94.138.221.106

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Turkey

运营商(isp): IHS Telekomunikasyon Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 94.138.221.106 to port 14274 [T]	2020-09-01 16:48:43

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.138.221.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8397
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.138.221.106.			IN	A

;; AUTHORITY SECTION:
.			364	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020090100 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Sep 01 16:48:39 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

106.221.138.94.in-addr.arpa domain name pointer server.btkare.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
106.221.138.94.in-addr.arpa	name = server.btkare.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
137.103.147.138	attackspambots	Honeypot attack, port: 5555, PTR: d-137-103-147-138.mdde.cpe.atlanticbb.net.	2020-03-03 16:08:09
103.232.242.158	attack	Honeypot attack, port: 445, PTR: ip-arana.net.id.as63497.	2020-03-03 15:35:26
122.51.82.22	attack	Mar 2 20:49:58 eddieflores sshd\[8738\]: Invalid user hl2dm from 122.51.82.22 Mar 2 20:49:58 eddieflores sshd\[8738\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.82.22 Mar 2 20:49:59 eddieflores sshd\[8738\]: Failed password for invalid user hl2dm from 122.51.82.22 port 38358 ssh2 Mar 2 20:56:43 eddieflores sshd\[9287\]: Invalid user zps from 122.51.82.22 Mar 2 20:56:43 eddieflores sshd\[9287\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.82.22	2020-03-03 15:37:23
222.186.30.57	attackbots	Mar 3 08:56:42 MK-Soft-VM5 sshd[29879]: Failed password for root from 222.186.30.57 port 27380 ssh2 Mar 3 08:56:44 MK-Soft-VM5 sshd[29879]: Failed password for root from 222.186.30.57 port 27380 ssh2 ...	2020-03-03 15:58:53
164.132.62.233	attack	Mar 3 06:25:51 srv01 sshd[1088]: Invalid user dodserver from 164.132.62.233 port 48332 Mar 3 06:25:51 srv01 sshd[1088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.62.233 Mar 3 06:25:51 srv01 sshd[1088]: Invalid user dodserver from 164.132.62.233 port 48332 Mar 3 06:25:53 srv01 sshd[1088]: Failed password for invalid user dodserver from 164.132.62.233 port 48332 ssh2 Mar 3 06:34:19 srv01 sshd[16680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.62.233 user=root Mar 3 06:34:22 srv01 sshd[16680]: Failed password for root from 164.132.62.233 port 54992 ssh2 ...	2020-03-03 15:57:54
118.25.99.120	attackbots	Lines containing failures of 118.25.99.120 Mar 2 17:24:57 neweola sshd[11140]: Invalid user michael from 118.25.99.120 port 12035 Mar 2 17:24:57 neweola sshd[11140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.99.120 Mar 2 17:24:59 neweola sshd[11140]: Failed password for invalid user michael from 118.25.99.120 port 12035 ssh2 Mar 2 17:25:00 neweola sshd[11140]: Received disconnect from 118.25.99.120 port 12035:11: Bye Bye [preauth] Mar 2 17:25:00 neweola sshd[11140]: Disconnected from invalid user michael 118.25.99.120 port 12035 [preauth] Mar 2 17:35:08 neweola sshd[11511]: Invalid user suporte from 118.25.99.120 port 22891 Mar 2 17:35:08 neweola sshd[11511]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.99.120 Mar 2 17:35:10 neweola sshd[11511]: Failed password for invalid user suporte from 118.25.99.120 port 22891 ssh2 Mar 2 17:35:11 neweola sshd[11511]: Rec........ ------------------------------	2020-03-03 15:43:04
192.34.57.113	attackbotsspam	Mar 3 08:16:25 vps691689 sshd[6428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.34.57.113 Mar 3 08:16:27 vps691689 sshd[6428]: Failed password for invalid user lsfadmin from 192.34.57.113 port 49982 ssh2 ...	2020-03-03 15:49:06
170.254.145.66	attack	SpamScore above: 10.0	2020-03-03 16:03:13
159.65.8.107	attackbots	Mar 2 15:06:40 gutwein sshd[17543]: reveeclipse mapping checking getaddrinfo for 238835.cloudwaysapps.com [159.65.8.107] failed - POSSIBLE BREAK-IN ATTEMPT! Mar 2 15:06:43 gutwein sshd[17543]: Failed password for invalid user user from 159.65.8.107 port 49048 ssh2 Mar 2 15:06:43 gutwein sshd[17543]: Received disconnect from 159.65.8.107: 11: Normal Shutdown [preauth] Mar 2 15:10:08 gutwein sshd[18220]: reveeclipse mapping checking getaddrinfo for 238835.cloudwaysapps.com [159.65.8.107] failed - POSSIBLE BREAK-IN ATTEMPT! Mar 2 15:10:10 gutwein sshd[18220]: Failed password for invalid user www from 159.65.8.107 port 46930 ssh2 Mar 2 15:10:10 gutwein sshd[18220]: Received disconnect from 159.65.8.107: 11: Normal Shutdown [preauth] Mar 2 15:13:40 gutwein sshd[18838]: reveeclipse mapping checking getaddrinfo for 238835.cloudwaysapps.com [159.65.8.107] failed - POSSIBLE BREAK-IN ATTEMPT! Mar 2 15:13:42 gutwein sshd[18838]: Failed password for invalid user ftpuser fro........ -------------------------------	2020-03-03 16:09:30
187.110.208.2	attackspam	Telnet Server BruteForce Attack	2020-03-03 16:09:04
103.25.166.210	attack	Honeypot attack, port: 445, PTR: cro-bdg-fcl.cifo.co.id.	2020-03-03 16:12:19
111.230.221.58	attackbotsspam	Mar 3 04:08:25 server sshd\[22874\]: Failed password for invalid user pyqt from 111.230.221.58 port 34484 ssh2 Mar 3 10:10:32 server sshd\[24560\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.221.58 user=root Mar 3 10:10:35 server sshd\[24560\]: Failed password for root from 111.230.221.58 port 40930 ssh2 Mar 3 10:19:05 server sshd\[25774\]: Invalid user redmine from 111.230.221.58 Mar 3 10:19:05 server sshd\[25774\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.230.221.58 ...	2020-03-03 15:56:36
109.235.107.79	attackspam	Automatic report - Port Scan Attack	2020-03-03 15:45:02
120.25.223.0	attack	firewall-block, port(s): 1433/tcp	2020-03-03 15:48:05
181.1.116.9	attack	Honeypot attack, port: 5555, PTR: host9.181-1-116.telecom.net.ar.	2020-03-03 16:11:34

最近上报的IP列表

113.98.61.155	186.1.180.217	201.216.218.162	182.84.108.83
156.180.154.242	245.182.132.186	31.4.244.148	180.116.2.83
89.187.13.61	102.32.192.197	227.78.115.224	230.129.13.35
87.101.178.215	37.165.208.176	147.208.28.41	204.62.95.155
65.197.163.75	217.1.139.49	166.223.198.222	31.69.49.241