138.99.135.230

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Brazil

运营商(isp): Wlenet Informatica Manutencao

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt from IP address 138.99.135.230 on Port 445(SMB)	2020-07-07 07:31:20
attackbotsspam	Unauthorized connection attempt from IP address 138.99.135.230 on Port 445(SMB)	2020-06-05 23:36:01
attack	Unauthorized connection attempt from IP address 138.99.135.230 on Port 445(SMB)	2019-11-04 04:22:48
attack	Honeypot attack, port: 445, PTR: 230.135.99.138.wlenet.com.br.	2019-09-24 09:27:09

相同子网IP讨论:

IP	类型	评论内容	时间
138.99.135.6	attack	Unauthorized connection attempt from IP address 138.99.135.6 on Port 445(SMB)	2020-08-26 05:34:39
138.99.135.150	attack	Unauthorized connection attempt from IP address 138.99.135.150 on Port 445(SMB)	2020-08-13 08:59:35
138.99.135.186	attackspambots	Unauthorized connection attempt detected from IP address 138.99.135.186 to port 445	2020-05-09 22:26:45
138.99.135.186	attackspam	Unauthorized connection attempt from IP address 138.99.135.186 on Port 445(SMB)	2019-09-03 12:24:06
138.99.135.186	attackbotsspam	Unauthorized connection attempt from IP address 138.99.135.186 on Port 445(SMB)	2019-08-06 13:49:43

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.99.135.230
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36988
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.99.135.230.			IN	A

;; AUTHORITY SECTION:
.			565	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092301 1800 900 604800 86400

;; Query time: 164 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Sep 24 09:27:05 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

230.135.99.138.in-addr.arpa domain name pointer 230.135.99.138.wlenet.com.br.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
230.135.99.138.in-addr.arpa	name = 230.135.99.138.wlenet.com.br.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
87.229.130.47	attackbots	[portscan] Port scan	2019-08-22 22:58:34
162.144.93.159	attackbotsspam	Aug 22 02:53:38 wbs sshd\[20895\]: Invalid user dispecer from 162.144.93.159 Aug 22 02:53:38 wbs sshd\[20895\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=server.db-investify.com Aug 22 02:53:40 wbs sshd\[20895\]: Failed password for invalid user dispecer from 162.144.93.159 port 53580 ssh2 Aug 22 02:57:57 wbs sshd\[21338\]: Invalid user webmaster from 162.144.93.159 Aug 22 02:57:57 wbs sshd\[21338\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=server.db-investify.com	2019-08-22 23:15:49
137.74.152.139	attackspam	Aug 22 15:36:30 itv-usvr-02 sshd[25141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.152.139 user=root Aug 22 15:36:32 itv-usvr-02 sshd[25141]: Failed password for root from 137.74.152.139 port 44586 ssh2 Aug 22 15:40:43 itv-usvr-02 sshd[25246]: Invalid user dev from 137.74.152.139 port 40734 Aug 22 15:40:43 itv-usvr-02 sshd[25246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.152.139 Aug 22 15:40:43 itv-usvr-02 sshd[25246]: Invalid user dev from 137.74.152.139 port 40734 Aug 22 15:40:45 itv-usvr-02 sshd[25246]: Failed password for invalid user dev from 137.74.152.139 port 40734 ssh2	2019-08-22 23:27:29
98.246.48.95	spambotsproxy	[ssh] enabled = true filter = sshd action = iptables[name=SSH, port=ssh, protocol=tcp] logpath = /var/log/auth.log maxretry = 5	2019-08-22 23:53:54
78.134.109.205	attackbots	Automatic report - Port Scan Attack	2019-08-22 23:48:21
98.143.227.144	attack	Total attacks: 2	2019-08-22 22:48:14
185.227.68.78	attackbotsspam	$f2bV_matches	2019-08-22 22:46:10
125.46.78.210	attack	2019-08-22T14:55:18.242650abusebot-7.cloudsearch.cf sshd\[9823\]: Invalid user cron from 125.46.78.210 port 50058	2019-08-22 22:56:22
103.108.74.91	attack	Aug 21 23:08:08 lcdev sshd\[24714\]: Invalid user kwong from 103.108.74.91 Aug 21 23:08:08 lcdev sshd\[24714\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.108.74.91 Aug 21 23:08:10 lcdev sshd\[24714\]: Failed password for invalid user kwong from 103.108.74.91 port 28466 ssh2 Aug 21 23:13:33 lcdev sshd\[25305\]: Invalid user qmaill from 103.108.74.91 Aug 21 23:13:33 lcdev sshd\[25305\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.108.74.91	2019-08-22 23:29:37
37.187.0.29	attackspam	Aug 22 15:06:01 thevastnessof sshd[30868]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.0.29 ...	2019-08-22 23:06:21
200.150.87.131	attackspam	Aug 22 11:56:26 MK-Soft-VM4 sshd\[31557\]: Invalid user mopas from 200.150.87.131 port 36242 Aug 22 11:56:26 MK-Soft-VM4 sshd\[31557\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.150.87.131 Aug 22 11:56:28 MK-Soft-VM4 sshd\[31557\]: Failed password for invalid user mopas from 200.150.87.131 port 36242 ssh2 ...	2019-08-22 22:54:39
160.119.102.104	attack	port scan and connect, tcp 6000 (X11)	2019-08-22 23:24:34
35.200.1.178	attack	Aug 22 04:51:51 kapalua sshd\[14709\]: Invalid user Password1 from 35.200.1.178 Aug 22 04:51:51 kapalua sshd\[14709\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.1.200.35.bc.googleusercontent.com Aug 22 04:51:54 kapalua sshd\[14709\]: Failed password for invalid user Password1 from 35.200.1.178 port 60010 ssh2 Aug 22 04:56:33 kapalua sshd\[15129\]: Invalid user elaine from 35.200.1.178 Aug 22 04:56:33 kapalua sshd\[15129\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.1.200.35.bc.googleusercontent.com	2019-08-22 23:07:03
187.44.106.11	attackspam	2019-08-22T14:38:36.956360abusebot-6.cloudsearch.cf sshd\[24489\]: Invalid user bruce from 187.44.106.11 port 36060	2019-08-22 22:55:11
157.47.220.245	attackspam	Automatic report - Port Scan Attack	2019-08-22 23:19:36

最近上报的IP列表

146.249.46.84	220.192.172.176	109.165.235.17	42.87.58.58
172.58.7.106	42.116.224.160	91.98.137.122	171.236.91.38
191.53.144.10	54.240.8.64	13.233.176.0	95.226.138.149
182.253.233.97	47.74.230.86	68.183.147.213	1.82.238.230
128.199.254.77	58.210.94.98	33.196.198.84	37.104.119.135