18.221.138.159

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Amazon Technologies Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	fraudulent SSH attempt	2019-08-27 07:36:08
attackspam	SSH/22 MH Probe, BF, Hack -	2019-08-25 08:38:22

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 18.221.138.159
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9412
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;18.221.138.159.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082401 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Aug 25 08:38:12 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

159.138.221.18.in-addr.arpa domain name pointer ec2-18-221-138-159.us-east-2.compute.amazonaws.com.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
159.138.221.18.in-addr.arpa	name = ec2-18-221-138-159.us-east-2.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
104.152.52.23	attackbotsspam	Unauthorized connection attempt detected from IP address 104.152.52.23 to port 170 [T]	2020-06-03 17:27:29
51.75.208.179	attack	Jun 3 05:57:56 hcbbdb sshd\[30434\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip179.ip-51-75-208.eu user=root Jun 3 05:57:58 hcbbdb sshd\[30434\]: Failed password for root from 51.75.208.179 port 57600 ssh2 Jun 3 06:01:27 hcbbdb sshd\[30774\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip179.ip-51-75-208.eu user=root Jun 3 06:01:28 hcbbdb sshd\[30774\]: Failed password for root from 51.75.208.179 port 35564 ssh2 Jun 3 06:04:53 hcbbdb sshd\[31105\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip179.ip-51-75-208.eu user=root	2020-06-03 17:03:36
222.186.180.6	attack	Fail2Ban - SSH Bruteforce Attempt	2020-06-03 16:59:28
185.220.101.203	attackspambots	Unauthorized connection attempt detected from IP address 185.220.101.203 to port 443	2020-06-03 17:10:12
178.128.194.144	attackbotsspam	Unauthorized connection attempt detected from IP address 178.128.194.144 to port 443	2020-06-03 17:24:44
180.76.176.174	attackbotsspam	Jun 2 23:45:43 mx sshd[24818]: Failed password for root from 180.76.176.174 port 38220 ssh2	2020-06-03 17:28:09
87.251.74.131	attack	ET DROP Dshield Block Listed Source group 1 - port: 7337 proto: TCP cat: Misc Attack	2020-06-03 17:04:25
175.6.76.71	attackspam	Invalid user jboss from 175.6.76.71 port 42282	2020-06-03 16:51:25
103.80.36.218	attackspam	SSH Brute Force	2020-06-03 17:26:03
159.65.97.7	attackbotsspam	TCP (SYN) 159.65.97.7:58593 -> port 30511, len 44	2020-06-03 16:51:58
74.105.72.152	attack	Failed password for invalid user root from 74.105.72.152 port 36562 ssh2	2020-06-03 17:01:29
115.84.92.250	attackbots	Dovecot Invalid User Login Attempt.	2020-06-03 17:05:25
45.143.220.246	attackbotsspam	Lines containing failures of 45.143.220.246 (max 1000) Jun 2 12:35:04 UTC__SANYALnet-Labs__cac1 sshd[32142]: Connection from 45.143.220.246 port 37892 on 64.137.179.160 port 22 Jun 2 12:35:04 UTC__SANYALnet-Labs__cac1 sshd[32143]: Connection from 45.143.220.246 port 37930 on 64.137.179.160 port 22 Jun 2 12:35:04 UTC__SANYALnet-Labs__cac1 sshd[32141]: Connection from 45.143.220.246 port 37925 on 64.137.179.160 port 22 Jun 2 12:35:04 UTC__SANYALnet-Labs__cac1 sshd[32144]: Connection from 45.143.220.246 port 37882 on 64.137.179.160 port 22 Jun 2 12:35:04 UTC__SANYALnet-Labs__cac1 sshd[32142]: Invalid user ubnt from 45.143.220.246 port 37892 Jun 2 12:35:04 UTC__SANYALnet-Labs__cac1 sshd[32141]: Invalid user admin from 45.143.220.246 port 37925 Jun 2 12:35:04 UTC__SANYALnet-Labs__cac1 sshd[32143]: User r.r from 45.143.220.246 not allowed because not listed in AllowUsers Jun 2 12:35:04 UTC__SANYALnet-Labs__cac1 sshd[32144]: User r.r from 45.143.220.246 not allowed beca........ ------------------------------	2020-06-03 16:57:49
147.135.203.181	attackspam	2020-06-03T08:52:38.512153mail.broermann.family sshd[16873]: Failed password for root from 147.135.203.181 port 45290 ssh2 2020-06-03T08:55:58.727880mail.broermann.family sshd[17154]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip181.ip-147-135-203.eu user=root 2020-06-03T08:56:01.145116mail.broermann.family sshd[17154]: Failed password for root from 147.135.203.181 port 51098 ssh2 2020-06-03T08:59:10.618068mail.broermann.family sshd[17450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip181.ip-147-135-203.eu user=root 2020-06-03T08:59:12.393230mail.broermann.family sshd[17450]: Failed password for root from 147.135.203.181 port 56908 ssh2 ...	2020-06-03 17:12:07
172.93.4.78	attackbots	Fail2Ban Ban Triggered	2020-06-03 16:58:28

最近上报的IP列表

16.125.152.2	238.220.25.239	101.12.214.97	54.36.149.42
136.166.248.107	119.186.90.2	100.253.181.86	181.52.194.171
141.234.249.33	39.71.133.205	109.154.79.132	103.91.181.25
221.168.103.80	48.241.191.49	155.231.113.192	162.130.2.189
157.230.123.18	139.77.232.124	67.249.18.241	80.79.214.33