159.203.21.134

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Canada

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Attempted connection to port 3288.	2020-04-02 22:12:16

相同子网IP讨论:

IP	类型	评论内容	时间
159.203.219.38	attackbots	Invalid user ts3 from 159.203.219.38 port 46988	2020-09-24 20:54:12
159.203.219.38	attack	Sep 23 20:41:16 piServer sshd[29835]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.219.38 Sep 23 20:41:18 piServer sshd[29835]: Failed password for invalid user user from 159.203.219.38 port 46712 ssh2 Sep 23 20:44:54 piServer sshd[30143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.219.38 ...	2020-09-24 04:19:19
159.203.219.38	attackspambots	20 attempts against mh-ssh on cloud	2020-09-08 00:00:05
159.203.219.38	attackbotsspam	Sep 6 21:31:53 xeon sshd[42337]: Failed password for root from 159.203.219.38 port 50382 ssh2	2020-09-07 07:57:33
159.203.219.38	attack	Aug 26 06:54:33 minden010 sshd[11630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.219.38 Aug 26 06:54:35 minden010 sshd[11630]: Failed password for invalid user user from 159.203.219.38 port 42981 ssh2 Aug 26 06:58:19 minden010 sshd[12052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.219.38 ...	2020-08-26 17:09:39
159.203.219.38	attackbots	k+ssh-bruteforce	2020-08-25 18:10:49
159.203.219.38	attack	Aug 23 01:30:54 prod4 sshd\[11616\]: Failed password for root from 159.203.219.38 port 53264 ssh2 Aug 23 01:34:15 prod4 sshd\[12386\]: Invalid user zjm from 159.203.219.38 Aug 23 01:34:17 prod4 sshd\[12386\]: Failed password for invalid user zjm from 159.203.219.38 port 56855 ssh2 ...	2020-08-23 08:15:39
159.203.219.38	attack	Aug 12 14:40:16 pve1 sshd[11869]: Failed password for root from 159.203.219.38 port 58215 ssh2 ...	2020-08-12 21:11:32
159.203.219.38	attackbotsspam	2020-08-10T05:57:44.178454centos sshd[20161]: Failed password for root from 159.203.219.38 port 56657 ssh2 2020-08-10T05:59:16.065846centos sshd[20427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.219.38 user=root 2020-08-10T05:59:18.311257centos sshd[20427]: Failed password for root from 159.203.219.38 port 48381 ssh2 ...	2020-08-10 13:22:26
159.203.219.38	attackspam	Aug 8 07:10:50 fhem-rasp sshd[12361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.219.38 user=root Aug 8 07:10:52 fhem-rasp sshd[12361]: Failed password for root from 159.203.219.38 port 49630 ssh2 ...	2020-08-08 13:13:28
159.203.21.180	attack	Automatic report generated by Wazuh	2020-08-02 01:07:58
159.203.219.38	attackspambots	$f2bV_matches	2020-07-25 06:52:33
159.203.219.38	attackbotsspam	Jul 24 08:16:57 home sshd[430996]: Invalid user fleet from 159.203.219.38 port 33674 Jul 24 08:16:57 home sshd[430996]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.219.38 Jul 24 08:16:57 home sshd[430996]: Invalid user fleet from 159.203.219.38 port 33674 Jul 24 08:16:59 home sshd[430996]: Failed password for invalid user fleet from 159.203.219.38 port 33674 ssh2 Jul 24 08:21:15 home sshd[431491]: Invalid user test from 159.203.219.38 port 40337 ...	2020-07-24 14:55:20
159.203.219.38	attack	Invalid user camilla from 159.203.219.38 port 44179	2020-07-16 15:11:06
159.203.219.38	attack	$f2bV_matches	2020-07-16 02:21:27

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.203.21.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16320
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;159.203.21.134.			IN	A

;; AUTHORITY SECTION:
.			166	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040200 1800 900 604800 86400

;; Query time: 94 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 02 22:12:05 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

134.21.203.159.in-addr.arpa domain name pointer ca.driftscape.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
134.21.203.159.in-addr.arpa	name = ca.driftscape.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
121.141.5.199	attack	$f2bV_matches_ltvn	2019-10-02 07:49:29
37.59.114.113	attack	Oct 1 13:27:43 hpm sshd\[12354\]: Invalid user valter from 37.59.114.113 Oct 1 13:27:43 hpm sshd\[12354\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.ip-37-59-114.eu Oct 1 13:27:45 hpm sshd\[12354\]: Failed password for invalid user valter from 37.59.114.113 port 43114 ssh2 Oct 1 13:31:28 hpm sshd\[12716\]: Invalid user git from 37.59.114.113 Oct 1 13:31:28 hpm sshd\[12716\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.ip-37-59-114.eu	2019-10-02 07:41:15
95.110.235.17	attack	2019-10-01T23:41:32.323841abusebot-2.cloudsearch.cf sshd\[27009\]: Invalid user qweasdzxc from 95.110.235.17 port 50595	2019-10-02 07:48:53
51.38.236.221	attackbots	Oct 2 00:24:33 SilenceServices sshd[22050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.236.221 Oct 2 00:24:34 SilenceServices sshd[22050]: Failed password for invalid user admin from 51.38.236.221 port 45952 ssh2 Oct 2 00:28:38 SilenceServices sshd[23169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.236.221	2019-10-02 08:09:39
124.224.211.218	attackbotsspam	2-10-2019 01:24:24 Received EHLO/HELO is impersonating one of our hosted domains: casteren.net 2-10-2019 01:24:24 Connection from IP address: 124.224.211.218 on port: 25 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=124.224.211.218	2019-10-02 07:59:09
107.6.169.251	attackspam	Port 1723/tcp scan.	2019-10-02 07:34:36
77.40.29.247	attackbotsspam	10/02/2019-00:47:56.605151 77.40.29.247 Protocol: 6 SURICATA SMTP tls rejected	2019-10-02 08:09:10
181.48.29.35	attackspambots	Oct 1 22:34:15 *** sshd[19473]: Invalid user marketing from 181.48.29.35	2019-10-02 07:39:30
216.244.66.246	attack	Automated report (2019-10-01T21:01:59+00:00). Misbehaving bot detected at this address.	2019-10-02 07:49:07
41.214.51.2	attackspambots	Unauthorized connection attempt from IP address 41.214.51.2 on Port 445(SMB)	2019-10-02 08:07:34
51.68.215.113	attackbotsspam	Oct 1 13:29:32 wbs sshd\[1303\]: Invalid user sftp_user from 51.68.215.113 Oct 1 13:29:32 wbs sshd\[1303\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.ip-51-68-215.eu Oct 1 13:29:34 wbs sshd\[1303\]: Failed password for invalid user sftp_user from 51.68.215.113 port 55558 ssh2 Oct 1 13:33:26 wbs sshd\[1616\]: Invalid user micha from 51.68.215.113 Oct 1 13:33:26 wbs sshd\[1616\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.ip-51-68-215.eu	2019-10-02 07:46:23
219.250.188.133	attackbotsspam	Oct 1 19:50:53 ny01 sshd[32208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.250.188.133 Oct 1 19:50:55 ny01 sshd[32208]: Failed password for invalid user tomaso from 219.250.188.133 port 33666 ssh2 Oct 1 19:55:50 ny01 sshd[1079]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.250.188.133	2019-10-02 07:57:50
138.122.14.98	attack	Unauthorized connection attempt from IP address 138.122.14.98 on Port 445(SMB)	2019-10-02 07:34:23
219.153.31.186	attack	Oct 2 04:08:28 gw1 sshd[31804]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.153.31.186 Oct 2 04:08:29 gw1 sshd[31804]: Failed password for invalid user ubnt from 219.153.31.186 port 7558 ssh2 ...	2019-10-02 07:58:18
89.36.217.142	attack	Oct 1 23:06:35 mail1 sshd\[1732\]: Invalid user cvsroot from 89.36.217.142 port 42434 Oct 1 23:06:35 mail1 sshd\[1732\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.36.217.142 Oct 1 23:06:37 mail1 sshd\[1732\]: Failed password for invalid user cvsroot from 89.36.217.142 port 42434 ssh2 Oct 1 23:14:06 mail1 sshd\[5467\]: Invalid user co from 89.36.217.142 port 59230 Oct 1 23:14:06 mail1 sshd\[5467\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.36.217.142 ...	2019-10-02 07:45:32

最近上报的IP列表

155.220.98.184	195.54.255.191	164.51.133.87	207.35.163.103
116.45.68.198	128.211.149.70	196.176.129.219	173.41.63.250
107.183.17.96	147.150.230.95	13.228.132.75	39.234.107.73
3.188.186.92	103.132.20.4	13.55.33.119	174.36.152.8
74.180.209.101	93.77.68.124	144.142.251.180	125.26.176.180