aug 21 02:30:07 server sshd\[13639\]: User root from 129.211.24.100 not allowed because listed in DenyUsers
Aug 21 02:30:07 server sshd\[13639\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.24.100  user=root
2019-08-21 07:45:11
132.145.170.174 attack
Aug 20 13:14:58 tdfoods sshd\[22784\]: Invalid user lesly from 132.145.170.174
Aug 20 13:14:58 tdfoods sshd\[22784\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.170.174
Aug 20 13:15:00 tdfoods sshd\[22784\]: Failed password for invalid user lesly from 132.145.170.174 port 58164 ssh2
Aug 20 13:20:30 tdfoods sshd\[23236\]: Invalid user fan from 132.145.170.174
Aug 20 13:20:30 tdfoods sshd\[23236\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.170.174
2019-08-21 07:37:07
139.59.140.55 attack
Aug 20 11:19:30 wbs sshd\[13109\]: Invalid user magic from 139.59.140.55
Aug 20 11:19:30 wbs sshd\[13109\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.140.55
Aug 20 11:19:32 wbs sshd\[13109\]: Failed password for invalid user magic from 139.59.140.55 port 46670 ssh2
Aug 20 11:23:40 wbs sshd\[13499\]: Invalid user oratest from 139.59.140.55
Aug 20 11:23:40 wbs sshd\[13499\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.140.55
2019-08-21 07:43:33
51.254.58.226 attackspambots
Aug 20 22:43:02  postfix/smtpd: warning: unknown[51.254.58.226]: SASL LOGIN authentication failed
2019-08-21 08:07:03
98.143.227.144 attack
Aug 20 22:07:10 MK-Soft-VM5 sshd\[838\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=98.143.227.144  user=root
Aug 20 22:07:12 MK-Soft-VM5 sshd\[838\]: Failed password for root from 98.143.227.144 port 33536 ssh2
Aug 20 22:12:34 MK-Soft-VM5 sshd\[885\]: Invalid user noc from 98.143.227.144 port 35302
...
2019-08-21 07:40:43
110.157.240.134 attackspam
SMTP:25. Blocked 5 login attempts in 3.4 days.
2019-08-21 08:06:27
191.36.146.60 attack
$f2bV_matches
2019-08-21 07:29:35
92.222.36.216 attackspambots
Aug 20 18:11:09 tuxlinux sshd[32431]: Invalid user pj from 92.222.36.216 port 38054
Aug 20 18:11:09 tuxlinux sshd[32431]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.36.216 
Aug 20 18:11:09 tuxlinux sshd[32431]: Invalid user pj from 92.222.36.216 port 38054
Aug 20 18:11:09 tuxlinux sshd[32431]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.36.216 
Aug 20 18:11:09 tuxlinux sshd[32431]: Invalid user pj from 92.222.36.216 port 38054
Aug 20 18:11:09 tuxlinux sshd[32431]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.36.216 
Aug 20 18:11:11 tuxlinux sshd[32431]: Failed password for invalid user pj from 92.222.36.216 port 38054 ssh2
...
2019-08-21 07:50:40
94.191.3.23 attack
Aug 20 15:37:14 hcbbdb sshd\[21799\]: Invalid user admin4 from 94.191.3.23
Aug 20 15:37:14 hcbbdb sshd\[21799\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.3.23
Aug 20 15:37:16 hcbbdb sshd\[21799\]: Failed password for invalid user admin4 from 94.191.3.23 port 60294 ssh2
Aug 20 15:43:50 hcbbdb sshd\[22533\]: Invalid user beta from 94.191.3.23
Aug 20 15:43:50 hcbbdb sshd\[22533\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.3.23
2019-08-21 07:57:51
142.93.114.123 attackbots
$f2bV_matches
2019-08-21 07:30:09
198.108.66.161 attackbots
22/tcp 623/tcp 8081/tcp...
[2019-06-20/08-20]5pkt,4pt.(tcp)
2019-08-21 08:00:01
14.29.244.64 attackspam
"Fail2Ban detected SSH brute force attempt"
2019-08-21 07:31:01
138.68.87.0 attackbots
Aug 20 13:24:03 hanapaa sshd\[10267\]: Invalid user lilian from 138.68.87.0
Aug 20 13:24:03 hanapaa sshd\[10267\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.87.0
Aug 20 13:24:05 hanapaa sshd\[10267\]: Failed password for invalid user lilian from 138.68.87.0 port 48759 ssh2
Aug 20 13:31:51 hanapaa sshd\[11081\]: Invalid user yin from 138.68.87.0
Aug 20 13:31:51 hanapaa sshd\[11081\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.87.0
2019-08-21 07:32:25
188.246.226.71 attackbots
" "
2019-08-21 07:57:03

最近上报的IP列表

138.68.58.169 138.68.58.138 138.68.57.87 118.183.76.182
138.68.58.205 138.68.58.46 138.68.6.212 138.68.58.62
138.68.60.153 138.68.60.210 138.68.6.61 118.183.79.11
138.68.61.186 138.68.6.253 138.68.61.139 138.68.61.240
138.68.61.169 138.68.61.252 138.68.61.255 138.68.63.125