164.138.22.107

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Iran (ISLAMIC Republic Of)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
164.138.22.149	attackbots	Unauthorized connection attempt detected from IP address 164.138.22.149 to port 2220 [J]	2020-01-07 08:43:12
164.138.220.25	attack	Honeypot attack, port: 445, PTR: host-164-138-220-25.superhosting.bg.	2019-12-27 16:01:44
164.138.220.25	attackbotsspam	firewall-block, port(s): 1433/tcp	2019-12-22 07:40:09
164.138.22.204	attack	164.138.22.204 - - [20/Sep/2019:21:13:04 +0200] "GET /wp-login.php HTTP/1.1" 200 1129 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 164.138.22.204 - - [20/Sep/2019:21:13:05 +0200] "POST /wp-login.php HTTP/1.1" 200 1524 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 164.138.22.204 - - [20/Sep/2019:21:13:05 +0200] "GET /wp-login.php HTTP/1.1" 200 1129 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 164.138.22.204 - - [20/Sep/2019:21:13:06 +0200] "POST /wp-login.php HTTP/1.1" 200 1507 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 164.138.22.204 - - [20/Sep/2019:21:13:07 +0200] "GET /wp-login.php HTTP/1.1" 200 1129 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 164.138.22.204 - - [20/Sep/2019:21:13:08 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-09-21 04:46:08
164.138.22.204	attackspambots	WordPress brute force	2019-08-28 08:35:19
164.138.22.204	attack	Auto reported by IDS	2019-07-20 21:41:32

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 164.138.22.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9496
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;164.138.22.107.			IN	A

;; AUTHORITY SECTION:
.			598	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021801 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 19 03:43:48 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 107.22.138.164.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 107.22.138.164.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
84.201.157.119	attack	2020-03-12T22:02:40.197766v22018076590370373 sshd[28929]: Failed password for root from 84.201.157.119 port 35656 ssh2 2020-03-12T22:07:57.254766v22018076590370373 sshd[9512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.201.157.119 user=root 2020-03-12T22:07:59.224680v22018076590370373 sshd[9512]: Failed password for root from 84.201.157.119 port 53310 ssh2 2020-03-12T22:11:52.940351v22018076590370373 sshd[7890]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.201.157.119 user=root 2020-03-12T22:11:55.171570v22018076590370373 sshd[7890]: Failed password for root from 84.201.157.119 port 42732 ssh2 ...	2020-03-13 05:50:26
188.131.238.91	attackbotsspam	Mar 12 22:10:42 [snip] sshd[10965]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.238.91 user=root Mar 12 22:10:44 [snip] sshd[10965]: Failed password for root from 188.131.238.91 port 57322 ssh2 Mar 12 22:14:53 [snip] sshd[11429]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.131.238.91 user=root[...]	2020-03-13 05:19:08
159.65.102.98	attackbots	Automatically reported by fail2ban report script (mx1)	2020-03-13 05:34:04
185.39.10.73	attack	185.39.10.73 - - \[12/Mar/2020:22:12:40 +0100\] "GET /blog/wp-login.php HTTP/1.1" 404 564 "-" "Mozilla/5.0 $compatible\; MSIE 9.0\; Windows NT 6.1\; Trident/5.0$" 185.39.10.73 - - \[12/Mar/2020:22:12:40 +0100\] "GET /blogs/wp-login.php HTTP/1.1" 404 564 "-" "Mozilla/5.0 $compatible\; MSIE 9.0\; Windows NT 6.1\; Trident/5.0$" 185.39.10.73 - - \[12/Mar/2020:22:12:40 +0100\] "GET /home/wp-login.php HTTP/1.1" 404 564 "-" "Mozilla/5.0 $compatible\; MSIE 9.0\; Windows NT 6.1\; Trident/5.0$" 185.39.10.73 - - \[12/Mar/2020:22:12:40 +0100\] "GET /wordpress/wp-login.php HTTP/1.1" 404 564 "-" "Mozilla/5.0 $compatible\; MSIE 9.0\; Windows NT 6.1\; Trident/5.0$" 185.39.10.73 - - \[12/Mar/2020:22:12:40 +0100\] "GET /press/wp-login.php HTTP/1.1" 404 564 "-" "Mozilla/5.0 $compatible\; MSIE 9.0\; Windows NT 6.1\; Trident/5.0$" ...	2020-03-13 05:16:38
167.71.216.44	attackspambots	$f2bV_matches	2020-03-13 05:31:27
45.143.222.196	attack	Mar 12 22:15:46 icinga sshd[1751]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.143.222.196 Mar 12 22:15:48 icinga sshd[1751]: Failed password for invalid user admin from 45.143.222.196 port 55861 ssh2 Mar 12 22:15:48 icinga sshd[1751]: error: Received disconnect from 45.143.222.196 port 55861:3: com.jcraft.jsch.JSchException: Auth fail [preauth] ...	2020-03-13 05:21:02
193.34.69.227	attack	Bad mail behaviour	2020-03-13 05:32:29
69.94.137.128	attack	Mar 12 22:04:47 mail.srvfarm.net postfix/smtpd[1996207]: NOQUEUE: reject: RCPT from unknown[69.94.137.128]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 12 22:05:14 mail.srvfarm.net postfix/smtpd[2008330]: NOQUEUE: reject: RCPT from unknown[69.94.137.128]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 12 22:05:31 mail.srvfarm.net postfix/smtpd[2008330]: NOQUEUE: reject: RCPT from unknown[69.94.137.128]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 12 22:08:19 mail.srvfarm.net postfix/smtpd[1994003]: NOQUEUE: reject: RCPT from unknown[69.94.137.128]: 450 4.1.8	2020-03-13 05:27:57
222.186.180.41	attackspam	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-03-13 05:45:52
218.93.194.242	attackspambots	$f2bV_matches	2020-03-13 05:22:47
212.47.240.88	attackspam	Mar 12 18:08:55 firewall sshd[5666]: Failed password for invalid user libuuid from 212.47.240.88 port 36808 ssh2 Mar 12 18:12:42 firewall sshd[5755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.47.240.88 user=root Mar 12 18:12:43 firewall sshd[5755]: Failed password for root from 212.47.240.88 port 54432 ssh2 ...	2020-03-13 05:14:23
112.85.42.188	attackspambots	03/12/2020-17:19:22.449751 112.85.42.188 Protocol: 6 ET SCAN Potential SSH Scan	2020-03-13 05:20:16
170.244.51.176	attackspambots	trying to access non-authorized port	2020-03-13 05:31:02
104.248.139.121	attack	Mar 12 22:09:47 legacy sshd[17921]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.139.121 Mar 12 22:09:49 legacy sshd[17921]: Failed password for invalid user james from 104.248.139.121 port 55428 ssh2 Mar 12 22:13:29 legacy sshd[17991]: Failed password for root from 104.248.139.121 port 43464 ssh2 ...	2020-03-13 05:24:16
206.189.138.54	attackspam	Mar 12 22:36:11 mout sshd[15979]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.138.54 user=root Mar 12 22:36:13 mout sshd[15979]: Failed password for root from 206.189.138.54 port 50346 ssh2	2020-03-13 05:40:19

最近上报的IP列表

164.138.20.74	164.138.217.14	164.138.220.100	164.138.23.237
164.138.223.198	164.52.195.234	164.52.193.72	164.68.115.101
164.90.144.66	164.90.215.39	164.68.124.103	164.90.227.167
164.68.116.32	164.163.136.1	164.92.194.119	164.92.194.44
164.77.128.251	164.92.198.46	164.92.198.31	164.92.198.69