159.138.158.12

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Huawei International Pte Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	badbot	2019-11-27 04:08:11

相同子网IP讨论:

IP	类型	评论内容	时间
159.138.158.15	spambotsattackproxynormal	spam	2020-01-10 19:09:22
159.138.158.190	spambotsproxy	Spam	2020-01-10 19:07:47
159.138.158.255	attackspam	Unauthorized access detected from banned ip	2019-12-28 20:31:41
159.138.158.141	attackspambots	[Fri Dec 20 21:54:07.314039 2019] [ssl:info] [pid 23331:tid 140202362238720] [client 159.138.158.141:20899] AH02033: No hostname was provided via SNI for a name based virtual host ...	2019-12-21 00:33:27
159.138.158.32	attack	badbot	2019-11-27 06:23:48
159.138.158.183	attackbotsspam	badbot	2019-11-27 06:11:27
159.138.158.220	attack	badbot	2019-11-27 05:28:31
159.138.158.211	attackbots	badbot	2019-11-27 04:05:35
159.138.158.190	attack	badbot	2019-11-27 03:29:30
159.138.158.243	attack	Automatic report - Banned IP Access	2019-10-31 07:42:33

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.138.158.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48115
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;159.138.158.12.			IN	A

;; AUTHORITY SECTION:
.			201	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112602 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Nov 27 04:08:08 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

12.158.138.159.in-addr.arpa domain name pointer ecs-159-138-158-12.compute.hwclouds-dns.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
12.158.138.159.in-addr.arpa	name = ecs-159-138-158-12.compute.hwclouds-dns.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
89.248.168.112	attackspambots	UTC: 2019-12-06 port: 25/tcp	2019-12-07 21:26:35
213.128.67.212	attackspambots	Dec 7 11:21:19 fr01 sshd[13648]: Invalid user guest from 213.128.67.212 Dec 7 11:21:19 fr01 sshd[13648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.128.67.212 Dec 7 11:21:19 fr01 sshd[13648]: Invalid user guest from 213.128.67.212 Dec 7 11:21:21 fr01 sshd[13648]: Failed password for invalid user guest from 213.128.67.212 port 54720 ssh2 ...	2019-12-07 21:19:52
184.105.139.81	attackbots	8080/tcp 50075/tcp 548/tcp... [2019-10-07/12-07]34pkt,7pt.(tcp),3pt.(udp)	2019-12-07 21:45:06
62.159.228.138	attack	Dec 7 16:04:39 server sshd\[11694\]: Invalid user melaquias from 62.159.228.138 Dec 7 16:04:39 server sshd\[11694\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.bbf-shop.de Dec 7 16:04:41 server sshd\[11694\]: Failed password for invalid user melaquias from 62.159.228.138 port 7615 ssh2 Dec 7 16:14:16 server sshd\[14303\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.bbf-shop.de user=root Dec 7 16:14:18 server sshd\[14303\]: Failed password for root from 62.159.228.138 port 19965 ssh2 ...	2019-12-07 21:16:13
45.55.184.78	attackspam	Dec 7 03:35:44 hanapaa sshd\[4107\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.184.78 user=root Dec 7 03:35:46 hanapaa sshd\[4107\]: Failed password for root from 45.55.184.78 port 33830 ssh2 Dec 7 03:43:44 hanapaa sshd\[4947\]: Invalid user admin from 45.55.184.78 Dec 7 03:43:44 hanapaa sshd\[4947\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.184.78 Dec 7 03:43:47 hanapaa sshd\[4947\]: Failed password for invalid user admin from 45.55.184.78 port 43358 ssh2	2019-12-07 21:59:13
181.41.216.136	attackbotsspam	Dec 7 14:06:24 grey postfix/smtpd\[19954\]: NOQUEUE: reject: RCPT from unknown\[181.41.216.136\]: 554 5.7.1 Service unavailable\; Client host \[181.41.216.136\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[181.41.216.136\]\; from=\ to=\ proto=ESMTP helo=\<\[181.41.216.131\]\> ...	2019-12-07 21:35:05
37.146.30.226	attackbotsspam	Dec 7 07:24:53 MK-Soft-VM5 sshd[9453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.146.30.226 Dec 7 07:24:56 MK-Soft-VM5 sshd[9453]: Failed password for invalid user admin from 37.146.30.226 port 54414 ssh2 ...	2019-12-07 21:19:02
36.255.61.26	attackspam	Dec 7 13:51:08 tux-35-217 sshd\[18528\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.255.61.26 user=root Dec 7 13:51:10 tux-35-217 sshd\[18528\]: Failed password for root from 36.255.61.26 port 44916 ssh2 Dec 7 13:58:24 tux-35-217 sshd\[18582\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.255.61.26 user=sshd Dec 7 13:58:27 tux-35-217 sshd\[18582\]: Failed password for sshd from 36.255.61.26 port 54958 ssh2 ...	2019-12-07 21:21:15
112.35.44.125	attackbots	$f2bV_matches	2019-12-07 21:41:18
218.92.0.134	attackspam	Dec 7 14:24:55 eventyay sshd[889]: Failed password for root from 218.92.0.134 port 25643 ssh2 Dec 7 14:24:58 eventyay sshd[889]: Failed password for root from 218.92.0.134 port 25643 ssh2 Dec 7 14:25:08 eventyay sshd[889]: error: maximum authentication attempts exceeded for root from 218.92.0.134 port 25643 ssh2 [preauth] ...	2019-12-07 21:33:39
122.52.203.49	attack	UTC: 2019-12-06 port: 23/tcp	2019-12-07 22:00:50
89.248.171.175	attack	''	2019-12-07 21:20:44
92.220.10.100	attackbotsspam	abuseConfidenceScore blocked for 12h	2019-12-07 21:15:25
159.203.197.6	attackbotsspam	firewall-block, port(s): 445/tcp	2019-12-07 21:14:47
192.81.211.152	attack	Dec 7 14:26:41 localhost sshd\[13571\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.81.211.152 user=root Dec 7 14:26:43 localhost sshd\[13571\]: Failed password for root from 192.81.211.152 port 51762 ssh2 Dec 7 14:32:26 localhost sshd\[14198\]: Invalid user kl from 192.81.211.152 port 32974 Dec 7 14:32:26 localhost sshd\[14198\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.81.211.152	2019-12-07 21:40:16

最近上报的IP列表

98.218.223.42	178.167.56.108	117.153.225.188	31.191.212.230
110.88.8.123	112.99.118.104	190.137.95.149	14.23.37.162
106.171.74.46	68.121.92.39	159.138.151.225	83.80.108.96
190.236.206.6	144.17.79.82	67.1.187.212	61.178.136.153
201.224.48.165	113.241.79.238	108.26.116.192	172.199.106.217