138.99.19.134 - IPInfo

基本信息:

城市(city): Lucas do Rio Verde

省份(region): Mato Grosso

国家(country): Brazil

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
138.99.194.171	attackspam	Unauthorized IMAP connection attempt	2020-08-16 17:59:45
138.99.194.219	attackspambots	Unauthorized IMAP connection attempt	2020-08-08 14:28:24
138.99.195.162	attackspambots	Suspicious access to SMTP/POP/IMAP services.	2020-07-19 22:36:15
138.99.194.19	attackspambots	Lines containing failures of 138.99.194.19 Jun 22 13:43:43 keyhelp sshd[12049]: Invalid user admin from 138.99.194.19 port 54273 Jun 22 13:43:43 keyhelp sshd[12049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.194.19 Jun 22 13:43:45 keyhelp sshd[12049]: Failed password for invalid user admin from 138.99.194.19 port 54273 ssh2 Jun 22 13:43:45 keyhelp sshd[12049]: Connection closed by invalid user admin 138.99.194.19 port 54273 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=138.99.194.19	2020-06-22 22:47:12
138.99.194.230	attackspam	Unauthorized IMAP connection attempt	2020-06-18 19:48:26
138.99.194.69	attackspam	Invalid user admin from 138.99.194.69 port 56621	2020-06-18 06:45:04
138.99.194.82	attackspambots	Jun 10 21:51:18 Host-KLAX-C postfix/submission/smtpd[6055]: lost connection after CONNECT from unknown[138.99.194.82] ...	2020-06-11 17:53:52
138.99.194.49	attack	Invalid user admin from 138.99.194.49 port 40866	2020-05-29 02:06:48
138.99.195.179	attackspambots	May 28 13:52:39 xeon postfix/smtpd[6206]: warning: unknown[138.99.195.179]: SASL LOGIN authentication failed: authentication failure	2020-05-29 01:08:40
138.99.190.233	attack	Unauthorized connection attempt detected from IP address 138.99.190.233 to port 80 [J]	2020-03-02 03:47:38
138.99.19.243	attackspambots	RDP Brute-Force (Grieskirchen RZ1)	2019-09-14 19:18:03

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.99.19.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7192
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.99.19.134.			IN	A

;; AUTHORITY SECTION:
.			13	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 71 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:01:29 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 134.19.99.138.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 134.19.99.138.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
176.130.149.145	attack	Jun 30 15:27:10 srv03 sshd\[25915\]: Invalid user adm from 176.130.149.145 port 54936 Jun 30 15:27:10 srv03 sshd\[25915\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.130.149.145 Jun 30 15:27:12 srv03 sshd\[25915\]: Failed password for invalid user adm from 176.130.149.145 port 54936 ssh2	2019-06-30 22:40:10
180.151.225.195	attack	SSH Brute-Force attacks	2019-06-30 22:41:53
202.83.17.89	attack	Jun 30 15:50:16 OPSO sshd\[24346\]: Invalid user teamspeak3 from 202.83.17.89 port 50016 Jun 30 15:50:16 OPSO sshd\[24346\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.83.17.89 Jun 30 15:50:18 OPSO sshd\[24346\]: Failed password for invalid user teamspeak3 from 202.83.17.89 port 50016 ssh2 Jun 30 15:52:04 OPSO sshd\[24386\]: Invalid user braxton from 202.83.17.89 port 38992 Jun 30 15:52:04 OPSO sshd\[24386\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.83.17.89	2019-06-30 22:34:11
188.166.228.244	attackbots	Jun 30 15:27:00 MK-Soft-Root1 sshd\[9022\]: Invalid user music from 188.166.228.244 port 51519 Jun 30 15:27:00 MK-Soft-Root1 sshd\[9022\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.228.244 Jun 30 15:27:02 MK-Soft-Root1 sshd\[9022\]: Failed password for invalid user music from 188.166.228.244 port 51519 ssh2 ...	2019-06-30 22:45:59
150.136.193.165	attackbots	2019-06-30T15:26:19.089891centos sshd\[8509\]: Invalid user jacinta.cali from 150.136.193.165 port 44591 2019-06-30T15:26:19.095484centos sshd\[8509\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.136.193.165 2019-06-30T15:26:20.854070centos sshd\[8509\]: Failed password for invalid user jacinta.cali from 150.136.193.165 port 44591 ssh2	2019-06-30 23:07:31
129.205.208.21	attack	Jun 30 15:42:48 lnxded64 sshd[13164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.205.208.21 Jun 30 15:42:48 lnxded64 sshd[13164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.205.208.21 Jun 30 15:42:50 lnxded64 sshd[13164]: Failed password for invalid user git from 129.205.208.21 port 27330 ssh2	2019-06-30 22:32:41
45.237.140.120	attackspam	Jun 30 15:36:51 mail sshd\[21892\]: Invalid user mar from 45.237.140.120 port 42154 Jun 30 15:36:51 mail sshd\[21892\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.237.140.120 Jun 30 15:36:53 mail sshd\[21892\]: Failed password for invalid user mar from 45.237.140.120 port 42154 ssh2 Jun 30 15:38:21 mail sshd\[22023\]: Invalid user ckobia from 45.237.140.120 port 53680 Jun 30 15:38:21 mail sshd\[22023\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.237.140.120	2019-06-30 23:00:38
115.159.101.174	attack	Jun 30 15:26:31 [host] sshd[6860]: Invalid user forge from 115.159.101.174 Jun 30 15:26:31 [host] sshd[6860]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.101.174 Jun 30 15:26:33 [host] sshd[6860]: Failed password for invalid user forge from 115.159.101.174 port 44477 ssh2	2019-06-30 23:00:06
178.93.122.178	attackspambots	Detected by ModSecurity. Request URI: /wp-login.php	2019-06-30 23:27:38
176.114.4.30	attackbots	MYH,DEF GET /wp-login.php	2019-06-30 23:17:08
162.241.42.192	attackbotsspam	Jun 26 15:30:01 online-web-vs-1 postfix/smtpd[7796]: connect from vps.novabarueri.com.br[162.241.42.192] Jun 26 15:30:01 online-web-vs-1 postfix/smtpd[7796]: Anonymous TLS connection established from vps.novabarueri.com.br[162.241.42.192]: TLSv1.2 whostnameh cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bhostnames) Jun x@x Jun 26 15:30:09 online-web-vs-1 postfix/smtpd[7796]: disconnect from vps.novabarueri.com.br[162.241.42.192] Jun 26 15:30:16 online-web-vs-1 postfix/smtpd[7908]: connect from vps.novabarueri.com.br[162.241.42.192] Jun 26 15:30:16 online-web-vs-1 postfix/smtpd[7908]: Anonymous TLS connection established from vps.novabarueri.com.br[162.241.42.192]: TLSv1.2 whostnameh cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bhostnames) Jun x@x Jun 26 15:30:22 online-web-vs-1 postfix/smtpd[7908]: disconnect from vps.novabarueri.com.br[162.241.42.192] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=162.241.42.192	2019-06-30 23:28:27
92.118.37.84	attack	Jun 30 13:33:59 mail kernel: [2399492.913092] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=92.118.37.84 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=64638 PROTO=TCP SPT=41610 DPT=36368 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 30 13:38:20 mail kernel: [2399754.112396] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=92.118.37.84 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=48737 PROTO=TCP SPT=41610 DPT=38949 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 30 13:38:46 mail kernel: [2399780.202297] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=92.118.37.84 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=20 PROTO=TCP SPT=41610 DPT=58797 WINDOW=1024 RES=0x00 SYN URGP=0 Jun 30 13:39:31 mail kernel: [2399824.831590] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=92.118.37.84 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=49176 PROTO=TCP SPT=41610 DPT=8918 WINDOW=1024 RES=0x00 SYN URGP	2019-06-30 22:35:24
180.124.238.120	attackbots	Brute force SMTP login attempts.	2019-06-30 22:55:03
36.189.253.226	attackspambots	Jun 30 15:59:28 s64-1 sshd[18553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.189.253.226 Jun 30 15:59:30 s64-1 sshd[18553]: Failed password for invalid user docker from 36.189.253.226 port 32795 ssh2 Jun 30 16:03:40 s64-1 sshd[18578]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.189.253.226 ...	2019-06-30 22:21:45
49.88.160.139	attackspambots	Brute force SMTP login attempts.	2019-06-30 22:19:40

最近上报的IP列表

138.99.189.50	118.200.66.152	138.99.19.146	138.99.190.247
138.99.191.10	138.99.191.147	138.99.190.232	138.99.191.191
138.99.190.226	138.99.191.1	138.99.190.157	138.99.19.206
138.99.191.254	138.99.191.109	118.200.73.124	138.99.196.78
138.99.196.86	138.99.196.177	138.99.197.129	138.99.195.115