159.203.193.252

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Unauthorized connection attempt detected from IP address 159.203.193.252 to port 9042	2020-01-01 02:50:29
attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-04 21:55:06
attackspambots	990/tcp 465/tcp 17642/tcp... [2019-10-03/12-02]53pkt,46pt.(tcp),2pt.(udp)	2019-12-03 14:05:13
attackspam	firewall-block, port(s): 53420/tcp	2019-12-01 00:02:58
attackbots	Scanning random ports - tries to find possible vulnerable services	2019-11-03 07:51:42
attack	2638/tcp 8200/tcp 63100/tcp... [2019-09-11/24]13pkt,13pt.(tcp)	2019-09-25 20:56:27

相同子网IP讨论:

IP	类型	评论内容	时间
159.203.193.51	attackspam	firewall-block, port(s): 12732/tcp	2020-01-31 23:11:28
159.203.193.43	attackspam	firewall-block, port(s): 17990/tcp	2020-01-26 15:53:27
159.203.193.240	attackbotsspam	TCP port 1911: Scan and connection	2020-01-26 07:25:00
159.203.193.245	attackspam	62657/tcp 8140/tcp 4899/tcp... [2019-11-24/2020-01-22]43pkt,40pt.(tcp),1pt.(udp)	2020-01-24 21:28:31
159.203.193.46	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-22 14:24:26
159.203.193.244	attack	Unauthorized connection attempt detected from IP address 159.203.193.244 to port 953	2020-01-21 05:33:25
159.203.193.245	attackspambots	Input Traffic from this IP, but critial abuseconfidencescore	2020-01-20 05:16:57
159.203.193.244	attackspambots	scan r	2020-01-20 04:09:40
159.203.193.253	attackbotsspam	Unauthorized connection attempt detected from IP address 159.203.193.253 to port 8081 [T]	2020-01-17 06:59:03
159.203.193.242	attack	Unauthorized connection attempt detected from IP address 159.203.193.242 to port 8081 [T]	2020-01-16 20:31:27
159.203.193.244	attackbots	firewall-block, port(s): 39817/tcp	2020-01-14 20:23:12
159.203.193.51	attack	Unauthorized connection attempt detected from IP address 159.203.193.51 to port 135	2020-01-12 00:55:52
159.203.193.244	attackspambots	firewall-block, port(s): 5222/tcp	2020-01-11 18:14:29
159.203.193.0	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-11 03:42:25
159.203.193.240	attackbotsspam	Portscan or hack attempt detected by psad/fwsnort	2020-01-11 03:40:31

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.203.193.252
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28151
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;159.203.193.252.		IN	A

;; AUTHORITY SECTION:
.			460	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092500 1800 900 604800 86400

;; Query time: 107 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Sep 25 20:56:21 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

252.193.203.159.in-addr.arpa domain name pointer zg-0911b-16.stretchoid.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
252.193.203.159.in-addr.arpa	name = zg-0911b-16.stretchoid.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
74.82.213.249	attackbotsspam	Aug 15 06:26:05 OPSO sshd\[19404\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.82.213.249 user=root Aug 15 06:26:07 OPSO sshd\[19404\]: Failed password for root from 74.82.213.249 port 52860 ssh2 Aug 15 06:30:03 OPSO sshd\[19851\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.82.213.249 user=root Aug 15 06:30:05 OPSO sshd\[19851\]: Failed password for root from 74.82.213.249 port 59662 ssh2 Aug 15 06:34:05 OPSO sshd\[20290\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.82.213.249 user=root	2020-08-15 15:30:59
23.94.20.155	attack	Registration form abuse	2020-08-15 15:51:42
5.95.108.165	attackbotsspam	Automatic report - Port Scan Attack	2020-08-15 15:48:51
2001:41d0:2:b55c::	attackbotsspam	Detected By Fail2ban	2020-08-15 15:13:50
106.13.235.228	attackbotsspam	Aug 11 05:10:11 extapp sshd[27353]: Failed password for r.r from 106.13.235.228 port 18329 ssh2 Aug 11 05:14:28 extapp sshd[29058]: Failed password for r.r from 106.13.235.228 port 64877 ssh2 Aug 11 05:18:30 extapp sshd[31065]: Failed password for r.r from 106.13.235.228 port 54922 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.13.235.228	2020-08-15 15:20:18
123.204.90.17	attackbots	Unauthorized SSH login attempts	2020-08-15 15:32:54
183.167.211.135	attackspambots	Aug 15 07:29:34 ajax sshd[9354]: Failed password for root from 183.167.211.135 port 39834 ssh2	2020-08-15 15:35:28
45.157.120.16	attackspam	Aug 15 13:55:12 itv-usvr-02 sshd[28370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.157.120.16 user=root Aug 15 13:59:35 itv-usvr-02 sshd[28535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.157.120.16 user=root Aug 15 14:04:12 itv-usvr-02 sshd[28681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.157.120.16 user=root	2020-08-15 15:44:14
220.76.205.178	attack	2020-08-15T06:02:53.160576shield sshd\[19798\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.76.205.178 user=root 2020-08-15T06:02:55.040904shield sshd\[19798\]: Failed password for root from 220.76.205.178 port 45002 ssh2 2020-08-15T06:06:59.164038shield sshd\[20014\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.76.205.178 user=root 2020-08-15T06:07:01.817020shield sshd\[20014\]: Failed password for root from 220.76.205.178 port 46091 ssh2 2020-08-15T06:11:03.152765shield sshd\[20441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.76.205.178 user=root	2020-08-15 15:19:00
125.161.139.88	attackbotsspam	Aug 15 07:12:11 cdc sshd[29247]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.161.139.88 user=pi Aug 15 07:12:13 cdc sshd[29247]: Failed password for invalid user pi from 125.161.139.88 port 2779 ssh2	2020-08-15 15:30:28
193.169.212.140	attack	Aug 15 05:54:08 server postfix/smtpd[20027]: NOQUEUE: reject: RCPT from srv140.ypclistmanager.com[193.169.212.140]: 554 5.7.1 Service unavailable; Client host [193.169.212.140] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS / https://www.spamhaus.org/sbl/query/SBL487106; from= to= proto=ESMTP helo=	2020-08-15 15:30:47
5.135.185.27	attack	Aug 15 04:21:54 serwer sshd\[20737\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.185.27 user=root Aug 15 04:21:56 serwer sshd\[20737\]: Failed password for root from 5.135.185.27 port 59580 ssh2 Aug 15 04:23:58 serwer sshd\[21881\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.185.27 user=root ...	2020-08-15 15:44:38
132.145.159.137	attackspambots	frenzy	2020-08-15 15:50:29
170.83.189.186	attackbotsspam	Aug 15 01:05:55 mail.srvfarm.net postfix/smtpd[909382]: warning: unknown[170.83.189.186]: SASL PLAIN authentication failed: Aug 15 01:05:56 mail.srvfarm.net postfix/smtpd[909382]: lost connection after AUTH from unknown[170.83.189.186] Aug 15 01:07:28 mail.srvfarm.net postfix/smtps/smtpd[927775]: warning: unknown[170.83.189.186]: SASL PLAIN authentication failed: Aug 15 01:07:29 mail.srvfarm.net postfix/smtps/smtpd[927775]: lost connection after AUTH from unknown[170.83.189.186] Aug 15 01:13:17 mail.srvfarm.net postfix/smtpd[928329]: warning: unknown[170.83.189.186]: SASL PLAIN authentication failed:	2020-08-15 15:58:25
219.147.11.114	attackspambots	port scan and connect, tcp 1433 (ms-sql-s)	2020-08-15 15:43:41

最近上报的IP列表

181.176.163.165	60.189.249.191	32.225.244.231	119.94.139.10
83.97.20.218	118.170.194.77	95.65.235.89	103.204.191.174
95.179.255.163	239.206.106.89	60.173.25.253	45.146.202.157
197.48.144.54	149.202.206.206	110.49.71.248	220.215.152.188
156.196.9.209	188.18.221.87	121.226.60.237	117.64.226.103