159.138.233.54

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Thailand

运营商(isp): Huawei Thailand Clouds

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Host Scan	2019-12-18 18:28:39

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.138.233.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44938
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;159.138.233.54.			IN	A

;; AUTHORITY SECTION:
.			258	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121800 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Dec 18 18:28:35 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

54.233.138.159.in-addr.arpa domain name pointer ecs-159-138-233-54.compute.hwclouds-dns.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
54.233.138.159.in-addr.arpa	name = ecs-159-138-233-54.compute.hwclouds-dns.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
114.237.109.253	attack	SpamReport	2019-08-01 15:05:50
116.212.141.50	attackbotsspam	Aug 1 09:16:25 v22018076622670303 sshd\[25643\]: Invalid user bush from 116.212.141.50 port 39566 Aug 1 09:16:25 v22018076622670303 sshd\[25643\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.212.141.50 Aug 1 09:16:27 v22018076622670303 sshd\[25643\]: Failed password for invalid user bush from 116.212.141.50 port 39566 ssh2 ...	2019-08-01 15:18:07
58.57.4.238	attackbotsspam	Time: Wed Jul 31 23:12:26 2019 -0400 IP: 58.57.4.238 (CN/China/-) Failures: 30 (smtpauth) Interval: 3600 seconds Blocked: Permanent Block	2019-08-01 15:11:45
118.24.122.245	attack	Aug 1 04:46:55 vtv3 sshd\[17810\]: Invalid user qhsupport from 118.24.122.245 port 44845 Aug 1 04:46:55 vtv3 sshd\[17810\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.122.245 Aug 1 04:46:57 vtv3 sshd\[17810\]: Failed password for invalid user qhsupport from 118.24.122.245 port 44845 ssh2 Aug 1 04:50:21 vtv3 sshd\[19595\]: Invalid user leon from 118.24.122.245 port 19718 Aug 1 04:50:21 vtv3 sshd\[19595\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.122.245 Aug 1 05:03:11 vtv3 sshd\[25913\]: Invalid user kooroon from 118.24.122.245 port 32146 Aug 1 05:03:11 vtv3 sshd\[25913\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.122.245 Aug 1 05:03:13 vtv3 sshd\[25913\]: Failed password for invalid user kooroon from 118.24.122.245 port 32146 ssh2 Aug 1 05:06:28 vtv3 sshd\[27613\]: Invalid user exploit from 118.24.122.245 port 63562 Aug 1 05:06:28 vtv	2019-08-01 15:20:36
104.248.14.109	attackspam	k+ssh-bruteforce	2019-08-01 15:17:32
81.241.235.191	attackbotsspam	Aug 1 06:42:11 MK-Soft-VM7 sshd\[27727\]: Invalid user razvan from 81.241.235.191 port 38168 Aug 1 06:42:11 MK-Soft-VM7 sshd\[27727\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.241.235.191 Aug 1 06:42:13 MK-Soft-VM7 sshd\[27727\]: Failed password for invalid user razvan from 81.241.235.191 port 38168 ssh2 ...	2019-08-01 15:09:41
54.37.139.235	attack	Aug 1 07:37:23 eventyay sshd[8623]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.139.235 Aug 1 07:37:25 eventyay sshd[8623]: Failed password for invalid user granta from 54.37.139.235 port 54454 ssh2 Aug 1 07:41:40 eventyay sshd[9854]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.139.235 ...	2019-08-01 15:12:21
198.89.121.71	attackspambots	Jul 29 02:25:33 vayu sshd[467278]: Did not receive identification string from 198.89.121.71 Jul 29 04:36:44 vayu sshd[566505]: Invalid user bad from 198.89.121.71 Jul 29 04:36:45 vayu sshd[566505]: Failed password for invalid user bad from 198.89.121.71 port 59034 ssh2 Jul 29 04:36:45 vayu sshd[566505]: Received disconnect from 198.89.121.71: 11: Normal Shutdown, Thank you for playing [preauth] Jul 29 04:36:48 vayu sshd[566577]: Invalid user testdev from 198.89.121.71 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=198.89.121.71	2019-08-01 15:22:04
186.213.145.64	attackspam	Aug 1 09:31:43 yabzik sshd[4696]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.213.145.64 Aug 1 09:31:44 yabzik sshd[4696]: Failed password for invalid user emelia from 186.213.145.64 port 55487 ssh2 Aug 1 09:37:25 yabzik sshd[6621]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.213.145.64	2019-08-01 14:43:38
81.22.45.25	attack	Port Scan: TCP/33894	2019-08-01 14:47:02
179.108.105.53	attackbotsspam	Aug 1 06:20:30 localhost sshd\[24419\]: Invalid user csgo from 179.108.105.53 port 39244 Aug 1 06:20:30 localhost sshd\[24419\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.108.105.53 Aug 1 06:20:32 localhost sshd\[24419\]: Failed password for invalid user csgo from 179.108.105.53 port 39244 ssh2 Aug 1 06:32:34 localhost sshd\[24858\]: Invalid user mailing-list from 179.108.105.53 port 36736 Aug 1 06:32:34 localhost sshd\[24858\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.108.105.53 ...	2019-08-01 14:57:51
106.13.98.202	attack	SSH authentication failure x 6 reported by Fail2Ban ...	2019-08-01 14:36:01
191.53.250.83	attackspambots	libpam_shield report: forced login attempt	2019-08-01 15:28:28
90.210.171.107	attackbots	Jul 31 20:29:59 cac1d2 sshd\[14325\]: Invalid user ofsaa from 90.210.171.107 port 51424 Jul 31 20:29:59 cac1d2 sshd\[14325\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.210.171.107 Jul 31 20:30:02 cac1d2 sshd\[14325\]: Failed password for invalid user ofsaa from 90.210.171.107 port 51424 ssh2 ...	2019-08-01 15:08:12
209.17.96.226	attack	2019-08-01T03:29:00.008Z CLOSE host=209.17.96.226 port=60295 fd=4 time=32.034 bytes=503 ...	2019-08-01 15:17:04

最近上报的IP列表

218.225.137.87	203.187.169.101	41.230.22.128	49.206.26.142
45.136.108.153	119.28.149.239	23.129.64.223	115.223.34.141
116.255.199.232	54.37.54.244	5.189.138.190	113.14.131.26
137.21.137.192	98.29.150.76	46.26.8.33	178.207.172.84
192.210.163.123	110.77.236.159	40.92.68.52	171.229.166.87