城市(city): unknown
省份(region): unknown
国家(country): Singapore
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 159.138.86.61 | attackbots | Fake Googlebot |
2020-09-06 20:40:56 |
| 159.138.86.61 | attackspambots | Fake Googlebot |
2020-09-06 12:19:35 |
| 159.138.86.61 | attackspambots | Fake Googlebot |
2020-09-06 04:41:45 |
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
NetRange: 159.138.0.0 - 159.138.255.255
CIDR: 159.138.0.0/16
NetName: APNIC
NetHandle: NET-159-138-0-0-1
Parent: NET159 (NET-159-0-0-0-0)
NetType: Early Registrations, Transferred to APNIC
OriginAS:
Organization: Asia Pacific Network Information Centre (APNIC)
RegDate: 2017-11-16
Updated: 2017-11-16
Ref: https://rdap.arin.net/registry/ip/159.138.0.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois://whois.apnic.net
OrgName: Asia Pacific Network Information Centre
OrgId: APNIC
Address: PO Box 3646
City: South Brisbane
StateProv: QLD
PostalCode: 4101
Country: AU
RegDate:
Updated: 2012-01-24
Ref: https://rdap.arin.net/registry/entity/APNIC
ReferralServer: whois://whois.apnic.net
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
OrgAbuseHandle: AWC12-ARIN
OrgAbuseName: APNIC Whois Contact
OrgAbusePhone: +61 7 3858 3188
OrgAbuseEmail: search-apnic-not-arin@apnic.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
OrgTechHandle: AWC12-ARIN
OrgTechName: APNIC Whois Contact
OrgTechPhone: +61 7 3858 3188
OrgTechEmail: search-apnic-not-arin@apnic.net
OrgTechRef: https://rdap.arin.net/registry/entity/AWC12-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
Found a referral to whois.apnic.net.
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '159.138.80.0 - 159.138.95.255'
% Abuse contact for '159.138.80.0 - 159.138.95.255' is 'hwssecurity@huaweicloud.com'
inetnum: 159.138.80.0 - 159.138.95.255
netname: Huawei-SG-CLOUDS
descr: Huawei Singapore Clouds
country: SG
admin-c: HIPL7-AP
tech-c: HIPL7-AP
abuse-c: AH905-AP
status: ALLOCATED NON-PORTABLE
mnt-by: MAINT-HIPL-SG
mnt-irt: IRT-HIPL-SG
last-modified: 2024-08-07T08:08:13Z
geofeed: https://res-static.hc-cdn.cn/cloudbu-site/china/zh-cn/IP-location/google-geo-feed.csv
source: APNIC
irt: IRT-HIPL-SG
address: 15A Changi Business Park Central 1 Eightrium
e-mail: hwssecurity@huaweicloud.com
abuse-mailbox: hwssecurity@huaweicloud.com
admin-c: HIPL4-AP
tech-c: HIPL4-AP
auth: # Filtered
remarks: hwssecurity@huaweicloud.com
remarks: hwssecurity@huaweicloud.com was validated on 2025-06-30
mnt-by: MAINT-HIPL-SG
last-modified: 2025-09-04T07:18:22Z
source: APNIC
role: ABUSE HIPLSG
country: ZZ
address: 15A Changi Business Park Central 1 Eightrium # 03-03/04, Singapore 486035
phone: +000000000
e-mail: hwssecurity@huaweicloud.com
admin-c: HIPL4-AP
tech-c: HIPL4-AP
nic-hdl: AH905-AP
remarks: Generated from irt object IRT-HIPL-SG
remarks: hwssecurity@huaweicloud.com was validated on 2025-06-30
abuse-mailbox: hwssecurity@huaweicloud.com
mnt-by: APNIC-ABUSE
last-modified: 2025-06-30T08:15:08Z
source: APNIC
role: HUAWEI INTERNATIONAL PTE LTD administrator
address: 15A Changi Business Park Central 1 Eightrium #03-03/04, Singapore 486035
country: SG
phone: +8618730601505
e-mail: wanggang222@huawei.com
admin-c: HIPL7-AP
tech-c: HIPL7-AP
nic-hdl: HIPL7-AP
notify: wanggang222@huawei.com
mnt-by: MAINT-HIPL-SG
last-modified: 2021-06-04T07:42:42Z
source: APNIC
% Information related to '159.138.86.0/24AS136907'
route: 159.138.86.0/24
country: SG
origin: AS136907
descr: HUAWEI INTERNATIONAL PTE. LTD.
15A Changi Business Park Central 1 Eightrium #03-03/04
mnt-by: MAINT-HIPL-SG
last-modified: 2025-02-12T09:23:29Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5); <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.138.86.200
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6060
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;159.138.86.200. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025110901 1800 900 604800 86400
;; Query time: 39 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 10 10:53:27 CST 2025
;; MSG SIZE rcvd: 107200.86.138.159.in-addr.arpa domain name pointer ecs-159-138-86-200.compute.hwclouds-dns.com.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
200.86.138.159.in-addr.arpa name = ecs-159-138-86-200.compute.hwclouds-dns.com.
Authoritative answers can be found from:| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 112.237.16.37 | attack | Caught in portsentry honeypot |
2019-07-19 00:59:45 |
| 81.66.89.42 | attackbots | Jul 18 18:40:48 vps647732 sshd[18891]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.66.89.42 Jul 18 18:40:50 vps647732 sshd[18891]: Failed password for invalid user website from 81.66.89.42 port 39380 ssh2 ... |
2019-07-19 01:07:42 |
| 220.132.75.167 | attackspam | $f2bV_matches |
2019-07-19 01:17:42 |
| 200.122.249.203 | attack | Jul 18 17:18:21 mail sshd\[7131\]: Invalid user lb from 200.122.249.203 port 40001 Jul 18 17:18:21 mail sshd\[7131\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.122.249.203 Jul 18 17:18:23 mail sshd\[7131\]: Failed password for invalid user lb from 200.122.249.203 port 40001 ssh2 Jul 18 17:23:43 mail sshd\[7177\]: Invalid user agenda from 200.122.249.203 port 38343 Jul 18 17:23:43 mail sshd\[7177\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.122.249.203 ... |
2019-07-19 01:29:30 |
| 51.254.248.18 | attackspambots | Jul 18 04:42:43 cumulus sshd[12958]: Invalid user ed from 51.254.248.18 port 56230 Jul 18 04:42:43 cumulus sshd[12958]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.248.18 Jul 18 04:42:45 cumulus sshd[12958]: Failed password for invalid user ed from 51.254.248.18 port 56230 ssh2 Jul 18 04:42:45 cumulus sshd[12958]: Received disconnect from 51.254.248.18 port 56230:11: Bye Bye [preauth] Jul 18 04:42:45 cumulus sshd[12958]: Disconnected from 51.254.248.18 port 56230 [preauth] Jul 18 05:01:19 cumulus sshd[13501]: Invalid user venda from 51.254.248.18 port 46158 Jul 18 05:01:19 cumulus sshd[13501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.248.18 Jul 18 05:01:22 cumulus sshd[13501]: Failed password for invalid user venda from 51.254.248.18 port 46158 ssh2 Jul 18 05:01:22 cumulus sshd[13501]: Received disconnect from 51.254.248.18 port 46158:11: Bye Bye [preauth] Jul 18 05:........ ------------------------------- |
2019-07-19 01:30:01 |
| 177.45.51.148 | attack | SSH Brute Force, server-1 sshd[14605]: Failed password for invalid user fuckyou from 177.45.51.148 port 33956 ssh2 |
2019-07-19 01:35:00 |
| 178.128.12.29 | attack | Jul 18 16:27:09 animalibera sshd[27282]: Invalid user dockeruser from 178.128.12.29 port 35002 ... |
2019-07-19 00:44:49 |
| 61.31.162.130 | attack | @LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-18 09:01:00,064 INFO [amun_request_handler] PortScan Detected on Port: 445 (61.31.162.130) |
2019-07-19 01:27:53 |
| 113.181.20.15 | attackspam | Automatic report - Port Scan Attack |
2019-07-19 01:25:31 |
| 90.150.204.194 | attack | MultiHost/MultiPort Probe, Scan, Hack - |
2019-07-19 00:43:09 |
| 154.95.18.135 | attackspam | 445/tcp 445/tcp 445/tcp... [2019-07-16/18]8pkt,1pt.(tcp) |
2019-07-19 01:36:09 |
| 113.90.232.25 | attackbots | Honeypot attack, port: 445, PTR: PTR record not found |
2019-07-19 00:33:09 |
| 198.245.63.151 | attackspambots | Jul 18 10:53:15 *** sshd[8223]: Invalid user tx from 198.245.63.151 |
2019-07-19 00:52:05 |
| 89.106.107.86 | attack | MultiHost/MultiPort Probe, Scan, Hack - |
2019-07-19 01:23:22 |
| 186.201.123.202 | attackspam | Jul 18 06:53:12 localhost kernel: [14691386.099548] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=186.201.123.202 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=244 ID=35456 PROTO=TCP SPT=52801 DPT=445 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 18 06:53:12 localhost kernel: [14691386.099587] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=186.201.123.202 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=244 ID=35456 PROTO=TCP SPT=52801 DPT=445 SEQ=51571523 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 OPT (02040218) Jul 18 06:53:12 localhost kernel: [14691386.108202] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=186.201.123.202 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=245 ID=35456 PROTO=TCP SPT=52801 DPT=445 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 18 06:53:12 localhost kernel: [14691386.108214] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=186.201.123.202 DST=[mungedIP2 |
2019-07-19 01:02:21 |