162.243.139.184

基本信息:

城市(city): San Francisco

省份(region): California

国家(country): United States

运营商(isp): DigitalOcean LLC

主机名(hostname): unknown

机构(organization): DigitalOcean, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	(sshd) Failed SSH login from 162.243.139.184 (US/United States/zg-0428c-374.stretchoid.com): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 4 05:54:20 ubnt-55d23 sshd[10259]: Did not receive identification string from 162.243.139.184 port 47126 Jun 4 05:58:30 ubnt-55d23 sshd[11022]: Did not receive identification string from 162.243.139.184 port 54086	2020-06-04 12:28:50
attack	" "	2020-06-01 23:56:43
attack	1590078955 - 05/21/2020 18:35:55 Host: zg-0428c-374.stretchoid.com/162.243.139.184 Port: 623 UDP Blocked	2020-05-22 01:07:29
attack	" "	2019-08-22 12:23:09
attack	Portscan or hack attempt detected by psad/fwsnort	2019-08-12 21:27:45
attack	SASL Brute Force	2019-07-22 18:03:27
attackspambots	636/tcp 8123/tcp 22697/tcp... [2019-05-03/07-02]58pkt,43pt.(tcp),5pt.(udp)	2019-07-03 10:46:00

相同子网IP讨论:

IP	类型	评论内容	时间
162.243.139.21	proxy	VPN fraud	2023-02-24 13:44:38
162.243.139.19	proxy	VPN	2023-01-23 14:02:03
162.243.139.98	attack	[Fri Jun 12 03:31:39 2020] - DDoS Attack From IP: 162.243.139.98 Port: 51724	2020-07-16 21:22:30
162.243.139.167	attack	[Sun Jun 14 03:12:01 2020] - DDoS Attack From IP: 162.243.139.167 Port: 58412	2020-07-16 20:56:22
162.243.139.150	attack	[Wed Jun 17 15:34:21 2020] - DDoS Attack From IP: 162.243.139.150 Port: 57028	2020-07-16 20:29:09
162.243.139.246	attack	[Wed Jun 17 21:52:27 2020] - DDoS Attack From IP: 162.243.139.246 Port: 58139	2020-07-16 20:26:41
162.243.139.98	attackspam	[Fri Jun 12 03:31:41 2020] - DDoS Attack From IP: 162.243.139.98 Port: 51724	2020-07-13 03:31:45
162.243.139.167	attackspambots	[Sun Jun 14 03:12:03 2020] - DDoS Attack From IP: 162.243.139.167 Port: 58412	2020-07-13 03:17:58
162.243.139.150	attackbotsspam	[Wed Jun 17 15:34:23 2020] - DDoS Attack From IP: 162.243.139.150 Port: 57028	2020-07-13 03:02:20
162.243.139.246	attackspam	[Wed Jun 17 21:52:29 2020] - DDoS Attack From IP: 162.243.139.246 Port: 58139	2020-07-13 03:00:05
162.243.139.196	attack	[Fri May 22 02:56:34 2020] - DDoS Attack From IP: 162.243.139.196 Port: 39583	2020-07-09 03:49:00
162.243.139.226	attackspam	[Mon May 25 12:06:40 2020] - DDoS Attack From IP: 162.243.139.226 Port: 59688	2020-07-09 03:24:42
162.243.139.40	attackspam	[Thu May 28 02:37:02 2020] - DDoS Attack From IP: 162.243.139.40 Port: 48945	2020-07-09 03:18:45
162.243.139.241	attackbotsspam	[Thu May 28 12:09:43 2020] - DDoS Attack From IP: 162.243.139.241 Port: 46028	2020-07-09 03:12:30
162.243.139.141	attackbots	[Fri May 29 12:54:48 2020] - DDoS Attack From IP: 162.243.139.141 Port: 55461	2020-07-09 02:53:20

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 162.243.139.184
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 877
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;162.243.139.184.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040101 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue Apr 02 10:27:47 +08 2019
;; MSG SIZE  rcvd: 119

HOST信息:

184.139.243.162.in-addr.arpa domain name pointer zg-0326a-1.stretchoid.com.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
184.139.243.162.in-addr.arpa	name = zg-0326a-1.stretchoid.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
201.122.102.21	attack	$f2bV_matches	2020-06-02 01:12:25
139.99.98.248	attackbotsspam	SSH Brute Force	2020-06-02 01:06:41
146.185.218.202	attackspambots	Jun 1 13:43:35 web01.agentur-b-2.de postfix/smtpd[591656]: NOQUEUE: reject: RCPT from unknown[146.185.218.202]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Jun 1 13:44:11 web01.agentur-b-2.de postfix/smtpd[592715]: NOQUEUE: reject: RCPT from unknown[146.185.218.202]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Jun 1 13:44:11 web01.agentur-b-2.de postfix/smtpd[592715]: NOQUEUE: reject: RCPT from unknown[146.185.218.202]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Jun 1 13:44:12 web01.agentur-b-2.de postfix/smtpd[592715]: NOQUEUE: reject: RCPT from unknown[146.185.218.202]: 450 4.7.1 : Helo command rejected: Host not found; from= to=	2020-06-02 01:03:05
183.89.211.43	attackspam	$f2bV_matches	2020-06-02 01:14:56
193.112.126.198	attack	Jun 1 17:40:44 nas sshd[5565]: Failed password for root from 193.112.126.198 port 38700 ssh2 Jun 1 17:50:25 nas sshd[5865]: Failed password for root from 193.112.126.198 port 52652 ssh2 ...	2020-06-02 00:52:51
78.140.7.9	attackspambots	Dovecot Invalid User Login Attempt.	2020-06-02 00:53:33
139.59.2.184	attackspambots	2020-06-01T18:20[Censored Hostname] sshd[12536]: Failed password for root from 139.59.2.184 port 58634 ssh2 2020-06-01T18:22[Censored Hostname] sshd[13171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.2.184 user=root 2020-06-01T18:22[Censored Hostname] sshd[13171]: Failed password for root from 139.59.2.184 port 58078 ssh2[...]	2020-06-02 01:19:05
110.170.180.66	attackspambots	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-06-02 01:09:26
222.255.167.88	attackspam	RDP port	2020-06-02 00:45:26
45.142.152.131	attack	IP 45.142.152.131 attacked honeypot on port: 1433 at 6/1/2020 1:05:05 PM	2020-06-02 01:25:43
120.39.2.34	attack	Lines containing failures of 120.39.2.34 Jun 1 00:25:44 cdb sshd[11068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.39.2.34 user=r.r Jun 1 00:25:46 cdb sshd[11068]: Failed password for r.r from 120.39.2.34 port 58640 ssh2 Jun 1 00:25:46 cdb sshd[11068]: Received disconnect from 120.39.2.34 port 58640:11: Bye Bye [preauth] Jun 1 00:25:46 cdb sshd[11068]: Disconnected from authenticating user r.r 120.39.2.34 port 58640 [preauth] Jun 1 00:36:55 cdb sshd[12496]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.39.2.34 user=r.r Jun 1 00:36:57 cdb sshd[12496]: Failed password for r.r from 120.39.2.34 port 60674 ssh2 Jun 1 00:36:57 cdb sshd[12496]: Received disconnect from 120.39.2.34 port 60674:11: Bye Bye [preauth] Jun 1 00:36:57 cdb sshd[12496]: Disconnected from authenticating user r.r 120.39.2.34 port 60674 [preauth] Jun 1 00:39:52 cdb sshd[12978]: pam_unix(sshd:auth): au........ ------------------------------	2020-06-02 00:54:56
192.42.116.17	attackbotsspam	CMS (WordPress or Joomla) login attempt.	2020-06-02 00:55:55
185.234.216.178	attack	2020-06-01T18:25:54+02:00 exim[25836]: fixed_login authenticator failed for (wFTa7Gm) [185.234.216.178]: 535 Incorrect authentication data (set_id=test)	2020-06-02 01:00:35
188.165.24.200	attackspam	frenzy	2020-06-02 01:15:44
40.127.104.214	attackbotsspam	RDP port	2020-06-02 01:19:53

最近上报的IP列表

163.172.61.101	84.140.195.53	193.112.51.121	134.209.207.123
107.172.221.203	58.218.213.166	27.211.227.68	106.12.208.152
216.218.206.77	51.38.186.207	14.29.116.223	206.81.10.230
217.182.165.158	119.92.218.136	151.226.23.238	158.69.242.200
104.248.66.72	79.1.212.37	77.247.109.75	157.122.179.121