234.209.11.138

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Multicast Address

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 234.209.11.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31792
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;234.209.11.138.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020600 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 06 23:17:08 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

Host 138.11.209.234.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.11.209.234.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
61.227.243.214	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-06 20:12:52,883 INFO [amun_request_handler] PortScan Detected on Port: 445 (61.227.243.214)	2019-08-07 06:37:31
102.158.121.185	attackspam	Aug 6 23:30:17 tamoto postfix/smtpd[31252]: connect from unknown[102.158.121.185] Aug 6 23:30:17 tamoto postfix/smtpd[31252]: warning: unknown[102.158.121.185]: SASL PLAIN authentication failed: authentication failure Aug 6 23:30:17 tamoto postfix/smtpd[31252]: warning: unknown[102.158.121.185]: SASL PLAIN authentication failed: authentication failure Aug 6 23:30:17 tamoto postfix/smtpd[31252]: warning: unknown[102.158.121.185]: SASL PLAIN authentication failed: authentication failure Aug 6 23:30:18 tamoto postfix/smtpd[31252]: warning: unknown[102.158.121.185]: SASL PLAIN authentication failed: authentication failure ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=102.158.121.185	2019-08-07 07:02:54
122.195.200.148	attack	Aug 6 22:07:37 thevastnessof sshd[13865]: Failed password for root from 122.195.200.148 port 49333 ssh2 ...	2019-08-07 06:41:20
148.70.71.137	attack	Aug 6 23:49:07 MK-Soft-Root1 sshd\[25003\]: Invalid user redmine from 148.70.71.137 port 58353 Aug 6 23:49:07 MK-Soft-Root1 sshd\[25003\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.71.137 Aug 6 23:49:09 MK-Soft-Root1 sshd\[25003\]: Failed password for invalid user redmine from 148.70.71.137 port 58353 ssh2 ...	2019-08-07 06:51:37
173.249.59.104	attackspambots	Aug 6 20:32:59 srv00 sshd[46208]: fatal: Unable to negotiate whostnameh 173.249.59.104 port 59922: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Aug 6 20:33:07 srv00 sshd[46222]: fatal: Unable to negotiate whostnameh 173.249.59.104 port 45336: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Aug 6 20:33:14 srv00 sshd[46225]: fatal: Unable to negotiate whostnameh 173.249.59.104 port 58972: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Aug 6 20:33:23 srv00 sshd[46227]: fatal: Unable to negotiate whostnameh 173.249.59.104 port 44376: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman........ ------------------------------	2019-08-07 06:18:17
87.97.76.16	attackbots	Aug 6 18:35:15 vps200512 sshd\[27185\]: Invalid user minecraft from 87.97.76.16 Aug 6 18:35:15 vps200512 sshd\[27185\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.97.76.16 Aug 6 18:35:17 vps200512 sshd\[27185\]: Failed password for invalid user minecraft from 87.97.76.16 port 52874 ssh2 Aug 6 18:41:07 vps200512 sshd\[27372\]: Invalid user sysbin from 87.97.76.16 Aug 6 18:41:07 vps200512 sshd\[27372\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.97.76.16	2019-08-07 06:53:40
92.118.160.5	attack	firewall-block, port(s): 5903/tcp	2019-08-07 06:17:34
123.130.118.19	attackbots	Aug 7 01:36:54 vtv3 sshd\[4937\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.130.118.19 user=root Aug 7 01:36:55 vtv3 sshd\[4937\]: Failed password for root from 123.130.118.19 port 42383 ssh2 Aug 7 01:37:11 vtv3 sshd\[4996\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.130.118.19 user=root Aug 7 01:37:13 vtv3 sshd\[4996\]: Failed password for root from 123.130.118.19 port 43285 ssh2 Aug 7 01:37:15 vtv3 sshd\[5079\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.130.118.19 user=root	2019-08-07 07:03:33
122.225.42.178	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-06 20:58:46,592 INFO [shellcode_manager] (122.225.42.178) no match, writing hexdump (a4f77032051a2cd8f41951ec198a5295 :1969762) - MS17010 (EternalBlue)	2019-08-07 06:26:22
193.233.70.19	attackbotsspam	Aug 7 00:02:39 microserver sshd[27359]: Invalid user chad from 193.233.70.19 port 8557 Aug 7 00:02:39 microserver sshd[27359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.233.70.19 Aug 7 00:02:41 microserver sshd[27359]: Failed password for invalid user chad from 193.233.70.19 port 8557 ssh2 Aug 7 00:07:44 microserver sshd[29136]: Invalid user zz from 193.233.70.19 port 5800 Aug 7 00:07:44 microserver sshd[29136]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.233.70.19 Aug 7 00:17:59 microserver sshd[30698]: Invalid user rolph from 193.233.70.19 port 6118 Aug 7 00:17:59 microserver sshd[30698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.233.70.19 Aug 7 00:18:01 microserver sshd[30698]: Failed password for invalid user rolph from 193.233.70.19 port 6118 ssh2 Aug 7 00:23:07 microserver sshd[31459]: Invalid user buero from 193.233.70.19 port 9003 Aug 7 00:23:07	2019-08-07 06:48:04
43.226.124.33	attackbots	firewall-block, port(s): 445/tcp	2019-08-07 06:24:29
118.25.105.88	attackspambots	[Aegis] @ 2019-08-06 22:49:03 0100 -> Web Application Attack: SERVER-WEBAPP PHP xmlrpc.php post attempt	2019-08-07 06:37:06
206.189.55.217	attackspam	28015/tcp 5632/tcp 2376/tcp... [2019-08-02/06]8pkt,8pt.(tcp)	2019-08-07 07:05:07
202.179.94.47	attack	Aug 6 23:30:12 tamoto postfix/smtpd[31252]: warning: hostname aipl-47-92-179-202.ankhnet.net does not resolve to address 202.179.94.47: Name or service not known Aug 6 23:30:12 tamoto postfix/smtpd[31252]: connect from unknown[202.179.94.47] Aug 6 23:30:14 tamoto postfix/smtpd[31252]: warning: unknown[202.179.94.47]: SASL PLAIN authentication failed: authentication failure Aug 6 23:30:14 tamoto postfix/smtpd[31252]: warning: unknown[202.179.94.47]: SASL PLAIN authentication failed: authentication failure Aug 6 23:30:14 tamoto postfix/smtpd[31252]: warning: unknown[202.179.94.47]: SASL PLAIN authentication failed: authentication failure Aug 6 23:30:15 tamoto postfix/smtpd[31252]: warning: unknown[202.179.94.47]: SASL PLAIN authentication failed: authentication failure Aug 6 23:30:15 tamoto postfix/smtpd[31252]: lost connection after AUTH from unknown[202.179.94.47] Aug 6 23:30:15 tamoto postfix/smtpd[31252]: disconnect from unknown[202.179.94.47] ........ ---------------------------------------------	2019-08-07 06:46:53
198.199.78.169	attackspambots	Failed password for invalid user ts3server from 198.199.78.169 port 36470 ssh2 Invalid user ubuntu from 198.199.78.169 port 59720 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.78.169 Failed password for invalid user ubuntu from 198.199.78.169 port 59720 ssh2 Invalid user cluster from 198.199.78.169 port 54728 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.78.169	2019-08-07 06:28:37

最近上报的IP列表

224.4.69.87	14.71.183.246	132.27.78.78	150.66.239.138
234.179.130.44	33.97.141.127	83.115.51.163	6.132.89.7
60.88.159.243	124.153.158.136	76.227.12.149	142.2.59.194
7.250.225.181	230.80.201.5	171.143.188.153	65.72.116.64
130.55.159.75	31.249.253.192	214.203.108.70	123.120.165.84