必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Russian Federation

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.138.162.0
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49357
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;5.138.162.0.			IN	A

;; AUTHORITY SECTION:
.			80	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011001 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 11 03:20:56 CST 2022
;; MSG SIZE  rcvd: 104
HOST信息:
Host 0.162.138.5.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 0.162.138.5.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
88.214.26.45 attackbots
88.214.26.45 was recorded 5 times by 2 hosts attempting to connect to the following ports: 3359,3353,3355,3351. Incident counter (4h, 24h, all-time): 5, 28, 33
2019-11-21 16:50:07
62.110.66.66 attackspam
Nov 21 10:05:19 sauna sshd[134697]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.110.66.66
Nov 21 10:05:21 sauna sshd[134697]: Failed password for invalid user named from 62.110.66.66 port 46378 ssh2
...
2019-11-21 16:27:37
49.36.29.43 attackbotsspam
TCP Port Scanning
2019-11-21 16:16:17
196.13.207.52 attackbots
Nov 21 08:23:02 SilenceServices sshd[22486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.13.207.52
Nov 21 08:23:04 SilenceServices sshd[22486]: Failed password for invalid user xxxxxxxxxx from 196.13.207.52 port 36014 ssh2
Nov 21 08:26:56 SilenceServices sshd[23554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.13.207.52
2019-11-21 16:14:59
93.174.93.5 attack
Nov 21 07:20:55 host3 dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=93.174.93.5, lip=207.180.241.50, session=
Nov 21 07:21:23 host3 dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=93.174.93.5, lip=207.180.241.50, session=
Nov 21 07:24:53 host3 dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=93.174.93.5, lip=207.180.241.50, session=<3pTaWtWXmuJdrl0F>
Nov 21 07:25:22 host3 dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=93.174.93.5, lip=207.180.241.50, session=
Nov 21 07:28:09 host3 dovecot: pop3-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=93.174.93.5, lip=207.180.241.50, session
...
2019-11-21 16:14:05
116.111.183.67 attackbotsspam
Nov 19 11:49:29 mxgate1 postfix/postscreen[659]: CONNECT from [116.111.183.67]:13818 to [176.31.12.44]:25
Nov 19 11:49:29 mxgate1 postfix/dnsblog[666]: addr 116.111.183.67 listed by domain zen.spamhaus.org as 127.0.0.11
Nov 19 11:49:29 mxgate1 postfix/dnsblog[666]: addr 116.111.183.67 listed by domain zen.spamhaus.org as 127.0.0.3
Nov 19 11:49:29 mxgate1 postfix/dnsblog[666]: addr 116.111.183.67 listed by domain zen.spamhaus.org as 127.0.0.4
Nov 19 11:49:29 mxgate1 postfix/dnsblog[667]: addr 116.111.183.67 listed by domain cbl.abuseat.org as 127.0.0.2
Nov 19 11:49:29 mxgate1 postfix/dnsblog[665]: addr 116.111.183.67 listed by domain b.barracudacentral.org as 127.0.0.2
Nov 19 11:49:35 mxgate1 postfix/postscreen[659]: DNSBL rank 4 for [116.111.183.67]:13818
Nov x@x
Nov 19 11:49:36 mxgate1 postfix/postscreen[659]: HANGUP after 1 from [116.111.183.67]:13818 in tests after SMTP handshake
Nov 19 11:49:36 mxgate1 postfix/postscreen[659]: DISCONNECT [116.111.183.67]:13818


........
----------------------------------
2019-11-21 16:19:34
59.13.73.14 attackbots
Brute forcing RDP port 3389
2019-11-21 16:21:34
37.201.7.48 attackbotsspam
Lines containing failures of 37.201.7.48
Nov 19 12:20:25 server01 postfix/smtpd[21854]: connect from ip-37-201-7-48.hsi13.unhostnameymediagroup.de[37.201.7.48]
Nov x@x
Nov x@x
Nov 19 12:20:25 server01 postfix/policy-spf[21859]: : Policy action=550 Please see hxxp://www.openspf.org/Why?s=mfrom;id=911%40iberhardware.com;ip=37.201.7.48;r=server01.2800km.de
Nov x@x
Nov 19 12:20:26 server01 postfix/smtpd[21854]: lost connection after DATA from ip-37-201-7-48.hsi13.unhostnameymediagroup.de[37.201.7.48]
Nov 19 12:20:26 server01 postfix/smtpd[21854]: disconnect from ip-37-201-7-48.hsi13.unhostnameymediagroup.de[37.201.7.48]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=37.201.7.48
2019-11-21 16:54:17
104.131.83.45 attackspambots
Tried sshing with brute force.
2019-11-21 16:51:45
147.135.119.51 attackspam
Nov 21 08:07:17 localhost sshd\[21917\]: Invalid user kosokowsky from 147.135.119.51 port 50902
Nov 21 08:07:17 localhost sshd\[21917\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.135.119.51
Nov 21 08:07:19 localhost sshd\[21917\]: Failed password for invalid user kosokowsky from 147.135.119.51 port 50902 ssh2
Nov 21 08:14:50 localhost sshd\[22155\]: Invalid user xueqing from 147.135.119.51 port 50984
Nov 21 08:14:50 localhost sshd\[22155\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.135.119.51
...
2019-11-21 16:24:21
62.76.92.22 attack
[portscan] Port scan
2019-11-21 16:20:32
189.91.239.194 attackspambots
Nov 20 20:41:10 php1 sshd\[26682\]: Invalid user guschelbauer from 189.91.239.194
Nov 20 20:41:10 php1 sshd\[26682\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.91.239.194
Nov 20 20:41:13 php1 sshd\[26682\]: Failed password for invalid user guschelbauer from 189.91.239.194 port 49588 ssh2
Nov 20 20:45:54 php1 sshd\[27054\]: Invalid user mccarrick from 189.91.239.194
Nov 20 20:45:54 php1 sshd\[27054\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.91.239.194
2019-11-21 16:26:19
36.230.183.5 attack
Honeypot attack, port: 23, PTR: 36-230-183-5.dynamic-ip.hinet.net.
2019-11-21 16:32:51
93.174.93.171 attackbotsspam
11/21/2019-01:28:10.478818 93.174.93.171 Protocol: 6 ET DROP Dshield Block Listed Source group 1
2019-11-21 16:13:47
164.132.192.5 attackspam
2019-11-21T08:34:37.739126abusebot-5.cloudsearch.cf sshd\[18600\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.ip-164-132-192.eu  user=root
2019-11-21 16:51:06

最近上报的IP列表

217.13.16.125 216.48.14.221 136.3.141.24 107.236.220.75
254.137.48.2 134.105.175.42 182.87.190.166 253.38.216.28
100.63.20.144 128.101.141.224 145.147.21.121 193.130.226.64
103.147.226.248 146.204.42.150 154.244.128.25 100.80.104.205
145.150.22.65 191.81.224.173 203.37.139.88 151.22.196.242