138.91.116.219

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Microsoft Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Jul 14 16:37:58 piServer sshd[3711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.91.116.219 Jul 14 16:38:01 piServer sshd[3711]: Failed password for invalid user admin1 from 138.91.116.219 port 64120 ssh2 Jul 14 16:38:03 piServer sshd[3720]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.91.116.219 ...	2020-07-14 22:55:18
attack	Jul 11 06:46:57 backup sshd[30012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.91.116.219 Jul 11 06:46:59 backup sshd[30012]: Failed password for invalid user admin1 from 138.91.116.219 port 57539 ssh2 ...	2020-07-11 16:53:28

类型

评论内容

时间

attackbots

Jul 14 16:37:58 piServer sshd[3711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.91.116.219 
Jul 14 16:38:01 piServer sshd[3711]: Failed password for invalid user admin1 from 138.91.116.219 port 64120 ssh2
Jul 14 16:38:03 piServer sshd[3720]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.91.116.219 
...

2020-07-14 22:55:18

attack

Jul 11 06:46:57 backup sshd[30012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.91.116.219 
Jul 11 06:46:59 backup sshd[30012]: Failed password for invalid user admin1 from 138.91.116.219 port 57539 ssh2
...

2020-07-11 16:53:28

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.91.116.219
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63417
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.91.116.219.			IN	A

;; AUTHORITY SECTION:
.			396	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020071001 1800 900 604800 86400

;; Query time: 94 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 11 16:53:25 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 219.116.91.138.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 219.116.91.138.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
5.181.51.169	attackbotsspam	Jul 9 03:27:25 cumulus sshd[7527]: Invalid user hector from 5.181.51.169 port 56216 Jul 9 03:27:25 cumulus sshd[7527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.181.51.169 Jul 9 03:27:28 cumulus sshd[7527]: Failed password for invalid user hector from 5.181.51.169 port 56216 ssh2 Jul 9 03:27:28 cumulus sshd[7527]: Received disconnect from 5.181.51.169 port 56216:11: Bye Bye [preauth] Jul 9 03:27:28 cumulus sshd[7527]: Disconnected from 5.181.51.169 port 56216 [preauth] Jul 9 03:40:00 cumulus sshd[8588]: Invalid user kate from 5.181.51.169 port 35102 Jul 9 03:40:00 cumulus sshd[8588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.181.51.169 Jul 9 03:40:02 cumulus sshd[8588]: Failed password for invalid user kate from 5.181.51.169 port 35102 ssh2 Jul 9 03:40:02 cumulus sshd[8588]: Received disconnect from 5.181.51.169 port 35102:11: Bye Bye [preauth] Jul 9 03:40:02 cumulu........ -------------------------------	2020-07-10 00:00:47
45.11.99.166	attack	From bounces01@primeiroeunico.live Thu Jul 09 09:06:49 2020 Received: from unicomx4.primeiroeunico.live ([45.11.99.166]:34838)	2020-07-09 23:50:18
61.12.67.133	attackspambots	2020-07-09T09:43:01.101987sorsha.thespaminator.com sshd[11314]: Invalid user xiansweety from 61.12.67.133 port 61791 2020-07-09T09:43:03.117599sorsha.thespaminator.com sshd[11314]: Failed password for invalid user xiansweety from 61.12.67.133 port 61791 ssh2 ...	2020-07-09 23:42:03
45.43.18.215	attack	Unauthorized connection attempt detected from IP address 45.43.18.215 to port 22	2020-07-10 00:21:58
120.53.119.223	attackspam	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth):	2020-07-09 23:48:13
155.230.28.207	attackbots	Jul 9 17:14:14 DAAP sshd[25164]: Invalid user life from 155.230.28.207 port 60974 Jul 9 17:14:14 DAAP sshd[25164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=155.230.28.207 Jul 9 17:14:14 DAAP sshd[25164]: Invalid user life from 155.230.28.207 port 60974 Jul 9 17:14:16 DAAP sshd[25164]: Failed password for invalid user life from 155.230.28.207 port 60974 ssh2 Jul 9 17:23:47 DAAP sshd[25246]: Invalid user kamilla from 155.230.28.207 port 50044 ...	2020-07-09 23:57:03
193.112.143.80	attackbotsspam	Jul 9 17:04:53 tuxlinux sshd[38140]: Invalid user garry from 193.112.143.80 port 57754 Jul 9 17:04:53 tuxlinux sshd[38140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.143.80 Jul 9 17:04:53 tuxlinux sshd[38140]: Invalid user garry from 193.112.143.80 port 57754 Jul 9 17:04:53 tuxlinux sshd[38140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.143.80 Jul 9 17:04:53 tuxlinux sshd[38140]: Invalid user garry from 193.112.143.80 port 57754 Jul 9 17:04:53 tuxlinux sshd[38140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.143.80 Jul 9 17:04:54 tuxlinux sshd[38140]: Failed password for invalid user garry from 193.112.143.80 port 57754 ssh2 ...	2020-07-09 23:58:18
54.37.66.7	attackspambots	2020-07-09T06:10:37.567460-07:00 suse-nuc sshd[7930]: Invalid user chenhechun from 54.37.66.7 port 45096 ...	2020-07-09 23:54:42
188.217.46.36	attack	Automatic report - Banned IP Access	2020-07-10 00:10:55
51.195.151.244	attackspambots	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-07-09T15:45:33Z and 2020-07-09T15:56:22Z	2020-07-10 00:00:21
112.85.42.104	attackspam	Jul 9 20:35:52 gw1 sshd[13660]: Failed password for root from 112.85.42.104 port 19768 ssh2 ...	2020-07-09 23:43:56
141.98.81.6	attackspambots	Jul 9 13:14:24 firewall sshd[24282]: Invalid user 1234 from 141.98.81.6 Jul 9 13:14:26 firewall sshd[24282]: Failed password for invalid user 1234 from 141.98.81.6 port 59494 ssh2 Jul 9 13:14:49 firewall sshd[24347]: Invalid user user from 141.98.81.6 ...	2020-07-10 00:19:16
139.59.46.167	attackspam	Jul 9 16:02:50 xeon sshd[9391]: Failed password for invalid user kevina from 139.59.46.167 port 52444 ssh2	2020-07-10 00:12:22
103.199.17.69	attackbotsspam	(pop3d) Failed POP3 login from 103.199.17.69 (VN/Vietnam/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Jul 9 16:36:29 ir1 dovecot[2885757]: pop3-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=103.199.17.69, lip=5.63.12.44, session=<8g3ZDQGqsu1nxxFF>	2020-07-10 00:04:16
222.186.15.115	attack	Jul 9 21:17:25 gw1 sshd[15093]: Failed password for root from 222.186.15.115 port 21740 ssh2 ...	2020-07-10 00:17:48

最近上报的IP列表

62.182.145.104	187.162.47.135	5.123.32.114	93.144.159.163
178.128.156.133	193.57.40.13	178.209.87.54	77.40.3.196
212.70.149.35	137.74.197.59	200.56.2.180	192.162.102.33
13.77.167.204	202.137.134.96	27.157.90.202	95.189.96.77
58.212.40.16	213.149.149.207	36.227.58.146	124.114.123.88