159.138.150.80

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Huawei International Pte Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	badbot	2020-02-07 03:03:05

相同子网IP讨论:

IP	类型	评论内容	时间
159.138.150.123	attack	Automatic report - Banned IP Access	2020-01-27 23:12:12
159.138.150.234	attack	Automatic report - Banned IP Access	2020-01-25 16:41:44
159.138.150.190	attackbotsspam	badbot	2020-01-15 09:22:36
159.138.150.96	attackbotsspam	badbot	2020-01-15 09:20:14
159.138.150.177	attackbots	badbot	2020-01-07 23:13:05
159.138.150.185	attackspambots	Automatic report - Banned IP Access	2019-12-27 02:14:38
159.138.150.123	attackbots	[Fri Dec 20 22:57:56.778126 2019] [ssl:info] [pid 28669:tid 140202510694144] [client 159.138.150.123:48562] AH02033: No hostname was provided via SNI for a name based virtual host ...	2019-12-21 00:51:57
159.138.150.233	attackbotsspam	badbot	2019-11-27 15:18:05
159.138.150.254	attackspam	badbot	2019-11-27 06:36:26
159.138.150.147	attackbotsspam	badbot	2019-11-27 06:18:42
159.138.150.15	attack	badbot	2019-11-27 05:58:07
159.138.150.109	attack	badbot	2019-11-27 05:54:55
159.138.150.119	attackspambots	badbot	2019-11-27 03:41:08
159.138.150.28	attack	badbot	2019-11-25 07:05:02
159.138.150.59	attackbotsspam	/download/file.php?id=177&sid=78413a4c0b7349a3f437813f5ab319dc	2019-11-01 04:08:43

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.138.150.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29573
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;159.138.150.80.			IN	A

;; AUTHORITY SECTION:
.			540	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020600 1800 900 604800 86400

;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 07 03:03:01 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

80.150.138.159.in-addr.arpa domain name pointer ecs-159-138-150-80.compute.hwclouds-dns.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
80.150.138.159.in-addr.arpa	name = ecs-159-138-150-80.compute.hwclouds-dns.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
195.206.105.217	attackspam	Aug 14 01:06:23 vps639187 sshd\[7883\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.206.105.217 user=root Aug 14 01:06:25 vps639187 sshd\[7883\]: Failed password for root from 195.206.105.217 port 48114 ssh2 Aug 14 01:06:28 vps639187 sshd\[7883\]: Failed password for root from 195.206.105.217 port 48114 ssh2 ...	2020-08-14 07:41:26
182.61.136.3	attack	$f2bV_matches	2020-08-14 08:06:48
101.108.209.188	attackspambots	" "	2020-08-14 07:59:27
167.99.49.115	attackspam	2020-08-13T22:43:51.883643ks3355764 sshd[13797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.49.115 user=root 2020-08-13T22:43:53.482594ks3355764 sshd[13797]: Failed password for root from 167.99.49.115 port 35452 ssh2 ...	2020-08-14 07:32:39
103.92.24.240	attackspambots	Aug 14 00:58:32 root sshd[3011]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.92.24.240 user=root Aug 14 00:58:34 root sshd[3011]: Failed password for root from 103.92.24.240 port 52988 ssh2 ...	2020-08-14 07:44:33
185.59.44.23	attackbotsspam	185.59.44.23 - - [13/Aug/2020:22:43:46 +0200] "GET /wp-login.php HTTP/1.1" 200 8775 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 185.59.44.23 - - [13/Aug/2020:22:43:48 +0200] "POST /wp-login.php HTTP/1.1" 200 9026 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 185.59.44.23 - - [13/Aug/2020:22:43:49 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-14 07:37:03
178.47.143.198	attackbots	Aug 13 23:54:53 journals sshd\[17199\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.47.143.198 user=root Aug 13 23:54:55 journals sshd\[17199\]: Failed password for root from 178.47.143.198 port 41722 ssh2 Aug 13 23:58:46 journals sshd\[17580\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.47.143.198 user=root Aug 13 23:58:47 journals sshd\[17580\]: Failed password for root from 178.47.143.198 port 52376 ssh2 Aug 14 00:02:42 journals sshd\[17979\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.47.143.198 user=root ...	2020-08-14 08:03:54
45.14.150.140	attackbotsspam	2020-08-13T23:19:55.943497centos sshd[5603]: Failed password for root from 45.14.150.140 port 53452 ssh2 2020-08-13T23:22:04.897840centos sshd[5724]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.150.140 user=root 2020-08-13T23:22:06.953054centos sshd[5724]: Failed password for root from 45.14.150.140 port 36680 ssh2 ...	2020-08-14 07:38:20
101.51.155.68	attackbotsspam	1597351414 - 08/13/2020 22:43:34 Host: 101.51.155.68/101.51.155.68 Port: 445 TCP Blocked	2020-08-14 07:46:42
5.135.224.151	attack	Aug 14 01:24:43 ns37 sshd[5988]: Failed password for root from 5.135.224.151 port 56474 ssh2 Aug 14 01:29:55 ns37 sshd[6236]: Failed password for root from 5.135.224.151 port 59188 ssh2	2020-08-14 07:33:32
61.174.232.250	attackspambots	Aug 13 16:43:11 esmtp postfix/smtpd[5031]: lost connection after AUTH from unknown[61.174.232.250] Aug 13 16:43:12 esmtp postfix/smtpd[4981]: lost connection after AUTH from unknown[61.174.232.250] Aug 13 16:43:14 esmtp postfix/smtpd[5019]: lost connection after AUTH from unknown[61.174.232.250] Aug 13 16:43:15 esmtp postfix/smtpd[5031]: lost connection after AUTH from unknown[61.174.232.250] Aug 13 16:43:17 esmtp postfix/smtpd[4981]: lost connection after AUTH from unknown[61.174.232.250] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=61.174.232.250	2020-08-14 07:59:52
178.32.105.63	attack	Aug 13 23:21:43 jumpserver sshd[143178]: Failed password for root from 178.32.105.63 port 57454 ssh2 Aug 13 23:25:14 jumpserver sshd[143226]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.32.105.63 user=root Aug 13 23:25:16 jumpserver sshd[143226]: Failed password for root from 178.32.105.63 port 40118 ssh2 ...	2020-08-14 07:58:39
116.196.94.108	attackspam	Aug 13 22:24:32 ns382633 sshd\[10227\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.94.108 user=root Aug 13 22:24:34 ns382633 sshd\[10227\]: Failed password for root from 116.196.94.108 port 49494 ssh2 Aug 13 22:39:49 ns382633 sshd\[13034\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.94.108 user=root Aug 13 22:39:51 ns382633 sshd\[13034\]: Failed password for root from 116.196.94.108 port 47060 ssh2 Aug 13 22:43:49 ns382633 sshd\[13833\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.94.108 user=root	2020-08-14 07:34:03
118.163.101.207	attackbots	(sshd) Failed SSH login from 118.163.101.207 (TW/Taiwan/mail3.lydsec.com): 5 in the last 3600 secs	2020-08-14 07:31:58
45.139.221.191	attackbots	From back@carenciazero.live Thu Aug 13 17:43:19 2020 Received: from caremx10.carenciazero.live ([45.139.221.191]:56628)	2020-08-14 07:55:26

最近上报的IP列表

5.185.95.70	187.177.85.161	5.249.155.183	1.61.74.52
14.174.62.104	80.211.135.211	103.242.47.66	187.202.178.134
167.71.67.238	162.243.131.92	177.131.108.161	191.8.111.241
185.230.125.83	106.0.36.66	125.213.216.180	195.154.23.106
94.217.195.197	113.183.99.128	59.44.149.52	61.149.194.91