159.203.21.134

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Canada

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Attempted connection to port 3288.	2020-04-02 22:12:16

相同子网IP讨论:

IP	类型	评论内容	时间
159.203.219.38	attackbots	Invalid user ts3 from 159.203.219.38 port 46988	2020-09-24 20:54:12
159.203.219.38	attack	Sep 23 20:41:16 piServer sshd[29835]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.219.38 Sep 23 20:41:18 piServer sshd[29835]: Failed password for invalid user user from 159.203.219.38 port 46712 ssh2 Sep 23 20:44:54 piServer sshd[30143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.219.38 ...	2020-09-24 04:19:19
159.203.219.38	attackspambots	20 attempts against mh-ssh on cloud	2020-09-08 00:00:05
159.203.219.38	attackbotsspam	Sep 6 21:31:53 xeon sshd[42337]: Failed password for root from 159.203.219.38 port 50382 ssh2	2020-09-07 07:57:33
159.203.219.38	attack	Aug 26 06:54:33 minden010 sshd[11630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.219.38 Aug 26 06:54:35 minden010 sshd[11630]: Failed password for invalid user user from 159.203.219.38 port 42981 ssh2 Aug 26 06:58:19 minden010 sshd[12052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.219.38 ...	2020-08-26 17:09:39
159.203.219.38	attackbots	k+ssh-bruteforce	2020-08-25 18:10:49
159.203.219.38	attack	Aug 23 01:30:54 prod4 sshd\[11616\]: Failed password for root from 159.203.219.38 port 53264 ssh2 Aug 23 01:34:15 prod4 sshd\[12386\]: Invalid user zjm from 159.203.219.38 Aug 23 01:34:17 prod4 sshd\[12386\]: Failed password for invalid user zjm from 159.203.219.38 port 56855 ssh2 ...	2020-08-23 08:15:39
159.203.219.38	attack	Aug 12 14:40:16 pve1 sshd[11869]: Failed password for root from 159.203.219.38 port 58215 ssh2 ...	2020-08-12 21:11:32
159.203.219.38	attackbotsspam	2020-08-10T05:57:44.178454centos sshd[20161]: Failed password for root from 159.203.219.38 port 56657 ssh2 2020-08-10T05:59:16.065846centos sshd[20427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.219.38 user=root 2020-08-10T05:59:18.311257centos sshd[20427]: Failed password for root from 159.203.219.38 port 48381 ssh2 ...	2020-08-10 13:22:26
159.203.219.38	attackspam	Aug 8 07:10:50 fhem-rasp sshd[12361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.219.38 user=root Aug 8 07:10:52 fhem-rasp sshd[12361]: Failed password for root from 159.203.219.38 port 49630 ssh2 ...	2020-08-08 13:13:28
159.203.21.180	attack	Automatic report generated by Wazuh	2020-08-02 01:07:58
159.203.219.38	attackspambots	$f2bV_matches	2020-07-25 06:52:33
159.203.219.38	attackbotsspam	Jul 24 08:16:57 home sshd[430996]: Invalid user fleet from 159.203.219.38 port 33674 Jul 24 08:16:57 home sshd[430996]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.219.38 Jul 24 08:16:57 home sshd[430996]: Invalid user fleet from 159.203.219.38 port 33674 Jul 24 08:16:59 home sshd[430996]: Failed password for invalid user fleet from 159.203.219.38 port 33674 ssh2 Jul 24 08:21:15 home sshd[431491]: Invalid user test from 159.203.219.38 port 40337 ...	2020-07-24 14:55:20
159.203.219.38	attack	Invalid user camilla from 159.203.219.38 port 44179	2020-07-16 15:11:06
159.203.219.38	attack	$f2bV_matches	2020-07-16 02:21:27

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.203.21.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16320
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;159.203.21.134.			IN	A

;; AUTHORITY SECTION:
.			166	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040200 1800 900 604800 86400

;; Query time: 94 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 02 22:12:05 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

134.21.203.159.in-addr.arpa domain name pointer ca.driftscape.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
134.21.203.159.in-addr.arpa	name = ca.driftscape.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
222.122.31.133	attackbots	Apr 5 04:09:23 web9 sshd\[24992\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.122.31.133 user=root Apr 5 04:09:24 web9 sshd\[24992\]: Failed password for root from 222.122.31.133 port 46950 ssh2 Apr 5 04:14:04 web9 sshd\[25628\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.122.31.133 user=root Apr 5 04:14:06 web9 sshd\[25628\]: Failed password for root from 222.122.31.133 port 57314 ssh2 Apr 5 04:18:49 web9 sshd\[26237\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.122.31.133 user=root	2020-04-06 03:25:03
36.104.112.87	attackspam	xmlrpc attack	2020-04-06 03:39:03
54.218.147.202	attackbotsspam	05.04.2020 14:39:22 - Bad Robot Ignore Robots.txt	2020-04-06 03:24:45
123.31.32.150	attackspam	Apr 5 20:55:26 OPSO sshd\[15393\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.31.32.150 user=root Apr 5 20:55:27 OPSO sshd\[15393\]: Failed password for root from 123.31.32.150 port 45718 ssh2 Apr 5 20:59:11 OPSO sshd\[15784\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.31.32.150 user=root Apr 5 20:59:13 OPSO sshd\[15784\]: Failed password for root from 123.31.32.150 port 48312 ssh2 Apr 5 21:02:59 OPSO sshd\[16529\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.31.32.150 user=root	2020-04-06 03:21:51
165.22.204.147	attackbots	$f2bV_matches	2020-04-06 03:15:44
104.236.250.88	attack	(sshd) Failed SSH login from 104.236.250.88 (US/United States/-): 5 in the last 3600 secs	2020-04-06 03:40:03
110.168.53.253	attackspam	Apr 5 14:43:57 Tower sshd[37480]: Connection from 110.168.53.253 port 59769 on 192.168.10.220 port 22 rdomain "" Apr 5 14:43:59 Tower sshd[37480]: Failed password for root from 110.168.53.253 port 59769 ssh2 Apr 5 14:43:59 Tower sshd[37480]: Received disconnect from 110.168.53.253 port 59769:11: Bye Bye [preauth] Apr 5 14:43:59 Tower sshd[37480]: Disconnected from authenticating user root 110.168.53.253 port 59769 [preauth]	2020-04-06 03:24:26
185.200.118.83	attackbots	Unauthorized connection attempt from IP address 185.200.118.83 on Port 3389(RDP)	2020-04-06 03:14:05
222.186.190.2	attackbots	Apr 5 21:24:58 mail sshd\[5092\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.2 user=root Apr 5 21:25:00 mail sshd\[5092\]: Failed password for root from 222.186.190.2 port 42012 ssh2 Apr 5 21:25:04 mail sshd\[5092\]: Failed password for root from 222.186.190.2 port 42012 ssh2 ...	2020-04-06 03:31:55
61.90.160.216	attackspambots	Apr 3 20:32:08 gutwein sshd[30163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61-90-160-216.static.asianet.co.th user=r.r Apr 3 20:32:10 gutwein sshd[30163]: Failed password for r.r from 61.90.160.216 port 52300 ssh2 Apr 3 20:32:10 gutwein sshd[30163]: Received disconnect from 61.90.160.216: 11: Bye Bye [preauth] Apr 3 20:40:56 gutwein sshd[31929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61-90-160-216.static.asianet.co.th Apr 3 20:40:58 gutwein sshd[31929]: Failed password for invalid user www from 61.90.160.216 port 43638 ssh2 Apr 3 20:40:58 gutwein sshd[31929]: Received disconnect from 61.90.160.216: 11: Bye Bye [preauth] Apr 3 20:44:30 gutwein sshd[32669]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61-90-160-216.static.asianet.co.th Apr 3 20:44:32 gutwein sshd[32669]: Failed password for invalid user xlong from 61.90.160......... -------------------------------	2020-04-06 03:19:49
203.189.198.215	attackspam	Apr 5 14:35:43 haigwepa sshd[27627]: Failed password for root from 203.189.198.215 port 58786 ssh2 ...	2020-04-06 03:18:36
203.86.7.110	attack	[ssh] SSH attack	2020-04-06 03:19:08
49.51.163.95	attackspambots	Apr 5 21:17:14 h2829583 sshd[18567]: Failed password for root from 49.51.163.95 port 50572 ssh2	2020-04-06 03:36:38
60.30.98.194	attack	2020-04-05T12:55:26.853773abusebot-2.cloudsearch.cf sshd[24679]: Invalid user ord08 from 60.30.98.194 port 32161 2020-04-05T12:55:26.860478abusebot-2.cloudsearch.cf sshd[24679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.30.98.194 2020-04-05T12:55:26.853773abusebot-2.cloudsearch.cf sshd[24679]: Invalid user ord08 from 60.30.98.194 port 32161 2020-04-05T12:55:29.156675abusebot-2.cloudsearch.cf sshd[24679]: Failed password for invalid user ord08 from 60.30.98.194 port 32161 ssh2 2020-04-05T12:59:43.526110abusebot-2.cloudsearch.cf sshd[24914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.30.98.194 user=root 2020-04-05T12:59:45.436119abusebot-2.cloudsearch.cf sshd[24914]: Failed password for root from 60.30.98.194 port 10005 ssh2 2020-04-05T13:04:00.883366abusebot-2.cloudsearch.cf sshd[25296]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.30.98.194 us ...	2020-04-06 03:33:43
138.68.148.177	attackspambots	ssh brute force	2020-04-06 03:41:51

最近上报的IP列表

155.220.98.184	195.54.255.191	164.51.133.87	207.35.163.103
116.45.68.198	128.211.149.70	196.176.129.219	173.41.63.250
107.183.17.96	147.150.230.95	13.228.132.75	39.234.107.73
3.188.186.92	103.132.20.4	13.55.33.119	174.36.152.8
74.180.209.101	93.77.68.124	144.142.251.180	125.26.176.180