197.159.139.193

基本信息:

城市(city): Accra

省份(region): Greater Accra Region

国家(country): Ghana

运营商(isp): Telesol LTE IP Block

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Sep 3 18:46:26 mellenthin postfix/smtpd[20629]: NOQUEUE: reject: RCPT from unknown[197.159.139.193]: 554 5.7.1 Service unavailable; Client host [197.159.139.193] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/197.159.139.193; from= to= proto=ESMTP helo=<[197.159.139.193]>	2020-09-05 00:54:27
attack	Sep 3 18:46:26 mellenthin postfix/smtpd[20629]: NOQUEUE: reject: RCPT from unknown[197.159.139.193]: 554 5.7.1 Service unavailable; Client host [197.159.139.193] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/197.159.139.193; from= to= proto=ESMTP helo=<[197.159.139.193]>	2020-09-04 16:16:28
attackspambots	Sep 3 18:46:26 mellenthin postfix/smtpd[20629]: NOQUEUE: reject: RCPT from unknown[197.159.139.193]: 554 5.7.1 Service unavailable; Client host [197.159.139.193] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/197.159.139.193; from= to= proto=ESMTP helo=<[197.159.139.193]>	2020-09-04 08:35:57

类型

评论内容

时间

attackspam

Sep  3 18:46:26 mellenthin postfix/smtpd[20629]: NOQUEUE: reject: RCPT from unknown[197.159.139.193]: 554 5.7.1 Service unavailable; Client host [197.159.139.193] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/197.159.139.193; from= to= proto=ESMTP helo=<[197.159.139.193]>

2020-09-05 00:54:27

attack

Sep  3 18:46:26 mellenthin postfix/smtpd[20629]: NOQUEUE: reject: RCPT from unknown[197.159.139.193]: 554 5.7.1 Service unavailable; Client host [197.159.139.193] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/197.159.139.193; from= to= proto=ESMTP helo=<[197.159.139.193]>

2020-09-04 16:16:28

attackspambots

Sep  3 18:46:26 mellenthin postfix/smtpd[20629]: NOQUEUE: reject: RCPT from unknown[197.159.139.193]: 554 5.7.1 Service unavailable; Client host [197.159.139.193] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/197.159.139.193; from= to= proto=ESMTP helo=<[197.159.139.193]>

2020-09-04 08:35:57

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 197.159.139.193
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47536
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;197.159.139.193.		IN	A

;; AUTHORITY SECTION:
.			210	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020090301 1800 900 604800 86400

;; Query time: 71 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 04 08:35:50 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 193.139.159.197.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 193.139.159.197.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
204.186.24.8	attack	06/26/2020-07:28:51.510927 204.186.24.8 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-06-26 21:51:16
122.224.232.66	attack	2020-06-26T11:25:37.585175abusebot-5.cloudsearch.cf sshd[3518]: Invalid user ph from 122.224.232.66 port 53522 2020-06-26T11:25:37.590717abusebot-5.cloudsearch.cf sshd[3518]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.224.232.66 2020-06-26T11:25:37.585175abusebot-5.cloudsearch.cf sshd[3518]: Invalid user ph from 122.224.232.66 port 53522 2020-06-26T11:25:39.716861abusebot-5.cloudsearch.cf sshd[3518]: Failed password for invalid user ph from 122.224.232.66 port 53522 ssh2 2020-06-26T11:29:08.160250abusebot-5.cloudsearch.cf sshd[3528]: Invalid user ym from 122.224.232.66 port 43690 2020-06-26T11:29:08.165966abusebot-5.cloudsearch.cf sshd[3528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.224.232.66 2020-06-26T11:29:08.160250abusebot-5.cloudsearch.cf sshd[3528]: Invalid user ym from 122.224.232.66 port 43690 2020-06-26T11:29:09.925780abusebot-5.cloudsearch.cf sshd[3528]: Failed password for in ...	2020-06-26 21:30:05
122.155.223.59	attack	Auto Fail2Ban report, multiple SSH login attempts.	2020-06-26 21:52:04
103.205.180.188	attackspambots	Invalid user bryce from 103.205.180.188 port 34590	2020-06-26 21:49:28
54.38.177.68	attackbots	54.38.177.68 - - [26/Jun/2020:13:28:40 +0200] "GET /wp-login.php HTTP/1.1" 200 6060 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 54.38.177.68 - - [26/Jun/2020:13:28:41 +0200] "POST /wp-login.php HTTP/1.1" 200 6311 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 54.38.177.68 - - [26/Jun/2020:13:28:42 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-26 22:02:22
222.186.175.23	attack	Jun 26 18:55:34 gw1 sshd[6904]: Failed password for root from 222.186.175.23 port 10991 ssh2 ...	2020-06-26 22:00:58
193.122.163.81	attackbots	Jun 26 14:32:41 mout sshd[8548]: Invalid user kevin from 193.122.163.81 port 32950	2020-06-26 22:06:38
218.92.0.250	attackbots	Multiple SSH login attempts.	2020-06-26 21:38:56
222.186.30.112	attackspambots	2020-06-26T16:56:20.032857lavrinenko.info sshd[8818]: Failed password for root from 222.186.30.112 port 46408 ssh2 2020-06-26T16:56:33.368852lavrinenko.info sshd[8823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.112 user=root 2020-06-26T16:56:35.393420lavrinenko.info sshd[8823]: Failed password for root from 222.186.30.112 port 62254 ssh2 2020-06-26T16:56:58.763339lavrinenko.info sshd[8861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.112 user=root 2020-06-26T16:57:00.552457lavrinenko.info sshd[8861]: Failed password for root from 222.186.30.112 port 54606 ssh2 ...	2020-06-26 21:59:22
181.215.157.194	attackspambots	(mod_security) mod_security (id:210740) triggered by 181.215.157.194 (US/United States/-): 5 in the last 3600 secs	2020-06-26 21:45:18
167.114.3.158	attack	Invalid user eko from 167.114.3.158 port 56294	2020-06-26 21:57:13
46.38.148.6	attack	2020-06-26 13:49:08 auth_plain authenticator failed for (User) [46.38.148.6]: 535 Incorrect authentication data (set_id=planetarium@csmailer.org) 2020-06-26 13:49:35 auth_plain authenticator failed for (User) [46.38.148.6]: 535 Incorrect authentication data (set_id=contactus@csmailer.org) 2020-06-26 13:49:56 auth_plain authenticator failed for (User) [46.38.148.6]: 535 Incorrect authentication data (set_id=app3@csmailer.org) 2020-06-26 13:50:18 auth_plain authenticator failed for (User) [46.38.148.6]: 535 Incorrect authentication data (set_id=movil@csmailer.org) 2020-06-26 13:50:40 auth_plain authenticator failed for (User) [46.38.148.6]: 535 Incorrect authentication data (set_id=checkout@csmailer.org) ...	2020-06-26 21:54:30
46.38.145.247	attackspam	2020-06-26 14:00:43 dovecot_login authenticator failed for $User$ \[46.38.145.247\]: 535 Incorrect authentication data $set_id=metals@no-server.de$ 2020-06-26 14:00:53 dovecot_login authenticator failed for $User$ \[46.38.145.247\]: 535 Incorrect authentication data $set_id=metals@no-server.de$ 2020-06-26 14:00:59 dovecot_login authenticator failed for $User$ \[46.38.145.247\]: 535 Incorrect authentication data $set_id=peter1@no-server.de$ 2020-06-26 14:00:59 dovecot_login authenticator failed for $User$ \[46.38.145.247\]: 535 Incorrect authentication data $set_id=peter1@no-server.de$ 2020-06-26 14:01:17 dovecot_login authenticator failed for $User$ \[46.38.145.247\]: 535 Incorrect authentication data $set_id=peter1@no-server.de$ ...	2020-06-26 21:34:05
159.203.27.98	attackbotsspam	$f2bV_matches	2020-06-26 21:39:44
222.186.175.182	attackspam	2020-06-26T15:17:41.796362sd-86998 sshd[20433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root 2020-06-26T15:17:44.011932sd-86998 sshd[20433]: Failed password for root from 222.186.175.182 port 8576 ssh2 2020-06-26T15:17:47.117315sd-86998 sshd[20433]: Failed password for root from 222.186.175.182 port 8576 ssh2 2020-06-26T15:17:41.796362sd-86998 sshd[20433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root 2020-06-26T15:17:44.011932sd-86998 sshd[20433]: Failed password for root from 222.186.175.182 port 8576 ssh2 2020-06-26T15:17:47.117315sd-86998 sshd[20433]: Failed password for root from 222.186.175.182 port 8576 ssh2 2020-06-26T15:17:41.796362sd-86998 sshd[20433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root 2020-06-26T15:17:44.011932sd-86998 sshd[20433]: Failed password for root fr ...	2020-06-26 21:28:02

最近上报的IP列表

91.80.255.207	203.113.130.213	202.106.177.193	37.63.242.63
37.107.124.100	189.18.222.238	51.158.153.225	203.46.245.83
90.51.255.246	149.63.14.135	188.88.243.249	196.232.222.79
119.50.136.43	61.208.162.149	203.189.237.249	111.207.37.32
183.166.8.225	123.149.30.7	129.226.118.122	78.174.174.108