138.136.198.1 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.136.198.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30164
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.136.198.1.			IN	A

;; AUTHORITY SECTION:
.			362	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022010901 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 10 12:54:01 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 1.198.136.138.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

b'1.198.136.138.in-addr.arpa	name = dha-198-1.health.mil.
1.198.136.138.in-addr.arpa	name = elm-198-1.health.mil.

Authoritative answers can be found from:

'

最新评论:

IP	类型	评论内容	时间
54.36.182.244	attack	2019-06-26T00:43:48.660029abusebot-8.cloudsearch.cf sshd\[22950\]: Invalid user gx from 54.36.182.244 port 44686	2019-06-26 09:39:46
125.64.94.221	attackbots	scan z	2019-06-26 09:12:13
2a02:2498:e006:5:216:3eff:fe34:9341	attackbotsspam	Spam	2019-06-26 08:56:05
36.229.34.43	attack	Jun 25 13:09:44 localhost kernel: [12726777.907149] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=36.229.34.43 DST=[mungedIP2] LEN=48 TOS=0x08 PREC=0x20 TTL=108 ID=10229 DF PROTO=TCP SPT=4883 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 Jun 25 13:09:44 localhost kernel: [12726777.907159] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=36.229.34.43 DST=[mungedIP2] LEN=48 TOS=0x08 PREC=0x20 TTL=108 ID=10229 DF PROTO=TCP SPT=4883 DPT=445 SEQ=987896144 ACK=0 WINDOW=65535 RES=0x00 SYN URGP=0 OPT (020405A001010402) Jun 25 13:09:47 localhost kernel: [12726780.907926] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=36.229.34.43 DST=[mungedIP2] LEN=48 TOS=0x08 PREC=0x20 TTL=108 ID=10406 DF PROTO=TCP SPT=4883 DPT=445 WINDOW=65535 RES=0x00 SYN URGP=0 Jun 25 13:09:47 localhost kernel: [12726780.907964] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=36.229.34.43 DST=[mun	2019-06-26 09:03:50
13.70.2.49	attackspam	Jun 25 17:55:31 shenron sshd[16013]: Did not receive identification string from 13.70.2.49 Jun 25 17:58:07 shenron sshd[16159]: Connection closed by 13.70.2.49 port 45494 [preauth] Jun 25 17:59:02 shenron sshd[16166]: Connection closed by 13.70.2.49 port 57710 [preauth] Jun 25 18:00:14 shenron sshd[16382]: Connection closed by 13.70.2.49 port 39078 [preauth] Jun 25 18:01:23 shenron sshd[16444]: Connection closed by 13.70.2.49 port 47274 [preauth] Jun 25 18:04:14 shenron sshd[16542]: Connection closed by 13.70.2.49 port 60426 [preauth] Jun 25 18:07:07 shenron sshd[16732]: Connection closed by 13.70.2.49 port 43074 [preauth] Jun 25 18:08:13 shenron sshd[16781]: Connection closed by 13.70.2.49 port 53144 [preauth] Jun 25 18:10:29 shenron sshd[16915]: Connection closed by 13.70.2.49 port 40682 [preauth] Jun 25 18:15:10 shenron sshd[17191]: Connection closed by 13.70.2.49 port 54586 [preauth] Jun 25 18:16:27 shenron sshd[17245]: Connection closed by 13.70.2.49 port 33854 [pr........ -------------------------------	2019-06-26 09:37:18
118.25.61.76	attack	$f2bV_matches	2019-06-26 09:06:58
177.21.198.224	attack	libpam_shield report: forced login attempt	2019-06-26 09:26:33
121.190.197.205	attackspambots	Jun 26 03:25:04 pornomens sshd\[18136\]: Invalid user sa from 121.190.197.205 port 54376 Jun 26 03:25:04 pornomens sshd\[18136\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.190.197.205 Jun 26 03:25:06 pornomens sshd\[18136\]: Failed password for invalid user sa from 121.190.197.205 port 54376 ssh2 ...	2019-06-26 09:42:58
200.45.134.1	attackspambots	Unauthorized connection attempt from IP address 200.45.134.1 on Port 445(SMB)	2019-06-26 09:17:34
79.249.243.19	attackspam	Jun 25 12:09:01 db01 sshd[24792]: Invalid user testuser from 79.249.243.19 Jun 25 12:09:04 db01 sshd[24792]: Failed password for invalid user testuser from 79.249.243.19 port 34240 ssh2 Jun 25 12:09:04 db01 sshd[24792]: Received disconnect from 79.249.243.19: 11: Bye Bye [preauth] Jun 25 12:15:46 db01 sshd[25309]: Invalid user bot from 79.249.243.19 Jun 25 12:15:48 db01 sshd[25309]: Failed password for invalid user bot from 79.249.243.19 port 49658 ssh2 Jun 25 12:15:48 db01 sshd[25309]: Received disconnect from 79.249.243.19: 11: Bye Bye [preauth] Jun 25 12:20:23 db01 sshd[25676]: Invalid user yuanwd from 79.249.243.19 Jun 25 12:20:26 db01 sshd[25676]: Failed password for invalid user yuanwd from 79.249.243.19 port 58835 ssh2 Jun 25 12:20:26 db01 sshd[25676]: Received disconnect from 79.249.243.19: 11: Bye Bye [preauth] Jun 25 12:24:47 db01 sshd[25842]: Invalid user ourhomes from 79.249.243.19 Jun 25 12:24:49 db01 sshd[25842]: Failed password for invalid user ourhomes f........ -------------------------------	2019-06-26 09:19:12
139.99.107.166	attack	2019-06-26T02:08:32.204080test01.cajus.name sshd\[7059\]: Invalid user tomcat from 139.99.107.166 port 32970 2019-06-26T02:08:32.221135test01.cajus.name sshd\[7059\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.107.166 2019-06-26T02:08:34.816971test01.cajus.name sshd\[7059\]: Failed password for invalid user tomcat from 139.99.107.166 port 32970 ssh2	2019-06-26 09:20:25
207.154.243.255	attackspam	Jun 24 19:55:42 xm3 sshd[30811]: Failed password for invalid user autonavi from 207.154.243.255 port 36942 ssh2 Jun 24 19:55:42 xm3 sshd[30811]: Received disconnect from 207.154.243.255: 11: Bye Bye [preauth] Jun 24 19:58:38 xm3 sshd[3400]: Failed password for invalid user qwerty from 207.154.243.255 port 45666 ssh2 Jun 24 19:58:38 xm3 sshd[3400]: Received disconnect from 207.154.243.255: 11: Bye Bye [preauth] Jun 24 20:00:04 xm3 sshd[5655]: Failed password for invalid user webserver from 207.154.243.255 port 34948 ssh2 Jun 24 20:00:04 xm3 sshd[5655]: Received disconnect from 207.154.243.255: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=207.154.243.255	2019-06-26 09:32:00
168.227.135.253	attackbotsspam	SMTP-sasl brute force ...	2019-06-26 09:23:48
103.36.84.180	attack	Invalid user redmine from 103.36.84.180 port 53332	2019-06-26 09:35:58
2.91.224.21	attackspam	Scanning random ports - tries to find possible vulnerable services	2019-06-26 08:55:36

最近上报的IP列表

184.189.18.196	168.117.34.63	147.89.198.195	74.62.164.61
216.77.126.42	45.139.186.110	106.211.211.114	165.56.147.226
144.196.151.120	238.32.90.225	28.50.153.31	120.215.15.23
161.67.166.93	151.109.248.13	20.252.187.138	119.245.106.105
169.60.68.23	111.22.247.38	52.62.36.238	193.185.139.183