159.203.193.0 - IPInfo

基本信息:

城市(city): San Francisco

省份(region): California

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-11 03:42:25
attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-04 22:19:12
attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-07 00:54:10

相同子网IP讨论:

IP	类型	评论内容	时间
159.203.193.51	attackspam	firewall-block, port(s): 12732/tcp	2020-01-31 23:11:28
159.203.193.43	attackspam	firewall-block, port(s): 17990/tcp	2020-01-26 15:53:27
159.203.193.240	attackbotsspam	TCP port 1911: Scan and connection	2020-01-26 07:25:00
159.203.193.245	attackspam	62657/tcp 8140/tcp 4899/tcp... [2019-11-24/2020-01-22]43pkt,40pt.(tcp),1pt.(udp)	2020-01-24 21:28:31
159.203.193.46	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-22 14:24:26
159.203.193.244	attack	Unauthorized connection attempt detected from IP address 159.203.193.244 to port 953	2020-01-21 05:33:25
159.203.193.245	attackspambots	Input Traffic from this IP, but critial abuseconfidencescore	2020-01-20 05:16:57
159.203.193.244	attackspambots	scan r	2020-01-20 04:09:40
159.203.193.253	attackbotsspam	Unauthorized connection attempt detected from IP address 159.203.193.253 to port 8081 [T]	2020-01-17 06:59:03
159.203.193.242	attack	Unauthorized connection attempt detected from IP address 159.203.193.242 to port 8081 [T]	2020-01-16 20:31:27
159.203.193.244	attackbots	firewall-block, port(s): 39817/tcp	2020-01-14 20:23:12
159.203.193.51	attack	Unauthorized connection attempt detected from IP address 159.203.193.51 to port 135	2020-01-12 00:55:52
159.203.193.244	attackspambots	firewall-block, port(s): 5222/tcp	2020-01-11 18:14:29
159.203.193.240	attackbotsspam	Portscan or hack attempt detected by psad/fwsnort	2020-01-11 03:40:31
159.203.193.251	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-11 03:35:37

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.203.193.0
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52469
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;159.203.193.0.			IN	A

;; AUTHORITY SECTION:
.			515	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110600 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Nov 07 00:54:06 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 0.193.203.159.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 0.193.203.159.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
222.186.180.130	attackspam	Unauthorized connection attempt detected from IP address 222.186.180.130 to port 22	2020-07-13 04:26:52
46.38.148.22	attackspambots	2020-07-12 22:46:41 dovecot_login authenticator failed for \(User\) \[46.38.148.22\]: 535 Incorrect authentication data \(set_id=performance@hosting1.no-server.de\) 2020-07-12 22:46:50 dovecot_login authenticator failed for \(User\) \[46.38.148.22\]: 535 Incorrect authentication data \(set_id=performance@hosting1.no-server.de\) 2020-07-12 22:46:51 dovecot_login authenticator failed for \(User\) \[46.38.148.22\]: 535 Incorrect authentication data \(set_id=diabetes@hosting1.no-server.de\) 2020-07-12 22:47:10 dovecot_login authenticator failed for \(User\) \[46.38.148.22\]: 535 Incorrect authentication data \(set_id=diabetes@hosting1.no-server.de\) 2020-07-12 22:47:12 dovecot_login authenticator failed for \(User\) \[46.38.148.22\]: 535 Incorrect authentication data \(set_id=diabetes@hosting1.no-server.de\) 2020-07-12 22:47:14 dovecot_login authenticator failed for \(User\) \[46.38.148.22\]: 535 Incorrect authentication data \(set_id=encuesta@hosting1.no-server.de\) ...	2020-07-13 04:52:12
51.79.68.147	attackbots	Jul 12 22:15:08 piServer sshd[10295]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.68.147 Jul 12 22:15:09 piServer sshd[10295]: Failed password for invalid user gaowen from 51.79.68.147 port 59812 ssh2 Jul 12 22:17:46 piServer sshd[10605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.68.147 ...	2020-07-13 04:38:50
106.245.217.25	attackspam	Jul 12 22:02:41 rancher-0 sshd[272582]: Invalid user rlp from 106.245.217.25 port 54693 ...	2020-07-13 04:50:21
190.144.182.85	attackspambots	Lines containing failures of 190.144.182.85 Jul 12 21:48:25 icinga sshd[13444]: Invalid user postgres from 190.144.182.85 port 34347 Jul 12 21:48:25 icinga sshd[13444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.144.182.85 Jul 12 21:48:27 icinga sshd[13444]: Failed password for invalid user postgres from 190.144.182.85 port 34347 ssh2 Jul 12 21:48:27 icinga sshd[13444]: Received disconnect from 190.144.182.85 port 34347:11: Bye Bye [preauth] Jul 12 21:48:27 icinga sshd[13444]: Disconnected from invalid user postgres 190.144.182.85 port 34347 [preauth] Jul 12 21:51:40 icinga sshd[14272]: Invalid user hwz from 190.144.182.85 port 45105 Jul 12 21:51:40 icinga sshd[14272]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.144.182.85 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=190.144.182.85	2020-07-13 05:01:11
213.45.105.233	attackspambots	SSH/22 MH Probe, BF, Hack -	2020-07-13 04:55:16
187.148.23.94	attackbotsspam	Port Scan ...	2020-07-13 04:50:02
129.211.92.41	attackbots	Jul 13 01:29:09 gw1 sshd[8435]: Failed password for mysql from 129.211.92.41 port 47438 ssh2 ...	2020-07-13 04:39:19
125.124.253.203	attack	Jul 12 20:16:02 game-panel sshd[1463]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.253.203 Jul 12 20:16:04 game-panel sshd[1463]: Failed password for invalid user service from 125.124.253.203 port 41590 ssh2 Jul 12 20:19:13 game-panel sshd[1595]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.253.203	2020-07-13 04:24:07
46.38.150.72	attack	Jul 12 22:19:42 srv01 postfix/smtpd\[13138\]: warning: unknown\[46.38.150.72\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 12 22:20:17 srv01 postfix/smtpd\[5785\]: warning: unknown\[46.38.150.72\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 12 22:20:53 srv01 postfix/smtpd\[5016\]: warning: unknown\[46.38.150.72\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 12 22:21:28 srv01 postfix/smtpd\[13138\]: warning: unknown\[46.38.150.72\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 12 22:22:02 srv01 postfix/smtpd\[13138\]: warning: unknown\[46.38.150.72\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-13 04:37:45
40.118.226.96	attack	Jul 12 22:29:29 buvik sshd[23895]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.118.226.96 Jul 12 22:29:31 buvik sshd[23895]: Failed password for invalid user ase from 40.118.226.96 port 38614 ssh2 Jul 12 22:32:52 buvik sshd[24500]: Invalid user eyal from 40.118.226.96 ...	2020-07-13 04:48:15
115.193.170.21	attackbotsspam	Jul 12 18:37:45 host sshd[24045]: Invalid user user from 115.193.170.21 port 43846 Jul 12 18:37:45 host sshd[24045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.193.170.21 Jul 12 18:37:47 host sshd[24045]: Failed password for invalid user user from 115.193.170.21 port 43846 ssh2 Jul 12 18:37:48 host sshd[24045]: Received disconnect from 115.193.170.21 port 43846:11: Bye Bye [preauth] Jul 12 18:37:48 host sshd[24045]: Disconnected from invalid user user 115.193.170.21 port 43846 [preauth] Jul 12 18:54:17 host sshd[24430]: Invalid user zulma from 115.193.170.21 port 54764 Jul 12 18:54:17 host sshd[24430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.193.170.21 Jul 12 18:54:19 host sshd[24430]: Failed password for invalid user zulma from 115.193.170.21 port 54764 ssh2 Jul 12 18:54:19 host sshd[24430]: Received disconnect from 115.193.170.21 port 54764:11: Bye Bye [preauth] Jul 12........ -------------------------------	2020-07-13 04:51:48
120.70.103.27	attackspam	Jul 12 14:46:13 server1 sshd\[6072\]: Invalid user pe from 120.70.103.27 Jul 12 14:46:13 server1 sshd\[6072\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.70.103.27 Jul 12 14:46:14 server1 sshd\[6072\]: Failed password for invalid user pe from 120.70.103.27 port 37189 ssh2 Jul 12 14:50:52 server1 sshd\[7621\]: Invalid user casino from 120.70.103.27 Jul 12 14:50:52 server1 sshd\[7621\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.70.103.27 ...	2020-07-13 04:59:43
212.95.137.164	attackspambots	2020-07-12T20:06:11.380078shield sshd\[28207\]: Invalid user block from 212.95.137.164 port 36704 2020-07-12T20:06:11.388773shield sshd\[28207\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.95.137.164 2020-07-12T20:06:13.176278shield sshd\[28207\]: Failed password for invalid user block from 212.95.137.164 port 36704 ssh2 2020-07-12T20:11:17.165577shield sshd\[29280\]: Invalid user best from 212.95.137.164 port 39042 2020-07-12T20:11:17.173897shield sshd\[29280\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.95.137.164	2020-07-13 04:41:20
185.164.138.21	attackbots	Jul 12 22:12:47 vserver sshd\[15838\]: Invalid user cheng from 185.164.138.21Jul 12 22:12:49 vserver sshd\[15838\]: Failed password for invalid user cheng from 185.164.138.21 port 53636 ssh2Jul 12 22:16:48 vserver sshd\[15890\]: Invalid user support from 185.164.138.21Jul 12 22:16:50 vserver sshd\[15890\]: Failed password for invalid user support from 185.164.138.21 port 50634 ssh2 ...	2020-07-13 05:00:49

最近上报的IP列表

80.13.85.88	122.129.78.93	122.129.78.96	157.245.109.127
95.82.221.191	178.128.114.234	81.171.107.179	35.157.236.87
113.133.230.30	35.154.17.145	206.81.20.158	191.83.102.105
45.76.98.197	129.213.135.134	202.190.50.107	185.176.59.7
101.51.144.32	136.244.81.26	222.92.244.42	188.159.190.171