159.203.142.234

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
159.203.142.91	attackspam	2020-05-05T08:46:07.5980911495-001 sshd[22061]: Invalid user tcs from 159.203.142.91 port 33924 2020-05-05T08:46:09.2818711495-001 sshd[22061]: Failed password for invalid user tcs from 159.203.142.91 port 33924 ssh2 2020-05-05T08:49:47.3908421495-001 sshd[22248]: Invalid user prueba from 159.203.142.91 port 38742 2020-05-05T08:49:47.4010061495-001 sshd[22248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.142.91 2020-05-05T08:49:47.3908421495-001 sshd[22248]: Invalid user prueba from 159.203.142.91 port 38742 2020-05-05T08:49:49.6156831495-001 sshd[22248]: Failed password for invalid user prueba from 159.203.142.91 port 38742 ssh2 ...	2020-05-06 01:40:11
159.203.142.91	attackspam	May 3 07:11:39 piServer sshd[32393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.142.91 May 3 07:11:41 piServer sshd[32393]: Failed password for invalid user zope from 159.203.142.91 port 50728 ssh2 May 3 07:15:02 piServer sshd[32678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.142.91 ...	2020-05-03 15:29:52
159.203.142.91	attack	Apr 27 22:30:15 host sshd[12797]: Invalid user prueba1 from 159.203.142.91 port 44398 ...	2020-04-28 07:20:08
159.203.142.91	attackspambots	$f2bV_matches	2020-04-11 19:33:01
159.203.142.91	attackbots	k+ssh-bruteforce	2020-03-29 02:42:54
159.203.142.91	attackspam	SSH login attempts @ 2020-02-27 21:12:11	2020-03-22 13:57:45
159.203.142.91	attackspam	Mar 21 14:03:49 * sshd[18548]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.142.91 Mar 21 14:03:51 * sshd[18548]: Failed password for invalid user ash from 159.203.142.91 port 50790 ssh2	2020-03-21 21:37:22
159.203.142.91	attackbotsspam	2020-03-07T15:13:39.054833abusebot-7.cloudsearch.cf sshd[6023]: Invalid user steve from 159.203.142.91 port 56844 2020-03-07T15:13:39.059802abusebot-7.cloudsearch.cf sshd[6023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.142.91 2020-03-07T15:13:39.054833abusebot-7.cloudsearch.cf sshd[6023]: Invalid user steve from 159.203.142.91 port 56844 2020-03-07T15:13:40.598319abusebot-7.cloudsearch.cf sshd[6023]: Failed password for invalid user steve from 159.203.142.91 port 56844 ssh2 2020-03-07T15:16:42.241907abusebot-7.cloudsearch.cf sshd[6174]: Invalid user es from 159.203.142.91 port 56020 2020-03-07T15:16:42.246652abusebot-7.cloudsearch.cf sshd[6174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.142.91 2020-03-07T15:16:42.241907abusebot-7.cloudsearch.cf sshd[6174]: Invalid user es from 159.203.142.91 port 56020 2020-03-07T15:16:44.241735abusebot-7.cloudsearch.cf sshd[6174]: Failed passwo ...	2020-03-08 04:21:16
159.203.142.91	attackspam	ssh brute force	2020-02-24 15:14:03
159.203.142.91	attackbots	Feb 21 05:08:01 web1 sshd\[14870\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.142.91 user=list Feb 21 05:08:03 web1 sshd\[14870\]: Failed password for list from 159.203.142.91 port 35984 ssh2 Feb 21 05:10:29 web1 sshd\[15115\]: Invalid user quest from 159.203.142.91 Feb 21 05:10:29 web1 sshd\[15115\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.142.91 Feb 21 05:10:31 web1 sshd\[15115\]: Failed password for invalid user quest from 159.203.142.91 port 55988 ssh2	2020-02-21 23:38:41
159.203.142.91	attack	Unauthorized connection attempt detected from IP address 159.203.142.91 to port 2220 [J]	2020-02-01 02:58:15
159.203.142.91	attackbots	2020-01-31T19:50:11.499109luisaranguren sshd[3277781]: Invalid user sitaram from 159.203.142.91 port 55746 2020-01-31T19:50:14.032873luisaranguren sshd[3277781]: Failed password for invalid user sitaram from 159.203.142.91 port 55746 ssh2 ...	2020-01-31 17:23:41
159.203.142.91	attack	Invalid user huaqi from 159.203.142.91 port 54408	2020-01-18 22:30:47
159.203.142.91	attackbots	Jan 10 13:46:41 ip-172-31-62-245 sshd\[7216\]: Invalid user tomcat7 from 159.203.142.91\ Jan 10 13:46:43 ip-172-31-62-245 sshd\[7216\]: Failed password for invalid user tomcat7 from 159.203.142.91 port 46338 ssh2\ Jan 10 13:49:35 ip-172-31-62-245 sshd\[7260\]: Invalid user admin from 159.203.142.91\ Jan 10 13:49:37 ip-172-31-62-245 sshd\[7260\]: Failed password for invalid user admin from 159.203.142.91 port 49580 ssh2\ Jan 10 13:52:33 ip-172-31-62-245 sshd\[7304\]: Failed password for root from 159.203.142.91 port 52822 ssh2\	2020-01-10 23:04:25
159.203.142.91	attack	Jan 3 09:12:55 jane sshd[12718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.142.91 Jan 3 09:12:58 jane sshd[12718]: Failed password for invalid user afo from 159.203.142.91 port 35286 ssh2 ...	2020-01-03 16:23:13

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.203.142.234
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22506
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;159.203.142.234.		IN	A

;; AUTHORITY SECTION:
.			124	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 19:24:08 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

Host 234.142.203.159.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 234.142.203.159.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
203.192.252.18	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-06-26 09:09:54,414 INFO [amun_request_handler] PortScan Detected on Port: 445 (203.192.252.18)	2019-06-27 04:35:26
149.233.159.138	attackspam	der Klassiker: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:40.0) Gecko/20100101 Firefox/40.1	2019-06-27 04:58:01
201.192.160.40	attackbotsspam	Jun 26 22:09:05 OPSO sshd\[6060\]: Invalid user squid from 201.192.160.40 port 34794 Jun 26 22:09:05 OPSO sshd\[6060\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.192.160.40 Jun 26 22:09:07 OPSO sshd\[6060\]: Failed password for invalid user squid from 201.192.160.40 port 34794 ssh2 Jun 26 22:11:30 OPSO sshd\[6520\]: Invalid user jb from 201.192.160.40 port 51982 Jun 26 22:11:30 OPSO sshd\[6520\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.192.160.40	2019-06-27 04:25:47
59.13.85.223	attackspambots	Port Scan 3389	2019-06-27 04:51:17
103.254.71.92	attackspambots	Unauthorized connection attempt from IP address 103.254.71.92 on Port 445(SMB)	2019-06-27 04:54:21
202.101.180.34	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-06-26 09:08:03,118 INFO [amun_request_handler] PortScan Detected on Port: 445 (202.101.180.34)	2019-06-27 04:57:30
189.204.6.157	attackspam	2019/06/26 13:05:56 \[error\] 5679\#0: \*1252 An error occurred in mail zmauth: user not found:karlik_lew@bigfathog.com while SSL handshaking to lookup handler, client: 189.204.6.157:48469, server: 45.79.145.195:993, login: "karlik_lew@bigfathog.com"	2019-06-27 04:21:09
36.75.67.23	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-06-26 09:09:56,146 INFO [amun_request_handler] PortScan Detected on Port: 445 (36.75.67.23)	2019-06-27 04:33:22
206.189.44.15	attack	Jun 24 09:31:30 datentool sshd[27139]: Invalid user inconnue from 206.189.44.15 Jun 24 09:31:30 datentool sshd[27139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.44.15 Jun 24 09:31:32 datentool sshd[27139]: Failed password for invalid user inconnue from 206.189.44.15 port 55600 ssh2 Jun 24 09:34:55 datentool sshd[27161]: Invalid user mike from 206.189.44.15 Jun 24 09:34:55 datentool sshd[27161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.44.15 Jun 24 09:34:57 datentool sshd[27161]: Failed password for invalid user mike from 206.189.44.15 port 58214 ssh2 Jun 24 09:36:22 datentool sshd[27166]: Invalid user stan from 206.189.44.15 Jun 24 09:36:22 datentool sshd[27166]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.44.15 Jun 24 09:36:24 datentool sshd[27166]: Failed password for invalid user stan from 206.189.44.15 po........ -------------------------------	2019-06-27 04:36:41
222.252.214.239	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-06-26 01:15:41,991 INFO [shellcode_manager] (222.252.214.239) no match, writing hexdump (5212b5cb23f2b8053ec928c95f34c67f :2202214) - MS17010 (EternalBlue)	2019-06-27 04:56:22
222.98.209.230	attackbotsspam	RDP Brute-Force (Grieskirchen RZ2)	2019-06-27 04:58:30
113.177.50.95	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-06-26 09:00:57,981 INFO [amun_request_handler] PortScan Detected on Port: 445 (113.177.50.95)	2019-06-27 04:40:55
181.22.8.139	attackspambots	Jun 26 14:57:26 mxgate1 postfix/postscreen[9559]: CONNECT from [181.22.8.139]:54181 to [176.31.12.44]:25 Jun 26 14:57:26 mxgate1 postfix/dnsblog[9693]: addr 181.22.8.139 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Jun 26 14:57:26 mxgate1 postfix/dnsblog[9694]: addr 181.22.8.139 listed by domain zen.spamhaus.org as 127.0.0.4 Jun 26 14:57:26 mxgate1 postfix/dnsblog[9694]: addr 181.22.8.139 listed by domain zen.spamhaus.org as 127.0.0.11 Jun 26 14:57:26 mxgate1 postfix/dnsblog[9691]: addr 181.22.8.139 listed by domain cbl.abuseat.org as 127.0.0.2 Jun 26 14:57:32 mxgate1 postfix/postscreen[9559]: DNSBL rank 4 for [181.22.8.139]:54181 Jun x@x Jun 26 14:57:33 mxgate1 postfix/postscreen[9559]: DISCONNECT [181.22.8.139]:54181 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=181.22.8.139	2019-06-27 04:16:46
182.237.10.121	attackspambots	Honeypot attack, port: 139, PTR: PTR record not found	2019-06-27 04:19:59
59.44.9.142	attackbotsspam	Honeypot hit.	2019-06-27 04:37:14

最近上报的IP列表

159.203.14.55	159.203.142.81	159.203.144.149	159.203.145.149
159.203.126.75	159.203.145.29	159.203.145.7	159.203.146.126
159.203.146.78	159.203.147.223	159.203.145.30	159.203.148.104
159.203.146.39	159.203.147.38	159.203.149.17	159.203.149.184
159.203.150.223	159.203.151.188	159.203.150.249	159.203.155.10

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表