159.203.74.94 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	20/4/24@23:59:23: FAIL: Alarm-Intrusion address from=159.203.74.94 ...	2020-04-25 12:28:20
attackspam	20/4/24@02:54:14: FAIL: Alarm-Intrusion address from=159.203.74.94 ...	2020-04-24 15:17:03
attackbots	20/4/19@08:05:51: FAIL: Alarm-Intrusion address from=159.203.74.94 ...	2020-04-19 20:24:52

类型

评论内容

时间

attackspambots

20/4/24@23:59:23: FAIL: Alarm-Intrusion address from=159.203.74.94
...

2020-04-25 12:28:20

attackspam

20/4/24@02:54:14: FAIL: Alarm-Intrusion address from=159.203.74.94
...

2020-04-24 15:17:03

attackbots

20/4/19@08:05:51: FAIL: Alarm-Intrusion address from=159.203.74.94
...

2020-04-19 20:24:52

相同子网IP讨论:

IP	类型	评论内容	时间
159.203.74.227	attackbots	Invalid user vz from 159.203.74.227 port 43554	2020-10-13 22:33:18
159.203.74.227	attackspambots	Oct 12 22:55:14 mavik sshd[13085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.74.227 user=root Oct 12 22:55:16 mavik sshd[13085]: Failed password for root from 159.203.74.227 port 35866 ssh2 Oct 12 22:59:31 mavik sshd[13749]: Invalid user wildaliz from 159.203.74.227 Oct 12 22:59:31 mavik sshd[13749]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.74.227 Oct 12 22:59:33 mavik sshd[13749]: Failed password for invalid user wildaliz from 159.203.74.227 port 39348 ssh2 ...	2020-10-13 06:39:35
159.203.74.227	attackspambots	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-09-28 01:32:50
159.203.74.227	attackbotsspam	Sep 27 11:24:43 PorscheCustomer sshd[19202]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.74.227 Sep 27 11:24:44 PorscheCustomer sshd[19202]: Failed password for invalid user vpn from 159.203.74.227 port 53320 ssh2 Sep 27 11:29:36 PorscheCustomer sshd[19267]: Failed password for root from 159.203.74.227 port 33264 ssh2 ...	2020-09-27 17:36:49
159.203.74.227	attackbotsspam	Sep 5 21:40:08 minden010 sshd[31495]: Failed password for root from 159.203.74.227 port 44090 ssh2 Sep 5 21:44:52 minden010 sshd[1051]: Failed password for root from 159.203.74.227 port 52152 ssh2 ...	2020-09-06 04:21:46
159.203.74.227	attackspam	SSH Brute-Force attacks	2020-09-05 20:10:39
159.203.74.227	attackspam	32354/tcp 17856/tcp 704/tcp... [2020-06-29/08-29]109pkt,41pt.(tcp)	2020-08-30 03:20:29
159.203.74.227	attackbots	Invalid user oracle from 159.203.74.227 port 56104	2020-08-29 05:18:35
159.203.74.227	attackspambots	1598424639 - 08/26/2020 08:50:39 Host: 159.203.74.227/159.203.74.227 Port: 704 TCP Blocked ...	2020-08-26 17:27:09
159.203.74.227	attack	Port scan: Attack repeated for 24 hours	2020-08-05 07:16:33
159.203.74.227	attack	2020-07-29T04:37:30.296812linuxbox-skyline sshd[84060]: Invalid user redmine from 159.203.74.227 port 60202 ...	2020-07-29 19:14:02
159.203.74.227	attackbots	Invalid user fotos from 159.203.74.227 port 45330	2020-07-25 13:25:36
159.203.74.227	attackbotsspam	Invalid user zzg from 159.203.74.227 port 60552	2020-07-18 20:07:32
159.203.74.227	attackspam	Jul 17 03:03:05 lanister sshd[11305]: Invalid user debian from 159.203.74.227 Jul 17 03:03:05 lanister sshd[11305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.74.227 Jul 17 03:03:05 lanister sshd[11305]: Invalid user debian from 159.203.74.227 Jul 17 03:03:07 lanister sshd[11305]: Failed password for invalid user debian from 159.203.74.227 port 32844 ssh2	2020-07-17 15:03:44
159.203.74.159	attackbots	Jul 15 09:23:48 rama sshd[889480]: Invalid user omega from 159.203.74.159 Jul 15 09:23:48 rama sshd[889480]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.74.159 Jul 15 09:23:50 rama sshd[889480]: Failed password for invalid user omega from 159.203.74.159 port 50340 ssh2 Jul 15 09:23:50 rama sshd[889480]: Received disconnect from 159.203.74.159: 11: Bye Bye [preauth] Jul 15 10:02:19 rama sshd[901008]: Invalid user sakurai from 159.203.74.159 Jul 15 10:02:19 rama sshd[901008]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.74.159 Jul 15 10:02:21 rama sshd[901008]: Failed password for invalid user sakurai from 159.203.74.159 port 51048 ssh2 Jul 15 10:02:22 rama sshd[901008]: Received disconnect from 159.203.74.159: 11: Bye Bye [preauth] Jul 15 10:05:25 rama sshd[902022]: Invalid user zrs from 159.203.74.159 Jul 15 10:05:25 rama sshd[902022]: pam_unix(sshd:auth): authentica........ -------------------------------	2020-07-16 04:27:12

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.203.74.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58231
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;159.203.74.94.			IN	A

;; AUTHORITY SECTION:
.			592	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041900 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 19 20:24:48 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 94.74.203.159.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 94.74.203.159.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
213.176.60.227	attackspam	Jan 12 10:24:31 vps46666688 sshd[22349]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.176.60.227 Jan 12 10:24:33 vps46666688 sshd[22349]: Failed password for invalid user cs from 213.176.60.227 port 35085 ssh2 ...	2020-01-12 21:34:32
222.186.175.148	attack	Jan 12 03:27:57 web9 sshd\[15948\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root Jan 12 03:27:59 web9 sshd\[15948\]: Failed password for root from 222.186.175.148 port 10910 ssh2 Jan 12 03:28:14 web9 sshd\[15992\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root Jan 12 03:28:16 web9 sshd\[15992\]: Failed password for root from 222.186.175.148 port 2388 ssh2 Jan 12 03:28:36 web9 sshd\[16016\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.148 user=root	2020-01-12 21:29:49
1.194.48.114	attackspam	Jan 12 14:09:26 ns37 sshd[25863]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.194.48.114 Jan 12 14:09:28 ns37 sshd[25863]: Failed password for invalid user pg from 1.194.48.114 port 46876 ssh2 Jan 12 14:13:19 ns37 sshd[26072]: Failed password for zabbix from 1.194.48.114 port 37712 ssh2	2020-01-12 21:30:19
94.254.74.81	attackbots	$f2bV_matches	2020-01-12 21:18:09
185.34.22.25	attackbots	Unauthorized connection attempt detected from IP address 185.34.22.25 to port 8080 [J]	2020-01-12 21:40:02
173.169.210.166	attackbots	Unauthorized connection attempt detected from IP address 173.169.210.166 to port 23 [J]	2020-01-12 21:42:37
129.213.107.56	attackspambots	[ssh] SSH attack	2020-01-12 21:28:51
222.186.31.144	attackspambots	Jan 12 14:11:40 root sshd[18199]: Failed password for root from 222.186.31.144 port 38192 ssh2 Jan 12 14:11:43 root sshd[18199]: Failed password for root from 222.186.31.144 port 38192 ssh2 Jan 12 14:11:45 root sshd[18199]: Failed password for root from 222.186.31.144 port 38192 ssh2 ...	2020-01-12 21:15:41
79.31.209.216	attackbots	Telnet Server BruteForce Attack	2020-01-12 21:22:55
171.97.88.194	attack	unauthorized connection attempt	2020-01-12 21:11:53
128.199.240.120	attackspam	Unauthorized connection attempt detected from IP address 128.199.240.120 to port 2220 [J]	2020-01-12 21:44:52
104.236.230.165	attackspam	Jan 12 10:13:42 ws19vmsma01 sshd[127097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.230.165 Jan 12 10:13:44 ws19vmsma01 sshd[127097]: Failed password for invalid user cynthia from 104.236.230.165 port 43692 ssh2 ...	2020-01-12 21:21:20
117.78.15.148	attack	Jan 12 14:13:44 srv01 sshd[14453]: Invalid user ps from 117.78.15.148 port 47452 Jan 12 14:13:44 srv01 sshd[14453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.78.15.148 Jan 12 14:13:44 srv01 sshd[14453]: Invalid user ps from 117.78.15.148 port 47452 Jan 12 14:13:46 srv01 sshd[14453]: Failed password for invalid user ps from 117.78.15.148 port 47452 ssh2 Jan 12 14:16:46 srv01 sshd[14619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.78.15.148 user=root Jan 12 14:16:48 srv01 sshd[14619]: Failed password for root from 117.78.15.148 port 39088 ssh2 ...	2020-01-12 21:23:26
124.248.189.120	attackspambots	Unauthorized connection attempt detected from IP address 124.248.189.120 to port 8080 [J]	2020-01-12 21:45:20
174.44.218.181	attackbotsspam	unauthorized connection attempt	2020-01-12 21:11:24

最近上报的IP列表

194.40.19.40	16.91.198.24	4.248.115.9	219.180.15.243
15.184.34.54	32.177.222.255	52.226.208.148	132.232.31.157
49.235.247.78	189.26.149.28	200.199.182.184	50.210.197.174
199.218.173.97	222.10.156.31	201.76.184.110	89.248.174.151
68.97.124.189	117.67.92.58	74.9.37.35	5.77.6.203