必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): Toronto

省份(region): Ontario

国家(country): Canada

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:
类型 评论内容 时间
attackspambots
Unauthorized access or intrusion attempt detected from Thor banned IP
2020-04-07 20:29:21
attackspambots
Apr  5 05:50:20  sshd\[21655\]: User root from 138.197.143.221 not allowed because not listed in AllowUsersApr  5 05:50:22  sshd\[21655\]: Failed password for invalid user root from 138.197.143.221 port 44894 ssh2
...
2020-04-05 18:33:18
attack
(sshd) Failed SSH login from 138.197.143.221 (CA/Canada/-): 5 in the last 3600 secs
2020-03-27 23:53:36
attackspam
2020-03-26T13:26:00.588288shield sshd\[2832\]: Invalid user ubuntu from 138.197.143.221 port 38342
2020-03-26T13:26:00.596512shield sshd\[2832\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221
2020-03-26T13:26:03.181930shield sshd\[2832\]: Failed password for invalid user ubuntu from 138.197.143.221 port 38342 ssh2
2020-03-26T13:29:19.293561shield sshd\[3459\]: Invalid user qm from 138.197.143.221 port 57542
2020-03-26T13:29:19.303213shield sshd\[3459\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221
2020-03-27 00:21:52
attackbotsspam
Mar 18 05:27:13 eventyay sshd[12221]: Failed password for root from 138.197.143.221 port 41530 ssh2
Mar 18 05:31:21 eventyay sshd[12369]: Failed password for root from 138.197.143.221 port 46848 ssh2
...
2020-03-18 12:47:12
attack
2020-03-11T19:10:57.206209shield sshd\[17880\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221  user=root
2020-03-11T19:10:59.568857shield sshd\[17880\]: Failed password for root from 138.197.143.221 port 53570 ssh2
2020-03-11T19:15:14.768722shield sshd\[19100\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221  user=root
2020-03-11T19:15:17.080873shield sshd\[19100\]: Failed password for root from 138.197.143.221 port 59324 ssh2
2020-03-11T19:19:30.963344shield sshd\[20186\]: Invalid user daniel from 138.197.143.221 port 36866
2020-03-12 03:35:02
attackbotsspam
Invalid user svn from 138.197.143.221 port 56402
2020-03-11 18:06:41
attackbots
Invalid user user from 138.197.143.221 port 46076
2020-02-22 15:25:34
attackspambots
Feb 17 22:00:28 web9 sshd\[20250\]: Invalid user p4\$\$w0rd from 138.197.143.221
Feb 17 22:00:28 web9 sshd\[20250\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221
Feb 17 22:00:30 web9 sshd\[20250\]: Failed password for invalid user p4\$\$w0rd from 138.197.143.221 port 56734 ssh2
Feb 17 22:01:32 web9 sshd\[20418\]: Invalid user fuck@123 from 138.197.143.221
Feb 17 22:01:32 web9 sshd\[20418\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221
2020-02-18 16:27:08
attackspambots
Feb  7 12:34:34 auw2 sshd\[21000\]: Invalid user hha from 138.197.143.221
Feb  7 12:34:34 auw2 sshd\[21000\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221
Feb  7 12:34:36 auw2 sshd\[21000\]: Failed password for invalid user hha from 138.197.143.221 port 54292 ssh2
Feb  7 12:36:45 auw2 sshd\[21270\]: Invalid user rki from 138.197.143.221
Feb  7 12:36:45 auw2 sshd\[21270\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221
2020-02-08 09:29:47
attackbots
Unauthorized connection attempt detected from IP address 138.197.143.221 to port 2220 [J]
2020-01-27 13:57:26
attackspambots
Unauthorized connection attempt detected from IP address 138.197.143.221 to port 2220 [J]
2020-01-24 09:51:55
attack
Unauthorized connection attempt detected from IP address 138.197.143.221 to port 2220 [J]
2020-01-19 01:44:47
attackbots
Unauthorized connection attempt detected from IP address 138.197.143.221 to port 2220 [J]
2020-01-18 04:32:13
attackbotsspam
Unauthorized connection attempt detected from IP address 138.197.143.221 to port 2220 [J]
2020-01-17 03:17:05
attack
ssh brute force
2020-01-14 21:31:40
attackbotsspam
Jan 12 22:29:13 vpn01 sshd[30458]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221
Jan 12 22:29:15 vpn01 sshd[30458]: Failed password for invalid user testing1 from 138.197.143.221 port 52502 ssh2
...
2020-01-13 05:43:20
attackbots
Jan  2 15:31:21 zeus sshd[13415]: Failed password for root from 138.197.143.221 port 58104 ssh2
Jan  2 15:34:08 zeus sshd[13505]: Failed password for root from 138.197.143.221 port 56158 ssh2
Jan  2 15:36:46 zeus sshd[13584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221
2020-01-03 04:51:16
attackspambots
Dec 26 18:35:18 srv206 sshd[5991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221  user=root
Dec 26 18:35:20 srv206 sshd[5991]: Failed password for root from 138.197.143.221 port 41780 ssh2
...
2019-12-27 01:43:50
attackspam
Dec 25 22:05:55 localhost sshd[55949]: Failed password for invalid user absolom from 138.197.143.221 port 56842 ssh2
Dec 25 22:10:58 localhost sshd[56309]: Failed password for invalid user aurore from 138.197.143.221 port 36952 ssh2
Dec 25 22:16:53 localhost sshd[56695]: Failed password for invalid user carly from 138.197.143.221 port 36508 ssh2
2019-12-26 05:35:14
attack
Dec 21 21:30:16 tdfoods sshd\[23170\]: Invalid user upload from 138.197.143.221
Dec 21 21:30:16 tdfoods sshd\[23170\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221
Dec 21 21:30:18 tdfoods sshd\[23170\]: Failed password for invalid user upload from 138.197.143.221 port 33698 ssh2
Dec 21 21:35:51 tdfoods sshd\[23671\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221  user=root
Dec 21 21:35:53 tdfoods sshd\[23671\]: Failed password for root from 138.197.143.221 port 39860 ssh2
2019-12-22 15:41:11
attack
--- report ---
Dec 17 01:59:40 sshd: Connection from 138.197.143.221 port 45186
Dec 17 01:59:40 sshd: Invalid user nasrak from 138.197.143.221
Dec 17 01:59:43 sshd: Failed password for invalid user nasrak from 138.197.143.221 port 45186 ssh2
Dec 17 01:59:43 sshd: Received disconnect from 138.197.143.221: 11: Bye Bye [preauth]
2019-12-17 13:15:40
attackbotsspam
Dec  9 21:58:36 gw1 sshd[25234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221
Dec  9 21:58:38 gw1 sshd[25234]: Failed password for invalid user domainlock2005 from 138.197.143.221 port 44880 ssh2
...
2019-12-10 01:33:22
attackbotsspam
Dec  9 18:47:46 gw1 sshd[16118]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221
Dec  9 18:47:48 gw1 sshd[16118]: Failed password for invalid user nfs from 138.197.143.221 port 57120 ssh2
...
2019-12-09 21:58:15
attackspam
Dec  8 13:45:08 ArkNodeAT sshd\[20045\]: Invalid user mamis from 138.197.143.221
Dec  8 13:45:08 ArkNodeAT sshd\[20045\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221
Dec  8 13:45:10 ArkNodeAT sshd\[20045\]: Failed password for invalid user mamis from 138.197.143.221 port 48306 ssh2
2019-12-08 21:30:50
attackspambots
Nov 30 14:29:31 124388 sshd[6533]: Invalid user user1 from 138.197.143.221 port 41452
Nov 30 14:29:31 124388 sshd[6533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221
Nov 30 14:29:31 124388 sshd[6533]: Invalid user user1 from 138.197.143.221 port 41452
Nov 30 14:29:34 124388 sshd[6533]: Failed password for invalid user user1 from 138.197.143.221 port 41452 ssh2
Nov 30 14:32:27 124388 sshd[6536]: Invalid user kotyk from 138.197.143.221 port 48230
2019-12-01 03:04:46
attackbotsspam
Invalid user zodiac from 138.197.143.221 port 58318
pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221
Failed password for invalid user zodiac from 138.197.143.221 port 58318 ssh2
Invalid user suporte from 138.197.143.221 port 37304
pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221
2019-11-29 08:59:55
attackbotsspam
Nov 26 15:36:17 vserver sshd\[28515\]: Invalid user webadmin from 138.197.143.221Nov 26 15:36:18 vserver sshd\[28515\]: Failed password for invalid user webadmin from 138.197.143.221 port 59546 ssh2Nov 26 15:42:32 vserver sshd\[28574\]: Invalid user thaxter from 138.197.143.221Nov 26 15:42:35 vserver sshd\[28574\]: Failed password for invalid user thaxter from 138.197.143.221 port 38616 ssh2
...
2019-11-27 02:49:38
attack
2019-11-22T05:58:29.430777abusebot-4.cloudsearch.cf sshd\[2717\]: Invalid user omc123 from 138.197.143.221 port 49392
2019-11-22 14:03:56
attack
Brute-force attempt banned
2019-11-17 00:17:49
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.143.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32298
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.197.143.221.		IN	A

;; AUTHORITY SECTION:
.			1546	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040601 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun Apr 07 08:37:08 +08 2019
;; MSG SIZE  rcvd: 119

HOST信息:
Host 221.143.197.138.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 221.143.197.138.in-addr.arpa: NXDOMAIN

相关IP信息:
最新评论:
IP 类型 评论内容 时间
191.55.237.21 attack
Unauthorized connection attempt detected from IP address 191.55.237.21 to port 1433 [J]
2020-01-07 21:03:25
118.24.33.38 attackbots
Unauthorized connection attempt detected from IP address 118.24.33.38 to port 2220 [J]
2020-01-07 21:40:06
222.186.173.183 attack
2020-01-07T13:16:24.598670hub.schaetter.us sshd\[13900\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.183  user=root
2020-01-07T13:16:26.778561hub.schaetter.us sshd\[13900\]: Failed password for root from 222.186.173.183 port 13918 ssh2
2020-01-07T13:16:31.242356hub.schaetter.us sshd\[13900\]: Failed password for root from 222.186.173.183 port 13918 ssh2
2020-01-07T13:16:35.053274hub.schaetter.us sshd\[13900\]: Failed password for root from 222.186.173.183 port 13918 ssh2
2020-01-07T13:16:39.061449hub.schaetter.us sshd\[13900\]: Failed password for root from 222.186.173.183 port 13918 ssh2
...
2020-01-07 21:29:00
157.230.129.73 attackbots
Unauthorized connection attempt detected from IP address 157.230.129.73 to port 2220 [J]
2020-01-07 21:16:31
222.186.175.147 attackbots
$f2bV_matches
2020-01-07 21:15:56
77.40.68.78 attack
Jan  7 14:04:10 srv01 postfix/smtpd[28724]: warning: unknown[77.40.68.78]: SASL CRAM-MD5 authentication failed: authentication failure
Jan  7 14:04:10 srv01 postfix/smtpd[28724]: warning: unknown[77.40.68.78]: SASL PLAIN authentication failed: authentication failure
Jan  7 14:04:10 srv01 postfix/smtpd[28724]: warning: unknown[77.40.68.78]: SASL LOGIN authentication failed: authentication failure
...
2020-01-07 21:15:00
114.67.84.208 attack
Jan  7 13:03:52 *** sshd[17608]: Invalid user rgk from 114.67.84.208
2020-01-07 21:30:39
109.162.128.186 attackbots
firewall-block, port(s): 1433/tcp
2020-01-07 21:18:31
106.12.142.52 attack
Jan  7 14:27:52 plex sshd[28518]: Invalid user smboracle from 106.12.142.52 port 34364
2020-01-07 21:43:22
94.255.130.161 attackbotsspam
Portscan or hack attempt detected by psad/fwsnort
2020-01-07 21:28:24
222.186.173.180 attackbotsspam
Jan  7 14:12:07 sd-53420 sshd\[32463\]: User root from 222.186.173.180 not allowed because none of user's groups are listed in AllowGroups
Jan  7 14:12:08 sd-53420 sshd\[32463\]: Failed none for invalid user root from 222.186.173.180 port 21772 ssh2
Jan  7 14:12:08 sd-53420 sshd\[32463\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.180  user=root
Jan  7 14:12:09 sd-53420 sshd\[32463\]: Failed password for invalid user root from 222.186.173.180 port 21772 ssh2
Jan  7 14:12:13 sd-53420 sshd\[32463\]: Failed password for invalid user root from 222.186.173.180 port 21772 ssh2
...
2020-01-07 21:21:26
132.232.132.103 attackspambots
Jan  7 14:03:54 vpn01 sshd[24308]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.132.103
Jan  7 14:03:56 vpn01 sshd[24308]: Failed password for invalid user database from 132.232.132.103 port 46814 ssh2
...
2020-01-07 21:27:56
58.27.205.230 attack
20/1/7@08:03:42: FAIL: IoT-SSH address from=58.27.205.230
...
2020-01-07 21:41:37
168.232.136.101 attack
1578402252 - 01/07/2020 14:04:12 Host: 168.232.136.101/168.232.136.101 Port: 445 TCP Blocked
2020-01-07 21:10:12
84.200.211.112 attackbotsspam
1578402251 - 01/07/2020 14:04:11 Host: 84.200.211.112/84.200.211.112 Port: 22 TCP Blocked
2020-01-07 21:14:37

最近上报的IP列表

81.218.92.106 128.199.251.16 104.131.11.6 79.177.66.5
185.165.185.101 193.253.204.39 198.199.122.234 177.85.101.166
36.89.119.92 112.17.175.50 201.38.80.115 165.227.2.127
91.207.114.61 66.249.79.217 41.238.202.99 51.68.215.21
162.241.183.175 85.113.38.162 189.78.174.151 178.33.228.67