162.243.132.142

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-04-19 07:57:12
attackbots	Hits on port : 30001 44818	2020-04-05 08:06:18
attack	Port 80 (HTTP) access denied	2020-03-25 17:25:27
attackbotsspam	Hits on port : 3050	2020-03-13 21:05:10

相同子网IP讨论:

IP	类型	评论内容	时间
162.243.132.27	attackbots	[Sat Jun 27 10:58:10 2020] - DDoS Attack From IP: 162.243.132.27 Port: 59286	2020-07-13 02:14:10
162.243.132.27	attack	3128/tcp 8087/tcp 5223/tcp... [2020-07-01/08]10pkt,10pt.(tcp)	2020-07-08 20:59:41
162.243.132.79	attackbotsspam	trying to access non-authorized port	2020-07-08 11:30:42
162.243.132.87	attackbotsspam	scans once in preceeding hours on the ports (in chronological order) 47808 resulting in total of 7 scans from 162.243.0.0/16 block.	2020-07-07 01:05:09
162.243.132.148	attack	scans once in preceeding hours on the ports (in chronological order) 5632 resulting in total of 7 scans from 162.243.0.0/16 block.	2020-07-07 01:04:43
162.243.132.162	attackbotsspam	scans once in preceeding hours on the ports (in chronological order) 9200 resulting in total of 7 scans from 162.243.0.0/16 block.	2020-07-07 01:04:26
162.243.132.128	attack	trying to access non-authorized port	2020-07-06 14:48:05
162.243.132.6	attackbots	[Tue Jun 30 16:40:29 2020] - DDoS Attack From IP: 162.243.132.6 Port: 56691	2020-07-06 05:02:23
162.243.132.210	attackspam	Port scan: Attack repeated for 24 hours	2020-07-05 17:35:53
162.243.132.5	attackspambots	Port scan: Attack repeated for 24 hours	2020-07-05 06:20:02
162.243.132.42	attack	TCP (SYN) 162.243.132.42:60649 -> port 9001, len 44	2020-07-02 08:58:03
162.243.132.148	attack	SMTP:25. Login attempt blocked.	2020-07-01 22:08:21
162.243.132.159	attack	TCP (SYN) 162.243.132.159:51149 -> port 139, len 40	2020-07-01 20:29:52
162.243.132.150	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-07-01 17:26:03
162.243.132.87	attackbots	trying to access non-authorized port	2020-07-01 01:22:28

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 162.243.132.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55648
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;162.243.132.142.		IN	A

;; AUTHORITY SECTION:
.			167	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031300 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 13 21:05:03 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

142.132.243.162.in-addr.arpa domain name pointer zg-0312c-358.stretchoid.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
142.132.243.162.in-addr.arpa	name = zg-0312c-358.stretchoid.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
116.58.228.103	attackbotsspam	1595794523 - 07/26/2020 22:15:23 Host: 116.58.228.103/116.58.228.103 Port: 445 TCP Blocked	2020-07-27 05:09:48
141.98.9.157	attack	Failed password for invalid user from 141.98.9.157 port 44397 ssh2	2020-07-27 05:03:35
111.255.36.119	attack	Unauthorized connection attempt from IP address 111.255.36.119 on Port 445(SMB)	2020-07-27 04:45:34
189.203.139.37	attackbots	Jul 26 14:15:25 Host-KLAX-C dovecot: imap-login: Disconnected (auth failed, 1 attempts in 22 secs): user=, method=PLAIN, rip=189.203.139.37, lip=185.198.26.142, TLS, session= ...	2020-07-27 05:06:15
124.160.42.66	attack	Jul 26 20:15:44 scw-tender-jepsen sshd[23390]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.160.42.66 Jul 26 20:15:46 scw-tender-jepsen sshd[23390]: Failed password for invalid user git from 124.160.42.66 port 4227 ssh2	2020-07-27 04:40:14
106.12.28.152	attackbots	Jul 26 22:45:32 home sshd[931779]: Invalid user parana from 106.12.28.152 port 53638 Jul 26 22:45:32 home sshd[931779]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.28.152 Jul 26 22:45:32 home sshd[931779]: Invalid user parana from 106.12.28.152 port 53638 Jul 26 22:45:35 home sshd[931779]: Failed password for invalid user parana from 106.12.28.152 port 53638 ssh2 Jul 26 22:48:12 home sshd[932048]: Invalid user teng from 106.12.28.152 port 34988 ...	2020-07-27 04:54:46
196.27.127.61	attackbotsspam	Jul 26 22:28:11 eventyay sshd[2864]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.27.127.61 Jul 26 22:28:14 eventyay sshd[2864]: Failed password for invalid user filip from 196.27.127.61 port 35326 ssh2 Jul 26 22:32:31 eventyay sshd[3041]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.27.127.61 ...	2020-07-27 04:48:19
41.38.25.35	attack	Unauthorized connection attempt from IP address 41.38.25.35 on Port 445(SMB)	2020-07-27 05:05:47
129.226.161.114	attackbotsspam	Jul 26 23:47:00 journals sshd\[5502\]: Invalid user tariq from 129.226.161.114 Jul 26 23:47:00 journals sshd\[5502\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.161.114 Jul 26 23:47:01 journals sshd\[5502\]: Failed password for invalid user tariq from 129.226.161.114 port 53020 ssh2 Jul 26 23:51:25 journals sshd\[6085\]: Invalid user salt from 129.226.161.114 Jul 26 23:51:25 journals sshd\[6085\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.161.114 ...	2020-07-27 04:52:38
142.93.172.45	attackspambots	142.93.172.45 - - [26/Jul/2020:22:04:05 +0100] "POST /wp-login.php HTTP/1.1" 200 1969 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.172.45 - - [26/Jul/2020:22:04:06 +0100] "POST /wp-login.php HTTP/1.1" 200 1954 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.172.45 - - [26/Jul/2020:22:04:06 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-27 05:06:44
218.253.212.42	attack	Unauthorized connection attempt from IP address 218.253.212.42 on Port 445(SMB)	2020-07-27 05:13:36
95.182.122.131	attackspambots	Invalid user ctrls from 95.182.122.131 port 36250	2020-07-27 05:07:13
106.52.13.126	attackspam	PHP Info File Request - Possible PHP Version Scan	2020-07-27 04:56:58
190.64.64.77	attack	Unauthorized SSH login attempts	2020-07-27 04:57:45
195.136.95.82	attackspambots	(smtpauth) Failed SMTP AUTH login from 195.136.95.82 (PL/Poland/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-07-27 00:45:18 plain authenticator failed for ([195.136.95.82]) [195.136.95.82]: 535 Incorrect authentication data (set_id=info@fmc-co.com)	2020-07-27 05:10:47

最近上报的IP列表

65.94.18.251	156.196.9.156	109.73.33.126	191.101.46.47
176.108.232.124	111.67.193.92	45.143.223.46	108.21.247.13
171.227.255.26	187.19.160.98	182.18.224.231	62.248.137.62
2.86.232.117	109.121.26.144	103.248.87.233	154.221.26.132
187.102.61.94	176.117.190.185	154.124.46.235	209.85.208.176