162.243.136.42

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
162.243.136.186	attack	[Wed Jun 10 05:55:45 2020] - DDoS Attack From IP: 162.243.136.186 Port: 40597	2020-07-13 03:51:17
162.243.136.60	attackspambots	[Sun May 31 02:48:40 2020] - DDoS Attack From IP: 162.243.136.60 Port: 49864	2020-07-09 02:28:35
162.243.136.88	attack	scans 2 times in preceeding hours on the ports (in chronological order) 4545 60001 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 21:03:56
162.243.136.115	attackbotsspam	3011/tcp 7547/tcp 502/tcp... [2020-05-05/06-21]31pkt,27pt.(tcp),1pt.(udp)	2020-06-21 21:03:39
162.243.136.144	attackspambots	scans once in preceeding hours on the ports (in chronological order) 1931 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 21:03:02
162.243.136.158	attackbotsspam	scans once in preceeding hours on the ports (in chronological order) 3011 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 21:02:40
162.243.136.160	attack	1720/tcp 8005/tcp 7777/tcp... [2020-04-29/06-21]42pkt,34pt.(tcp),2pt.(udp)	2020-06-21 21:02:12
162.243.136.182	attackbotsspam	2000/tcp 646/tcp 10880/tcp... [2020-04-30/06-21]57pkt,46pt.(tcp),4pt.(udp)	2020-06-21 20:59:23
162.243.136.192	attack	scans once in preceeding hours on the ports (in chronological order) 33930 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 20:58:58
162.243.136.27	attackbotsspam	firewall-block, port(s): 50070/tcp	2020-06-20 21:15:28
162.243.136.200	attackbots	RDP brute force attack detected by fail2ban	2020-06-20 14:05:31
162.243.136.27	attackspam	9001/tcp 47808/tcp 5984/tcp... [2020-05-03/06-19]31pkt,24pt.(tcp),2pt.(udp)	2020-06-20 06:28:31
162.243.136.192	attackspambots	Port scan denied	2020-06-18 17:45:40
162.243.136.24	attackbots	404 NOT FOUND	2020-06-17 14:44:54
162.243.136.216	attackspambots	162.243.136.216 - - - [17/Jun/2020:05:56:02 +0200] "GET /owa/auth/logon.aspx?url=https%3a%2f%2f1%2fecp%2f HTTP/1.1" 404 162 "-" "Mozilla/5.0 zgrab/0.x" "-" "-"	2020-06-17 13:09:29

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 162.243.136.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4469
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;162.243.136.42.			IN	A

;; AUTHORITY SECTION:
.			445	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020050901 1800 900 604800 86400

;; Query time: 177 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 10 12:44:50 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

42.136.243.162.in-addr.arpa domain name pointer zg-0428c-59.stretchoid.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
42.136.243.162.in-addr.arpa	name = zg-0428c-59.stretchoid.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
189.39.13.1	attack	Nov 4 15:13:03 cvbnet sshd[1575]: Failed password for root from 189.39.13.1 port 42972 ssh2 ...	2019-11-05 06:14:47
54.38.183.181	attack	Nov 4 23:03:07 SilenceServices sshd[19263]: Failed password for root from 54.38.183.181 port 34322 ssh2 Nov 4 23:06:44 SilenceServices sshd[21641]: Failed password for root from 54.38.183.181 port 43808 ssh2	2019-11-05 06:17:34
14.142.57.66	attackspambots	Failed password for invalid user peres from 14.142.57.66 port 48460 ssh2 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.57.66 user=root Failed password for root from 14.142.57.66 port 59050 ssh2 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.142.57.66 user=root Failed password for root from 14.142.57.66 port 41392 ssh2	2019-11-05 06:40:09
177.94.214.161	attackbots	Automatic report - Banned IP Access	2019-11-05 06:03:46
201.80.108.83	attack	2019-11-04T15:29:37.824094abusebot-3.cloudsearch.cf sshd\[24327\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.80.108.83 user=root	2019-11-05 06:06:39
106.245.160.140	attackbotsspam	Nov 4 15:39:19 localhost sshd[30571]: Failed password for invalid user ek from 106.245.160.140 port 50312 ssh2 Nov 4 15:43:11 localhost sshd[30651]: Invalid user ruo from 106.245.160.140 port 58690 Nov 4 15:43:11 localhost sshd[30651]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.245.160.140 Nov 4 15:43:11 localhost sshd[30651]: Invalid user ruo from 106.245.160.140 port 58690 Nov 4 15:43:14 localhost sshd[30651]: Failed password for invalid user ruo from 106.245.160.140 port 58690 ssh2	2019-11-05 06:18:30
103.93.106.90	attackbots	Autoban 103.93.106.90 AUTH/CONNECT	2019-11-05 06:05:10
45.7.231.94	attackbotsspam	Automatic report - XMLRPC Attack	2019-11-05 06:27:45
106.12.93.25	attack	$f2bV_matches	2019-11-05 06:13:40
113.101.65.135	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/113.101.65.135/ CN - 1H : (588) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4134 IP : 113.101.65.135 CIDR : 113.100.0.0/15 PREFIX COUNT : 5430 UNIQUE IP COUNT : 106919680 ATTACKS DETECTED ASN4134 : 1H - 16 3H - 36 6H - 77 12H - 138 24H - 257 DateTime : 2019-11-04 15:25:44 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-05 06:38:19
142.93.163.125	attackbotsspam	2019-11-04T16:13:12.632409shield sshd\[31630\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.163.125 user=root 2019-11-04T16:13:14.665472shield sshd\[31630\]: Failed password for root from 142.93.163.125 port 60562 ssh2 2019-11-04T16:17:10.258716shield sshd\[32193\]: Invalid user jp from 142.93.163.125 port 41458 2019-11-04T16:17:10.263788shield sshd\[32193\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.163.125 2019-11-04T16:17:11.970477shield sshd\[32193\]: Failed password for invalid user jp from 142.93.163.125 port 41458 ssh2	2019-11-05 06:36:32
130.61.122.5	attackspambots	Nov 4 09:25:46 debian sshd\[19628\]: Invalid user support from 130.61.122.5 port 46532 Nov 4 09:25:46 debian sshd\[19628\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.61.122.5 Nov 4 09:25:48 debian sshd\[19628\]: Failed password for invalid user support from 130.61.122.5 port 46532 ssh2 ...	2019-11-05 06:37:34
58.210.169.162	attackbotsspam	Nov 4 22:44:48 ns41 sshd[17521]: Failed password for root from 58.210.169.162 port 46293 ssh2 Nov 4 22:44:48 ns41 sshd[17521]: Failed password for root from 58.210.169.162 port 46293 ssh2	2019-11-05 06:08:28
51.255.126.132	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-05 06:18:58
31.24.128.41	attack	notenschluessel-fulda.de 31.24.128.41 \[04/Nov/2019:18:14:16 +0100\] "POST /xmlrpc.php HTTP/1.1" 200 4314 "-" "Mozilla/5.0 $Windows NT 10.0\; Win64\; x64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/60.0.3112.113 Safari/537.36" NOTENSCHLUESSEL-FULDA.DE 31.24.128.41 \[04/Nov/2019:18:14:16 +0100\] "POST /xmlrpc.php HTTP/1.1" 200 4314 "-" "Mozilla/5.0 $Windows NT 10.0\; Win64\; x64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/60.0.3112.113 Safari/537.36"	2019-11-05 06:21:02

最近上报的IP列表

27.74.84.140	46.31.205.14	114.42.130.211	112.118.224.72
110.171.25.41	106.40.148.105	195.231.11.219	103.233.1.218
117.207.181.19	122.252.239.168	109.191.131.58	185.236.83.236
60.208.101.174	49.188.133.234	56.2.146.151	93.98.65.11
42.38.60.152	203.154.112.8	6.15.219.234	204.121.37.221