138.197.143.221

基本信息:

城市(city): Toronto

省份(region): Ontario

国家(country): Canada

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Unauthorized access or intrusion attempt detected from Thor banned IP	2020-04-07 20:29:21
attackspambots	Apr 5 05:50:20 sshd\[21655\]: User root from 138.197.143.221 not allowed because not listed in AllowUsersApr 5 05:50:22 sshd\[21655\]: Failed password for invalid user root from 138.197.143.221 port 44894 ssh2 ...	2020-04-05 18:33:18
attack	(sshd) Failed SSH login from 138.197.143.221 (CA/Canada/-): 5 in the last 3600 secs	2020-03-27 23:53:36
attackspam	2020-03-26T13:26:00.588288shield sshd\[2832\]: Invalid user ubuntu from 138.197.143.221 port 38342 2020-03-26T13:26:00.596512shield sshd\[2832\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 2020-03-26T13:26:03.181930shield sshd\[2832\]: Failed password for invalid user ubuntu from 138.197.143.221 port 38342 ssh2 2020-03-26T13:29:19.293561shield sshd\[3459\]: Invalid user qm from 138.197.143.221 port 57542 2020-03-26T13:29:19.303213shield sshd\[3459\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221	2020-03-27 00:21:52
attackbotsspam	Mar 18 05:27:13 eventyay sshd[12221]: Failed password for root from 138.197.143.221 port 41530 ssh2 Mar 18 05:31:21 eventyay sshd[12369]: Failed password for root from 138.197.143.221 port 46848 ssh2 ...	2020-03-18 12:47:12
attack	2020-03-11T19:10:57.206209shield sshd\[17880\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 user=root 2020-03-11T19:10:59.568857shield sshd\[17880\]: Failed password for root from 138.197.143.221 port 53570 ssh2 2020-03-11T19:15:14.768722shield sshd\[19100\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 user=root 2020-03-11T19:15:17.080873shield sshd\[19100\]: Failed password for root from 138.197.143.221 port 59324 ssh2 2020-03-11T19:19:30.963344shield sshd\[20186\]: Invalid user daniel from 138.197.143.221 port 36866	2020-03-12 03:35:02
attackbotsspam	Invalid user svn from 138.197.143.221 port 56402	2020-03-11 18:06:41
attackbots	Invalid user user from 138.197.143.221 port 46076	2020-02-22 15:25:34
attackspambots	Feb 17 22:00:28 web9 sshd\[20250\]: Invalid user p4\$\$w0rd from 138.197.143.221 Feb 17 22:00:28 web9 sshd\[20250\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Feb 17 22:00:30 web9 sshd\[20250\]: Failed password for invalid user p4\$\$w0rd from 138.197.143.221 port 56734 ssh2 Feb 17 22:01:32 web9 sshd\[20418\]: Invalid user fuck@123 from 138.197.143.221 Feb 17 22:01:32 web9 sshd\[20418\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221	2020-02-18 16:27:08
attackspambots	Feb 7 12:34:34 auw2 sshd\[21000\]: Invalid user hha from 138.197.143.221 Feb 7 12:34:34 auw2 sshd\[21000\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Feb 7 12:34:36 auw2 sshd\[21000\]: Failed password for invalid user hha from 138.197.143.221 port 54292 ssh2 Feb 7 12:36:45 auw2 sshd\[21270\]: Invalid user rki from 138.197.143.221 Feb 7 12:36:45 auw2 sshd\[21270\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221	2020-02-08 09:29:47
attackbots	Unauthorized connection attempt detected from IP address 138.197.143.221 to port 2220 [J]	2020-01-27 13:57:26
attackspambots	Unauthorized connection attempt detected from IP address 138.197.143.221 to port 2220 [J]	2020-01-24 09:51:55
attack	Unauthorized connection attempt detected from IP address 138.197.143.221 to port 2220 [J]	2020-01-19 01:44:47
attackbots	Unauthorized connection attempt detected from IP address 138.197.143.221 to port 2220 [J]	2020-01-18 04:32:13
attackbotsspam	Unauthorized connection attempt detected from IP address 138.197.143.221 to port 2220 [J]	2020-01-17 03:17:05
attack	ssh brute force	2020-01-14 21:31:40
attackbotsspam	Jan 12 22:29:13 vpn01 sshd[30458]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Jan 12 22:29:15 vpn01 sshd[30458]: Failed password for invalid user testing1 from 138.197.143.221 port 52502 ssh2 ...	2020-01-13 05:43:20
attackbots	Jan 2 15:31:21 zeus sshd[13415]: Failed password for root from 138.197.143.221 port 58104 ssh2 Jan 2 15:34:08 zeus sshd[13505]: Failed password for root from 138.197.143.221 port 56158 ssh2 Jan 2 15:36:46 zeus sshd[13584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221	2020-01-03 04:51:16
attackspambots	Dec 26 18:35:18 srv206 sshd[5991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 user=root Dec 26 18:35:20 srv206 sshd[5991]: Failed password for root from 138.197.143.221 port 41780 ssh2 ...	2019-12-27 01:43:50
attackspam	Dec 25 22:05:55 localhost sshd[55949]: Failed password for invalid user absolom from 138.197.143.221 port 56842 ssh2 Dec 25 22:10:58 localhost sshd[56309]: Failed password for invalid user aurore from 138.197.143.221 port 36952 ssh2 Dec 25 22:16:53 localhost sshd[56695]: Failed password for invalid user carly from 138.197.143.221 port 36508 ssh2	2019-12-26 05:35:14
attack	Dec 21 21:30:16 tdfoods sshd\[23170\]: Invalid user upload from 138.197.143.221 Dec 21 21:30:16 tdfoods sshd\[23170\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Dec 21 21:30:18 tdfoods sshd\[23170\]: Failed password for invalid user upload from 138.197.143.221 port 33698 ssh2 Dec 21 21:35:51 tdfoods sshd\[23671\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 user=root Dec 21 21:35:53 tdfoods sshd\[23671\]: Failed password for root from 138.197.143.221 port 39860 ssh2	2019-12-22 15:41:11
attack	--- report --- Dec 17 01:59:40 sshd: Connection from 138.197.143.221 port 45186 Dec 17 01:59:40 sshd: Invalid user nasrak from 138.197.143.221 Dec 17 01:59:43 sshd: Failed password for invalid user nasrak from 138.197.143.221 port 45186 ssh2 Dec 17 01:59:43 sshd: Received disconnect from 138.197.143.221: 11: Bye Bye [preauth]	2019-12-17 13:15:40
attackbotsspam	Dec 9 21:58:36 gw1 sshd[25234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Dec 9 21:58:38 gw1 sshd[25234]: Failed password for invalid user domainlock2005 from 138.197.143.221 port 44880 ssh2 ...	2019-12-10 01:33:22
attackbotsspam	Dec 9 18:47:46 gw1 sshd[16118]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Dec 9 18:47:48 gw1 sshd[16118]: Failed password for invalid user nfs from 138.197.143.221 port 57120 ssh2 ...	2019-12-09 21:58:15
attackspam	Dec 8 13:45:08 ArkNodeAT sshd\[20045\]: Invalid user mamis from 138.197.143.221 Dec 8 13:45:08 ArkNodeAT sshd\[20045\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Dec 8 13:45:10 ArkNodeAT sshd\[20045\]: Failed password for invalid user mamis from 138.197.143.221 port 48306 ssh2	2019-12-08 21:30:50
attackspambots	Nov 30 14:29:31 124388 sshd[6533]: Invalid user user1 from 138.197.143.221 port 41452 Nov 30 14:29:31 124388 sshd[6533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Nov 30 14:29:31 124388 sshd[6533]: Invalid user user1 from 138.197.143.221 port 41452 Nov 30 14:29:34 124388 sshd[6533]: Failed password for invalid user user1 from 138.197.143.221 port 41452 ssh2 Nov 30 14:32:27 124388 sshd[6536]: Invalid user kotyk from 138.197.143.221 port 48230	2019-12-01 03:04:46
attackbotsspam	Invalid user zodiac from 138.197.143.221 port 58318 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221 Failed password for invalid user zodiac from 138.197.143.221 port 58318 ssh2 Invalid user suporte from 138.197.143.221 port 37304 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.143.221	2019-11-29 08:59:55
attackbotsspam	Nov 26 15:36:17 vserver sshd\[28515\]: Invalid user webadmin from 138.197.143.221Nov 26 15:36:18 vserver sshd\[28515\]: Failed password for invalid user webadmin from 138.197.143.221 port 59546 ssh2Nov 26 15:42:32 vserver sshd\[28574\]: Invalid user thaxter from 138.197.143.221Nov 26 15:42:35 vserver sshd\[28574\]: Failed password for invalid user thaxter from 138.197.143.221 port 38616 ssh2 ...	2019-11-27 02:49:38
attack	2019-11-22T05:58:29.430777abusebot-4.cloudsearch.cf sshd\[2717\]: Invalid user omc123 from 138.197.143.221 port 49392	2019-11-22 14:03:56
attack	Brute-force attempt banned	2019-11-17 00:17:49

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.143.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32298
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.197.143.221.		IN	A

;; AUTHORITY SECTION:
.			1546	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040601 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun Apr 07 08:37:08 +08 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 221.143.197.138.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 221.143.197.138.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
191.55.237.21	attack	Unauthorized connection attempt detected from IP address 191.55.237.21 to port 1433 [J]	2020-01-07 21:03:25
118.24.33.38	attackbots	Unauthorized connection attempt detected from IP address 118.24.33.38 to port 2220 [J]	2020-01-07 21:40:06
222.186.173.183	attack	2020-01-07T13:16:24.598670hub.schaetter.us sshd\[13900\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.183 user=root 2020-01-07T13:16:26.778561hub.schaetter.us sshd\[13900\]: Failed password for root from 222.186.173.183 port 13918 ssh2 2020-01-07T13:16:31.242356hub.schaetter.us sshd\[13900\]: Failed password for root from 222.186.173.183 port 13918 ssh2 2020-01-07T13:16:35.053274hub.schaetter.us sshd\[13900\]: Failed password for root from 222.186.173.183 port 13918 ssh2 2020-01-07T13:16:39.061449hub.schaetter.us sshd\[13900\]: Failed password for root from 222.186.173.183 port 13918 ssh2 ...	2020-01-07 21:29:00
157.230.129.73	attackbots	Unauthorized connection attempt detected from IP address 157.230.129.73 to port 2220 [J]	2020-01-07 21:16:31
222.186.175.147	attackbots	$f2bV_matches	2020-01-07 21:15:56
77.40.68.78	attack	Jan 7 14:04:10 srv01 postfix/smtpd[28724]: warning: unknown[77.40.68.78]: SASL CRAM-MD5 authentication failed: authentication failure Jan 7 14:04:10 srv01 postfix/smtpd[28724]: warning: unknown[77.40.68.78]: SASL PLAIN authentication failed: authentication failure Jan 7 14:04:10 srv01 postfix/smtpd[28724]: warning: unknown[77.40.68.78]: SASL LOGIN authentication failed: authentication failure ...	2020-01-07 21:15:00
114.67.84.208	attack	Jan 7 13:03:52 *** sshd[17608]: Invalid user rgk from 114.67.84.208	2020-01-07 21:30:39
109.162.128.186	attackbots	firewall-block, port(s): 1433/tcp	2020-01-07 21:18:31
106.12.142.52	attack	Jan 7 14:27:52 plex sshd[28518]: Invalid user smboracle from 106.12.142.52 port 34364	2020-01-07 21:43:22
94.255.130.161	attackbotsspam	Portscan or hack attempt detected by psad/fwsnort	2020-01-07 21:28:24
222.186.173.180	attackbotsspam	Jan 7 14:12:07 sd-53420 sshd\[32463\]: User root from 222.186.173.180 not allowed because none of user's groups are listed in AllowGroups Jan 7 14:12:08 sd-53420 sshd\[32463\]: Failed none for invalid user root from 222.186.173.180 port 21772 ssh2 Jan 7 14:12:08 sd-53420 sshd\[32463\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.180 user=root Jan 7 14:12:09 sd-53420 sshd\[32463\]: Failed password for invalid user root from 222.186.173.180 port 21772 ssh2 Jan 7 14:12:13 sd-53420 sshd\[32463\]: Failed password for invalid user root from 222.186.173.180 port 21772 ssh2 ...	2020-01-07 21:21:26
132.232.132.103	attackspambots	Jan 7 14:03:54 vpn01 sshd[24308]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.132.103 Jan 7 14:03:56 vpn01 sshd[24308]: Failed password for invalid user database from 132.232.132.103 port 46814 ssh2 ...	2020-01-07 21:27:56
58.27.205.230	attack	20/1/7@08:03:42: FAIL: IoT-SSH address from=58.27.205.230 ...	2020-01-07 21:41:37
168.232.136.101	attack	1578402252 - 01/07/2020 14:04:12 Host: 168.232.136.101/168.232.136.101 Port: 445 TCP Blocked	2020-01-07 21:10:12
84.200.211.112	attackbotsspam	1578402251 - 01/07/2020 14:04:11 Host: 84.200.211.112/84.200.211.112 Port: 22 TCP Blocked	2020-01-07 21:14:37

最近上报的IP列表

81.218.92.106	128.199.251.16	104.131.11.6	79.177.66.5
185.165.185.101	193.253.204.39	198.199.122.234	177.85.101.166
36.89.119.92	112.17.175.50	201.38.80.115	165.227.2.127
91.207.114.61	66.249.79.217	41.238.202.99	51.68.215.21
162.241.183.175	85.113.38.162	189.78.174.151	178.33.228.67