65.124.94.138 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): CenturyLink Communications LLC

主机名(hostname): unknown

机构(organization): CenturyLink Communications, LLC

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Oct 30 11:52:54 vps691689 sshd[10284]: Failed password for root from 65.124.94.138 port 45984 ssh2 Oct 30 11:57:38 vps691689 sshd[10361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.124.94.138 ...	2019-10-30 19:01:44
attackspambots	Oct 19 11:20:27 ArkNodeAT sshd\[15758\]: Invalid user git from 65.124.94.138 Oct 19 11:20:27 ArkNodeAT sshd\[15758\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.124.94.138 Oct 19 11:20:29 ArkNodeAT sshd\[15758\]: Failed password for invalid user git from 65.124.94.138 port 58118 ssh2	2019-10-19 17:22:19
attack	$f2bV_matches	2019-10-19 05:00:30
attackbots	Oct 18 18:53:31 MK-Soft-VM7 sshd[21720]: Failed password for root from 65.124.94.138 port 43076 ssh2 ...	2019-10-19 01:56:53
attackbotsspam	$f2bV_matches	2019-10-15 22:39:17
attackspambots	Sep 20 21:22:46 nextcloud sshd\[5746\]: Invalid user vt from 65.124.94.138 Sep 20 21:22:46 nextcloud sshd\[5746\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.124.94.138 Sep 20 21:22:48 nextcloud sshd\[5746\]: Failed password for invalid user vt from 65.124.94.138 port 50744 ssh2 ...	2019-09-21 05:50:44
attackbots	2019-08-17T10:30:41.873274abusebot-7.cloudsearch.cf sshd\[364\]: Invalid user fax from 65.124.94.138 port 45056	2019-08-17 18:32:08
attack	2019-08-10T22:33:57.190926abusebot-5.cloudsearch.cf sshd\[21987\]: Invalid user ftp3 from 65.124.94.138 port 59702	2019-08-11 07:01:53
attackbotsspam	2019-08-09T17:30:05.967548abusebot-2.cloudsearch.cf sshd\[23411\]: Invalid user valentine from 65.124.94.138 port 44634	2019-08-10 07:08:20
attackbots	Jul 29 10:25:04 OPSO sshd\[21153\]: Invalid user fazlu from 65.124.94.138 port 39354 Jul 29 10:25:04 OPSO sshd\[21153\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.124.94.138 Jul 29 10:25:07 OPSO sshd\[21153\]: Failed password for invalid user fazlu from 65.124.94.138 port 39354 ssh2 Jul 29 10:32:32 OPSO sshd\[22149\]: Invalid user ddd!@\#\$%\^\& from 65.124.94.138 port 35466 Jul 29 10:32:32 OPSO sshd\[22149\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.124.94.138	2019-07-29 23:58:12

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 65.124.94.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50849
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;65.124.94.138.			IN	A

;; AUTHORITY SECTION:
.			3486	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072900 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 29 23:57:50 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

138.94.124.65.in-addr.arpa domain name pointer 65-124-94-138.dia.static.qwest.net.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
138.94.124.65.in-addr.arpa	name = 65-124-94-138.dia.static.qwest.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
218.92.0.192	attack	02/29/2020-02:53:46.753751 218.92.0.192 Protocol: 6 ET SCAN Potential SSH Scan	2020-02-29 15:54:35
113.178.106.203	attackspambots	Unauthorized connection attempt detected from IP address 113.178.106.203 to port 23 [J]	2020-02-29 15:54:55
203.170.143.100	attackbotsspam	1582955048 - 02/29/2020 12:44:08 Host: 203.170.143.100/203.170.143.100 Port: 23 TCP Blocked ...	2020-02-29 15:31:06
159.192.143.249	attackspam	2020-02-29T07:49:49.714222vps773228.ovh.net sshd[21827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.143.249 user=ftp 2020-02-29T07:49:52.026679vps773228.ovh.net sshd[21827]: Failed password for ftp from 159.192.143.249 port 39806 ssh2 2020-02-29T07:59:53.096380vps773228.ovh.net sshd[21853]: Invalid user alias from 159.192.143.249 port 50012 2020-02-29T07:59:53.110108vps773228.ovh.net sshd[21853]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.143.249 2020-02-29T07:59:53.096380vps773228.ovh.net sshd[21853]: Invalid user alias from 159.192.143.249 port 50012 2020-02-29T07:59:55.343519vps773228.ovh.net sshd[21853]: Failed password for invalid user alias from 159.192.143.249 port 50012 ssh2 2020-02-29T08:09:56.531096vps773228.ovh.net sshd[21929]: Invalid user rstudio-server from 159.192.143.249 port 60224 2020-02-29T08:09:56.549269vps773228.ovh.net sshd[21929]: pam_unix(sshd:auth): authen ...	2020-02-29 15:38:53
176.52.97.73	attack	[portscan] Port scan	2020-02-29 15:39:49
200.59.10.49	attackspam	1582955074 - 02/29/2020 06:44:34 Host: 200.59.10.49/200.59.10.49 Port: 445 TCP Blocked	2020-02-29 15:18:45
113.187.155.209	attack	trying to access non-authorized port	2020-02-29 15:23:14
178.33.229.120	attackbots	Feb 28 20:58:17 wbs sshd\[14015\]: Invalid user es from 178.33.229.120 Feb 28 20:58:17 wbs sshd\[14015\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns230823.ovh.net Feb 28 20:58:19 wbs sshd\[14015\]: Failed password for invalid user es from 178.33.229.120 port 36308 ssh2 Feb 28 21:04:59 wbs sshd\[14521\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns230823.ovh.net user=root Feb 28 21:05:02 wbs sshd\[14521\]: Failed password for root from 178.33.229.120 port 38774 ssh2	2020-02-29 15:17:15
39.98.212.165	attackspambots	Feb 29 09:38:54 journals sshd\[29860\]: Invalid user centos from 39.98.212.165 Feb 29 09:38:54 journals sshd\[29860\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.98.212.165 Feb 29 09:38:56 journals sshd\[29860\]: Failed password for invalid user centos from 39.98.212.165 port 53796 ssh2 Feb 29 09:44:11 journals sshd\[30354\]: Invalid user centos from 39.98.212.165 Feb 29 09:44:12 journals sshd\[30354\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.98.212.165 ...	2020-02-29 15:49:35
104.168.174.226	attackspam	Feb 29 06:44:03 MK-Soft-VM4 sshd[2825]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.168.174.226 Feb 29 06:44:06 MK-Soft-VM4 sshd[2825]: Failed password for invalid user jira1 from 104.168.174.226 port 33804 ssh2 ...	2020-02-29 15:23:27
112.85.42.176	attackspambots	Feb 29 12:52:39 gw1 sshd[1875]: Failed password for root from 112.85.42.176 port 27028 ssh2 Feb 29 12:52:53 gw1 sshd[1875]: error: maximum authentication attempts exceeded for root from 112.85.42.176 port 27028 ssh2 [preauth] ...	2020-02-29 15:55:17
190.72.173.111	attackspambots	20/2/29@00:43:52: FAIL: Alarm-Network address from=190.72.173.111 20/2/29@00:43:52: FAIL: Alarm-Network address from=190.72.173.111 ...	2020-02-29 15:51:39
200.54.51.124	attackspambots	Invalid user bd from 200.54.51.124 port 47418 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.54.51.124 Failed password for invalid user bd from 200.54.51.124 port 47418 ssh2 Invalid user ts from 200.54.51.124 port 51736 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.54.51.124	2020-02-29 15:51:02
222.186.180.223	attack	[ssh] SSH attack	2020-02-29 15:45:11
45.143.220.164	attack	[2020-02-29 02:14:43] NOTICE[1148] chan_sip.c: Registration from '"100501" ' failed for '45.143.220.164:5702' - Wrong password [2020-02-29 02:14:43] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-02-29T02:14:43.872-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="100501",SessionID="0x7fd82c81c298",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.220.164/5702",Challenge="0cb31305",ReceivedChallenge="0cb31305",ReceivedHash="188888e132c3469d0214a98807317db4" [2020-02-29 02:14:43] NOTICE[1148] chan_sip.c: Registration from '"100501" ' failed for '45.143.220.164:5702' - Wrong password [2020-02-29 02:14:43] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-02-29T02:14:43.978-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="100501",SessionID="0x7fd82c39c1e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddre ...	2020-02-29 15:33:30

最近上报的IP列表

128.199.154.177	204.168.71.216	87.239.85.169	195.250.65.142
74.248.88.130	201.137.245.64	114.84.243.208	210.28.110.215
122.224.55.130	88.125.245.197	202.248.114.157	185.53.88.62
216.83.7.150	167.99.224.168	219.92.42.88	110.74.180.75
205.69.72.85	179.15.6.21	111.67.199.161	247.57.215.241