138.197.143.221

基本信息:

城市(city): Toronto

省份(region): Ontario

国家(country): Canada

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Unauthorized access or intrusion attempt detected from Thor banned IP	2020-04-07 20:29:21
attackspambots	Apr 5 05:50:20 sshd\[21655\]: User root from 138.197.143.221 not allowed because not listed in AllowUsersApr 5 05:50:22 sshd\[21655\]: Failed password for invalid user root from 138.197.143.221 port 44894 ssh2 ...	2020-04-05 18:33:18
attack	(sshd) Failed SSH login from 138.197.143.221 (CA/Canada/-): 5 in the last 3600 secs	2020-03-27 23:53:36
attackspam	2020-03-26T13:26:00.588288shield sshd\[2832\]: Invalid user ubuntu from 138.197.143.221 port 38342 2020-03-26T13:26:00.596512shield sshd\[2832\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 2020-03-26T13:26:03.181930shield sshd\[2832\]: Failed password for invalid user ubuntu from 138.197.143.221 port 38342 ssh2 2020-03-26T13:29:19.293561shield sshd\[3459\]: Invalid user qm from 138.197.143.221 port 57542 2020-03-26T13:29:19.303213shield sshd\[3459\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221	2020-03-27 00:21:52
attackbotsspam	Mar 18 05:27:13 eventyay sshd[12221]: Failed password for root from 138.197.143.221 port 41530 ssh2 Mar 18 05:31:21 eventyay sshd[12369]: Failed password for root from 138.197.143.221 port 46848 ssh2 ...	2020-03-18 12:47:12
attack	2020-03-11T19:10:57.206209shield sshd\[17880\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 user=root 2020-03-11T19:10:59.568857shield sshd\[17880\]: Failed password for root from 138.197.143.221 port 53570 ssh2 2020-03-11T19:15:14.768722shield sshd\[19100\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 user=root 2020-03-11T19:15:17.080873shield sshd\[19100\]: Failed password for root from 138.197.143.221 port 59324 ssh2 2020-03-11T19:19:30.963344shield sshd\[20186\]: Invalid user daniel from 138.197.143.221 port 36866	2020-03-12 03:35:02
attackbotsspam	Invalid user svn from 138.197.143.221 port 56402	2020-03-11 18:06:41
attackbots	Invalid user user from 138.197.143.221 port 46076	2020-02-22 15:25:34
attackspambots	Feb 17 22:00:28 web9 sshd\[20250\]: Invalid user p4\$\$w0rd from 138.197.143.221 Feb 17 22:00:28 web9 sshd\[20250\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Feb 17 22:00:30 web9 sshd\[20250\]: Failed password for invalid user p4\$\$w0rd from 138.197.143.221 port 56734 ssh2 Feb 17 22:01:32 web9 sshd\[20418\]: Invalid user fuck@123 from 138.197.143.221 Feb 17 22:01:32 web9 sshd\[20418\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221	2020-02-18 16:27:08
attackspambots	Feb 7 12:34:34 auw2 sshd\[21000\]: Invalid user hha from 138.197.143.221 Feb 7 12:34:34 auw2 sshd\[21000\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Feb 7 12:34:36 auw2 sshd\[21000\]: Failed password for invalid user hha from 138.197.143.221 port 54292 ssh2 Feb 7 12:36:45 auw2 sshd\[21270\]: Invalid user rki from 138.197.143.221 Feb 7 12:36:45 auw2 sshd\[21270\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221	2020-02-08 09:29:47
attackbots	Unauthorized connection attempt detected from IP address 138.197.143.221 to port 2220 [J]	2020-01-27 13:57:26
attackspambots	Unauthorized connection attempt detected from IP address 138.197.143.221 to port 2220 [J]	2020-01-24 09:51:55
attack	Unauthorized connection attempt detected from IP address 138.197.143.221 to port 2220 [J]	2020-01-19 01:44:47
attackbots	Unauthorized connection attempt detected from IP address 138.197.143.221 to port 2220 [J]	2020-01-18 04:32:13
attackbotsspam	Unauthorized connection attempt detected from IP address 138.197.143.221 to port 2220 [J]	2020-01-17 03:17:05
attack	ssh brute force	2020-01-14 21:31:40
attackbotsspam	Jan 12 22:29:13 vpn01 sshd[30458]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Jan 12 22:29:15 vpn01 sshd[30458]: Failed password for invalid user testing1 from 138.197.143.221 port 52502 ssh2 ...	2020-01-13 05:43:20
attackbots	Jan 2 15:31:21 zeus sshd[13415]: Failed password for root from 138.197.143.221 port 58104 ssh2 Jan 2 15:34:08 zeus sshd[13505]: Failed password for root from 138.197.143.221 port 56158 ssh2 Jan 2 15:36:46 zeus sshd[13584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221	2020-01-03 04:51:16
attackspambots	Dec 26 18:35:18 srv206 sshd[5991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 user=root Dec 26 18:35:20 srv206 sshd[5991]: Failed password for root from 138.197.143.221 port 41780 ssh2 ...	2019-12-27 01:43:50
attackspam	Dec 25 22:05:55 localhost sshd[55949]: Failed password for invalid user absolom from 138.197.143.221 port 56842 ssh2 Dec 25 22:10:58 localhost sshd[56309]: Failed password for invalid user aurore from 138.197.143.221 port 36952 ssh2 Dec 25 22:16:53 localhost sshd[56695]: Failed password for invalid user carly from 138.197.143.221 port 36508 ssh2	2019-12-26 05:35:14
attack	Dec 21 21:30:16 tdfoods sshd\[23170\]: Invalid user upload from 138.197.143.221 Dec 21 21:30:16 tdfoods sshd\[23170\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Dec 21 21:30:18 tdfoods sshd\[23170\]: Failed password for invalid user upload from 138.197.143.221 port 33698 ssh2 Dec 21 21:35:51 tdfoods sshd\[23671\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 user=root Dec 21 21:35:53 tdfoods sshd\[23671\]: Failed password for root from 138.197.143.221 port 39860 ssh2	2019-12-22 15:41:11
attack	--- report --- Dec 17 01:59:40 sshd: Connection from 138.197.143.221 port 45186 Dec 17 01:59:40 sshd: Invalid user nasrak from 138.197.143.221 Dec 17 01:59:43 sshd: Failed password for invalid user nasrak from 138.197.143.221 port 45186 ssh2 Dec 17 01:59:43 sshd: Received disconnect from 138.197.143.221: 11: Bye Bye [preauth]	2019-12-17 13:15:40
attackbotsspam	Dec 9 21:58:36 gw1 sshd[25234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Dec 9 21:58:38 gw1 sshd[25234]: Failed password for invalid user domainlock2005 from 138.197.143.221 port 44880 ssh2 ...	2019-12-10 01:33:22
attackbotsspam	Dec 9 18:47:46 gw1 sshd[16118]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Dec 9 18:47:48 gw1 sshd[16118]: Failed password for invalid user nfs from 138.197.143.221 port 57120 ssh2 ...	2019-12-09 21:58:15
attackspam	Dec 8 13:45:08 ArkNodeAT sshd\[20045\]: Invalid user mamis from 138.197.143.221 Dec 8 13:45:08 ArkNodeAT sshd\[20045\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Dec 8 13:45:10 ArkNodeAT sshd\[20045\]: Failed password for invalid user mamis from 138.197.143.221 port 48306 ssh2	2019-12-08 21:30:50
attackspambots	Nov 30 14:29:31 124388 sshd[6533]: Invalid user user1 from 138.197.143.221 port 41452 Nov 30 14:29:31 124388 sshd[6533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Nov 30 14:29:31 124388 sshd[6533]: Invalid user user1 from 138.197.143.221 port 41452 Nov 30 14:29:34 124388 sshd[6533]: Failed password for invalid user user1 from 138.197.143.221 port 41452 ssh2 Nov 30 14:32:27 124388 sshd[6536]: Invalid user kotyk from 138.197.143.221 port 48230	2019-12-01 03:04:46
attackbotsspam	Invalid user zodiac from 138.197.143.221 port 58318 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Failed password for invalid user zodiac from 138.197.143.221 port 58318 ssh2 Invalid user suporte from 138.197.143.221 port 37304 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221	2019-11-29 08:59:55
attackbotsspam	Nov 26 15:36:17 vserver sshd\[28515\]: Invalid user webadmin from 138.197.143.221Nov 26 15:36:18 vserver sshd\[28515\]: Failed password for invalid user webadmin from 138.197.143.221 port 59546 ssh2Nov 26 15:42:32 vserver sshd\[28574\]: Invalid user thaxter from 138.197.143.221Nov 26 15:42:35 vserver sshd\[28574\]: Failed password for invalid user thaxter from 138.197.143.221 port 38616 ssh2 ...	2019-11-27 02:49:38
attack	2019-11-22T05:58:29.430777abusebot-4.cloudsearch.cf sshd\[2717\]: Invalid user omc123 from 138.197.143.221 port 49392	2019-11-22 14:03:56
attack	Brute-force attempt banned	2019-11-17 00:17:49

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.143.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32298
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.197.143.221.		IN	A

;; AUTHORITY SECTION:
.			1546	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040601 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun Apr 07 08:37:08 +08 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 221.143.197.138.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 221.143.197.138.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
198.199.83.174	attackbotsspam	Invalid user elsearch from 198.199.83.174 port 39474	2020-06-25 18:26:03
139.59.254.93	attack	Jun 25 11:51:19 eventyay sshd[28828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.254.93 Jun 25 11:51:22 eventyay sshd[28828]: Failed password for invalid user shreya1 from 139.59.254.93 port 35411 ssh2 Jun 25 11:54:39 eventyay sshd[28915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.254.93 ...	2020-06-25 18:15:16
78.109.128.155	attack	Honeypot attack, port: 445, PTR: 505.373.bras-01.dianet.ru.	2020-06-25 18:34:37
191.17.16.23	attackbotsspam	20 attempts against mh-ssh on bush	2020-06-25 18:17:57
103.75.208.53	attack	Jun 25 05:41:20 server sshd[31843]: Failed password for invalid user micha from 103.75.208.53 port 55662 ssh2 Jun 25 05:45:05 server sshd[3459]: Failed password for invalid user user3 from 103.75.208.53 port 54630 ssh2 Jun 25 05:48:48 server sshd[7324]: Failed password for invalid user admin from 103.75.208.53 port 53592 ssh2	2020-06-25 18:45:50
170.210.214.50	attackspambots	Jun 25 09:54:35 rocket sshd[15486]: Failed password for root from 170.210.214.50 port 38250 ssh2 Jun 25 09:56:46 rocket sshd[15739]: Failed password for root from 170.210.214.50 port 40072 ssh2 ...	2020-06-25 18:21:51
192.241.235.195	attack	Unauthorised access (Jun 25) SRC=192.241.235.195 LEN=40 TTL=239 ID=54321 TCP DPT=8080 WINDOW=65535 SYN	2020-06-25 18:30:26
65.52.175.17	attackspam	Jun 25 19:42:39 localhost sshd[2788635]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.52.175.17 user=root Jun 25 19:42:41 localhost sshd[2788635]: Failed password for root from 65.52.175.17 port 28056 ssh2 ...	2020-06-25 18:17:12
185.143.72.34	attackbotsspam	Jun 25 12:45:00 srv01 postfix/smtpd\[10021\]: warning: unknown\[185.143.72.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 25 12:45:09 srv01 postfix/smtpd\[10518\]: warning: unknown\[185.143.72.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 25 12:45:34 srv01 postfix/smtpd\[11248\]: warning: unknown\[185.143.72.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 25 12:45:38 srv01 postfix/smtpd\[10265\]: warning: unknown\[185.143.72.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 25 12:45:54 srv01 postfix/smtpd\[10288\]: warning: unknown\[185.143.72.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-25 18:48:05
68.179.169.125	attack	Jun 25 06:18:33 buvik sshd[13609]: Failed password for invalid user 111 from 68.179.169.125 port 52174 ssh2 Jun 25 06:21:51 buvik sshd[14206]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.179.169.125 user=root Jun 25 06:21:53 buvik sshd[14206]: Failed password for root from 68.179.169.125 port 51282 ssh2 ...	2020-06-25 18:24:22
5.109.14.167	attackbots	Hits on port : 445	2020-06-25 18:32:39
132.145.160.32	attack	Jun 25 12:09:51 * sshd[14435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.160.32 Jun 25 12:09:53 * sshd[14435]: Failed password for invalid user staffc from 132.145.160.32 port 58484 ssh2	2020-06-25 18:16:39
159.89.203.193	attack	$f2bV_matches	2020-06-25 18:16:27
61.177.172.102	attackspambots	2020-06-25T12:19:54.599437vps751288.ovh.net sshd\[30608\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.102 user=root 2020-06-25T12:19:56.540954vps751288.ovh.net sshd\[30608\]: Failed password for root from 61.177.172.102 port 22443 ssh2 2020-06-25T12:19:58.748305vps751288.ovh.net sshd\[30608\]: Failed password for root from 61.177.172.102 port 22443 ssh2 2020-06-25T12:20:00.704624vps751288.ovh.net sshd\[30608\]: Failed password for root from 61.177.172.102 port 22443 ssh2 2020-06-25T12:20:03.831327vps751288.ovh.net sshd\[30620\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.102 user=root	2020-06-25 18:20:19
14.29.255.9	attack	Invalid user crm from 14.29.255.9 port 38032	2020-06-25 18:41:20

最近上报的IP列表

81.218.92.106	128.199.251.16	104.131.11.6	79.177.66.5
185.165.185.101	193.253.204.39	198.199.122.234	177.85.101.166
36.89.119.92	112.17.175.50	201.38.80.115	165.227.2.127
91.207.114.61	66.249.79.217	41.238.202.99	51.68.215.21
162.241.183.175	85.113.38.162	189.78.174.151	178.33.228.67