162.243.138.18

基本信息:

城市(city): San Francisco

省份(region): California

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	9200/tcp 1337/tcp 8118/tcp... [2020-05-02/06-21]44pkt,32pt.(tcp),5pt.(udp)	2020-06-21 20:56:33
attackspambots	TCP (SYN) 162.243.138.18:40903 -> port 1433, len 40	2020-06-05 17:51:19
attackbots	firewall-block, port(s): 5269/tcp	2020-05-07 03:27:48
attack	Port scan(s) denied	2020-05-05 03:48:28
attackbots	Apr 30 19:08:30 : SSH login attempts with invalid user	2020-05-01 07:03:13

相同子网IP讨论:

IP	类型	评论内容	时间
162.243.138.127	attackspambots	[Sun Jun 14 20:12:07 2020] - DDoS Attack From IP: 162.243.138.127 Port: 47439	2020-07-16 20:51:56
162.243.138.112	attackbotsspam	Jun 15 02:19:24 mail postfix/postscreen[14056]: DNSBL rank 4 for [162.243.138.112]:51696 ...	2020-07-14 13:10:42
162.243.138.127	attack	[Sun Jun 14 20:12:09 2020] - DDoS Attack From IP: 162.243.138.127 Port: 47439	2020-07-13 03:14:52
162.243.138.96	attackbots	[Sat May 23 01:11:21 2020] - DDoS Attack From IP: 162.243.138.96 Port: 38759	2020-07-09 03:41:31
162.243.138.122	attackbots	[Sun May 24 09:17:21 2020] - DDoS Attack From IP: 162.243.138.122 Port: 43561	2020-07-09 03:34:09
162.243.138.189	attackspambots	Unauthorized connection attempt detected from IP address 162.243.138.189 to port 465	2020-06-22 07:28:19
162.243.138.177	attack	ZGrab Application Layer Scanner Detection	2020-06-21 22:07:50
162.243.138.15	attackspambots	scans once in preceeding hours on the ports (in chronological order) 8083 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 20:57:05
162.243.138.54	attackspam	scans once in preceeding hours on the ports (in chronological order) 3011 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 20:56:01
162.243.138.56	attack	33930/tcp 9300/tcp 28015/tcp... [2020-05-03/06-21]41pkt,34pt.(tcp)	2020-06-21 20:55:09
162.243.138.70	attackbots	scans once in preceeding hours on the ports (in chronological order) 3391 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 20:54:43
162.243.138.108	attackbots	scans once in preceeding hours on the ports (in chronological order) 8080 resulting in total of 51 scans from 162.243.0.0/16 block.	2020-06-21 20:54:24
162.243.138.182	attackbotsspam	Port scan: Attack repeated for 24 hours	2020-06-21 20:54:11
162.243.138.34	attackspambots	firewall-block, port(s): 2379/tcp	2020-06-21 02:45:54
162.243.138.163	attackspambots	Port scan: Attack repeated for 24 hours	2020-06-21 02:43:39

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 162.243.138.18
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1508
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;162.243.138.18.			IN	A

;; AUTHORITY SECTION:
.			421	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020043001 1800 900 604800 86400

;; Query time: 94 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 01 07:03:10 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

18.138.243.162.in-addr.arpa domain name pointer zg-0428c-216.stretchoid.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
18.138.243.162.in-addr.arpa	name = zg-0428c-216.stretchoid.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
222.186.190.92	attackbotsspam	Dec 22 01:57:46 ns3042688 sshd\[17828\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.92 user=root Dec 22 01:57:47 ns3042688 sshd\[17828\]: Failed password for root from 222.186.190.92 port 45776 ssh2 Dec 22 01:57:50 ns3042688 sshd\[17828\]: Failed password for root from 222.186.190.92 port 45776 ssh2 Dec 22 01:57:53 ns3042688 sshd\[17828\]: Failed password for root from 222.186.190.92 port 45776 ssh2 Dec 22 01:57:56 ns3042688 sshd\[17828\]: Failed password for root from 222.186.190.92 port 45776 ssh2 ...	2019-12-22 08:59:29
148.70.210.77	attackspam	$f2bV_matches	2019-12-22 09:04:38
95.110.159.28	attackbotsspam	Dec 21 19:33:15 ny01 sshd[27002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.110.159.28 Dec 21 19:33:16 ny01 sshd[27002]: Failed password for invalid user steinmann from 95.110.159.28 port 44050 ssh2 Dec 21 19:39:05 ny01 sshd[27613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.110.159.28	2019-12-22 08:40:30
217.111.239.37	attackspam	Dec 21 19:53:33 ny01 sshd[29277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.111.239.37 Dec 21 19:53:35 ny01 sshd[29277]: Failed password for invalid user irinel from 217.111.239.37 port 52904 ssh2 Dec 21 19:58:21 ny01 sshd[30361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.111.239.37	2019-12-22 09:08:32
199.195.251.227	attack	Dec 22 01:02:53 MK-Soft-VM5 sshd[1680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=199.195.251.227 Dec 22 01:02:55 MK-Soft-VM5 sshd[1680]: Failed password for invalid user thero from 199.195.251.227 port 45886 ssh2 ...	2019-12-22 09:01:21
62.212.88.246	attackbots	schuetzenmusikanten.de 62.212.88.246 [21/Dec/2019:23:57:14 +0100] "POST /wp-login.php HTTP/1.1" 200 6346 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" schuetzenmusikanten.de 62.212.88.246 [21/Dec/2019:23:57:15 +0100] "POST /wp-login.php HTTP/1.1" 200 6316 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-12-22 08:34:06
144.91.80.99	attack	Detected by Maltrail	2019-12-22 08:50:49
179.217.5.25	attack	Honeypot attack, port: 23, PTR: b3d90519.virtua.com.br.	2019-12-22 08:38:03
148.70.99.154	attackbots	Dec 22 01:02:59 h2177944 sshd\[32582\]: Invalid user opscode from 148.70.99.154 port 49489 Dec 22 01:03:00 h2177944 sshd\[32582\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.99.154 Dec 22 01:03:02 h2177944 sshd\[32582\]: Failed password for invalid user opscode from 148.70.99.154 port 49489 ssh2 Dec 22 01:08:57 h2177944 sshd\[361\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.99.154 user=root ...	2019-12-22 09:06:22
203.125.145.58	attack	Dec 22 00:58:59 icinga sshd[3651]: Failed password for root from 203.125.145.58 port 58558 ssh2 ...	2019-12-22 08:39:22
106.13.140.121	attackbots	Dec 22 01:18:03 mail sshd[2557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.140.121 user=mysql Dec 22 01:18:05 mail sshd[2557]: Failed password for mysql from 106.13.140.121 port 34612 ssh2 Dec 22 01:38:08 mail sshd[6047]: Invalid user estrellita from 106.13.140.121 Dec 22 01:38:08 mail sshd[6047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.140.121 Dec 22 01:38:08 mail sshd[6047]: Invalid user estrellita from 106.13.140.121 Dec 22 01:38:11 mail sshd[6047]: Failed password for invalid user estrellita from 106.13.140.121 port 41394 ssh2 ...	2019-12-22 08:52:12
180.76.134.246	attackspambots	Dec 21 14:35:46 auw2 sshd\[13377\]: Invalid user rpm from 180.76.134.246 Dec 21 14:35:46 auw2 sshd\[13377\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.134.246 Dec 21 14:35:49 auw2 sshd\[13377\]: Failed password for invalid user rpm from 180.76.134.246 port 35002 ssh2 Dec 21 14:42:34 auw2 sshd\[14137\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.134.246 user=root Dec 21 14:42:36 auw2 sshd\[14137\]: Failed password for root from 180.76.134.246 port 58126 ssh2	2019-12-22 08:56:03
218.64.216.66	attackbotsspam	Port 1433 Scan	2019-12-22 09:12:55
104.236.124.45	attack	Dec 21 18:35:22 plusreed sshd[26559]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.124.45 user=root Dec 21 18:35:24 plusreed sshd[26559]: Failed password for root from 104.236.124.45 port 42451 ssh2 ...	2019-12-22 08:45:18
197.188.161.88	attack	Automatic report - Port Scan Attack	2019-12-22 09:01:46

最近上报的IP列表

203.146.102.2	2.84.87.173	82.67.59.55	85.56.30.113
121.177.143.131	97.116.7.91	181.77.208.108	39.71.161.151
118.97.217.203	195.210.118.111	41.30.136.41	73.199.114.103
36.201.167.173	171.215.58.24	217.138.205.196	196.99.201.161
222.187.45.234	208.251.170.116	107.211.159.231	151.236.55.253