162.243.128.20

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 162.243.128.20 to port 4911 [T]	2020-08-13 23:38:59
attackspambots	Unauthorized connection attempt detected from IP address 162.243.128.20 to port 5986	2020-04-10 05:46:27
attackbots	Port probing on unauthorized port 2095	2020-03-24 08:11:12

类型

评论内容

时间

attack

Unauthorized connection attempt detected from IP address 162.243.128.20 to port 4911 [T]

2020-08-13 23:38:59

attackspambots

Unauthorized connection attempt detected from IP address 162.243.128.20 to port 5986

2020-04-10 05:46:27

attackbots

Port probing on unauthorized port 2095

2020-03-24 08:11:12

相同子网IP讨论:

IP	类型	评论内容	时间
162.243.128.132	attackbotsspam	SP-Scan 43646:9042 detected 2020.10.13 21:22:22 blocked until 2020.12.02 13:25:09	2020-10-14 07:02:01
162.243.128.189	attack	[N1.H1.VM1] Port Scanner Detected Blocked by UFW	2020-10-13 02:32:26
162.243.128.189	attackspambots	Port scanning [3 denied]	2020-10-12 17:58:27
162.243.128.12	attackbotsspam	TCP port : 631	2020-10-12 03:55:08
162.243.128.133	attackspambots	7210/tcp 1521/tcp 8090/tcp... [2020-08-21/10-10]28pkt,26pt.(tcp),1pt.(udp)	2020-10-12 02:41:08
162.243.128.71	attackspam	50000/tcp 1527/tcp 4567/tcp... [2020-08-21/10-11]23pkt,21pt.(tcp),1pt.(udp)	2020-10-12 01:26:02
162.243.128.12	attack	TCP port : 631	2020-10-11 19:51:16
162.243.128.133	attack	HTTP_USER_AGENT Mozilla/5.0 zgrab/0.x	2020-10-11 18:32:12
162.243.128.71	attack	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-10-11 17:16:50
162.243.128.127	attackbots	scans once in preceeding hours on the ports (in chronological order) 1434 resulting in total of 6 scans from 162.243.0.0/16 block.	2020-10-10 22:07:07
162.243.128.127	attack	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-10-10 13:59:54
162.243.128.94	attack	TCP port : 631	2020-10-09 06:31:46
162.243.128.176	attack	firewall-block, port(s): 26/tcp	2020-10-09 05:24:23
162.243.128.251	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-10-09 03:19:05
162.243.128.94	attackspam	TCP port : 631	2020-10-08 22:52:56

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 162.243.128.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42247
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;162.243.128.20.			IN	A

;; AUTHORITY SECTION:
.			423	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032301 1800 900 604800 86400

;; Query time: 50 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 24 08:11:08 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

20.128.243.162.in-addr.arpa domain name pointer zg-0312b-250.stretchoid.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.128.243.162.in-addr.arpa	name = zg-0312b-250.stretchoid.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
185.53.88.240	attackspam	[portscan] Port scan	2020-06-19 00:00:44
212.95.137.27	attackbotsspam	$f2bV_matches	2020-06-19 00:15:40
191.102.148.103	attackspambots	(mod_security) mod_security (id:210740) triggered by 191.102.148.103 (US/United States/-): 5 in the last 3600 secs	2020-06-18 23:43:03
23.120.24.189	attack	Jun 18 14:06:32 ns3164893 sshd[27985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.120.24.189 Jun 18 14:06:34 ns3164893 sshd[27985]: Failed password for invalid user tty from 23.120.24.189 port 63655 ssh2 ...	2020-06-19 00:10:05
161.132.125.17	attack	Automatic report - XMLRPC Attack	2020-06-19 00:02:58
109.105.245.129	attackbots	Jun 18 17:36:54 vps639187 sshd\[15595\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.105.245.129 user=root Jun 18 17:36:56 vps639187 sshd\[15595\]: Failed password for root from 109.105.245.129 port 35406 ssh2 Jun 18 17:39:39 vps639187 sshd\[15649\]: Invalid user matteo from 109.105.245.129 port 50878 Jun 18 17:39:39 vps639187 sshd\[15649\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.105.245.129 ...	2020-06-19 00:05:46
187.141.128.42	attack	Jun 18 17:06:41 sip sshd[695936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.141.128.42 user=root Jun 18 17:06:43 sip sshd[695936]: Failed password for root from 187.141.128.42 port 41426 ssh2 Jun 18 17:10:46 sip sshd[695949]: Invalid user stp from 187.141.128.42 port 39870 ...	2020-06-18 23:43:28
87.246.7.74	attackbots	Jun 18 17:10:26 web01.agentur-b-2.de postfix/smtps/smtpd[95065]: warning: unknown[87.246.7.74]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 18 17:10:36 web01.agentur-b-2.de postfix/smtps/smtpd[95065]: lost connection after AUTH from unknown[87.246.7.74] Jun 18 17:12:50 web01.agentur-b-2.de postfix/smtps/smtpd[95065]: warning: unknown[87.246.7.74]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 18 17:13:01 web01.agentur-b-2.de postfix/smtps/smtpd[95065]: lost connection after AUTH from unknown[87.246.7.74] Jun 18 17:15:17 web01.agentur-b-2.de postfix/smtps/smtpd[95065]: warning: unknown[87.246.7.74]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-06-19 00:29:51
218.205.97.113	attackspambots	Repeated brute force against a port	2020-06-18 23:46:03
177.67.164.149	attackspambots	Jun 18 13:38:02 mail.srvfarm.net postfix/smtps/smtpd[1467683]: warning: unknown[177.67.164.149]: SASL PLAIN authentication failed: Jun 18 13:38:02 mail.srvfarm.net postfix/smtps/smtpd[1467683]: lost connection after AUTH from unknown[177.67.164.149] Jun 18 13:44:09 mail.srvfarm.net postfix/smtpd[1469351]: warning: unknown[177.67.164.149]: SASL PLAIN authentication failed: Jun 18 13:44:10 mail.srvfarm.net postfix/smtpd[1469351]: lost connection after AUTH from unknown[177.67.164.149] Jun 18 13:46:29 mail.srvfarm.net postfix/smtpd[1469316]: warning: unknown[177.67.164.149]: SASL PLAIN authentication failed:	2020-06-19 00:24:41
143.137.4.13	attackspam	Jun 18 13:42:47 mail.srvfarm.net postfix/smtps/smtpd[1467947]: warning: unknown[143.137.4.13]: SASL PLAIN authentication failed: Jun 18 13:42:47 mail.srvfarm.net postfix/smtps/smtpd[1467947]: lost connection after AUTH from unknown[143.137.4.13] Jun 18 13:44:15 mail.srvfarm.net postfix/smtps/smtpd[1471062]: warning: unknown[143.137.4.13]: SASL PLAIN authentication failed: Jun 18 13:44:15 mail.srvfarm.net postfix/smtps/smtpd[1471062]: lost connection after AUTH from unknown[143.137.4.13] Jun 18 13:49:22 mail.srvfarm.net postfix/smtps/smtpd[1472781]: warning: unknown[143.137.4.13]: SASL PLAIN authentication failed:	2020-06-19 00:27:09
174.138.18.157	attackspambots	$f2bV_matches	2020-06-19 00:01:58
188.114.217.100	attackspam	20/6/18@08:06:49: FAIL: Alarm-Intrusion address from=188.114.217.100 ...	2020-06-18 23:46:37
200.133.133.220	attackbots	2020-06-18T17:00:20.440541mail.standpoint.com.ua sshd[24079]: Failed password for git from 200.133.133.220 port 44606 ssh2 2020-06-18T17:02:52.981835mail.standpoint.com.ua sshd[24528]: Invalid user abhinav from 200.133.133.220 port 47560 2020-06-18T17:02:52.985722mail.standpoint.com.ua sshd[24528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.133.133.220 2020-06-18T17:02:52.981835mail.standpoint.com.ua sshd[24528]: Invalid user abhinav from 200.133.133.220 port 47560 2020-06-18T17:02:55.320504mail.standpoint.com.ua sshd[24528]: Failed password for invalid user abhinav from 200.133.133.220 port 47560 ssh2 ...	2020-06-18 23:48:37
157.230.190.90	attackbotsspam	Jun 18 16:34:26 meumeu sshd[853268]: Invalid user video from 157.230.190.90 port 57972 Jun 18 16:34:26 meumeu sshd[853268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.190.90 Jun 18 16:34:26 meumeu sshd[853268]: Invalid user video from 157.230.190.90 port 57972 Jun 18 16:34:28 meumeu sshd[853268]: Failed password for invalid user video from 157.230.190.90 port 57972 ssh2 Jun 18 16:39:13 meumeu sshd[853521]: Invalid user web from 157.230.190.90 port 33494 Jun 18 16:39:13 meumeu sshd[853521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.190.90 Jun 18 16:39:13 meumeu sshd[853521]: Invalid user web from 157.230.190.90 port 33494 Jun 18 16:39:15 meumeu sshd[853521]: Failed password for invalid user web from 157.230.190.90 port 33494 ssh2 Jun 18 16:43:57 meumeu sshd[853962]: Invalid user vx from 157.230.190.90 port 37218 ...	2020-06-19 00:25:53

最近上报的IP列表

40.66.42.98	125.162.247.77	49.233.143.98	219.146.92.74
175.24.72.167	123.139.43.101	122.191.127.39	121.141.216.231
87.126.21.88	132.232.115.47	51.254.246.40	13.91.46.118
191.250.60.118	45.83.65.156	182.50.132.89	218.16.121.2
162.248.88.152	69.94.141.68	111.229.54.82	48.63.94.174