161.207.230.138

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 161.207.230.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42119
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;161.207.230.138.		IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024122100 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Dec 21 20:46:49 CST 2024
;; MSG SIZE  rcvd: 108

HOST信息:

Host 138.230.207.161.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 138.230.207.161.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
148.70.162.95	attackspam	Automatic report - SSH Brute-Force Attack	2019-11-21 15:59:10
185.222.211.163	attackbots	2019-11-21T08:28:29.679151+01:00 lumpi kernel: [4143676.197472] INPUT:DROP:SPAMHAUS_DROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=185.222.211.163 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=13843 PROTO=TCP SPT=8080 DPT=9988 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-11-21 15:59:52
174.219.5.210	attackbots	TCP Port Scanning	2019-11-21 15:56:51
106.13.102.215	attackspam	Automatic report - SSH Brute-Force Attack	2019-11-21 15:45:58
94.23.21.52	attack	94.23.21.52 - - \[21/Nov/2019:06:28:49 +0000\] "POST /wp-login.php HTTP/1.1" 200 4358 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 94.23.21.52 - - \[21/Nov/2019:06:28:50 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2019-11-21 15:47:27
5.62.154.196	attackspambots	B: zzZZzz blocked content access	2019-11-21 16:05:41
185.120.221.215	attackbotsspam	C1,WP GET /nelson/wp-login.php	2019-11-21 16:06:00
13.75.69.108	attackbots	Nov 21 06:21:07 web8 sshd\[16651\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.75.69.108 user=root Nov 21 06:21:10 web8 sshd\[16651\]: Failed password for root from 13.75.69.108 port 11266 ssh2 Nov 21 06:24:41 web8 sshd\[18272\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.75.69.108 user=root Nov 21 06:24:42 web8 sshd\[18272\]: Failed password for root from 13.75.69.108 port 48270 ssh2 Nov 21 06:28:13 web8 sshd\[20126\]: Invalid user guest from 13.75.69.108	2019-11-21 16:10:25
37.187.17.45	attackbotsspam	Lines containing failures of 37.187.17.45 Nov 19 10:41:09 shared04 sshd[31416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.17.45 user=r.r Nov 19 10:41:11 shared04 sshd[31416]: Failed password for r.r from 37.187.17.45 port 34500 ssh2 Nov 19 10:41:11 shared04 sshd[31416]: Received disconnect from 37.187.17.45 port 34500:11: Bye Bye [preauth] Nov 19 10:41:11 shared04 sshd[31416]: Disconnected from authenticating user r.r 37.187.17.45 port 34500 [preauth] Nov 19 10:59:08 shared04 sshd[2658]: Invalid user admin from 37.187.17.45 port 57498 Nov 19 10:59:08 shared04 sshd[2658]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.17.45 Nov 19 10:59:10 shared04 sshd[2658]: Failed password for invalid user admin from 37.187.17.45 port 57498 ssh2 Nov 19 10:59:10 shared04 sshd[2658]: Received disconnect from 37.187.17.45 port 57498:11: Bye Bye [preauth] Nov 19 10:59:10 shared04 sshd[2658........ ------------------------------	2019-11-21 16:08:53
14.253.150.143	attackbots	Nov 19 11:43:48 mxgate1 postfix/postscreen[659]: CONNECT from [14.253.150.143]:43384 to [176.31.12.44]:25 Nov 19 11:43:48 mxgate1 postfix/dnsblog[665]: addr 14.253.150.143 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 19 11:43:48 mxgate1 postfix/dnsblog[668]: addr 14.253.150.143 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 19 11:43:48 mxgate1 postfix/dnsblog[668]: addr 14.253.150.143 listed by domain zen.spamhaus.org as 127.0.0.11 Nov 19 11:43:49 mxgate1 postfix/dnsblog[667]: addr 14.253.150.143 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 19 11:43:54 mxgate1 postfix/postscreen[659]: DNSBL rank 4 for [14.253.150.143]:43384 Nov x@x Nov 19 11:43:55 mxgate1 postfix/postscreen[659]: HANGUP after 1.3 from [14.253.150.143]:43384 in tests after SMTP handshake Nov 19 11:43:55 mxgate1 postfix/postscreen[659]: DISCONNECT [14.253.150.143]:43384 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.253.150.143	2019-11-21 16:14:31
94.23.153.35	attack	port scan and connect, tcp 1433 (ms-sql-s)	2019-11-21 15:42:55
183.87.157.202	attack	Nov 20 21:33:47 php1 sshd\[31066\]: Invalid user lowander from 183.87.157.202 Nov 20 21:33:47 php1 sshd\[31066\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.87.157.202 Nov 20 21:33:49 php1 sshd\[31066\]: Failed password for invalid user lowander from 183.87.157.202 port 55600 ssh2 Nov 20 21:38:14 php1 sshd\[31436\]: Invalid user hieldbrant from 183.87.157.202 Nov 20 21:38:14 php1 sshd\[31436\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.87.157.202	2019-11-21 15:46:53
106.38.91.195	attackspambots	Fail2Ban - SMTP Bruteforce Attempt	2019-11-21 15:51:06
177.132.246.251	attack	Nov 19 08:29:34 riskplan-s sshd[29865]: reveeclipse mapping checking getaddrinfo for 177.132.246.251.dynamic.adsl.gvt.net.br [177.132.246.251] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 19 08:29:34 riskplan-s sshd[29865]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.132.246.251 user=r.r Nov 19 08:29:36 riskplan-s sshd[29865]: Failed password for r.r from 177.132.246.251 port 39988 ssh2 Nov 19 08:29:36 riskplan-s sshd[29865]: Received disconnect from 177.132.246.251: 11: Bye Bye [preauth] Nov 19 08:40:47 riskplan-s sshd[30023]: reveeclipse mapping checking getaddrinfo for 177.132.246.251.dynamic.adsl.gvt.net.br [177.132.246.251] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 19 08:40:47 riskplan-s sshd[30023]: Invalid user eps from 177.132.246.251 Nov 19 08:40:47 riskplan-s sshd[30023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.132.246.251 Nov 19 08:40:50 riskplan-s sshd[30023]: Fail........ -------------------------------	2019-11-21 15:43:44
92.59.136.115	attackbotsspam	Lines containing failures of 92.59.136.115 Nov 19 09:56:04 MAKserver06 sshd[14323]: Invalid user pi from 92.59.136.115 port 37710 Nov 19 09:56:04 MAKserver06 sshd[14324]: Invalid user pi from 92.59.136.115 port 37708 Nov 19 09:56:04 MAKserver06 sshd[14323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.59.136.115 Nov 19 09:56:04 MAKserver06 sshd[14324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.59.136.115 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=92.59.136.115	2019-11-21 15:50:38

最近上报的IP列表

26.4.226.190	7.250.123.230	146.30.65.121	119.174.70.222
211.26.73.222	175.161.141.172	61.54.171.216	233.5.254.218
175.100.27.81	17.103.52.234	60.143.131.160	50.143.5.153
139.128.100.230	212.188.225.221	195.120.148.186	8.148.107.111
163.203.240.210	65.252.84.249	6.84.37.72	87.99.44.243