159.203.201.0 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Unauthorized connection attempt detected from IP address 159.203.201.0 to port 1911 [T]	2020-01-26 08:54:13
attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-11 02:08:53
attackbotsspam	12/27/2019-09:52:28.433934 159.203.201.0 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-12-27 23:27:59
attackspam	Unauthorized SSH login attempts	2019-12-27 19:44:06
attackspam	Try access to SMTP/POP/IMAP server.	2019-12-27 05:59:03
attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-04 20:56:29
attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-06 23:49:57
attackspambots	19277/tcp 587/tcp 45081/tcp... [2019-09-14/11-01]41pkt,38pt.(tcp),1pt.(udp)	2019-11-02 19:23:44
attackspam	" "	2019-10-29 15:32:45

相同子网IP讨论:

IP	类型	评论内容	时间
159.203.201.6	attackspambots	Unauthorized connection attempt from IP address 159.203.201.6 on Port 587(SMTP-MSA)	2020-01-31 16:47:30
159.203.201.23	attack	01/31/2020-00:56:46.614661 159.203.201.23 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-01-31 14:16:05
159.203.201.194	attackbots	Port 56662 scan denied	2020-01-31 13:56:44
159.203.201.44	attack	01/30/2020-16:34:41.797165 159.203.201.44 Protocol: 17 GPL SNMP public access udp	2020-01-31 10:04:52
159.203.201.47	attackbotsspam	Unauthorized connection attempt detected from IP address 159.203.201.47 to port 8091 [T]	2020-01-30 17:22:53
159.203.201.145	attack	SIP Server BruteForce Attack	2020-01-30 10:21:30
159.203.201.6	attack	Automatic report - Banned IP Access	2020-01-30 09:48:14
159.203.201.249	attackspambots	46830/tcp 45188/tcp 49154/tcp... [2019-11-30/2020-01-29]53pkt,40pt.(tcp),3pt.(udp)	2020-01-30 00:23:30
159.203.201.8	attackspam	28587/tcp 55735/tcp 27107/tcp... [2019-12-01/2020-01-29]35pkt,30pt.(tcp),3pt.(udp)	2020-01-30 00:21:48
159.203.201.218	attack	Port Scan detected from 159.203.201.218 (US/United States/zg-0911a-7.stretchoid.com). 4 hits in the last 230 seconds	2020-01-29 20:03:27
159.203.201.15	attackspam	unauthorized connection attempt	2020-01-29 17:59:15
159.203.201.179	attack	Port 10643 scan denied	2020-01-29 15:27:25
159.203.201.22	attackspambots	firewall-block, port(s): 4848/tcp	2020-01-29 13:58:47
159.203.201.213	attackspambots	Unauthorized connection attempt detected from IP address 159.203.201.213 to port 465 [J]	2020-01-29 08:31:22
159.203.201.38	attackspambots	unauthorized connection attempt	2020-01-28 17:35:45

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.203.201.0
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44433
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;159.203.201.0.			IN	A

;; AUTHORITY SECTION:
.			572	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102900 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 29 15:32:42 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

0.201.203.159.in-addr.arpa domain name pointer zg-0911b-19.stretchoid.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
0.201.203.159.in-addr.arpa	name = zg-0911b-19.stretchoid.com.

Authoritative answers can be found from:

IP	类型	评论内容	时间
122.225.80.218	attack	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(06240931)	2019-06-25 05:21:28
203.128.92.90	attackspambots	[SMB remote code execution attempt: port tcp/445] [scan/connect: 2 time(s)] *(RWIN=8192)(06240931)	2019-06-25 05:10:38
101.229.77.7	attackspam	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(06240931)	2019-06-25 05:25:07
46.172.121.41	attack	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(06240931)	2019-06-25 05:03:18
36.68.239.26	attackspam	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(06240931)	2019-06-25 05:05:48
180.163.220.100	attackspam	[portscan] tcp/119 [NNTP] *(RWIN=65535)(06240931)	2019-06-25 04:49:48
89.210.161.184	attack	[portscan] tcp/23 [TELNET] *(RWIN=40874)(06240931)	2019-06-25 04:59:58
222.186.46.59	attackbots	24.06.2019 17:22:40 Connection to port 3306 blocked by firewall	2019-06-25 05:08:10
111.35.33.84	attackbots	[portscan] tcp/23 [TELNET] [scan/connect: 2 time(s)] *(RWIN=40)(06240931)	2019-06-25 04:56:37
193.56.29.89	attack	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(06240931)	2019-06-25 04:44:32
168.0.72.70	attack	[SMB remote code execution attempt: port tcp/445] [scan/connect: 2 time(s)] *(RWIN=1024)(06240931)	2019-06-25 04:51:42
185.162.228.151	attackspam	Unauthorised access (Jun 24) SRC=185.162.228.151 LEN=40 TTL=245 ID=87 TCP DPT=445 WINDOW=1024 SYN	2019-06-25 04:47:29
119.142.167.125	attackspam	[portscan] tcp/23 [TELNET] *(RWIN=54117)(06240931)	2019-06-25 05:22:28
183.89.153.148	attackspambots	[SMB remote code execution attempt: port tcp/445] [scan/connect: 3 time(s)] *(RWIN=8192)(06240931)	2019-06-25 04:47:53
183.87.44.177	attackspam	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(06240931)	2019-06-25 05:14:25

最近上报的IP列表

81.225.181.242	168.195.139.5	248.13.66.131	126.231.188.189
238.227.159.135	251.162.33.97	24.152.183.44	53.45.15.50
129.115.37.67	188.17.152.172	63.141.243.98	202.86.222.34
165.248.72.214	178.65.92.113	209.122.174.71	34.76.45.145
155.223.215.58	244.27.209.143	58.196.75.40	254.239.32.211