159.203.201.113

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	firewall-block, port(s): 8983/tcp	2019-12-11 19:51:10
attackspam	51961/tcp 6379/tcp 1028/tcp... [2019-09-29/11-29]54pkt,46pt.(tcp),1pt.(udp)	2019-11-30 04:03:52
attackspam	firewall-block, port(s): 17185/udp	2019-09-17 13:09:34

相同子网IP讨论:

IP	类型	评论内容	时间
159.203.201.6	attackspambots	Unauthorized connection attempt from IP address 159.203.201.6 on Port 587(SMTP-MSA)	2020-01-31 16:47:30
159.203.201.23	attack	01/31/2020-00:56:46.614661 159.203.201.23 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-01-31 14:16:05
159.203.201.194	attackbots	Port 56662 scan denied	2020-01-31 13:56:44
159.203.201.44	attack	01/30/2020-16:34:41.797165 159.203.201.44 Protocol: 17 GPL SNMP public access udp	2020-01-31 10:04:52
159.203.201.47	attackbotsspam	Unauthorized connection attempt detected from IP address 159.203.201.47 to port 8091 [T]	2020-01-30 17:22:53
159.203.201.145	attack	SIP Server BruteForce Attack	2020-01-30 10:21:30
159.203.201.6	attack	Automatic report - Banned IP Access	2020-01-30 09:48:14
159.203.201.249	attackspambots	46830/tcp 45188/tcp 49154/tcp... [2019-11-30/2020-01-29]53pkt,40pt.(tcp),3pt.(udp)	2020-01-30 00:23:30
159.203.201.8	attackspam	28587/tcp 55735/tcp 27107/tcp... [2019-12-01/2020-01-29]35pkt,30pt.(tcp),3pt.(udp)	2020-01-30 00:21:48
159.203.201.218	attack	Port Scan detected from 159.203.201.218 (US/United States/zg-0911a-7.stretchoid.com). 4 hits in the last 230 seconds	2020-01-29 20:03:27
159.203.201.15	attackspam	unauthorized connection attempt	2020-01-29 17:59:15
159.203.201.179	attack	Port 10643 scan denied	2020-01-29 15:27:25
159.203.201.22	attackspambots	firewall-block, port(s): 4848/tcp	2020-01-29 13:58:47
159.203.201.213	attackspambots	Unauthorized connection attempt detected from IP address 159.203.201.213 to port 465 [J]	2020-01-29 08:31:22
159.203.201.38	attackspambots	unauthorized connection attempt	2020-01-28 17:35:45

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.203.201.113
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19873
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;159.203.201.113.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091601 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Sep 17 13:09:26 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

113.201.203.159.in-addr.arpa domain name pointer zg-0911a-140.stretchoid.com.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
113.201.203.159.in-addr.arpa	name = zg-0911a-140.stretchoid.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
139.159.217.217	attackbotsspam	11/27/2019-23:56:49.319039 139.159.217.217 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-11-28 14:12:05
222.186.169.192	attackspam	2019-11-28T05:36:33.244003abusebot-5.cloudsearch.cf sshd\[21184\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.169.192 user=root	2019-11-28 13:37:07
77.247.181.163	attackbotsspam	$f2bV_matches	2019-11-28 14:17:01
41.238.88.181	attack	Nov 28 04:57:38 localhost sshd\[27925\]: Invalid user admin from 41.238.88.181 port 41082 Nov 28 04:57:38 localhost sshd\[27925\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.238.88.181 Nov 28 04:57:40 localhost sshd\[27925\]: Failed password for invalid user admin from 41.238.88.181 port 41082 ssh2 ...	2019-11-28 13:39:01
222.186.175.181	attack	Nov 28 06:54:22 mail sshd\[21500\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.181 user=root Nov 28 06:54:24 mail sshd\[21500\]: Failed password for root from 222.186.175.181 port 26749 ssh2 Nov 28 06:54:41 mail sshd\[21502\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.181 user=root ...	2019-11-28 13:54:50
196.202.62.98	attackspam	" "	2019-11-28 13:58:39
122.224.175.218	attackspam	Nov 27 19:57:13 php1 sshd\[27181\]: Invalid user byroekoe from 122.224.175.218 Nov 27 19:57:13 php1 sshd\[27181\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.224.175.218 Nov 27 19:57:15 php1 sshd\[27181\]: Failed password for invalid user byroekoe from 122.224.175.218 port 11714 ssh2 Nov 27 20:01:28 php1 sshd\[27478\]: Invalid user 654321 from 122.224.175.218 Nov 27 20:01:28 php1 sshd\[27478\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.224.175.218	2019-11-28 14:16:26
37.122.208.69	attack	spam FO	2019-11-28 14:03:05
112.85.42.180	attackbotsspam	Nov 28 06:38:51 MK-Soft-Root1 sshd[14304]: Failed password for root from 112.85.42.180 port 27013 ssh2 Nov 28 06:38:55 MK-Soft-Root1 sshd[14304]: Failed password for root from 112.85.42.180 port 27013 ssh2 ...	2019-11-28 13:46:43
111.67.197.14	attackspam	Nov 25 06:16:08 ACSRAD auth.info sshd[29008]: Invalid user steam from 111.67.197.14 port 52858 Nov 25 06:16:08 ACSRAD auth.info sshd[29008]: Failed password for invalid user steam from 111.67.197.14 port 52858 ssh2 Nov 25 06:16:09 ACSRAD auth.info sshd[29008]: Received disconnect from 111.67.197.14 port 52858:11: Bye Bye [preauth] Nov 25 06:16:09 ACSRAD auth.info sshd[29008]: Disconnected from 111.67.197.14 port 52858 [preauth] Nov 25 06:16:09 ACSRAD auth.notice sshguard[4014]: Attack from "111.67.197.14" on service 100 whostnameh danger 10. Nov 25 06:16:09 ACSRAD auth.notice sshguard[4014]: Attack from "111.67.197.14" on service 100 whostnameh danger 10. Nov 25 06:16:09 ACSRAD auth.notice sshguard[4014]: Attack from "111.67.197.14" on service 100 whostnameh danger 10. Nov 25 06:16:09 ACSRAD auth.warn sshguard[4014]: Blocking "111.67.197.14/32" forever (3 attacks in 0 secs, after 2 abuses over 2225 secs.) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=111.6	2019-11-28 13:44:34
185.253.98.27	attackbotsspam	fell into ViewStateTrap:wien2018	2019-11-28 14:04:51
222.186.180.223	attack	Nov 28 06:50:38 minden010 sshd[24138]: Failed password for root from 222.186.180.223 port 17902 ssh2 Nov 28 06:50:42 minden010 sshd[24138]: Failed password for root from 222.186.180.223 port 17902 ssh2 Nov 28 06:50:45 minden010 sshd[24138]: Failed password for root from 222.186.180.223 port 17902 ssh2 Nov 28 06:50:48 minden010 sshd[24138]: Failed password for root from 222.186.180.223 port 17902 ssh2 ...	2019-11-28 13:53:10
71.226.38.243	attackspambots	Nov 28 05:57:15 vps sshd[25342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=71.226.38.243 Nov 28 05:57:15 vps sshd[25343]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=71.226.38.243 Nov 28 05:57:17 vps sshd[25342]: Failed password for invalid user pi from 71.226.38.243 port 55614 ssh2 ...	2019-11-28 13:53:58
203.95.212.41	attack	Nov 28 03:07:38 firewall sshd[26479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.95.212.41 Nov 28 03:07:38 firewall sshd[26479]: Invalid user cw from 203.95.212.41 Nov 28 03:07:39 firewall sshd[26479]: Failed password for invalid user cw from 203.95.212.41 port 29608 ssh2 ...	2019-11-28 14:09:30
39.109.158.160	attackspambots	Port 22 Scan, PTR: PTR record not found	2019-11-28 13:41:00

最近上报的IP列表

86.120.218.146	169.62.225.197	16.27.6.240	204.143.72.224
37.114.159.42	95.216.189.247	62.99.132.165	45.79.49.111
103.59.39.238	212.19.22.237	79.170.163.29	214.75.235.110
125.70.16.99	200.89.36.206	219.113.93.80	135.86.60.200
10.250.113.73	119.136.56.234	65.87.25.111	60.126.106.88