必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Oracle Public Cloud

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:
类型 评论内容 时间
attackspambots
404 NOT FOUND
2020-06-22 12:52:30
attackbots
Lines containing failures of 168.138.14.139
May  5 07:22:51 nexus sshd[15918]: Invalid user elastic from 168.138.14.139 port 52324
May  5 07:22:51 nexus sshd[15918]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.138.14.139
May  5 07:22:53 nexus sshd[15918]: Failed password for invalid user elastic from 168.138.14.139 port 52324 ssh2
May  5 07:22:54 nexus sshd[15918]: Connection closed by 168.138.14.139 port 52324 [preauth]
May  5 09:16:45 nexus sshd[17826]: Invalid user regwag2003 from 168.138.14.139 port 47954
May  5 09:16:45 nexus sshd[17826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.138.14.139


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=168.138.14.139
2020-05-07 23:24:39
相同子网IP讨论:
IP 类型 评论内容 时间
168.138.140.50 attack
DATE:2020-09-30 22:37:31, IP:168.138.140.50, PORT:1433 MSSQL brute force auth on honeypot server (epe-honey1-hq)
2020-10-02 05:55:23
168.138.140.50 attackspambots
DATE:2020-09-30 22:37:31, IP:168.138.140.50, PORT:1433 MSSQL brute force auth on honeypot server (epe-honey1-hq)
2020-10-01 22:18:06
168.138.140.50 attackbots
DATE:2020-09-30 22:37:31, IP:168.138.140.50, PORT:1433 MSSQL brute force auth on honeypot server (epe-honey1-hq)
2020-10-01 14:37:16
168.138.145.173 attackspambots
Unauthorized connection attempt detected from IP address 168.138.145.173 to port 445 [T]
2020-07-22 02:32:41
168.138.144.172 attackspam
phpMyAdmin_Attack
2020-05-15 15:58:04
168.138.144.172 attack
php WP PHPmyadamin ABUSE blocked for 12h
2020-05-14 08:54:19
168.138.147.95 attack
May  5 20:10:51 inter-technics sshd[5375]: Invalid user daniel from 168.138.147.95 port 40858
May  5 20:10:51 inter-technics sshd[5375]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.138.147.95
May  5 20:10:51 inter-technics sshd[5375]: Invalid user daniel from 168.138.147.95 port 40858
May  5 20:10:54 inter-technics sshd[5375]: Failed password for invalid user daniel from 168.138.147.95 port 40858 ssh2
May  5 20:17:35 inter-technics sshd[8505]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.138.147.95  user=root
May  5 20:17:37 inter-technics sshd[8505]: Failed password for root from 168.138.147.95 port 47372 ssh2
...
2020-05-06 02:53:18
168.138.144.172 attackspambots
Hacking
2020-05-04 08:21:01
168.138.147.95 attackspam
Invalid user ts4 from 168.138.147.95 port 40946
2020-05-01 12:08:34
168.138.147.95 attackbots
Apr 27 15:03:44 ArkNodeAT sshd\[23003\]: Invalid user mall from 168.138.147.95
Apr 27 15:03:44 ArkNodeAT sshd\[23003\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.138.147.95
Apr 27 15:03:46 ArkNodeAT sshd\[23003\]: Failed password for invalid user mall from 168.138.147.95 port 47106 ssh2
2020-04-28 00:23:51
168.138.147.95 attack
Apr 21 14:22:41 ns382633 sshd\[32632\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.138.147.95  user=root
Apr 21 14:22:43 ns382633 sshd\[32632\]: Failed password for root from 168.138.147.95 port 58264 ssh2
Apr 21 14:33:14 ns382633 sshd\[2542\]: Invalid user testftp from 168.138.147.95 port 46414
Apr 21 14:33:14 ns382633 sshd\[2542\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.138.147.95
Apr 21 14:33:17 ns382633 sshd\[2542\]: Failed password for invalid user testftp from 168.138.147.95 port 46414 ssh2
2020-04-21 20:35:39
168.138.147.95 attackbotsspam
2020-04-11T22:42:26.380453ns386461 sshd\[6771\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.138.147.95  user=root
2020-04-11T22:42:28.623859ns386461 sshd\[6771\]: Failed password for root from 168.138.147.95 port 39768 ssh2
2020-04-11T22:51:16.278747ns386461 sshd\[14589\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.138.147.95  user=root
2020-04-11T22:51:18.282557ns386461 sshd\[14589\]: Failed password for root from 168.138.147.95 port 33900 ssh2
2020-04-11T22:56:59.951658ns386461 sshd\[19994\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.138.147.95  user=root
...
2020-04-12 05:27:01
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 168.138.14.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25224
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;168.138.14.139.			IN	A

;; AUTHORITY SECTION:
.			411	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050700 1800 900 604800 86400

;; Query time: 95 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 07 23:24:34 CST 2020
;; MSG SIZE  rcvd: 118
HOST信息:
Host 139.14.138.168.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.14.138.168.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
95.255.93.189 attack
Unauthorized connection attempt detected from IP address 95.255.93.189 to port 88
2020-04-16 00:15:35
106.75.176.179 attack
Apr 15 05:25:08 mockhub sshd[585]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.176.179
Apr 15 05:25:10 mockhub sshd[585]: Failed password for invalid user maileh from 106.75.176.179 port 35612 ssh2
...
2020-04-15 23:59:33
185.38.175.71 attackbotsspam
Automatic report - Banned IP Access
2020-04-16 00:26:57
113.252.73.248 attack
Honeypot attack, port: 5555, PTR: 248-73-252-113-on-nets.com.
2020-04-16 00:24:05
201.55.110.170 attackspambots
Apr 15 22:12:29 itv-usvr-01 sshd[19426]: Invalid user tech from 201.55.110.170
Apr 15 22:12:29 itv-usvr-01 sshd[19426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.55.110.170
Apr 15 22:12:29 itv-usvr-01 sshd[19426]: Invalid user tech from 201.55.110.170
Apr 15 22:12:31 itv-usvr-01 sshd[19426]: Failed password for invalid user tech from 201.55.110.170 port 29857 ssh2
2020-04-16 00:10:16
84.65.198.123 attackspam
Automatic report - Port Scan Attack
2020-04-16 00:16:00
45.227.253.148 attackspambots
2 attempts against mh-modsecurity-ban on milky
2020-04-16 00:06:46
185.81.157.155 attackbotsspam
Honeypot attack, port: 445, PTR: PTR record not found
2020-04-16 00:31:10
210.227.113.18 attackspambots
Apr 15 17:16:20 tuxlinux sshd[30472]: Invalid user util from 210.227.113.18 port 39604
Apr 15 17:16:20 tuxlinux sshd[30472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.227.113.18 
Apr 15 17:16:20 tuxlinux sshd[30472]: Invalid user util from 210.227.113.18 port 39604
Apr 15 17:16:20 tuxlinux sshd[30472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.227.113.18 
Apr 15 17:16:20 tuxlinux sshd[30472]: Invalid user util from 210.227.113.18 port 39604
Apr 15 17:16:20 tuxlinux sshd[30472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.227.113.18 
Apr 15 17:16:23 tuxlinux sshd[30472]: Failed password for invalid user util from 210.227.113.18 port 39604 ssh2
...
2020-04-15 23:54:43
185.216.32.130 attack
Unauthorized access detected from black listed ip!
2020-04-15 23:58:41
142.44.251.207 attackspambots
Apr 15 17:21:34  sshd[3708]: Failed password for invalid user admin from 142.44.251.207 port 54542 ssh2
2020-04-16 00:14:24
190.205.59.6 attack
2020-04-15T14:28:25.690449shield sshd\[31259\]: Invalid user visitor from 190.205.59.6 port 53008
2020-04-15T14:28:25.695661shield sshd\[31259\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.205.59.6
2020-04-15T14:28:27.709654shield sshd\[31259\]: Failed password for invalid user visitor from 190.205.59.6 port 53008 ssh2
2020-04-15T14:33:08.407573shield sshd\[31972\]: Invalid user jenkins from 190.205.59.6 port 33140
2020-04-15T14:33:08.412328shield sshd\[31972\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.205.59.6
2020-04-16 00:32:51
163.172.62.124 attack
Apr 15 14:09:23 ns3164893 sshd[13634]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.62.124
Apr 15 14:09:25 ns3164893 sshd[13634]: Failed password for invalid user system from 163.172.62.124 port 37480 ssh2
...
2020-04-16 00:28:33
182.253.205.20 attack
Honeypot attack, port: 445, PTR: PTR record not found
2020-04-16 00:11:35
36.75.142.194 attackspam
Honeypot attack, port: 445, PTR: PTR record not found
2020-04-16 00:36:00

最近上报的IP列表

210.21.36.182 97.87.51.228 83.196.98.96 187.177.183.18
148.105.11.43 145.239.90.198 216.41.205.1 91.148.138.116
94.21.40.231 210.211.117.41 78.180.38.127 5.253.206.142
89.34.18.94 67.70.142.247 87.251.74.173 76.238.219.68
121.156.122.97 2.86.246.211 183.11.235.24 90.189.197.237