必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
167.94.138.155 botsattack
KnownAttacker - BadReputation
2025-07-07 12:50:52
167.94.138.63 botsattackproxy
SSH dictionary attack
2025-06-19 12:58:59
167.94.138.41 attackproxy
VoIP blacklist IP
2025-06-16 12:53:41
167.94.138.120 botsattackproxy
SSH bot
2025-06-03 12:57:02
167.94.138.163 botsattack
Fraud scan
2025-02-07 17:59:37
167.94.138.167 attack
Fraud connect
2025-01-22 13:53:35
167.94.138.147 proxy
VPN fraud
2023-06-07 12:46:29
167.94.138.33 proxy
VPN fraud.
2023-06-07 12:43:58
167.94.138.136 proxy
VPN fraud
2023-06-05 12:53:02
167.94.138.131 proxy
VPN fraud
2023-05-29 13:10:03
167.94.138.124 proxy
VPN fraud
2023-05-29 13:06:05
167.94.138.127 proxy
VPN fraud
2023-05-25 12:38:28
167.94.138.52 proxy
VPN fraud
2023-05-16 12:51:16
167.94.138.152 proxy
Scanner VPN
2023-03-21 13:50:31
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.94.138.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46005
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;167.94.138.49.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400

;; Query time: 415 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 15:00:31 CST 2022
;; MSG SIZE  rcvd: 106
HOST信息:
49.138.94.167.in-addr.arpa domain name pointer scanner-07.ch1.censys-scanner.com.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
49.138.94.167.in-addr.arpa	name = scanner-07.ch1.censys-scanner.com.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
61.153.71.98 attackspam
Unauthorized connection attempt from IP address 61.153.71.98 on Port 445(SMB)
2020-09-08 04:25:33
94.25.168.248 attack
Unauthorized connection attempt from IP address 94.25.168.248 on Port 445(SMB)
2020-09-08 04:32:55
142.93.52.3 attack
Triggered by Fail2Ban at Ares web server
2020-09-08 04:54:31
201.151.166.170 attack
20/9/7@12:55:36: FAIL: Alarm-Network address from=201.151.166.170
20/9/7@12:55:36: FAIL: Alarm-Network address from=201.151.166.170
...
2020-09-08 04:48:34
111.93.235.74 attack
Sep  7 22:27:04 v22019038103785759 sshd\[27783\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.235.74  user=root
Sep  7 22:27:07 v22019038103785759 sshd\[27783\]: Failed password for root from 111.93.235.74 port 9376 ssh2
Sep  7 22:31:10 v22019038103785759 sshd\[28166\]: Invalid user butter from 111.93.235.74 port 13549
Sep  7 22:31:10 v22019038103785759 sshd\[28166\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.235.74
Sep  7 22:31:12 v22019038103785759 sshd\[28166\]: Failed password for invalid user butter from 111.93.235.74 port 13549 ssh2
...
2020-09-08 04:58:28
112.85.42.102 attack
Sep  7 20:32:15 vps-51d81928 sshd[288475]: Failed password for root from 112.85.42.102 port 20778 ssh2
Sep  7 20:33:08 vps-51d81928 sshd[288482]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.102  user=root
Sep  7 20:33:10 vps-51d81928 sshd[288482]: Failed password for root from 112.85.42.102 port 19051 ssh2
Sep  7 20:34:08 vps-51d81928 sshd[288496]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.102  user=root
Sep  7 20:34:10 vps-51d81928 sshd[288496]: Failed password for root from 112.85.42.102 port 62891 ssh2
...
2020-09-08 04:38:08
177.38.32.145 attackbotsspam
Unauthorized connection attempt from IP address 177.38.32.145 on Port 445(SMB)
2020-09-08 04:26:32
222.186.150.123 attackbotsspam
Brute force attempt
2020-09-08 04:50:20
167.172.38.238 attackbots
prod11
...
2020-09-08 04:34:48
51.178.53.233 attackspam
Lines containing failures of 51.178.53.233
Sep  7 18:54:47 shared02 sshd[938]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.53.233  user=r.r
Sep  7 18:54:49 shared02 sshd[938]: Failed password for r.r from 51.178.53.233 port 35654 ssh2
Sep  7 18:54:49 shared02 sshd[938]: Received disconnect from 51.178.53.233 port 35654:11: Bye Bye [preauth]
Sep  7 18:54:49 shared02 sshd[938]: Disconnected from authenticating user r.r 51.178.53.233 port 35654 [preauth]
Sep  7 18:58:25 shared02 sshd[2275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.53.233  user=r.r
Sep  7 18:58:27 shared02 sshd[2275]: Failed password for r.r from 51.178.53.233 port 41524 ssh2
Sep  7 18:58:27 shared02 sshd[2275]: Received disconnect from 51.178.53.233 port 41524:11: Bye Bye [preauth]
Sep  7 18:58:27 shared02 sshd[2275]: Disconnected from authenticating user r.r 51.178.53.233 port 41524 [preauth]


........
--------------------------------------
2020-09-08 04:55:21
51.254.220.20 attack
$f2bV_matches
2020-09-08 04:23:39
176.31.31.185 attack
Sep  7 18:19:27 l02a sshd[19058]: Invalid user ubuntu from 176.31.31.185
Sep  7 18:19:27 l02a sshd[19058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.31.185 
Sep  7 18:19:27 l02a sshd[19058]: Invalid user ubuntu from 176.31.31.185
Sep  7 18:19:30 l02a sshd[19058]: Failed password for invalid user ubuntu from 176.31.31.185 port 57248 ssh2
2020-09-08 04:54:04
189.1.132.75 attackbotsspam
Invalid user ljq from 189.1.132.75 port 37848
2020-09-08 04:35:43
144.217.130.102 attack
144.217.130.102 - - [07/Sep/2020:17:55:31 +0100] "POST /wp-login.php HTTP/1.1" 200 1836 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
144.217.130.102 - - [07/Sep/2020:17:55:33 +0100] "POST /wp-login.php HTTP/1.1" 200 1815 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
144.217.130.102 - - [07/Sep/2020:17:55:35 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-09-08 04:49:16
46.161.120.217 attack
Honeypot attack, port: 445, PTR: adsl-46-161-120217.crnagora.net.
2020-09-08 04:22:25

最近上报的IP列表

167.94.138.52 167.94.138.51 167.94.138.48 167.94.138.56
167.71.81.121 167.94.138.54 167.98.119.114 167.99.156.128
167.99.139.159 167.99.206.6 167.99.136.84 167.99.164.186
167.99.228.174 167.94.138.55 167.99.43.127 167.99.40.144
167.99.219.96 167.99.251.108 167.99.252.226 167.99.44.130