138.197.138.67

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Canada

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Feb 9 16:14:56 DAAP sshd[5507]: Invalid user ssu from 138.197.138.67 port 57028 Feb 9 16:14:57 DAAP sshd[5507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.138.67 Feb 9 16:14:56 DAAP sshd[5507]: Invalid user ssu from 138.197.138.67 port 57028 Feb 9 16:14:58 DAAP sshd[5507]: Failed password for invalid user ssu from 138.197.138.67 port 57028 ssh2 Feb 9 16:16:21 DAAP sshd[5515]: Invalid user kij from 138.197.138.67 port 39314 ...	2020-02-10 05:51:10
attack	Feb 9 12:08:44 game-panel sshd[12686]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.138.67 Feb 9 12:08:47 game-panel sshd[12686]: Failed password for invalid user zhv from 138.197.138.67 port 45946 ssh2 Feb 9 12:11:50 game-panel sshd[12936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.138.67	2020-02-09 20:24:55
attack	Automatic report - SSH Brute-Force Attack	2020-02-08 03:35:56
attack	$f2bV_matches	2020-01-12 00:47:04
attackspam	$f2bV_matches_ltvn	2020-01-02 13:22:25

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.138.67
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6500
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.197.138.67.			IN	A

;; AUTHORITY SECTION:
.			594	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010102 1800 900 604800 86400

;; Query time: 188 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 02 13:22:18 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 67.138.197.138.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 67.138.197.138.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
196.35.41.86	attackbotsspam	Dec 18 19:30:37 web1 sshd\[32360\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.35.41.86 user=root Dec 18 19:30:38 web1 sshd\[32360\]: Failed password for root from 196.35.41.86 port 57475 ssh2 Dec 18 19:37:16 web1 sshd\[572\]: Invalid user schwarzmeier from 196.35.41.86 Dec 18 19:37:16 web1 sshd\[572\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.35.41.86 Dec 18 19:37:18 web1 sshd\[572\]: Failed password for invalid user schwarzmeier from 196.35.41.86 port 60250 ssh2	2019-12-19 13:42:38
46.24.15.36	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 19-12-2019 04:55:16.	2019-12-19 13:38:05
164.132.51.91	attackbotsspam	Dec 19 05:55:16 vpn01 sshd[30874]: Failed password for root from 164.132.51.91 port 36106 ssh2 Dec 19 05:55:28 vpn01 sshd[30874]: error: maximum authentication attempts exceeded for root from 164.132.51.91 port 36106 ssh2 [preauth] ...	2019-12-19 13:31:22
42.236.10.76	attack	Automated report (2019-12-19T04:55:42+00:00). Scraper detected at this address.	2019-12-19 13:14:14
39.108.210.82	attackbotsspam	Dec 19 09:55:35 gw1 sshd[30046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.108.210.82 Dec 19 09:55:37 gw1 sshd[30046]: Failed password for invalid user roberto from 39.108.210.82 port 60042 ssh2 ...	2019-12-19 13:21:37
89.46.196.10	attackspambots	Dec 19 06:04:36 xeon sshd[44467]: Failed password for invalid user ftp from 89.46.196.10 port 58598 ssh2	2019-12-19 13:13:59
221.132.17.81	attack	Dec 19 07:44:41 server sshd\[5119\]: Invalid user barroeta from 221.132.17.81 Dec 19 07:44:41 server sshd\[5119\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.132.17.81 Dec 19 07:44:43 server sshd\[5119\]: Failed password for invalid user barroeta from 221.132.17.81 port 36548 ssh2 Dec 19 07:55:28 server sshd\[8431\]: Invalid user chalfant from 221.132.17.81 Dec 19 07:55:28 server sshd\[8431\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.132.17.81 ...	2019-12-19 13:30:11
207.154.206.212	attackbotsspam	Dec 18 10:23:15 server sshd\[2585\]: Failed password for invalid user savannah from 207.154.206.212 port 32886 ssh2 Dec 19 07:47:24 server sshd\[6023\]: Invalid user anna from 207.154.206.212 Dec 19 07:47:24 server sshd\[6023\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.206.212 Dec 19 07:47:26 server sshd\[6023\]: Failed password for invalid user anna from 207.154.206.212 port 45788 ssh2 Dec 19 07:55:20 server sshd\[8393\]: Invalid user ponniah from 207.154.206.212 Dec 19 07:55:20 server sshd\[8393\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.206.212 ...	2019-12-19 13:36:25
200.236.101.130	attack	Dec 19 05:55:26 vmd46246 kernel: [642709.865123] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:fb:88:28:99:3a:4d:30:af:08:00 SRC=200.236.101.130 DST=144.91.112.181 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=518 DF PROTO=TCP SPT=47182 DPT=23 WINDOW=5840 RES=0x00 SYN URGP=0 Dec 19 05:55:29 vmd46246 kernel: [642712.864702] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:fb:88:28:99:3a:4d:30:af:08:00 SRC=200.236.101.130 DST=144.91.112.181 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=519 DF PROTO=TCP SPT=47182 DPT=23 WINDOW=5840 RES=0x00 SYN URGP=0 Dec 19 05:55:35 vmd46246 kernel: [642718.864541] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:fb:88:28:99:3a:4d:30:af:08:00 SRC=200.236.101.130 DST=144.91.112.181 LEN=60 TOS=0x00 PREC=0x00 TTL=49 ID=520 DF PROTO=TCP SPT=47182 DPT=23 WINDOW=5840 RES=0x00 SYN URGP=0 ...	2019-12-19 13:20:26
129.204.105.244	attackspambots	Dec 18 18:48:29 kapalua sshd\[15243\]: Invalid user baerwald from 129.204.105.244 Dec 18 18:48:29 kapalua sshd\[15243\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.105.244 Dec 18 18:48:31 kapalua sshd\[15243\]: Failed password for invalid user baerwald from 129.204.105.244 port 53452 ssh2 Dec 18 18:55:39 kapalua sshd\[15865\]: Invalid user squid from 129.204.105.244 Dec 18 18:55:39 kapalua sshd\[15865\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.105.244	2019-12-19 13:17:04
111.241.103.205	attackspam	Honeypot attack, port: 23, PTR: 111-241-103-205.dynamic-ip.hinet.net.	2019-12-19 13:25:36
105.226.224.19	attackspam	Honeypot attack, port: 445, PTR: 224-226-105-19.north.dsl.telkomsa.net.	2019-12-19 13:17:33
103.90.159.59	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2019-12-19 13:13:40
49.88.112.71	attackbots	Dec 19 05:54:17 MainVPS sshd[7951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.71 user=root Dec 19 05:54:19 MainVPS sshd[7951]: Failed password for root from 49.88.112.71 port 62477 ssh2 Dec 19 05:55:32 MainVPS sshd[10559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.71 user=root Dec 19 05:55:34 MainVPS sshd[10559]: Failed password for root from 49.88.112.71 port 53539 ssh2 Dec 19 05:56:35 MainVPS sshd[12579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.71 user=root Dec 19 05:56:37 MainVPS sshd[12579]: Failed password for root from 49.88.112.71 port 43952 ssh2 ...	2019-12-19 13:07:50
116.91.126.241	attackbotsspam	1576731318 - 12/19/2019 05:55:18 Host: 116.91.126.241/116.91.126.241 Port: 445 TCP Blocked	2019-12-19 13:39:51

最近上报的IP列表

68.181.105.105	221.117.199.75	191.78.193.118	71.105.251.198
201.49.248.164	45.80.65.15	36.82.98.1	89.208.225.103
103.45.110.161	51.219.241.172	104.238.205.168	183.83.133.90
137.13.243.3	200.126.33.222	153.10.52.25	59.196.173.136
213.164.212.225	54.161.7.194	98.151.78.135	98.187.32.212