138.94.217.28 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Honduras

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
138.94.217.95	attack	NAME : LACNIC-ERX-138-94-0-0 CIDR : 138.94.0.0/16 \| STATUS : 403 {Looking for resource vulnerabilities} DDoS Attack UY - block certain countries :) IP: 138.94.217.95 Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-08-20 00:08:43
138.94.217.97	attackbots	Automatic report - Banned IP Access	2019-08-18 03:54:03

类型

评论内容

时间

138.94.217.95

attack

NAME : LACNIC-ERX-138-94-0-0 CIDR : 138.94.0.0/16 | STATUS : 403 {Looking for resource vulnerabilities} DDoS Attack UY - block certain countries :) IP: 138.94.217.95  Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN  - data recovery https://help-dysk.pl

2019-08-20 00:08:43

138.94.217.97

attackbots

Automatic report - Banned IP Access

2019-08-18 03:54:03

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.94.217.28
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37480
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.94.217.28.			IN	A

;; AUTHORITY SECTION:
.			392	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 10:02:42 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 28.217.94.138.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 28.217.94.138.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
47.251.38.185	attackbotsspam	/html/gdpr/en.inc.php	2020-08-07 03:49:11
186.10.125.209	attackspambots	k+ssh-bruteforce	2020-08-07 03:32:17
185.220.100.254	attackspam	CF RAY ID: 5beb0d174dfed447 IP Class: tor URI: /?author=1	2020-08-07 03:54:42
188.43.117.38	attack	Dovecot Invalid User Login Attempt.	2020-08-07 03:40:41
42.194.137.87	attack	Aug 6 20:18:27 dhoomketu sshd[2195602]: Failed password for root from 42.194.137.87 port 34796 ssh2 Aug 6 20:20:53 dhoomketu sshd[2195639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.194.137.87 user=root Aug 6 20:20:55 dhoomketu sshd[2195639]: Failed password for root from 42.194.137.87 port 59918 ssh2 Aug 6 20:23:17 dhoomketu sshd[2195663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.194.137.87 user=root Aug 6 20:23:19 dhoomketu sshd[2195663]: Failed password for root from 42.194.137.87 port 56798 ssh2 ...	2020-08-07 03:39:07
198.100.145.89	attackspam	198.100.145.89 - - [06/Aug/2020:20:28:03 +0100] "POST /wp-login.php HTTP/1.1" 200 2178 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.100.145.89 - - [06/Aug/2020:20:28:05 +0100] "POST /wp-login.php HTTP/1.1" 200 2154 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.100.145.89 - - [06/Aug/2020:20:28:06 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-07 03:58:39
139.59.14.91	attackspam	WordPress brute-force	2020-08-07 03:40:03
185.220.101.14	attackspam	GET /wp-config.php.1 HTTP/1.1	2020-08-07 03:54:27
31.31.74.131	attackbotsspam	GET /wp-config.phporiginal HTTP/1.1	2020-08-07 03:50:59
181.114.208.31	attackspam	Brute force attempt	2020-08-07 03:38:31
185.147.215.14	attackspam	[2020-08-06 15:42:01] NOTICE[1248] chan_sip.c: Registration from '' failed for '185.147.215.14:63072' - Wrong password [2020-08-06 15:42:01] SECURITY[1275] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-06T15:42:01.215-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="665",SessionID="0x7f272002e0a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.215.14/63072",Challenge="57069616",ReceivedChallenge="57069616",ReceivedHash="783d4bb75cd92c81eb429448f25eeff8" [2020-08-06 15:42:19] NOTICE[1248] chan_sip.c: Registration from '' failed for '185.147.215.14:55645' - Wrong password [2020-08-06 15:42:19] SECURITY[1275] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-08-06T15:42:19.721-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="461",SessionID="0x7f2720259e98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.215.14 ...	2020-08-07 03:44:39
94.23.38.191	attack	Too many connections or unauthorized access detected from Arctic banned ip	2020-08-07 03:29:05
80.82.78.82	attackspambots	Aug 6 22:12:50 mertcangokgoz-v4-main kernel: [358108.382645] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:5a:6b:04:d2:74:7f:6e:37:e3:08:00 SRC=80.82.78.82 DST=94.130.96.165 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=52390 PROTO=TCP SPT=45271 DPT=4721 WINDOW=1024 RES=0x00 SYN URGP=0	2020-08-07 03:30:22
111.90.150.204	spambotsattacknormal	Saya mau diamond freefire	2020-08-07 04:00:55
178.62.0.215	attackbots	$f2bV_matches	2020-08-07 03:44:57

最近上报的IP列表

138.68.183.248	138.97.161.172	138.94.254.226	138.94.55.210
138.94.121.207	138.97.180.6	138.94.194.50	138.97.246.212
138.97.136.124	138.94.163.0	138.97.31.74	138.97.31.91
138.99.251.228	138.97.31.87	139.0.25.42	138.99.70.120
139.0.81.171	139.0.33.125	138.97.31.113	139.129.116.156