159.203.199.12

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	27017/tcp 60001/tcp 2380/tcp... [2019-09-06/07]4pkt,4pt.(tcp)	2019-09-08 19:57:37

相同子网IP讨论:

IP	类型	评论内容	时间
159.203.199.97	attackspambots	11326/tcp 995/tcp 22036/tcp... [2019-09-07/11]7pkt,7pt.(tcp)	2019-09-13 03:52:30
159.203.199.238	attackspambots	2019-09-11 20:11:05 SMTP protocol synchronization error (input sent whostnamehout wahostnameing for greeting): rejected connection from H=[159.203.199.238] input="EHLO zg-0905a-242 " ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=159.203.199.238	2019-09-12 08:00:42
159.203.199.205	attackbotsspam	Port Scan detected from 159.203.199.205 (US/United States/zg-0905a-211.stretchoid.com). 4 hits in the last 206 seconds	2019-09-12 06:52:58
159.203.199.176	attackspam	" "	2019-09-12 06:28:11
159.203.199.184	attackspambots	Sep 11 20:45:27 nopemail postfix/smtps/smtpd[1844]: SSL_accept error from unknown[159.203.199.184]: -1 ...	2019-09-12 05:59:01
159.203.199.214	attackspambots	" "	2019-09-12 02:38:48
159.203.199.156	attack	Automated reporting of bulk port scanning	2019-09-12 00:17:37
159.203.199.195	attackbotsspam	" "	2019-09-12 00:16:06
159.203.199.245	attackbots	firewall-block, port(s): 46046/tcp	2019-09-11 19:09:35
159.203.199.243	attackbots	" "	2019-09-11 12:18:05
159.203.199.76	attackspambots	Honeypot hit, critical abuseConfidenceScore, incoming Traffic from this IP	2019-09-11 11:38:50
159.203.199.8	attack	" "	2019-09-11 11:18:56
159.203.199.245	attackbots	Port Scan detected from 159.203.199.245 (US/United States/zg-0905a-249.stretchoid.com). 4 hits in the last 185 seconds	2019-09-11 04:48:31
159.203.199.89	attackbotsspam	Honeypot hit.	2019-09-10 15:02:31
159.203.199.160	attackbotsspam	Hits on port : 9160	2019-09-10 14:00:32

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.203.199.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36264
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;159.203.199.12.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090800 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Sep 08 19:57:32 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

12.199.203.159.in-addr.arpa domain name pointer zg-0905b-137.stretchoid.com.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
12.199.203.159.in-addr.arpa	name = zg-0905b-137.stretchoid.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
119.28.133.210	attackbotsspam	Apr 6 11:40:37 mail sshd[21580]: Invalid user nagios from 119.28.133.210 Apr 6 11:40:37 mail sshd[21580]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.133.210 Apr 6 11:40:37 mail sshd[21580]: Invalid user nagios from 119.28.133.210 Apr 6 11:40:39 mail sshd[21580]: Failed password for invalid user nagios from 119.28.133.210 port 49310 ssh2 ...	2020-04-06 18:00:25
180.124.160.176	attackspambots	Email rejected due to spam filtering	2020-04-06 18:04:57
222.186.42.137	attack	Apr 6 11:33:26 MainVPS sshd[5601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.137 user=root Apr 6 11:33:28 MainVPS sshd[5601]: Failed password for root from 222.186.42.137 port 37477 ssh2 Apr 6 11:33:30 MainVPS sshd[5601]: Failed password for root from 222.186.42.137 port 37477 ssh2 Apr 6 11:33:26 MainVPS sshd[5601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.137 user=root Apr 6 11:33:28 MainVPS sshd[5601]: Failed password for root from 222.186.42.137 port 37477 ssh2 Apr 6 11:33:30 MainVPS sshd[5601]: Failed password for root from 222.186.42.137 port 37477 ssh2 Apr 6 11:33:26 MainVPS sshd[5601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.137 user=root Apr 6 11:33:28 MainVPS sshd[5601]: Failed password for root from 222.186.42.137 port 37477 ssh2 Apr 6 11:33:30 MainVPS sshd[5601]: Failed password for root from 222.186.42.137 port 374	2020-04-06 17:48:55
197.62.195.63	attackspam	Apr 6 05:14:16 mout sshd[12504]: Failed password for root from 197.62.195.63 port 23085 ssh2 Apr 6 05:29:41 mout sshd[13410]: Connection closed by 197.62.195.63 port 14286 [preauth] Apr 6 05:50:35 mout sshd[14749]: Connection closed by 197.62.195.63 port 29305 [preauth]	2020-04-06 18:14:22
187.207.0.148	attackbots	Apr 6 11:00:33 server sshd[37576]: Failed password for root from 187.207.0.148 port 32898 ssh2 Apr 6 11:07:33 server sshd[39365]: Failed password for root from 187.207.0.148 port 39186 ssh2 Apr 6 11:12:40 server sshd[40679]: Failed password for root from 187.207.0.148 port 50918 ssh2	2020-04-06 18:01:37
46.101.77.58	attack	Apr 6 06:48:07 eventyay sshd[32087]: Failed password for root from 46.101.77.58 port 43882 ssh2 Apr 6 06:52:44 eventyay sshd[32446]: Failed password for root from 46.101.77.58 port 49177 ssh2 ...	2020-04-06 18:03:11
120.56.52.66	attackspambots	1586145089 - 04/06/2020 05:51:29 Host: 120.56.52.66/120.56.52.66 Port: 445 TCP Blocked	2020-04-06 17:28:54
31.46.16.95	attackbots	2020-04-06T09:05:31.975381abusebot-5.cloudsearch.cf sshd[26554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.46.16.95 user=root 2020-04-06T09:05:34.338390abusebot-5.cloudsearch.cf sshd[26554]: Failed password for root from 31.46.16.95 port 59282 ssh2 2020-04-06T09:08:40.976344abusebot-5.cloudsearch.cf sshd[26643]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.46.16.95 user=root 2020-04-06T09:08:43.288710abusebot-5.cloudsearch.cf sshd[26643]: Failed password for root from 31.46.16.95 port 58498 ssh2 2020-04-06T09:11:52.634465abusebot-5.cloudsearch.cf sshd[26742]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.46.16.95 user=root 2020-04-06T09:11:54.971829abusebot-5.cloudsearch.cf sshd[26742]: Failed password for root from 31.46.16.95 port 57710 ssh2 2020-04-06T09:14:55.164498abusebot-5.cloudsearch.cf sshd[26775]: pam_unix(sshd:auth): authentication fa ...	2020-04-06 17:40:32
36.67.81.41	attack	Apr 6 00:56:25 rs-7 sshd[55095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.67.81.41 user=r.r Apr 6 00:56:28 rs-7 sshd[55095]: Failed password for r.r from 36.67.81.41 port 59762 ssh2 Apr 6 00:56:28 rs-7 sshd[55095]: Received disconnect from 36.67.81.41 port 59762:11: Bye Bye [preauth] Apr 6 00:56:28 rs-7 sshd[55095]: Disconnected from 36.67.81.41 port 59762 [preauth] Apr 6 01:08:22 rs-7 sshd[58689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.67.81.41 user=r.r Apr 6 01:08:24 rs-7 sshd[58689]: Failed password for r.r from 36.67.81.41 port 48652 ssh2 Apr 6 01:08:24 rs-7 sshd[58689]: Received disconnect from 36.67.81.41 port 48652:11: Bye Bye [preauth] Apr 6 01:08:24 rs-7 sshd[58689]: Disconnected from 36.67.81.41 port 48652 [preauth] Apr 6 01:21:37 rs-7 sshd[62709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.67.81.41 u........ -------------------------------	2020-04-06 18:09:21
186.251.4.46	attack	Automatic report - Port Scan Attack	2020-04-06 17:59:22
180.76.53.230	attackspam	Apr 6 06:09:42 mout sshd[16043]: Connection closed by 180.76.53.230 port 44567 [preauth]	2020-04-06 17:50:24
49.234.52.176	attackbotsspam	Apr 6 04:48:19 lanister sshd[23211]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.52.176 user=root Apr 6 04:48:20 lanister sshd[23211]: Failed password for root from 49.234.52.176 port 59208 ssh2 Apr 6 04:48:19 lanister sshd[23211]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.52.176 user=root Apr 6 04:48:20 lanister sshd[23211]: Failed password for root from 49.234.52.176 port 59208 ssh2	2020-04-06 17:30:43
111.67.199.188	attackspam	2020-04-06T02:23:29.204745linuxbox-skyline sshd[93249]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.67.199.188 user=root 2020-04-06T02:23:31.341927linuxbox-skyline sshd[93249]: Failed password for root from 111.67.199.188 port 41988 ssh2 ...	2020-04-06 17:45:17
14.204.145.124	attackbotsspam	Apr 6 10:06:45 vps sshd[26157]: Failed password for root from 14.204.145.124 port 38380 ssh2 Apr 6 10:21:27 vps sshd[26876]: Failed password for root from 14.204.145.124 port 51380 ssh2 ...	2020-04-06 17:52:34
152.67.7.117	attackbotsspam	Triggered by Fail2Ban at Ares web server	2020-04-06 17:35:31

最近上报的IP列表

178.175.39.189	2.134.90.156	37.105.143.134	197.156.190.141
159.203.199.133	151.250.56.70	138.68.208.190	108.32.109.216
37.19.109.147	150.107.172.174	71.31.197.137	138.119.215.4
221.225.198.88	160.234.230.225	159.203.199.20	37.47.141.11
138.68.208.143	77.65.95.194	186.179.235.186	183.80.89.33