219.138.145.164

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Hubei Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Attempted connection to port 5555.	2020-04-08 04:18:44
attackbotsspam	Honeypot attack, port: 5555, PTR: PTR record not found	2020-03-05 20:20:35

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 219.138.145.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42124
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;219.138.145.164.		IN	A

;; AUTHORITY SECTION:
.			526	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030500 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 05 20:20:28 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 164.145.138.219.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 164.145.138.219.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
89.133.103.216	attack	89.133.103.216 (HU/Hungary/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 7 05:43:55 server2 sshd[8032]: Failed password for root from 89.97.218.142 port 56380 ssh2 Sep 7 05:43:29 server2 sshd[7987]: Failed password for root from 189.26.163.39 port 57826 ssh2 Sep 7 05:41:44 server2 sshd[7083]: Failed password for root from 89.133.103.216 port 37586 ssh2 Sep 7 05:43:37 server2 sshd[8002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.166.151 user=root Sep 7 05:43:39 server2 sshd[8002]: Failed password for root from 124.156.166.151 port 36046 ssh2 IP Addresses Blocked: 89.97.218.142 (IT/Italy/-) 189.26.163.39 (BR/Brazil/-)	2020-09-07 19:02:09
192.142.196.251	attackbots	Cluster member 67.227.229.95 (US/United States/host.cjthedj97.me) said, DENY 192.142.196.251, Reason:[(sshd) Failed SSH login from 192.142.196.251 (ZA/South Africa/-): 1 in the last 3600 secs]; Ports: *; Direction: inout; Trigger: LF_CLUSTER	2020-09-07 18:51:18
177.22.249.26	attackspambots	Automatic report - Port Scan Attack	2020-09-07 18:58:25
174.4.117.8	attackbots	Honeypot attack, port: 81, PTR: S0106bc3e07333713.ok.shawcable.net.	2020-09-07 19:14:33
218.191.223.71	attack	2020-09-07T17:31:01.776316luisaranguren sshd[783979]: Failed password for root from 218.191.223.71 port 38317 ssh2 2020-09-07T17:31:03.100659luisaranguren sshd[783979]: Connection closed by authenticating user root 218.191.223.71 port 38317 [preauth] ...	2020-09-07 18:48:23
142.93.246.42	attackbots	Sep 7 12:26:05 MainVPS sshd[10732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Sep 7 12:26:07 MainVPS sshd[10732]: Failed password for root from 142.93.246.42 port 47020 ssh2 Sep 7 12:30:04 MainVPS sshd[16861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Sep 7 12:30:06 MainVPS sshd[16861]: Failed password for root from 142.93.246.42 port 46532 ssh2 Sep 7 12:33:51 MainVPS sshd[24197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Sep 7 12:33:53 MainVPS sshd[24197]: Failed password for root from 142.93.246.42 port 46046 ssh2 ...	2020-09-07 18:38:58
66.249.66.219	attackspam	Automatic report - Banned IP Access	2020-09-07 18:37:09
103.99.3.212	attack	MAIL: User Login Brute Force Attempt	2020-09-07 18:32:47
218.92.0.224	attack	Sep 7 12:58:17 minden010 sshd[9098]: Failed password for root from 218.92.0.224 port 19000 ssh2 Sep 7 12:58:20 minden010 sshd[9098]: Failed password for root from 218.92.0.224 port 19000 ssh2 Sep 7 12:58:23 minden010 sshd[9098]: Failed password for root from 218.92.0.224 port 19000 ssh2 Sep 7 12:58:26 minden010 sshd[9098]: Failed password for root from 218.92.0.224 port 19000 ssh2 ...	2020-09-07 19:12:59
122.51.83.175	attackspambots	(sshd) Failed SSH login from 122.51.83.175 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 6 19:06:29 server sshd[29782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.83.175 user=root Sep 6 19:06:30 server sshd[29782]: Failed password for root from 122.51.83.175 port 40494 ssh2 Sep 6 19:07:22 server sshd[30020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.83.175 user=root Sep 6 19:07:24 server sshd[30020]: Failed password for root from 122.51.83.175 port 50436 ssh2 Sep 6 19:12:40 server sshd[31360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.83.175 user=root	2020-09-07 18:46:30
39.123.123.29	attackbots	Sep 4 17:17:23 mailserver sshd[30801]: Invalid user admin from 39.123.123.29 Sep 4 17:17:23 mailserver sshd[30801]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.123.123.29 Sep 4 17:17:26 mailserver sshd[30801]: Failed password for invalid user admin from 39.123.123.29 port 34805 ssh2 Sep 4 17:17:26 mailserver sshd[30801]: Connection closed by 39.123.123.29 port 34805 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=39.123.123.29	2020-09-07 18:43:43
45.55.41.113	attackspambots	Sep 7 12:28:05 vps sshd[24205]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.41.113 Sep 7 12:28:07 vps sshd[24205]: Failed password for invalid user andcze from 45.55.41.113 port 36186 ssh2 Sep 7 12:32:33 vps sshd[24390]: Failed password for root from 45.55.41.113 port 43520 ssh2 ...	2020-09-07 19:06:08
134.209.106.7	attack	Time: Mon Sep 7 09:13:43 2020 +0000 IP: 134.209.106.7 (SG/Singapore/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 7 08:55:11 ca-29-ams1 sshd[20527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.106.7 user=root Sep 7 08:55:13 ca-29-ams1 sshd[20527]: Failed password for root from 134.209.106.7 port 50940 ssh2 Sep 7 09:09:54 ca-29-ams1 sshd[22801]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.106.7 user=root Sep 7 09:09:55 ca-29-ams1 sshd[22801]: Failed password for root from 134.209.106.7 port 45298 ssh2 Sep 7 09:13:40 ca-29-ams1 sshd[23400]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.106.7 user=root	2020-09-07 18:35:48
58.56.56.174	attack	Unauthorized connection attempt from IP address 58.56.56.174 on Port 445(SMB)	2020-09-07 19:11:43
121.201.74.154	attack	...	2020-09-07 18:40:10

最近上报的IP列表

235.49.68.255	190.73.10.101	36.85.218.137	181.221.89.157
175.143.15.79	104.148.55.226	36.73.33.162	222.175.123.206
200.62.109.36	43.226.150.151	14.163.173.69	116.255.161.41
115.79.138.186	36.85.220.213	113.255.115.180	77.35.245.96
200.105.212.206	195.154.133.15	191.93.6.89	148.25.43.70