159.203.21.134

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Canada

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Attempted connection to port 3288.	2020-04-02 22:12:16

相同子网IP讨论:

IP	类型	评论内容	时间
159.203.219.38	attackbots	Invalid user ts3 from 159.203.219.38 port 46988	2020-09-24 20:54:12
159.203.219.38	attack	Sep 23 20:41:16 piServer sshd[29835]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.219.38 Sep 23 20:41:18 piServer sshd[29835]: Failed password for invalid user user from 159.203.219.38 port 46712 ssh2 Sep 23 20:44:54 piServer sshd[30143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.219.38 ...	2020-09-24 04:19:19
159.203.219.38	attackspambots	20 attempts against mh-ssh on cloud	2020-09-08 00:00:05
159.203.219.38	attackbotsspam	Sep 6 21:31:53 xeon sshd[42337]: Failed password for root from 159.203.219.38 port 50382 ssh2	2020-09-07 07:57:33
159.203.219.38	attack	Aug 26 06:54:33 minden010 sshd[11630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.219.38 Aug 26 06:54:35 minden010 sshd[11630]: Failed password for invalid user user from 159.203.219.38 port 42981 ssh2 Aug 26 06:58:19 minden010 sshd[12052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.219.38 ...	2020-08-26 17:09:39
159.203.219.38	attackbots	k+ssh-bruteforce	2020-08-25 18:10:49
159.203.219.38	attack	Aug 23 01:30:54 prod4 sshd\[11616\]: Failed password for root from 159.203.219.38 port 53264 ssh2 Aug 23 01:34:15 prod4 sshd\[12386\]: Invalid user zjm from 159.203.219.38 Aug 23 01:34:17 prod4 sshd\[12386\]: Failed password for invalid user zjm from 159.203.219.38 port 56855 ssh2 ...	2020-08-23 08:15:39
159.203.219.38	attack	Aug 12 14:40:16 pve1 sshd[11869]: Failed password for root from 159.203.219.38 port 58215 ssh2 ...	2020-08-12 21:11:32
159.203.219.38	attackbotsspam	2020-08-10T05:57:44.178454centos sshd[20161]: Failed password for root from 159.203.219.38 port 56657 ssh2 2020-08-10T05:59:16.065846centos sshd[20427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.219.38 user=root 2020-08-10T05:59:18.311257centos sshd[20427]: Failed password for root from 159.203.219.38 port 48381 ssh2 ...	2020-08-10 13:22:26
159.203.219.38	attackspam	Aug 8 07:10:50 fhem-rasp sshd[12361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.219.38 user=root Aug 8 07:10:52 fhem-rasp sshd[12361]: Failed password for root from 159.203.219.38 port 49630 ssh2 ...	2020-08-08 13:13:28
159.203.21.180	attack	Automatic report generated by Wazuh	2020-08-02 01:07:58
159.203.219.38	attackspambots	$f2bV_matches	2020-07-25 06:52:33
159.203.219.38	attackbotsspam	Jul 24 08:16:57 home sshd[430996]: Invalid user fleet from 159.203.219.38 port 33674 Jul 24 08:16:57 home sshd[430996]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.219.38 Jul 24 08:16:57 home sshd[430996]: Invalid user fleet from 159.203.219.38 port 33674 Jul 24 08:16:59 home sshd[430996]: Failed password for invalid user fleet from 159.203.219.38 port 33674 ssh2 Jul 24 08:21:15 home sshd[431491]: Invalid user test from 159.203.219.38 port 40337 ...	2020-07-24 14:55:20
159.203.219.38	attack	Invalid user camilla from 159.203.219.38 port 44179	2020-07-16 15:11:06
159.203.219.38	attack	$f2bV_matches	2020-07-16 02:21:27

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.203.21.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16320
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;159.203.21.134.			IN	A

;; AUTHORITY SECTION:
.			166	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040200 1800 900 604800 86400

;; Query time: 94 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 02 22:12:05 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

134.21.203.159.in-addr.arpa domain name pointer ca.driftscape.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
134.21.203.159.in-addr.arpa	name = ca.driftscape.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
182.61.175.36	attackbotsspam	May 5 16:20:24 pve1 sshd[12810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.175.36 May 5 16:20:26 pve1 sshd[12810]: Failed password for invalid user matilde from 182.61.175.36 port 40146 ssh2 ...	2020-05-06 01:45:39
103.82.235.2	attackbotsspam	+ /wp-content/plugins/woopra/inc/php-ofc-library/ofc_upload_image.php	2020-05-06 01:25:45
45.248.71.215	attackspam	Ssh brute force	2020-05-06 01:16:54
167.71.52.241	attack	May 5 19:11:48 rotator sshd\[12619\]: Invalid user ajit from 167.71.52.241May 5 19:11:50 rotator sshd\[12619\]: Failed password for invalid user ajit from 167.71.52.241 port 49252 ssh2May 5 19:14:12 rotator sshd\[12637\]: Invalid user kms from 167.71.52.241May 5 19:14:14 rotator sshd\[12637\]: Failed password for invalid user kms from 167.71.52.241 port 60230 ssh2May 5 19:16:34 rotator sshd\[13410\]: Failed password for root from 167.71.52.241 port 42974 ssh2May 5 19:18:55 rotator sshd\[13439\]: Failed password for root from 167.71.52.241 port 53950 ssh2 ...	2020-05-06 01:38:25
186.179.137.214	attack	2020-05-0511:14:461jVtf3-0003Hz-BO\<=info@whatsup2013.chH=$localhost$[14.186.34.51]:57168P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3082id=aa2b9dcec5eec4cc5055e34fa85c766aa8dfb9@whatsup2013.chT="Areyoureallylonely\?"formattcohenca@aol.comfernandope725@gmail.com2020-05-0511:14:361jVtet-0003Gp-S9\<=info@whatsup2013.chH=$localhost$[14.177.149.237]:36847P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3084id=826adc8f84af858d1114a20ee91d372b8bc586@whatsup2013.chT="Believeireallylikeyou"forslicknix.04@gmail.comozzyoso4u@gmail.com2020-05-0511:14:261jVteh-0003Cn-Io\<=info@whatsup2013.chH=$localhost$[113.172.32.50]:47923P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3066id=ade544171c37e2eec98c3a699d5a505c6f5f1d50@whatsup2013.chT="Angerlherelookingforwings."for450wiped@gmail.combucky_98@hotmail.com2020-05-0511:11:461jVtc9-00031n-OH\<=info@whatsup2013.chH=$localhost$[186.179	2020-05-06 01:14:12
202.47.59.142	attack	Honeypot attack, port: 5555, PTR: PTR record not found	2020-05-06 01:38:04
113.172.113.135	attackspambots	2020-05-0511:14:461jVtf3-0003Hz-BO\<=info@whatsup2013.chH=$localhost$[14.186.34.51]:57168P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3082id=aa2b9dcec5eec4cc5055e34fa85c766aa8dfb9@whatsup2013.chT="Areyoureallylonely\?"formattcohenca@aol.comfernandope725@gmail.com2020-05-0511:14:361jVtet-0003Gp-S9\<=info@whatsup2013.chH=$localhost$[14.177.149.237]:36847P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3084id=826adc8f84af858d1114a20ee91d372b8bc586@whatsup2013.chT="Believeireallylikeyou"forslicknix.04@gmail.comozzyoso4u@gmail.com2020-05-0511:14:261jVteh-0003Cn-Io\<=info@whatsup2013.chH=$localhost$[113.172.32.50]:47923P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3066id=ade544171c37e2eec98c3a699d5a505c6f5f1d50@whatsup2013.chT="Angerlherelookingforwings."for450wiped@gmail.combucky_98@hotmail.com2020-05-0511:11:461jVtc9-00031n-OH\<=info@whatsup2013.chH=$localhost$[186.179	2020-05-06 01:12:45
1.194.236.104	attack	May 5 12:45:53 vps647732 sshd[20003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.194.236.104 May 5 12:45:55 vps647732 sshd[20003]: Failed password for invalid user ft from 1.194.236.104 port 37968 ssh2 ...	2020-05-06 01:21:50
180.76.174.197	attack	frenzy	2020-05-06 01:20:32
113.141.166.197	attack	May 5 13:16:46 ift sshd\[34217\]: Invalid user barun from 113.141.166.197May 5 13:16:48 ift sshd\[34217\]: Failed password for invalid user barun from 113.141.166.197 port 38496 ssh2May 5 13:20:54 ift sshd\[35067\]: Invalid user mzy from 113.141.166.197May 5 13:20:57 ift sshd\[35067\]: Failed password for invalid user mzy from 113.141.166.197 port 32838 ssh2May 5 13:24:22 ift sshd\[35240\]: Failed password for root from 113.141.166.197 port 55398 ssh2 ...	2020-05-06 01:24:52
27.155.83.174	attackspambots	May 5 15:19:37 saturn sshd[402033]: Invalid user test from 27.155.83.174 port 50488 May 5 15:19:39 saturn sshd[402033]: Failed password for invalid user test from 27.155.83.174 port 50488 ssh2 May 5 15:22:16 saturn sshd[402164]: Invalid user dian from 27.155.83.174 port 46226 ...	2020-05-06 01:37:45
106.222.73.244	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-05-06 01:35:38
128.199.85.49	attack	port scan and connect, tcp 80 (http)	2020-05-06 01:40:34
37.203.208.3	attackspam	May 5 18:32:26 v22019038103785759 sshd\[19066\]: Invalid user jenkins from 37.203.208.3 port 35926 May 5 18:32:26 v22019038103785759 sshd\[19066\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.203.208.3 May 5 18:32:27 v22019038103785759 sshd\[19066\]: Failed password for invalid user jenkins from 37.203.208.3 port 35926 ssh2 May 5 18:36:15 v22019038103785759 sshd\[19330\]: Invalid user fhb from 37.203.208.3 port 44980 May 5 18:36:15 v22019038103785759 sshd\[19330\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.203.208.3 ...	2020-05-06 01:49:33
45.14.151.246	attackbotsspam	Unauthorized connection attempt detected from IP address 45.14.151.246 to port 80	2020-05-06 01:57:42

最近上报的IP列表

155.220.98.184	195.54.255.191	164.51.133.87	207.35.163.103
116.45.68.198	128.211.149.70	196.176.129.219	173.41.63.250
107.183.17.96	147.150.230.95	13.228.132.75	39.234.107.73
3.188.186.92	103.132.20.4	13.55.33.119	174.36.152.8
74.180.209.101	93.77.68.124	144.142.251.180	125.26.176.180