159.89.138.221

基本信息:

城市(city): Santa Clara

省份(region): California

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
159.89.138.235	attack	TCP (SYN) 159.89.138.235:57212 -> port 9100, len 44	2020-05-24 19:22:50
159.89.138.85	attack	Unauthorized connection attempt detected from IP address 159.89.138.85 to port 8088	2019-12-17 05:48:02
159.89.138.85	attack	Scanning random ports - tries to find possible vulnerable services	2019-12-02 06:40:33

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.89.138.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52675
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;159.89.138.221.			IN	A

;; AUTHORITY SECTION:
.			1240	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040700 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun Apr 07 15:47:05 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 221.138.89.159.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 221.138.89.159.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
217.182.196.178	attack	Dec 14 13:05:57 tux-35-217 sshd\[9456\]: Invalid user leverett from 217.182.196.178 port 58090 Dec 14 13:05:57 tux-35-217 sshd\[9456\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.196.178 Dec 14 13:05:59 tux-35-217 sshd\[9456\]: Failed password for invalid user leverett from 217.182.196.178 port 58090 ssh2 Dec 14 13:11:39 tux-35-217 sshd\[9539\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.196.178 user=root ...	2019-12-14 20:31:44
185.176.27.254	attackspambots	12/14/2019-07:42:19.605947 185.176.27.254 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-12-14 20:52:11
137.74.44.162	attack	Invalid user fiddler from 137.74.44.162 port 60018	2019-12-14 20:40:01
206.189.114.0	attackbots	Dec 14 13:01:01 nextcloud sshd\[13489\]: Invalid user bsd from 206.189.114.0 Dec 14 13:01:01 nextcloud sshd\[13489\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.114.0 Dec 14 13:01:03 nextcloud sshd\[13489\]: Failed password for invalid user bsd from 206.189.114.0 port 44134 ssh2 ...	2019-12-14 20:36:48
112.85.42.172	attack	Dec 14 13:29:52 markkoudstaal sshd[13594]: Failed password for root from 112.85.42.172 port 5666 ssh2 Dec 14 13:30:03 markkoudstaal sshd[13594]: Failed password for root from 112.85.42.172 port 5666 ssh2 Dec 14 13:30:06 markkoudstaal sshd[13594]: Failed password for root from 112.85.42.172 port 5666 ssh2 Dec 14 13:30:06 markkoudstaal sshd[13594]: error: maximum authentication attempts exceeded for root from 112.85.42.172 port 5666 ssh2 [preauth]	2019-12-14 20:30:53
80.17.244.2	attackspambots	Dec 14 00:32:21 server sshd\[18539\]: Failed password for invalid user takehiko from 80.17.244.2 port 60934 ssh2 Dec 14 12:26:28 server sshd\[7712\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host2-244-static.17-80-b.business.telecomitalia.it user=root Dec 14 12:26:30 server sshd\[7712\]: Failed password for root from 80.17.244.2 port 41174 ssh2 Dec 14 12:35:58 server sshd\[10610\]: Invalid user centos from 80.17.244.2 Dec 14 12:35:58 server sshd\[10610\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host2-244-static.17-80-b.business.telecomitalia.it ...	2019-12-14 20:09:27
182.61.184.155	attackbotsspam	Dec 14 13:00:16 MK-Soft-VM7 sshd[16540]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.184.155 Dec 14 13:00:18 MK-Soft-VM7 sshd[16540]: Failed password for invalid user denis from 182.61.184.155 port 46534 ssh2 ...	2019-12-14 20:25:55
222.82.250.4	attack	Brute-force attempt banned	2019-12-14 20:51:33
179.124.34.8	attack	SSH login attempts.	2019-12-14 20:12:19
198.108.67.100	attack	" "	2019-12-14 20:48:59
211.253.10.96	attackbots	Dec 14 11:23:28 gw1 sshd[12408]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.253.10.96 Dec 14 11:23:30 gw1 sshd[12408]: Failed password for invalid user hassell from 211.253.10.96 port 43688 ssh2 ...	2019-12-14 20:45:58
146.115.62.55	attackbots	Dec 14 12:49:51 sso sshd[6049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.115.62.55 Dec 14 12:49:53 sso sshd[6049]: Failed password for invalid user aurelie from 146.115.62.55 port 49906 ssh2 ...	2019-12-14 20:14:44
157.230.109.166	attackbots	Dec 14 13:39:16 h2177944 sshd\[15853\]: Invalid user sysmanager from 157.230.109.166 port 59868 Dec 14 13:39:16 h2177944 sshd\[15853\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.109.166 Dec 14 13:39:18 h2177944 sshd\[15853\]: Failed password for invalid user sysmanager from 157.230.109.166 port 59868 ssh2 Dec 14 13:44:22 h2177944 sshd\[16130\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.109.166 user=mail ...	2019-12-14 20:51:12
51.38.37.128	attackbotsspam	[Aegis] @ 2019-12-14 12:37:13 0000 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-12-14 20:44:30
185.14.148.75	attack	email spam	2019-12-14 20:16:19

最近上报的IP列表

191.33.232.213	73.28.101.83	221.11.92.82	46.232.112.18
46.232.112.17	193.32.161.71	47.93.255.65	193.32.161.31
5.9.186.242	212.162.150.27	95.179.202.166	74.82.47.3
114.4.213.161	125.212.177.7	102.185.84.199	42.0.4.233
5.196.137.213	90.183.158.50	41.203.16.67	49.144.90.54