138.197.143.221

基本信息:

城市(city): Toronto

省份(region): Ontario

国家(country): Canada

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Unauthorized access or intrusion attempt detected from Thor banned IP	2020-04-07 20:29:21
attackspambots	Apr 5 05:50:20 sshd\[21655\]: User root from 138.197.143.221 not allowed because not listed in AllowUsersApr 5 05:50:22 sshd\[21655\]: Failed password for invalid user root from 138.197.143.221 port 44894 ssh2 ...	2020-04-05 18:33:18
attack	(sshd) Failed SSH login from 138.197.143.221 (CA/Canada/-): 5 in the last 3600 secs	2020-03-27 23:53:36
attackspam	2020-03-26T13:26:00.588288shield sshd\[2832\]: Invalid user ubuntu from 138.197.143.221 port 38342 2020-03-26T13:26:00.596512shield sshd\[2832\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 2020-03-26T13:26:03.181930shield sshd\[2832\]: Failed password for invalid user ubuntu from 138.197.143.221 port 38342 ssh2 2020-03-26T13:29:19.293561shield sshd\[3459\]: Invalid user qm from 138.197.143.221 port 57542 2020-03-26T13:29:19.303213shield sshd\[3459\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221	2020-03-27 00:21:52
attackbotsspam	Mar 18 05:27:13 eventyay sshd[12221]: Failed password for root from 138.197.143.221 port 41530 ssh2 Mar 18 05:31:21 eventyay sshd[12369]: Failed password for root from 138.197.143.221 port 46848 ssh2 ...	2020-03-18 12:47:12
attack	2020-03-11T19:10:57.206209shield sshd\[17880\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 user=root 2020-03-11T19:10:59.568857shield sshd\[17880\]: Failed password for root from 138.197.143.221 port 53570 ssh2 2020-03-11T19:15:14.768722shield sshd\[19100\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 user=root 2020-03-11T19:15:17.080873shield sshd\[19100\]: Failed password for root from 138.197.143.221 port 59324 ssh2 2020-03-11T19:19:30.963344shield sshd\[20186\]: Invalid user daniel from 138.197.143.221 port 36866	2020-03-12 03:35:02
attackbotsspam	Invalid user svn from 138.197.143.221 port 56402	2020-03-11 18:06:41
attackbots	Invalid user user from 138.197.143.221 port 46076	2020-02-22 15:25:34
attackspambots	Feb 17 22:00:28 web9 sshd\[20250\]: Invalid user p4\$\$w0rd from 138.197.143.221 Feb 17 22:00:28 web9 sshd\[20250\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Feb 17 22:00:30 web9 sshd\[20250\]: Failed password for invalid user p4\$\$w0rd from 138.197.143.221 port 56734 ssh2 Feb 17 22:01:32 web9 sshd\[20418\]: Invalid user fuck@123 from 138.197.143.221 Feb 17 22:01:32 web9 sshd\[20418\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221	2020-02-18 16:27:08
attackspambots	Feb 7 12:34:34 auw2 sshd\[21000\]: Invalid user hha from 138.197.143.221 Feb 7 12:34:34 auw2 sshd\[21000\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Feb 7 12:34:36 auw2 sshd\[21000\]: Failed password for invalid user hha from 138.197.143.221 port 54292 ssh2 Feb 7 12:36:45 auw2 sshd\[21270\]: Invalid user rki from 138.197.143.221 Feb 7 12:36:45 auw2 sshd\[21270\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221	2020-02-08 09:29:47
attackbots	Unauthorized connection attempt detected from IP address 138.197.143.221 to port 2220 [J]	2020-01-27 13:57:26
attackspambots	Unauthorized connection attempt detected from IP address 138.197.143.221 to port 2220 [J]	2020-01-24 09:51:55
attack	Unauthorized connection attempt detected from IP address 138.197.143.221 to port 2220 [J]	2020-01-19 01:44:47
attackbots	Unauthorized connection attempt detected from IP address 138.197.143.221 to port 2220 [J]	2020-01-18 04:32:13
attackbotsspam	Unauthorized connection attempt detected from IP address 138.197.143.221 to port 2220 [J]	2020-01-17 03:17:05
attack	ssh brute force	2020-01-14 21:31:40
attackbotsspam	Jan 12 22:29:13 vpn01 sshd[30458]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Jan 12 22:29:15 vpn01 sshd[30458]: Failed password for invalid user testing1 from 138.197.143.221 port 52502 ssh2 ...	2020-01-13 05:43:20
attackbots	Jan 2 15:31:21 zeus sshd[13415]: Failed password for root from 138.197.143.221 port 58104 ssh2 Jan 2 15:34:08 zeus sshd[13505]: Failed password for root from 138.197.143.221 port 56158 ssh2 Jan 2 15:36:46 zeus sshd[13584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221	2020-01-03 04:51:16
attackspambots	Dec 26 18:35:18 srv206 sshd[5991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 user=root Dec 26 18:35:20 srv206 sshd[5991]: Failed password for root from 138.197.143.221 port 41780 ssh2 ...	2019-12-27 01:43:50
attackspam	Dec 25 22:05:55 localhost sshd[55949]: Failed password for invalid user absolom from 138.197.143.221 port 56842 ssh2 Dec 25 22:10:58 localhost sshd[56309]: Failed password for invalid user aurore from 138.197.143.221 port 36952 ssh2 Dec 25 22:16:53 localhost sshd[56695]: Failed password for invalid user carly from 138.197.143.221 port 36508 ssh2	2019-12-26 05:35:14
attack	Dec 21 21:30:16 tdfoods sshd\[23170\]: Invalid user upload from 138.197.143.221 Dec 21 21:30:16 tdfoods sshd\[23170\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Dec 21 21:30:18 tdfoods sshd\[23170\]: Failed password for invalid user upload from 138.197.143.221 port 33698 ssh2 Dec 21 21:35:51 tdfoods sshd\[23671\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 user=root Dec 21 21:35:53 tdfoods sshd\[23671\]: Failed password for root from 138.197.143.221 port 39860 ssh2	2019-12-22 15:41:11
attack	--- report --- Dec 17 01:59:40 sshd: Connection from 138.197.143.221 port 45186 Dec 17 01:59:40 sshd: Invalid user nasrak from 138.197.143.221 Dec 17 01:59:43 sshd: Failed password for invalid user nasrak from 138.197.143.221 port 45186 ssh2 Dec 17 01:59:43 sshd: Received disconnect from 138.197.143.221: 11: Bye Bye [preauth]	2019-12-17 13:15:40
attackbotsspam	Dec 9 21:58:36 gw1 sshd[25234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Dec 9 21:58:38 gw1 sshd[25234]: Failed password for invalid user domainlock2005 from 138.197.143.221 port 44880 ssh2 ...	2019-12-10 01:33:22
attackbotsspam	Dec 9 18:47:46 gw1 sshd[16118]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Dec 9 18:47:48 gw1 sshd[16118]: Failed password for invalid user nfs from 138.197.143.221 port 57120 ssh2 ...	2019-12-09 21:58:15
attackspam	Dec 8 13:45:08 ArkNodeAT sshd\[20045\]: Invalid user mamis from 138.197.143.221 Dec 8 13:45:08 ArkNodeAT sshd\[20045\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Dec 8 13:45:10 ArkNodeAT sshd\[20045\]: Failed password for invalid user mamis from 138.197.143.221 port 48306 ssh2	2019-12-08 21:30:50
attackspambots	Nov 30 14:29:31 124388 sshd[6533]: Invalid user user1 from 138.197.143.221 port 41452 Nov 30 14:29:31 124388 sshd[6533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Nov 30 14:29:31 124388 sshd[6533]: Invalid user user1 from 138.197.143.221 port 41452 Nov 30 14:29:34 124388 sshd[6533]: Failed password for invalid user user1 from 138.197.143.221 port 41452 ssh2 Nov 30 14:32:27 124388 sshd[6536]: Invalid user kotyk from 138.197.143.221 port 48230	2019-12-01 03:04:46
attackbotsspam	Invalid user zodiac from 138.197.143.221 port 58318 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Failed password for invalid user zodiac from 138.197.143.221 port 58318 ssh2 Invalid user suporte from 138.197.143.221 port 37304 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221	2019-11-29 08:59:55
attackbotsspam	Nov 26 15:36:17 vserver sshd\[28515\]: Invalid user webadmin from 138.197.143.221Nov 26 15:36:18 vserver sshd\[28515\]: Failed password for invalid user webadmin from 138.197.143.221 port 59546 ssh2Nov 26 15:42:32 vserver sshd\[28574\]: Invalid user thaxter from 138.197.143.221Nov 26 15:42:35 vserver sshd\[28574\]: Failed password for invalid user thaxter from 138.197.143.221 port 38616 ssh2 ...	2019-11-27 02:49:38
attack	2019-11-22T05:58:29.430777abusebot-4.cloudsearch.cf sshd\[2717\]: Invalid user omc123 from 138.197.143.221 port 49392	2019-11-22 14:03:56
attack	Brute-force attempt banned	2019-11-17 00:17:49

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.143.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32298
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.197.143.221.		IN	A

;; AUTHORITY SECTION:
.			1546	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040601 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun Apr 07 08:37:08 +08 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 221.143.197.138.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 221.143.197.138.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
110.138.52.125	attack	Unauthorized connection attempt from IP address 110.138.52.125 on Port 445(SMB)	2020-05-07 20:30:36
129.28.103.85	attackspambots	(sshd) Failed SSH login from 129.28.103.85 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 7 13:09:33 amsweb01 sshd[17204]: Invalid user jiao from 129.28.103.85 port 49290 May 7 13:09:35 amsweb01 sshd[17204]: Failed password for invalid user jiao from 129.28.103.85 port 49290 ssh2 May 7 14:00:52 amsweb01 sshd[22659]: Invalid user new from 129.28.103.85 port 34874 May 7 14:00:54 amsweb01 sshd[22659]: Failed password for invalid user new from 129.28.103.85 port 34874 ssh2 May 7 14:02:25 amsweb01 sshd[22856]: Invalid user yj from 129.28.103.85 port 55374	2020-05-07 20:19:09
77.240.89.92	attackspam	Unauthorized connection attempt from IP address 77.240.89.92 on Port 445(SMB)	2020-05-07 20:36:26
61.177.172.158	attackbots	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-05-07T12:21:14Z	2020-05-07 20:34:45
50.62.176.102	attack	IP blocked	2020-05-07 20:41:48
77.92.233.70	attack	Unauthorized connection attempt from IP address 77.92.233.70 on Port 445(SMB)	2020-05-07 20:54:04
185.33.144.232	attack	May 7 14:42:25 plex sshd[6012]: Invalid user postgres from 185.33.144.232 port 46560	2020-05-07 20:46:59
218.92.0.184	attackspambots	May 7 14:15:26 home sshd[7206]: Failed password for root from 218.92.0.184 port 15856 ssh2 May 7 14:15:29 home sshd[7206]: Failed password for root from 218.92.0.184 port 15856 ssh2 May 7 14:15:40 home sshd[7206]: error: maximum authentication attempts exceeded for root from 218.92.0.184 port 15856 ssh2 [preauth] ...	2020-05-07 20:27:41
49.233.134.252	attackspam	May 7 11:54:23 localhost sshd[12379]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.134.252 user=root May 7 11:54:25 localhost sshd[12379]: Failed password for root from 49.233.134.252 port 60690 ssh2 May 7 11:58:13 localhost sshd[12843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.134.252 user=root May 7 11:58:14 localhost sshd[12843]: Failed password for root from 49.233.134.252 port 46730 ssh2 May 7 12:02:14 localhost sshd[13368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.134.252 user=root May 7 12:02:16 localhost sshd[13368]: Failed password for root from 49.233.134.252 port 32778 ssh2 ...	2020-05-07 20:31:32
103.216.112.204	attackbotsspam	SSH invalid-user multiple login try	2020-05-07 20:34:10
109.244.101.133	attack	May 7 13:59:41 OPSO sshd\[23691\]: Invalid user rocco from 109.244.101.133 port 43400 May 7 13:59:41 OPSO sshd\[23691\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.244.101.133 May 7 13:59:43 OPSO sshd\[23691\]: Failed password for invalid user rocco from 109.244.101.133 port 43400 ssh2 May 7 14:02:57 OPSO sshd\[24371\]: Invalid user ewq from 109.244.101.133 port 57646 May 7 14:02:57 OPSO sshd\[24371\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.244.101.133	2020-05-07 20:17:36
217.61.3.153	attackspambots	2020-05-07T14:35:25.786248vps773228.ovh.net sshd[1396]: Failed password for invalid user lebesgue from 217.61.3.153 port 41414 ssh2 2020-05-07T14:39:41.560481vps773228.ovh.net sshd[1436]: Invalid user tomcat7 from 217.61.3.153 port 53426 2020-05-07T14:39:41.568311vps773228.ovh.net sshd[1436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.61.3.153 2020-05-07T14:39:41.560481vps773228.ovh.net sshd[1436]: Invalid user tomcat7 from 217.61.3.153 port 53426 2020-05-07T14:39:43.350554vps773228.ovh.net sshd[1436]: Failed password for invalid user tomcat7 from 217.61.3.153 port 53426 ssh2 ...	2020-05-07 20:46:27
27.155.78.242	attackbotsspam	Lines containing failures of 27.155.78.242 May 7 13:57:01 mx-in-02 sshd[32040]: Invalid user azureuser from 27.155.78.242 port 35414 May 7 13:57:01 mx-in-02 sshd[32040]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.155.78.242 May 7 13:57:03 mx-in-02 sshd[32040]: Failed password for invalid user azureuser from 27.155.78.242 port 35414 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=27.155.78.242	2020-05-07 20:43:45
177.184.69.253	attackbots	Automatic report - Port Scan Attack	2020-05-07 20:26:15
1.50.116.91	attack	[Thu May 07 14:00:13.485917 2020] [authz_core:error] [pid 12045:tid 140298764105472] [client 1.50.116.91:44440] AH01630: client denied by server configuration: /var/www/vhosts/yourdailypornvideos.com/httpdocs/ [Thu May 07 14:00:54.582254 2020] [authz_core:error] [pid 29168:tid 140298856425216] [client 1.50.116.91:47574] AH01630: client denied by server configuration: /var/www/vhosts/yourdailypornvideos.com/httpdocs/ [Thu May 07 14:01:17.007372 2020] [authz_core:error] [pid 29168:tid 140298713749248] [client 1.50.116.91:48616] AH01630: client denied by server configuration: /var/www/vhosts/yourdailypornvideos.com/httpdocs/ [Thu May 07 14:02:08.322468 2020] [authz_core:error] [pid 12045:tid 140298864817920] [client 1.50.116.91:52362] AH01630: client denied by server configuration: /var/www/vhosts/yourdailypornvideos.com/httpdocs/ ...	2020-05-07 20:44:12

最近上报的IP列表

81.218.92.106	128.199.251.16	104.131.11.6	79.177.66.5
185.165.185.101	193.253.204.39	198.199.122.234	177.85.101.166
36.89.119.92	112.17.175.50	201.38.80.115	165.227.2.127
91.207.114.61	66.249.79.217	41.238.202.99	51.68.215.21
162.241.183.175	85.113.38.162	189.78.174.151	178.33.228.67