必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Kenya

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 154.79.245.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41055
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;154.79.245.138.			IN	A

;; AUTHORITY SECTION:
.			393	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 18:52:59 CST 2022
;; MSG SIZE  rcvd: 107
HOST信息:
138.245.79.154.in-addr.arpa domain name pointer 138-245-79-154.r.airtelkenya.com.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
138.245.79.154.in-addr.arpa	name = 138-245-79-154.r.airtelkenya.com.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
103.237.76.22 attackspam
Dec 19 15:38:18 grey postfix/smtpd\[15111\]: NOQUEUE: reject: RCPT from unknown\[103.237.76.22\]: 554 5.7.1 Service unavailable\; Client host \[103.237.76.22\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[103.237.76.22\]\; from=\ to=\ proto=ESMTP helo=\<103.237.76.22.combinedbd.com\>
...
2019-12-20 00:03:06
91.83.113.173 attack
Dec 19 15:38:19 grey postfix/smtpd\[12011\]: NOQUEUE: reject: RCPT from unknown\[91.83.113.173\]: 554 5.7.1 Service unavailable\; Client host \[91.83.113.173\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[91.83.113.173\]\; from=\ to=\ proto=ESMTP helo=\<\[91.83.113.173\]\>
...
2019-12-20 00:01:03
129.211.11.107 attack
Dec 19 16:46:57 localhost sshd\[17705\]: Invalid user test123 from 129.211.11.107 port 55491
Dec 19 16:46:57 localhost sshd\[17705\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.11.107
Dec 19 16:46:59 localhost sshd\[17705\]: Failed password for invalid user test123 from 129.211.11.107 port 55491 ssh2
2019-12-20 00:07:01
138.197.180.102 attackspambots
Dec 19 10:53:18 plusreed sshd[20328]: Invalid user alexan from 138.197.180.102
...
2019-12-20 00:05:41
182.254.172.63 attackbotsspam
Dec 19 16:23:18 zeus sshd[17637]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.254.172.63 
Dec 19 16:23:20 zeus sshd[17637]: Failed password for invalid user scarles from 182.254.172.63 port 44660 ssh2
Dec 19 16:28:47 zeus sshd[17766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.254.172.63 
Dec 19 16:28:50 zeus sshd[17766]: Failed password for invalid user fickes from 182.254.172.63 port 55394 ssh2
2019-12-20 00:35:46
94.102.49.193 attack
firewall-block, port(s): 8080/tcp
2019-12-20 00:00:29
49.88.112.62 attack
Dec 19 17:27:10 ns381471 sshd[21828]: Failed password for root from 49.88.112.62 port 43921 ssh2
Dec 19 17:27:23 ns381471 sshd[21828]: Failed password for root from 49.88.112.62 port 43921 ssh2
Dec 19 17:27:23 ns381471 sshd[21828]: error: maximum authentication attempts exceeded for root from 49.88.112.62 port 43921 ssh2 [preauth]
2019-12-20 00:30:49
45.148.10.51 attack
Trying out my SMTP servers:
Out: 220 
 In:  EHLO ylmf-pc
 Out: 250-mx5.tests.lm.gov.lv
 Out: 250-PIPELINING
 Out: 250-SIZE 31000000
 Out: 250-ETRN
 Out: 250-ENHANCEDSTATUSCODES
 Out: 250-8BITMIME
 Out: 250 DSN
 In:  AUTH LOGIN
 Out: 503 5.5.1 Error: authentication not enabled
 Out: 421 4.4.2 Error: timeout exceeded
2019-12-20 00:14:40
104.236.151.120 attack
Dec 19 16:29:42 icinga sshd[8299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.151.120
Dec 19 16:29:44 icinga sshd[8299]: Failed password for invalid user test from 104.236.151.120 port 32844 ssh2
...
2019-12-19 23:59:58
162.243.98.66 attackspam
Repeated brute force against a port
2019-12-19 23:58:26
89.42.209.7 attackbotsspam
Dec 18 19:42:16 server sshd\[32729\]: Invalid user admin from 89.42.209.7
Dec 18 19:42:16 server sshd\[32729\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=maildc1519218994.mihandns.com 
Dec 18 19:42:18 server sshd\[32729\]: Failed password for invalid user admin from 89.42.209.7 port 43628 ssh2
Dec 19 17:37:36 server sshd\[2050\]: Invalid user admin from 89.42.209.7
Dec 19 17:37:36 server sshd\[2050\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=maildc1519218994.mihandns.com 
...
2019-12-20 00:38:12
121.15.2.178 attackspam
SSH bruteforce
2019-12-20 00:11:33
27.4.147.58 attack
Dec 19 15:38:19 grey postfix/smtpd\[5136\]: NOQUEUE: reject: RCPT from unknown\[27.4.147.58\]: 554 5.7.1 Service unavailable\; Client host \[27.4.147.58\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[27.4.147.58\]\; from=\ to=\ proto=ESMTP helo=\<\[27.4.147.58\]\>
...
2019-12-20 00:01:46
45.148.10.51 attack
Trying out my SMTP servers: Out: 220 ,In:  EHLO ylmf-pc, Out: 503 5.5.1 Error: authentication not enabled, Out: 421 4.4.2 Error: timeout exceeded
2019-12-20 00:15:57
54.38.18.211 attackbotsspam
Dec 19 16:55:20 sd-53420 sshd\[3343\]: Invalid user vandeven from 54.38.18.211
Dec 19 16:55:20 sd-53420 sshd\[3343\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.18.211
Dec 19 16:55:22 sd-53420 sshd\[3343\]: Failed password for invalid user vandeven from 54.38.18.211 port 55002 ssh2
Dec 19 17:00:29 sd-53420 sshd\[5330\]: User root from 54.38.18.211 not allowed because none of user's groups are listed in AllowGroups
Dec 19 17:00:29 sd-53420 sshd\[5330\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.18.211  user=root
...
2019-12-20 00:06:13

最近上报的IP列表

154.79.249.72 154.8.189.40 154.8.204.238 68.168.126.194
154.8.229.42 154.8.211.180 154.8.190.249 154.8.235.176
154.80.161.8 154.80.167.102 154.80.167.107 154.80.167.105
154.80.140.10 154.80.167.112 154.80.162.72 154.80.167.124
154.80.167.126 154.80.168.159 154.80.167.99 154.80.171.85