159.138.11.193

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Huawei International Pte Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	ECShop Remote Code Execution Vulnerability, PTR: ecs-159-138-11-193.compute.hwclouds-dns.com.	2019-09-10 11:07:21

相同子网IP讨论:

IP	类型	评论内容	时间
159.138.117.89	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-05-28 23:06:41
159.138.117.89	attackbotsspam	xmlrpc attack	2020-05-28 06:52:16
159.138.119.7	attackspambots	Dec 22 18:39:52 plusreed sshd[17472]: Invalid user arbanas from 159.138.119.7 ...	2019-12-23 07:40:23
159.138.119.7	attackbotsspam	fraudulent SSH attempt	2019-12-14 04:28:28
159.138.119.7	attackbotsspam	Dec 12 16:35:59 ns41 sshd[18739]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.138.119.7	2019-12-13 00:34:47
159.138.119.7	attackspambots	detected by Fail2Ban	2019-12-12 20:57:33

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.138.11.193
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60653
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;159.138.11.193.			IN	A

;; AUTHORITY SECTION:
.			1932	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090902 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Sep 10 11:07:15 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

193.11.138.159.in-addr.arpa domain name pointer ecs-159-138-11-193.compute.hwclouds-dns.com.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
193.11.138.159.in-addr.arpa	name = ecs-159-138-11-193.compute.hwclouds-dns.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
222.186.173.226	attackbots	Jun 12 00:11:08 vmi345603 sshd[6884]: Failed password for root from 222.186.173.226 port 22835 ssh2 Jun 12 00:11:11 vmi345603 sshd[6884]: Failed password for root from 222.186.173.226 port 22835 ssh2 ...	2020-06-12 06:11:53
187.162.116.220	attack	Automatic report - Port Scan Attack	2020-06-12 06:20:24
94.191.66.227	attackbots	Invalid user waw from 94.191.66.227 port 54548	2020-06-12 06:15:17
128.199.95.163	attack	Unauthorised connection attempt detected at AUO FR1 NODE2. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-06-12 06:38:32
222.186.42.155	attackbots	Jun 12 00:30:20 piServer sshd[20109]: Failed password for root from 222.186.42.155 port 13441 ssh2 Jun 12 00:30:23 piServer sshd[20109]: Failed password for root from 222.186.42.155 port 13441 ssh2 Jun 12 00:30:26 piServer sshd[20109]: Failed password for root from 222.186.42.155 port 13441 ssh2 ...	2020-06-12 06:34:57
52.66.196.239	attackbots	Jun 11 20:49:22 XXX sshd[35991]: Invalid user 2k18 from 52.66.196.239 port 53354	2020-06-12 06:07:18
218.92.0.172	attackspambots	Triggered by Fail2Ban at Ares web server	2020-06-12 06:33:51
186.95.130.16	attackspambots	1591914539 - 06/12/2020 00:28:59 Host: 186.95.130.16/186.95.130.16 Port: 445 TCP Blocked	2020-06-12 06:34:12
34.73.53.35	attackspam	Automated report (2020-06-12T06:28:43+08:00). Misbehaving bot detected at this address.	2020-06-12 06:45:41
222.186.15.158	attackspambots	Jun 12 00:05:06 home sshd[1887]: Failed password for root from 222.186.15.158 port 21130 ssh2 Jun 12 00:05:16 home sshd[1908]: Failed password for root from 222.186.15.158 port 51943 ssh2 ...	2020-06-12 06:07:55
54.37.159.12	attackspambots	Jun 12 01:22:02 pkdns2 sshd\[54080\]: Invalid user pi from 54.37.159.12Jun 12 01:22:04 pkdns2 sshd\[54080\]: Failed password for invalid user pi from 54.37.159.12 port 59392 ssh2Jun 12 01:25:23 pkdns2 sshd\[54252\]: Invalid user teamspeak2 from 54.37.159.12Jun 12 01:25:25 pkdns2 sshd\[54252\]: Failed password for invalid user teamspeak2 from 54.37.159.12 port 33436 ssh2Jun 12 01:28:38 pkdns2 sshd\[54413\]: Invalid user shop1 from 54.37.159.12Jun 12 01:28:40 pkdns2 sshd\[54413\]: Failed password for invalid user shop1 from 54.37.159.12 port 35710 ssh2 ...	2020-06-12 06:46:07
185.173.35.21	attackbotsspam	srv02 Mass scanning activity detected Target: 3390 ..	2020-06-12 06:12:15
46.38.150.188	attackspambots	2020-06-12T00:20:23+02:00 exim[6134]: fixed_login authenticator failed for (User) [46.38.150.188]: 535 Incorrect authentication data (set_id=tsunami@dosoft.hu)	2020-06-12 06:23:22
192.116.136.6	attack	Automatic report - XMLRPC Attack	2020-06-12 06:06:27
51.158.162.242	attackspam	671. On Jun 11 2020 experienced a Brute Force SSH login attempt -> 7 unique times by 51.158.162.242.	2020-06-12 06:15:31

最近上报的IP列表

200.116.76.24	175.248.91.175	63.73.136.77	39.29.42.192
188.40.159.236	193.112.2.207	182.61.10.190	185.93.3.111
62.180.218.148	125.155.208.85	45.196.217.134	168.96.57.82
84.56.175.59	124.221.44.106	106.75.85.37	3.200.250.80
20.99.215.120	125.61.20.146	53.144.19.53	118.56.135.71