81.101.204.138

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United Kingdom

运营商(isp): Virgin Media Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Automatic report - Port Scan Attack	2019-08-16 19:20:10

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 81.101.204.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2179
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;81.101.204.138.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081600 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 16 19:20:03 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

138.204.101.81.in-addr.arpa domain name pointer cpc144574-livi7-2-0-cust137.18-2.cable.virginm.net.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
138.204.101.81.in-addr.arpa	name = cpc144574-livi7-2-0-cust137.18-2.cable.virginm.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
88.250.204.222	attackbotsspam	Caught in portsentry honeypot	2019-07-15 19:48:31
185.137.111.188	attackbots	Jul 15 13:18:14 mail postfix/smtpd\[2185\]: warning: unknown\[185.137.111.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 15 13:48:18 mail postfix/smtpd\[4720\]: warning: unknown\[185.137.111.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 15 13:48:35 mail postfix/smtpd\[4634\]: warning: unknown\[185.137.111.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 15 13:49:07 mail postfix/smtpd\[5932\]: warning: unknown\[185.137.111.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-07-15 20:03:23
178.128.82.133	attack	Jul 15 13:13:22 localhost sshd\[22821\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.82.133 user=root Jul 15 13:13:24 localhost sshd\[22821\]: Failed password for root from 178.128.82.133 port 56846 ssh2 ...	2019-07-15 20:23:55
220.246.5.153	attack	SMB Server BruteForce Attack	2019-07-15 19:51:05
212.81.183.230	attackspam	Jul 15 19:16:05 webhost01 sshd[13805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.81.183.230 Jul 15 19:16:06 webhost01 sshd[13805]: Failed password for invalid user webin from 212.81.183.230 port 1833 ssh2 ...	2019-07-15 20:21:08
61.177.38.66	attackspambots	Jul 15 10:18:00 meumeu sshd[13887]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.38.66 Jul 15 10:18:01 meumeu sshd[13887]: Failed password for invalid user oracle from 61.177.38.66 port 42111 ssh2 Jul 15 10:23:06 meumeu sshd[14840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.38.66 ...	2019-07-15 19:41:48
93.158.161.200	attackspambots	port scan and connect, tcp 443 (https)	2019-07-15 19:38:05
137.135.113.253	attackbotsspam	Attempt to access backend	2019-07-15 20:22:39
111.230.227.17	attack	Jul 15 09:23:58 minden010 sshd[31134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.227.17 Jul 15 09:24:00 minden010 sshd[31134]: Failed password for invalid user dj from 111.230.227.17 port 47136 ssh2 Jul 15 09:28:19 minden010 sshd[32604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.227.17 ...	2019-07-15 19:37:03
54.68.0.65	attackspam	2019-07-15T12:22:27.765457lon01.zurich-datacenter.net sshd\[29492\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-54-68-0-65.us-west-2.compute.amazonaws.com user=redis 2019-07-15T12:22:30.481784lon01.zurich-datacenter.net sshd\[29492\]: Failed password for redis from 54.68.0.65 port 39383 ssh2 2019-07-15T12:22:32.192042lon01.zurich-datacenter.net sshd\[29492\]: Failed password for redis from 54.68.0.65 port 39383 ssh2 2019-07-15T12:22:34.177712lon01.zurich-datacenter.net sshd\[29492\]: Failed password for redis from 54.68.0.65 port 39383 ssh2 2019-07-15T12:22:37.108071lon01.zurich-datacenter.net sshd\[29492\]: Failed password for redis from 54.68.0.65 port 39383 ssh2 ...	2019-07-15 20:16:43
45.124.86.65	attackspam	Automatic report - Banned IP Access	2019-07-15 20:18:31
14.231.145.234	attack	Jul 15 08:22:06 andromeda sshd\[40029\]: Invalid user admin from 14.231.145.234 port 53389 Jul 15 08:22:06 andromeda sshd\[40029\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.231.145.234 Jul 15 08:22:08 andromeda sshd\[40029\]: Failed password for invalid user admin from 14.231.145.234 port 53389 ssh2	2019-07-15 19:55:28
74.207.251.11	attack	Jul 15 06:08:55 shadeyouvpn sshd[8773]: Failed password for dev from 74.207.251.11 port 53643 ssh2 Jul 15 06:08:57 shadeyouvpn sshd[8773]: Failed password for dev from 74.207.251.11 port 53643 ssh2 Jul 15 06:08:59 shadeyouvpn sshd[8773]: Failed password for dev from 74.207.251.11 port 53643 ssh2 Jul 15 06:09:01 shadeyouvpn sshd[8773]: Failed password for dev from 74.207.251.11 port 53643 ssh2 Jul 15 06:09:04 shadeyouvpn sshd[8773]: Failed password for dev from 74.207.251.11 port 53643 ssh2 Jul 15 06:09:04 shadeyouvpn sshd[8773]: Received disconnect from 74.207.251.11: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=74.207.251.11	2019-07-15 20:23:34
23.251.128.200	attackspam	Jul 15 10:04:49 mail sshd\[18769\]: Invalid user temp from 23.251.128.200 port 44154 Jul 15 10:04:49 mail sshd\[18769\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.251.128.200 Jul 15 10:04:52 mail sshd\[18769\]: Failed password for invalid user temp from 23.251.128.200 port 44154 ssh2 Jul 15 10:09:30 mail sshd\[19990\]: Invalid user intern from 23.251.128.200 port 43165 Jul 15 10:09:30 mail sshd\[19990\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.251.128.200	2019-07-15 20:07:41
79.155.132.49	attackspam	Unauthorized SSH login attempts	2019-07-15 19:41:22

最近上报的IP列表

2.39.119.199	194.58.71.210	23.134.213.225	83.29.65.250
213.89.17.13	223.79.184.91	201.20.114.227	1.55.246.76
62.210.180.84	94.124.146.100	125.161.139.188	51.38.36.213
202.178.56.199	61.79.55.204	190.210.65.228	89.145.161.33
41.42.40.6	188.165.130.234	69.131.146.100	201.247.6.77