138.185.136.145

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Ecuador

运营商(isp): Soluciones Avanzadas Informaticas Y Telecomunicaciones Saitel

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Nov 17 11:44:03 www sshd\[87383\]: Invalid user server from 138.185.136.145 Nov 17 11:44:03 www sshd\[87383\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.185.136.145 Nov 17 11:44:04 www sshd\[87383\]: Failed password for invalid user server from 138.185.136.145 port 57738 ssh2 ...	2019-11-17 17:51:19
attackspam	Nov 16 19:42:04 web1 sshd\[13375\]: Invalid user daniellacunha from 138.185.136.145 Nov 16 19:42:04 web1 sshd\[13375\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.185.136.145 Nov 16 19:42:06 web1 sshd\[13375\]: Failed password for invalid user daniellacunha from 138.185.136.145 port 39724 ssh2 Nov 16 19:46:22 web1 sshd\[13585\]: Invalid user spy from 138.185.136.145 Nov 16 19:46:22 web1 sshd\[13585\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.185.136.145	2019-11-17 06:36:48

类型

评论内容

时间

attackspam

Nov 17 11:44:03 www sshd\[87383\]: Invalid user server from 138.185.136.145
Nov 17 11:44:03 www sshd\[87383\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.185.136.145
Nov 17 11:44:04 www sshd\[87383\]: Failed password for invalid user server from 138.185.136.145 port 57738 ssh2
...

2019-11-17 17:51:19

attackspam

Nov 16 19:42:04 web1 sshd\[13375\]: Invalid user daniellacunha from 138.185.136.145
Nov 16 19:42:04 web1 sshd\[13375\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.185.136.145
Nov 16 19:42:06 web1 sshd\[13375\]: Failed password for invalid user daniellacunha from 138.185.136.145 port 39724 ssh2
Nov 16 19:46:22 web1 sshd\[13585\]: Invalid user spy from 138.185.136.145
Nov 16 19:46:22 web1 sshd\[13585\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.185.136.145

2019-11-17 06:36:48

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.185.136.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17508
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.185.136.145.		IN	A

;; AUTHORITY SECTION:
.			530	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111601 1800 900 604800 86400

;; Query time: 183 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Nov 17 06:36:45 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 145.136.185.138.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 145.136.185.138.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
171.232.247.59	attackbotsspam	Automatic report - Banned IP Access	2020-09-19 16:56:33
150.95.31.150	attackspambots	Sep 19 08:48:52 server sshd[14627]: Failed password for root from 150.95.31.150 port 57202 ssh2 Sep 19 08:51:43 server sshd[15132]: Failed password for invalid user test123 from 150.95.31.150 port 41422 ssh2 Sep 19 08:54:34 server sshd[15806]: Failed password for root from 150.95.31.150 port 53872 ssh2	2020-09-19 16:52:28
163.172.61.214	attack	Sep 19 10:36:27 piServer sshd[17602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.61.214 Sep 19 10:36:29 piServer sshd[17602]: Failed password for invalid user its from 163.172.61.214 port 38336 ssh2 Sep 19 10:42:05 piServer sshd[18154]: Failed password for root from 163.172.61.214 port 43903 ssh2 ...	2020-09-19 16:49:33
196.216.228.111	attackbots	Auto Fail2Ban report, multiple SSH login attempts.	2020-09-19 17:09:54
122.51.66.91	attackbotsspam	SSH bruteforce	2020-09-19 17:04:36
109.103.178.85	attack	Found on Alienvault / proto=6 . srcport=48860 . dstport=23 . (2853)	2020-09-19 17:01:14
103.16.228.135	attackbotsspam	RDP Bruteforce	2020-09-19 16:36:30
137.117.178.120	attackbots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-19 17:07:11
45.184.225.2	attack	Sep 19 10:46:40 abendstille sshd\[28911\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.184.225.2 user=root Sep 19 10:46:41 abendstille sshd\[28911\]: Failed password for root from 45.184.225.2 port 57297 ssh2 Sep 19 10:51:03 abendstille sshd\[514\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.184.225.2 user=root Sep 19 10:51:05 abendstille sshd\[514\]: Failed password for root from 45.184.225.2 port 34477 ssh2 Sep 19 10:55:28 abendstille sshd\[4459\]: Invalid user postgres from 45.184.225.2 Sep 19 10:55:28 abendstille sshd\[4459\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.184.225.2 ...	2020-09-19 17:00:57
212.21.66.6	attackbotsspam	$f2bV_matches	2020-09-19 16:59:11
222.186.173.154	attack	Sep 19 11:45:45 ift sshd\[36593\]: Failed password for root from 222.186.173.154 port 4928 ssh2Sep 19 11:45:59 ift sshd\[36593\]: Failed password for root from 222.186.173.154 port 4928 ssh2Sep 19 11:46:17 ift sshd\[36676\]: Failed password for root from 222.186.173.154 port 60702 ssh2Sep 19 11:46:22 ift sshd\[36676\]: Failed password for root from 222.186.173.154 port 60702 ssh2Sep 19 11:46:25 ift sshd\[36676\]: Failed password for root from 222.186.173.154 port 60702 ssh2 ...	2020-09-19 16:48:45
177.245.201.59	attackspambots	Sep 18 16:59:35 hermescis postfix/smtpd[11820]: NOQUEUE: reject: RCPT from unknown[177.245.201.59]: 550 5.1.1 : Recipient address rejected:* from= to= proto=ESMTP helo=	2020-09-19 17:10:05
77.121.92.243	attackbotsspam	RDP Bruteforce	2020-09-19 16:37:47
192.241.217.113	attackbots	Sep 19 10:20:00 abendstille sshd\[2920\]: Invalid user www from 192.241.217.113 Sep 19 10:20:00 abendstille sshd\[2920\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.217.113 Sep 19 10:20:02 abendstille sshd\[2920\]: Failed password for invalid user www from 192.241.217.113 port 44420 ssh2 Sep 19 10:27:33 abendstille sshd\[9827\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.217.113 user=root Sep 19 10:27:34 abendstille sshd\[9827\]: Failed password for root from 192.241.217.113 port 55004 ssh2 ...	2020-09-19 16:43:49
220.127.148.8	attackspam	Sep 19 02:41:58 localhost sshd[3241137]: Failed password for root from 220.127.148.8 port 33265 ssh2 Sep 19 02:46:17 localhost sshd[3250539]: Invalid user postgres from 220.127.148.8 port 38105 Sep 19 02:46:17 localhost sshd[3250539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.127.148.8 Sep 19 02:46:17 localhost sshd[3250539]: Invalid user postgres from 220.127.148.8 port 38105 Sep 19 02:46:19 localhost sshd[3250539]: Failed password for invalid user postgres from 220.127.148.8 port 38105 ssh2 ...	2020-09-19 16:42:16

最近上报的IP列表

114.38.3.153	156.194.83.97	114.40.69.52	115.216.212.229
91.185.236.124	41.211.112.195	173.82.245.106	151.80.129.115
217.61.61.246	124.235.138.239	113.172.0.111	13.229.139.86
203.150.162.126	155.73.51.213	58.192.33.203	79.186.5.230
233.224.92.210	96.89.25.165	39.2.121.187	252.38.95.45