159.203.201.42

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 159.203.201.42 to port 8181 [J]	2020-01-18 07:41:49
attack	Brute force attack stopped by firewall	2020-01-12 09:11:07
attack	Unauthorized connection attempt from IP address 159.203.201.42 on Port 3389(RDP)	2020-01-11 02:34:34
attackbotsspam	Unauthorized connection attempt detected from IP address 159.203.201.42 to port 118	2019-12-28 22:29:33
attackspambots	11/27/2019-15:55:03.791666 159.203.201.42 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-27 23:17:26
attack	" "	2019-11-20 00:04:45
attackspambots	5901/tcp 23669/tcp 55140/tcp... [2019-09-13/11-01]49pkt,43pt.(tcp),1pt.(udp)	2019-11-03 15:21:18
attackbots	[portscan] tcp/22 [SSH] *(RWIN=65535)(10221000)	2019-10-22 17:58:52
attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-20 14:19:31

相同子网IP讨论:

IP	类型	评论内容	时间
159.203.201.6	attackspambots	Unauthorized connection attempt from IP address 159.203.201.6 on Port 587(SMTP-MSA)	2020-01-31 16:47:30
159.203.201.23	attack	01/31/2020-00:56:46.614661 159.203.201.23 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-01-31 14:16:05
159.203.201.194	attackbots	Port 56662 scan denied	2020-01-31 13:56:44
159.203.201.44	attack	01/30/2020-16:34:41.797165 159.203.201.44 Protocol: 17 GPL SNMP public access udp	2020-01-31 10:04:52
159.203.201.47	attackbotsspam	Unauthorized connection attempt detected from IP address 159.203.201.47 to port 8091 [T]	2020-01-30 17:22:53
159.203.201.145	attack	SIP Server BruteForce Attack	2020-01-30 10:21:30
159.203.201.6	attack	Automatic report - Banned IP Access	2020-01-30 09:48:14
159.203.201.249	attackspambots	46830/tcp 45188/tcp 49154/tcp... [2019-11-30/2020-01-29]53pkt,40pt.(tcp),3pt.(udp)	2020-01-30 00:23:30
159.203.201.8	attackspam	28587/tcp 55735/tcp 27107/tcp... [2019-12-01/2020-01-29]35pkt,30pt.(tcp),3pt.(udp)	2020-01-30 00:21:48
159.203.201.218	attack	Port Scan detected from 159.203.201.218 (US/United States/zg-0911a-7.stretchoid.com). 4 hits in the last 230 seconds	2020-01-29 20:03:27
159.203.201.15	attackspam	unauthorized connection attempt	2020-01-29 17:59:15
159.203.201.179	attack	Port 10643 scan denied	2020-01-29 15:27:25
159.203.201.22	attackspambots	firewall-block, port(s): 4848/tcp	2020-01-29 13:58:47
159.203.201.213	attackspambots	Unauthorized connection attempt detected from IP address 159.203.201.213 to port 465 [J]	2020-01-29 08:31:22
159.203.201.38	attackspambots	unauthorized connection attempt	2020-01-28 17:35:45

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.203.201.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7656
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;159.203.201.42.			IN	A

;; AUTHORITY SECTION:
.			483	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092200 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 22 15:23:52 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

42.201.203.159.in-addr.arpa domain name pointer zg-0911a-89.stretchoid.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
42.201.203.159.in-addr.arpa	name = zg-0911a-89.stretchoid.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
80.237.119.229	attack	[portscan] Port scan	2019-08-30 05:12:38
138.68.101.167	attackspambots	Aug 29 21:11:54 MK-Soft-VM4 sshd\[22170\]: Invalid user sdtd from 138.68.101.167 port 53686 Aug 29 21:11:54 MK-Soft-VM4 sshd\[22170\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.101.167 Aug 29 21:11:56 MK-Soft-VM4 sshd\[22170\]: Failed password for invalid user sdtd from 138.68.101.167 port 53686 ssh2 ...	2019-08-30 05:33:03
118.89.35.168	attackbots	Aug 29 10:55:31 kapalua sshd\[25064\]: Invalid user bdadmin from 118.89.35.168 Aug 29 10:55:31 kapalua sshd\[25064\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.35.168 Aug 29 10:55:33 kapalua sshd\[25064\]: Failed password for invalid user bdadmin from 118.89.35.168 port 36592 ssh2 Aug 29 10:59:26 kapalua sshd\[25413\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.35.168 user=root Aug 29 10:59:28 kapalua sshd\[25413\]: Failed password for root from 118.89.35.168 port 60818 ssh2	2019-08-30 05:28:15
91.250.242.12	attackspambots	Automated report - ssh fail2ban: Aug 29 22:29:17 wrong password, user=root, port=40032, ssh2 Aug 29 22:29:21 wrong password, user=root, port=40032, ssh2 Aug 29 22:29:25 wrong password, user=root, port=40032, ssh2 Aug 29 22:29:29 wrong password, user=root, port=40032, ssh2	2019-08-30 04:53:17
208.68.36.133	attackbotsspam	$f2bV_matches	2019-08-30 05:31:20
202.91.86.100	attack	Aug 29 10:44:10 php1 sshd\[9538\]: Invalid user tahir from 202.91.86.100 Aug 29 10:44:10 php1 sshd\[9538\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.91.86.100 Aug 29 10:44:12 php1 sshd\[9538\]: Failed password for invalid user tahir from 202.91.86.100 port 32980 ssh2 Aug 29 10:49:12 php1 sshd\[10143\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.91.86.100 user=www-data Aug 29 10:49:15 php1 sshd\[10143\]: Failed password for www-data from 202.91.86.100 port 49174 ssh2	2019-08-30 04:57:17
117.67.93.55	attackbots	Brute force SMTP login attempts.	2019-08-30 05:26:06
49.88.112.80	attackbotsspam	2019-08-30T04:28:37.621920enmeeting.mahidol.ac.th sshd\[2379\]: User root from 49.88.112.80 not allowed because not listed in AllowUsers 2019-08-30T04:28:37.971307enmeeting.mahidol.ac.th sshd\[2379\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.80 user=root 2019-08-30T04:28:39.994158enmeeting.mahidol.ac.th sshd\[2379\]: Failed password for invalid user root from 49.88.112.80 port 24456 ssh2 ...	2019-08-30 05:30:51
148.70.26.85	attackspam	Aug 29 23:29:24 ubuntu-2gb-nbg1-dc3-1 sshd[20190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.26.85 Aug 29 23:29:26 ubuntu-2gb-nbg1-dc3-1 sshd[20190]: Failed password for invalid user zumbusch from 148.70.26.85 port 47345 ssh2 ...	2019-08-30 05:31:57
39.40.211.159	attackspam	Autoban 39.40.211.159 AUTH/CONNECT	2019-08-30 04:58:55
124.91.188.205	attackspam	$f2bV_matches_ltvn	2019-08-30 05:24:49
207.46.13.34	attackspambots	Automatic report - Banned IP Access	2019-08-30 05:09:12
159.65.133.212	attackbots	2019-08-29T21:00:45.096097abusebot-6.cloudsearch.cf sshd\[10414\]: Invalid user virtual from 159.65.133.212 port 48192	2019-08-30 05:03:19
77.245.35.170	attackbotsspam	Aug 29 20:58:00 web8 sshd\[28873\]: Invalid user dspace from 77.245.35.170 Aug 29 20:58:00 web8 sshd\[28873\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.245.35.170 Aug 29 20:58:02 web8 sshd\[28873\]: Failed password for invalid user dspace from 77.245.35.170 port 46007 ssh2 Aug 29 21:02:15 web8 sshd\[30951\]: Invalid user admin from 77.245.35.170 Aug 29 21:02:15 web8 sshd\[30951\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.245.35.170	2019-08-30 05:18:32
190.75.123.32	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-29 19:24:38,988 INFO [amun_request_handler] PortScan Detected on Port: 445 (190.75.123.32)	2019-08-30 05:25:37

最近上报的IP列表

45.166.232.171	133.39.245.135	93.57.245.6	120.50.14.18
87.163.153.230	195.149.194.75	79.10.142.75	166.111.68.168
59.173.19.66	116.236.167.102	58.123.43.9	60.191.66.222
38.23.81.91	143.175.183.217	14.166.126.142	109.222.4.128
59.46.190.24	113.165.166.109	103.30.78.17	54.159.87.55