159.138.11.3 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
159.138.117.89	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-05-28 23:06:41
159.138.117.89	attackbotsspam	xmlrpc attack	2020-05-28 06:52:16
159.138.119.7	attackspambots	Dec 22 18:39:52 plusreed sshd[17472]: Invalid user arbanas from 159.138.119.7 ...	2019-12-23 07:40:23
159.138.119.7	attackbotsspam	fraudulent SSH attempt	2019-12-14 04:28:28
159.138.119.7	attackbotsspam	Dec 12 16:35:59 ns41 sshd[18739]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.138.119.7	2019-12-13 00:34:47
159.138.119.7	attackspambots	detected by Fail2Ban	2019-12-12 20:57:33
159.138.11.193	attack	ECShop Remote Code Execution Vulnerability, PTR: ecs-159-138-11-193.compute.hwclouds-dns.com.	2019-09-10 11:07:21

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.138.11.3
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9119
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;159.138.11.3.			IN	A

;; AUTHORITY SECTION:
.			391	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022701 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 05:08:56 CST 2022
;; MSG SIZE  rcvd: 105

Host info

3.11.138.159.in-addr.arpa domain name pointer odysseus.hongkongserver.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
3.11.138.159.in-addr.arpa	name = odysseus.hongkongserver.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
177.67.49.122	attackbotsspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-20 13:19:30
193.154.75.43	attack	Sep 19 19:02:56 vps639187 sshd\[27233\]: Invalid user pi from 193.154.75.43 port 35390 Sep 19 19:02:56 vps639187 sshd\[27233\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.154.75.43 Sep 19 19:02:59 vps639187 sshd\[27233\]: Failed password for invalid user pi from 193.154.75.43 port 35390 ssh2 ...	2020-09-20 12:43:55
54.37.71.203	attackspambots	Triggered by Fail2Ban at Ares web server	2020-09-20 12:49:11
207.233.9.122	attack	Attempt to log in to restricted site	2020-09-20 13:03:41
112.118.55.82	attackbotsspam	Sep 19 19:02:49 vps639187 sshd\[27196\]: Invalid user admin from 112.118.55.82 port 48709 Sep 19 19:02:49 vps639187 sshd\[27196\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.118.55.82 Sep 19 19:02:51 vps639187 sshd\[27196\]: Failed password for invalid user admin from 112.118.55.82 port 48709 ssh2 ...	2020-09-20 12:51:38
193.35.51.23	attack	2020-09-20 07:12:36 dovecot_login authenticator failed for \(\[193.35.51.23\]\) \[193.35.51.23\]: 535 Incorrect authentication data \(set_id=german@sensecell.de\) 2020-09-20 07:12:43 dovecot_login authenticator failed for \(\[193.35.51.23\]\) \[193.35.51.23\]: 535 Incorrect authentication data 2020-09-20 07:12:52 dovecot_login authenticator failed for \(\[193.35.51.23\]\) \[193.35.51.23\]: 535 Incorrect authentication data 2020-09-20 07:12:57 dovecot_login authenticator failed for \(\[193.35.51.23\]\) \[193.35.51.23\]: 535 Incorrect authentication data 2020-09-20 07:13:09 dovecot_login authenticator failed for \(\[193.35.51.23\]\) \[193.35.51.23\]: 535 Incorrect authentication data 2020-09-20 07:13:13 dovecot_login authenticator failed for \(\[193.35.51.23\]\) \[193.35.51.23\]: 535 Incorrect authentication data 2020-09-20 07:13:18 dovecot_login authenticator failed for \(\[193.35.51.23\]\) \[193.35.51.23\]: 535 Incorrect authentication data 2020-09-20 07:13:23 dovecot_login authenticat ...	2020-09-20 13:16:41
119.165.13.173	attackspam	DATE:2020-09-19 19:02:42, IP:119.165.13.173, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2020-09-20 13:09:35
186.29.180.192	attackspambots	Port probing on unauthorized port 23	2020-09-20 13:05:07
85.224.217.221	attackbotsspam	Sep 19 17:00:19 scw-focused-cartwright sshd[26247]: Failed password for root from 85.224.217.221 port 41857 ssh2	2020-09-20 12:53:04
190.219.176.76	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-20 13:10:46
132.232.59.247	attackspambots	Sep 19 21:30:26 eventyay sshd[20049]: Failed password for root from 132.232.59.247 port 53960 ssh2 Sep 19 21:33:08 eventyay sshd[20129]: Failed password for root from 132.232.59.247 port 55984 ssh2 ...	2020-09-20 12:51:17
122.14.200.231	attackspambots	10 attempts against mh-pma-try-ban on river	2020-09-20 12:44:11
95.248.84.50	attackspambots	Automatic report - Port Scan Attack	2020-09-20 13:19:54
46.166.139.111	attackbotsspam	xmlrpc attack	2020-09-20 13:01:36
125.46.88.101	attack	Found on Binary Defense / proto=6 . srcport=3567 . dstport=1433 . (2315)	2020-09-20 13:11:46

Recently Reported IPs

57.40.135.3	159.137.80.117	159.138.115.229	159.138.115.207
159.138.107.193	159.135.7.46	159.135.8.70	159.135.7.224
159.135.7.185	159.135.7.156	159.135.63.236	159.138.116.110
159.138.119.222	159.138.117.44	159.138.123.200	159.138.130.21
159.138.116.88	159.138.132.216	159.138.134.152	159.138.14.209