152.213.138.39

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 152.213.138.39
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60080
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;152.213.138.39.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022400 1800 900 604800 86400

;; Query time: 32 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 24 21:32:14 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

Host 39.138.213.152.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

server can't find 152.213.138.39.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
212.119.190.162	attack	Time: Wed Sep 16 07:20:07 2020 +0000 IP: 212.119.190.162 (RU/Russia/smtp.swedmobil.ru) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 16 06:54:38 ca-48-ede1 sshd[31367]: Failed password for root from 212.119.190.162 port 55330 ssh2 Sep 16 07:08:49 ca-48-ede1 sshd[31847]: Failed password for root from 212.119.190.162 port 59073 ssh2 Sep 16 07:14:27 ca-48-ede1 sshd[32027]: Invalid user admin from 212.119.190.162 port 64919 Sep 16 07:14:29 ca-48-ede1 sshd[32027]: Failed password for invalid user admin from 212.119.190.162 port 64919 ssh2 Sep 16 07:20:05 ca-48-ede1 sshd[32230]: Failed password for root from 212.119.190.162 port 61512 ssh2	2020-09-16 20:40:10
5.253.26.139	attackbots	5.253.26.139 - - [16/Sep/2020:13:47:21 +0200] "GET /wp-login.php HTTP/1.1" 200 8558 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 5.253.26.139 - - [16/Sep/2020:13:47:23 +0200] "POST /wp-login.php HTTP/1.1" 200 8809 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 5.253.26.139 - - [16/Sep/2020:13:47:24 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-16 20:30:59
191.53.238.139	attack	Sep 15 18:22:36 mail.srvfarm.net postfix/smtps/smtpd[2819940]: warning: unknown[191.53.238.139]: SASL PLAIN authentication failed: Sep 15 18:22:37 mail.srvfarm.net postfix/smtps/smtpd[2819940]: lost connection after AUTH from unknown[191.53.238.139] Sep 15 18:23:51 mail.srvfarm.net postfix/smtpd[2805906]: warning: unknown[191.53.238.139]: SASL PLAIN authentication failed: Sep 15 18:23:52 mail.srvfarm.net postfix/smtpd[2805906]: lost connection after AUTH from unknown[191.53.238.139] Sep 15 18:26:34 mail.srvfarm.net postfix/smtpd[2805902]: warning: unknown[191.53.238.139]: SASL PLAIN authentication failed:	2020-09-16 19:36:24
90.84.189.254	attack	Sep 16 14:30:34 fhem-rasp sshd[633]: Failed password for root from 90.84.189.254 port 47588 ssh2 Sep 16 14:30:34 fhem-rasp sshd[633]: Disconnected from authenticating user root 90.84.189.254 port 47588 [preauth] ...	2020-09-16 20:43:06
177.92.247.236	attack	Sep 15 18:08:06 mail.srvfarm.net postfix/smtps/smtpd[2800658]: warning: 177-92-247-236.tecportnet.com.br[177.92.247.236]: SASL PLAIN authentication failed: Sep 15 18:08:07 mail.srvfarm.net postfix/smtps/smtpd[2800658]: lost connection after AUTH from 177-92-247-236.tecportnet.com.br[177.92.247.236] Sep 15 18:12:31 mail.srvfarm.net postfix/smtpd[2805933]: warning: 177-92-247-236.tecportnet.com.br[177.92.247.236]: SASL PLAIN authentication failed: Sep 15 18:12:31 mail.srvfarm.net postfix/smtpd[2805933]: lost connection after AUTH from 177-92-247-236.tecportnet.com.br[177.92.247.236] Sep 15 18:16:16 mail.srvfarm.net postfix/smtps/smtpd[2817591]: warning: 177-92-247-236.tecportnet.com.br[177.92.247.236]: SASL PLAIN authentication failed:	2020-09-16 19:39:20
203.151.146.216	attack	$f2bV_matches	2020-09-16 20:48:06
104.248.130.17	attackspambots	Sep 16 11:02:38 IngegnereFirenze sshd[18912]: User root from 104.248.130.17 not allowed because not listed in AllowUsers ...	2020-09-16 20:42:17
49.88.112.117	attackbots	Sep 16 08:06:44 ny01 sshd[30373]: Failed password for root from 49.88.112.117 port 61193 ssh2 Sep 16 08:07:56 ny01 sshd[30526]: Failed password for root from 49.88.112.117 port 24606 ssh2	2020-09-16 20:38:28
112.185.28.90	attack	Sep 16 09:01:50 ssh2 sshd[40777]: User root from 112.185.28.90 not allowed because not listed in AllowUsers Sep 16 09:01:50 ssh2 sshd[40777]: Failed password for invalid user root from 112.185.28.90 port 60552 ssh2 Sep 16 09:01:51 ssh2 sshd[40777]: Connection closed by invalid user root 112.185.28.90 port 60552 [preauth] ...	2020-09-16 20:29:52
51.75.19.175	attack	(sshd) Failed SSH login from 51.75.19.175 (FR/France/175.ip-51-75-19.eu): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 16 12:34:03 amsweb01 sshd[4883]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.19.175 user=root Sep 16 12:34:05 amsweb01 sshd[4883]: Failed password for root from 51.75.19.175 port 48546 ssh2 Sep 16 12:49:05 amsweb01 sshd[7235]: Invalid user squid from 51.75.19.175 port 55654 Sep 16 12:49:07 amsweb01 sshd[7235]: Failed password for invalid user squid from 51.75.19.175 port 55654 ssh2 Sep 16 12:52:45 amsweb01 sshd[7751]: Invalid user mariana from 51.75.19.175 port 45924	2020-09-16 20:41:18
129.226.160.128	attackspam	129.226.160.128 (SG/Singapore/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 16 06:06:05 server4 sshd[19197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.74.5.156 user=root Sep 16 06:06:07 server4 sshd[19197]: Failed password for root from 185.74.5.156 port 32946 ssh2 Sep 16 06:08:10 server4 sshd[20329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.160.128 user=root Sep 16 06:08:03 server4 sshd[20313]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.7.200.120 user=root Sep 16 06:08:05 server4 sshd[20313]: Failed password for root from 193.7.200.120 port 41750 ssh2 Sep 16 06:05:47 server4 sshd[19073]: Failed password for root from 51.77.212.179 port 46010 ssh2 IP Addresses Blocked: 185.74.5.156 (UZ/Uzbekistan/-)	2020-09-16 20:33:55
2804:14d:5c50:815f:291b:894:b287:7164	attackspambots	Wordpress attack	2020-09-16 20:42:39
103.132.3.2	attackspambots	Port Scan ...	2020-09-16 20:09:52
104.163.224.147	attackspambots	Sep 15 17:01:07 ssh2 sshd[61834]: User root from 104.163.224.147 not allowed because not listed in AllowUsers Sep 15 17:01:07 ssh2 sshd[61834]: Failed password for invalid user root from 104.163.224.147 port 60964 ssh2 Sep 15 17:01:07 ssh2 sshd[61834]: Connection closed by invalid user root 104.163.224.147 port 60964 [preauth] ...	2020-09-16 20:44:36
51.79.53.134	attackbotsspam	Automatic report - Banned IP Access	2020-09-16 20:46:47

最近上报的IP列表

225.108.65.228	138.159.138.255	82.251.207.95	12.50.125.180
64.27.212.9	161.105.217.93	122.120.194.183	200.189.76.5
28.255.117.248	207.47.210.223	185.36.81.74	159.189.135.205
96.6.200.209	9.187.108.89	88.207.61.64	32.190.137.35
194.11.9.221	139.52.100.137	223.132.52.160	128.9.141.17