157.254.38.189

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#



# start

NetRange:       157.254.0.0 - 157.254.255.255
CIDR:           157.254.0.0/16
NetName:        VANTIVA
NetHandle:      NET-157-254-0-0-1
Parent:         NET157 (NET-157-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   Vantiva USA Shared Services Inc. (TU-310-Z)
RegDate:        1992-02-08
Updated:        2024-01-03
Ref:            https://rdap.arin.net/registry/ip/157.254.0.0


OrgName:        Vantiva USA Shared Services Inc.
OrgId:          TU-310-Z
Address:        4855 Peachtree Industrial Blvd., Suite 200
City:           Norcross
StateProv:      GA
PostalCode:     30092
Country:        US
RegDate:        2021-07-06
Updated:        2024-01-03
Ref:            https://rdap.arin.net/registry/entity/TU-310-Z


OrgRoutingHandle: IST36-ARIN
OrgRoutingName:   IPXO Support Team
OrgRoutingPhone:  +1 (650) 564-3425  
OrgRoutingEmail:  support@ipxo.com
OrgRoutingRef:    https://rdap.arin.net/registry/entity/IST36-ARIN

OrgAbuseHandle: ABUSE8923-ARIN
OrgAbuseName:   Abuse Admin
OrgAbusePhone:  +1-818-397-8360 
OrgAbuseEmail:  Abuse@vantiva.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/ABUSE8923-ARIN

OrgTechHandle: RIRAD2-ARIN
OrgTechName:   RIR Admin
OrgTechPhone:  +1-818-397-8360 
OrgTechEmail:  rradmin@vantiva.com
OrgTechRef:    https://rdap.arin.net/registry/entity/RIRAD2-ARIN

# end


# start

NetRange:       157.254.0.0 - 157.254.127.255
CIDR:           157.254.0.0/17
NetName:        IPXO-157-254-0-0-17
NetHandle:      NET-157-254-0-0-2
Parent:         VANTIVA (NET-157-254-0-0-1)
NetType:        Reallocated
OriginAS:       
Organization:   IPXO LLC (IL-845)
RegDate:        2022-01-12
Updated:        2024-04-23
Ref:            https://rdap.arin.net/registry/ip/157.254.0.0


OrgName:        IPXO LLC
OrgId:          IL-845
Address:        3132 State Street
City:           Dallas
StateProv:      TX
PostalCode:     75204-3500
Country:        US
RegDate:        2021-03-25
Updated:        2025-09-10
Comment:        Geofeed https://geofeed.ipxo.com/geofeed.txt
Ref:            https://rdap.arin.net/registry/entity/IL-845


OrgAbuseHandle: IAMT1-ARIN
OrgAbuseName:   IPXO Abuse Management Team
OrgAbusePhone:  +1 (650) 934-1667 
OrgAbuseEmail:  abuse@ipxo.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/IAMT1-ARIN

OrgTechHandle: IST36-ARIN
OrgTechName:   IPXO Support Team
OrgTechPhone:  +1 (650) 564-3425  
OrgTechEmail:  support@ipxo.com
OrgTechRef:    https://rdap.arin.net/registry/entity/IST36-ARIN

OrgDNSHandle: IST36-ARIN
OrgDNSName:   IPXO Support Team
OrgDNSPhone:  +1 (650) 564-3425  
OrgDNSEmail:  support@ipxo.com
OrgDNSRef:    https://rdap.arin.net/registry/entity/IST36-ARIN

# end


# start

NetRange:       157.254.0.0 - 157.254.127.255
CIDR:           157.254.0.0/17
NetName:        NETUTILS
NetHandle:      NET-157-254-0-0-3
Parent:         IPXO-157-254-0-0-17 (NET-157-254-0-0-2)
NetType:        Reallocated
OriginAS:       
Organization:   Internet Utilities NA LLC (DCL-577)
RegDate:        2025-01-07
Updated:        2025-01-07
Ref:            https://rdap.arin.net/registry/ip/157.254.0.0



OrgName:        Internet Utilities NA LLC
OrgId:          DCL-577
Address:        2711 Centerville Road
City:           Wilmington
StateProv:      DE
PostalCode:     19808
Country:        US
RegDate:        2015-11-18
Updated:        2024-08-23
Ref:            https://rdap.arin.net/registry/entity/DCL-577


OrgTechHandle: IUS-ARIN
OrgTechName:   Internet Utilities Support
OrgTechPhone:  +1-650-564-3425 
OrgTechEmail:  support@netutils.io
OrgTechRef:    https://rdap.arin.net/registry/entity/IUS-ARIN

OrgAbuseHandle: IUA-ARIN
OrgAbuseName:   Internet Utilities Abuse
OrgAbusePhone:  +1-650-934-1667 
OrgAbuseEmail:  report@abuseradar.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/IUA-ARIN

# end



#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.254.38.189
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43145
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;157.254.38.189.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025112901 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 29 14:41:08 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

Host 189.38.254.157.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 189.38.254.157.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
115.231.73.154	attack	Nov 29 05:58:52 venus sshd\[12513\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.231.73.154 user=root Nov 29 05:58:54 venus sshd\[12513\]: Failed password for root from 115.231.73.154 port 48098 ssh2 Nov 29 06:02:39 venus sshd\[12560\]: Invalid user sandy from 115.231.73.154 port 38504 ...	2019-11-29 14:03:05
134.209.70.255	attack	Nov 29 05:52:21 ns3042688 sshd\[653\]: Invalid user ben from 134.209.70.255 Nov 29 05:52:21 ns3042688 sshd\[653\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.70.255 Nov 29 05:52:24 ns3042688 sshd\[653\]: Failed password for invalid user ben from 134.209.70.255 port 51390 ssh2 Nov 29 05:55:36 ns3042688 sshd\[1949\]: Invalid user taildeman from 134.209.70.255 Nov 29 05:55:36 ns3042688 sshd\[1949\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.70.255 ...	2019-11-29 14:14:40
63.175.159.27	attackbots	Nov 29 08:38:48 server sshd\[15776\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=63.175.159.27 user=root Nov 29 08:38:50 server sshd\[15776\]: Failed password for root from 63.175.159.27 port 44493 ssh2 Nov 29 09:01:24 server sshd\[21785\]: Invalid user squid from 63.175.159.27 Nov 29 09:01:24 server sshd\[21785\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=63.175.159.27 Nov 29 09:01:27 server sshd\[21785\]: Failed password for invalid user squid from 63.175.159.27 port 34146 ssh2 ...	2019-11-29 14:22:16
45.116.77.166	attack	Nov 29 06:18:15 srv01 sshd[15458]: Invalid user year from 45.116.77.166 port 52988 Nov 29 06:18:15 srv01 sshd[15458]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.116.77.166 Nov 29 06:18:15 srv01 sshd[15458]: Invalid user year from 45.116.77.166 port 52988 Nov 29 06:18:17 srv01 sshd[15458]: Failed password for invalid user year from 45.116.77.166 port 52988 ssh2 Nov 29 06:22:16 srv01 sshd[15878]: Invalid user lofthus from 45.116.77.166 port 44699 ...	2019-11-29 13:54:58
46.38.144.17	attack	Nov 29 07:03:36 webserver postfix/smtpd\[28114\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 29 07:04:13 webserver postfix/smtpd\[28114\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 29 07:04:49 webserver postfix/smtpd\[28114\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 29 07:05:26 webserver postfix/smtpd\[28170\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 29 07:06:03 webserver postfix/smtpd\[28170\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-11-29 14:17:31
61.183.178.194	attack	Nov 29 06:46:31 sd-53420 sshd\[3111\]: Invalid user chary from 61.183.178.194 Nov 29 06:46:31 sd-53420 sshd\[3111\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.183.178.194 Nov 29 06:46:33 sd-53420 sshd\[3111\]: Failed password for invalid user chary from 61.183.178.194 port 7562 ssh2 Nov 29 06:51:02 sd-53420 sshd\[3725\]: Invalid user dolly123 from 61.183.178.194 Nov 29 06:51:02 sd-53420 sshd\[3725\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.183.178.194 ...	2019-11-29 14:27:35
223.220.159.78	attack	Invalid user doernberg from 223.220.159.78 port 46929	2019-11-29 14:10:14
112.169.152.105	attackbots	Nov 29 05:52:38 v22018076622670303 sshd\[2110\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.169.152.105 user=mysql Nov 29 05:52:40 v22018076622670303 sshd\[2110\]: Failed password for mysql from 112.169.152.105 port 50970 ssh2 Nov 29 05:57:30 v22018076622670303 sshd\[2130\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.169.152.105 user=root ...	2019-11-29 13:54:20
49.232.35.211	attackbots	$f2bV_matches	2019-11-29 14:23:01
178.19.247.25	attack	Nov 29 05:56:55 exim[32666]: [1\32] 1iaYKr-0008Us-89 H=(luss.it) [178.19.247.25] F= rejected after DATA: This message scored 103.5 spam points.	2019-11-29 14:06:52
109.131.11.246	attackbotsspam	Nov 25 15:05:44 zulu1842 sshd[30997]: reveeclipse mapping checking getaddrinfo for 246.11-131-109.adsl-dyn.isp.belgacom.be [109.131.11.246] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 25 15:05:44 zulu1842 sshd[30997]: Invalid user nauenberg from 109.131.11.246 Nov 25 15:05:44 zulu1842 sshd[30997]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.131.11.246 Nov 25 15:05:46 zulu1842 sshd[30997]: Failed password for invalid user nauenberg from 109.131.11.246 port 57392 ssh2 Nov 25 15:05:46 zulu1842 sshd[30997]: Received disconnect from 109.131.11.246: 11: Bye Bye [preauth] Nov 25 15:05:58 zulu1842 sshd[31021]: reveeclipse mapping checking getaddrinfo for 246.11-131-109.adsl-dyn.isp.belgacom.be [109.131.11.246] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 25 15:05:58 zulu1842 sshd[31021]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.131.11.246 user=games Nov 25 15:05:59 zulu1842 sshd[31021]: ........ -------------------------------	2019-11-29 14:01:50
212.193.53.176	attackspambots	Nov 29 06:09:15 ns3042688 sshd\[6703\]: Failed password for backup from 212.193.53.176 port 59028 ssh2 Nov 29 06:12:38 ns3042688 sshd\[7766\]: Invalid user login from 212.193.53.176 Nov 29 06:12:40 ns3042688 sshd\[7766\]: Failed password for invalid user login from 212.193.53.176 port 39072 ssh2 Nov 29 06:16:05 ns3042688 sshd\[8996\]: Invalid user hus from 212.193.53.176 Nov 29 06:16:07 ns3042688 sshd\[8996\]: Failed password for invalid user hus from 212.193.53.176 port 47360 ssh2 ...	2019-11-29 14:12:36
159.203.201.155	attack	11/28/2019-23:57:21.606008 159.203.201.155 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-29 13:59:37
185.175.93.14	attackspambots	11/29/2019-06:58:08.340590 185.175.93.14 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-29 14:11:01
62.234.44.43	attack	Nov 29 06:57:50 vpn01 sshd[26945]: Failed password for lp from 62.234.44.43 port 60742 ssh2 Nov 29 07:01:50 vpn01 sshd[26974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.44.43 ...	2019-11-29 14:26:49

最近上报的IP列表

178.62.222.54	61.0.84.249	156.214.245.235	103.101.50.70
22.225.54.38	122.225.54.38	196.251.100.27	45.192.113.57
14.213.27.192	8.212.115.61	10.115.158.151	54.251.192.137
47.237.64.203	47.237.26.31	92.255.207.132	92.255.207.130
211.101.247.47	54.174.255.31	115.198.21.102	182.61.55.53