138.197.70.149

基本信息:

城市(city): Clifton

省份(region): New Jersey

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
138.197.70.229	attack	Mar 10 05:37:11 h2779839 sshd[18485]: Invalid user alex from 138.197.70.229 port 43364 Mar 10 05:37:11 h2779839 sshd[18485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.70.229 Mar 10 05:37:11 h2779839 sshd[18485]: Invalid user alex from 138.197.70.229 port 43364 Mar 10 05:37:13 h2779839 sshd[18485]: Failed password for invalid user alex from 138.197.70.229 port 43364 ssh2 Mar 10 05:41:51 h2779839 sshd[18570]: Invalid user jianzuoyi from 138.197.70.229 port 59816 Mar 10 05:41:51 h2779839 sshd[18570]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.70.229 Mar 10 05:41:51 h2779839 sshd[18570]: Invalid user jianzuoyi from 138.197.70.229 port 59816 Mar 10 05:41:53 h2779839 sshd[18570]: Failed password for invalid user jianzuoyi from 138.197.70.229 port 59816 ssh2 Mar 10 05:46:29 h2779839 sshd[18653]: Invalid user liaowenjie from 138.197.70.229 port 48036 ...	2020-03-10 13:04:12
138.197.70.229	attack	$f2bV_matches	2020-01-22 23:55:31
138.197.70.229	attackbotsspam	Unauthorized connection attempt detected from IP address 138.197.70.229 to port 2220 [J]	2020-01-19 05:56:59
138.197.70.44	attack	Aug 8 14:10:06 MK-Soft-Root1 sshd\[6777\]: Invalid user git from 138.197.70.44 port 41202 Aug 8 14:10:06 MK-Soft-Root1 sshd\[6777\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.70.44 Aug 8 14:10:08 MK-Soft-Root1 sshd\[6777\]: Failed password for invalid user git from 138.197.70.44 port 41202 ssh2 ...	2019-08-08 20:38:53
138.197.70.44	attackbots	Aug 8 00:36:46 vibhu-HP-Z238-Microtower-Workstation sshd\[28589\]: Invalid user test from 138.197.70.44 Aug 8 00:36:46 vibhu-HP-Z238-Microtower-Workstation sshd\[28589\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.70.44 Aug 8 00:36:48 vibhu-HP-Z238-Microtower-Workstation sshd\[28589\]: Failed password for invalid user test from 138.197.70.44 port 43446 ssh2 Aug 8 00:41:28 vibhu-HP-Z238-Microtower-Workstation sshd\[28758\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.70.44 user=root Aug 8 00:41:30 vibhu-HP-Z238-Microtower-Workstation sshd\[28758\]: Failed password for root from 138.197.70.44 port 39016 ssh2 ...	2019-08-08 03:19:45

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.70.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51740
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.197.70.149.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040900 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue Apr 09 21:09:57 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 149.70.197.138.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 149.70.197.138.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
63.81.87.81	attackspambots	Autoban 63.81.87.81 AUTH/CONNECT	2019-11-17 21:11:45
178.62.2.40	attack	\[Sun Nov 17 12:57:42.260740 2019\] \[authz_core:error\] \[pid 16399\] \[client 178.62.2.40:59120\] AH01630: client denied by server configuration: /var/www/michele/xmlrpc.php ...	2019-11-17 21:26:48
119.90.43.106	attackbotsspam	Invalid user qwerty from 119.90.43.106 port 25350 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.90.43.106 Failed password for invalid user qwerty from 119.90.43.106 port 25350 ssh2 Invalid user testest123 from 119.90.43.106 port 42258 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.90.43.106	2019-11-17 21:23:55
46.105.244.17	attack	Nov 17 07:45:15 SilenceServices sshd[24567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.105.244.17 Nov 17 07:45:17 SilenceServices sshd[24567]: Failed password for invalid user grabner from 46.105.244.17 port 43292 ssh2 Nov 17 07:48:43 SilenceServices sshd[25552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.105.244.17	2019-11-17 21:32:57
41.38.61.125	attackspam	SSH Bruteforce	2019-11-17 21:34:35
49.204.76.142	attackbotsspam	IP blocked	2019-11-17 21:14:50
46.101.27.6	attackbotsspam	SSH Bruteforce	2019-11-17 21:22:06
102.177.145.221	attack	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.177.145.221 Failed password for invalid user webstar from 102.177.145.221 port 36512 ssh2 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.177.145.221 user=root Failed password for root from 102.177.145.221 port 45230 ssh2 Invalid user messerian from 102.177.145.221 port 53960	2019-11-17 21:20:01
36.85.132.89	attack	SSH Bruteforce	2019-11-17 21:41:59
187.74.158.111	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/187.74.158.111/ BR - 1H : (308) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BR NAME ASN : ASN27699 IP : 187.74.158.111 CIDR : 187.74.0.0/16 PREFIX COUNT : 267 UNIQUE IP COUNT : 6569728 ATTACKS DETECTED ASN27699 : 1H - 7 3H - 17 6H - 29 12H - 52 24H - 104 DateTime : 2019-11-17 07:21:01 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-17 21:32:38
34.89.246.62	attackspam	SSH Bruteforce	2019-11-17 21:50:56
27.70.153.187	attack	Nov 17 14:46:23 vmi148877 sshd\[2246\]: refused connect from 27.70.153.187 $27.70.153.187$ Nov 17 14:46:25 vmi148877 sshd\[2254\]: refused connect from 27.70.153.187 $27.70.153.187$ Nov 17 14:46:26 vmi148877 sshd\[2261\]: refused connect from 27.70.153.187 $27.70.153.187$ Nov 17 14:47:01 vmi148877 sshd\[2275\]: refused connect from 27.70.153.187 $27.70.153.187$ Nov 17 14:47:27 vmi148877 sshd\[2289\]: refused connect from 27.70.153.187 $27.70.153.187$	2019-11-17 21:52:50
40.73.25.111	attackspambots	Automatic report - Banned IP Access	2019-11-17 21:37:20
223.247.223.194	attack	Nov 16 21:38:53 web1 sshd\[1889\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.247.223.194 user=root Nov 16 21:38:55 web1 sshd\[1889\]: Failed password for root from 223.247.223.194 port 32866 ssh2 Nov 16 21:43:58 web1 sshd\[2346\]: Invalid user webadmin from 223.247.223.194 Nov 16 21:43:58 web1 sshd\[2346\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.247.223.194 Nov 16 21:43:59 web1 sshd\[2346\]: Failed password for invalid user webadmin from 223.247.223.194 port 47386 ssh2	2019-11-17 21:48:07
49.232.156.177	attackbots	SSH Bruteforce	2019-11-17 21:12:41

最近上报的IP列表

31.160.91.14	213.230.113.240	179.185.185.228	14.139.191.130
212.156.79.166	95.54.192.150	220.129.104.99	192.232.233.178
123.235.32.120	198.61.254.1	117.84.112.127	90.166.12.245
62.210.161.142	62.210.161.115	188.190.248.8	58.246.56.230
80.211.26.131	188.133.157.197	46.148.27.67	186.10.82.37