1.161.11.16 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan (Province of China)

运营商(isp): Chunghwa Telecom Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	TCP Port Scanning	2020-02-19 07:19:11

相同子网IP讨论:

IP	类型	评论内容	时间
1.161.114.218	attack	firewall-block, port(s): 23/tcp	2020-02-14 14:06:22
1.161.116.17	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-12 03:04:53
1.161.11.55	attack	TCP Port Scanning	2020-01-31 23:10:05
1.161.116.76	attack	Unauthorized connection attempt detected from IP address 1.161.116.76 to port 445	2019-12-27 04:02:10
1.161.115.142	attackspam	Unauthorised access (Aug 30) SRC=1.161.115.142 LEN=40 PREC=0x20 TTL=51 ID=56196 TCP DPT=23 WINDOW=38542 SYN	2019-08-31 07:14:12
1.161.118.12	attackbots	Telnet Server BruteForce Attack	2019-08-01 19:46:54

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.161.11.16
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18438
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.161.11.16.			IN	A

;; AUTHORITY SECTION:
.			294	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021803 1800 900 604800 86400

;; Query time: 107 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 19 07:19:09 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

16.11.161.1.in-addr.arpa domain name pointer 1-161-11-16.dynamic-ip.hinet.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
16.11.161.1.in-addr.arpa	name = 1-161-11-16.dynamic-ip.hinet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
79.137.72.121	attackspambots	Bruteforce detected by fail2ban	2020-08-05 08:11:08
62.148.226.131	attackbots	Unauthorised access (Aug 4) SRC=62.148.226.131 LEN=52 PREC=0x20 TTL=114 ID=18357 DF TCP DPT=445 WINDOW=8192 SYN	2020-08-05 07:42:20
190.156.238.155	attackbots	Aug 2 05:20:33 sip sshd[22030]: Failed password for root from 190.156.238.155 port 48158 ssh2 Aug 2 05:31:31 sip sshd[26134]: Failed password for root from 190.156.238.155 port 44744 ssh2	2020-08-05 07:47:36
89.137.164.230	attackspam	89.137.164.230 - - [05/Aug/2020:00:28:49 +0100] "POST /wp-login.php HTTP/1.1" 200 6071 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 89.137.164.230 - - [05/Aug/2020:00:44:22 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 89.137.164.230 - - [05/Aug/2020:00:44:22 +0100] "POST /wp-login.php HTTP/1.1" 200 6064 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" ...	2020-08-05 07:49:56
202.107.238.14	attackspam	Failed password for root from 202.107.238.14 port 57604 ssh2	2020-08-05 07:52:00
187.114.191.227	attackspam	1596563606 - 08/04/2020 19:53:26 Host: 187.114.191.227/187.114.191.227 Port: 445 TCP Blocked	2020-08-05 08:11:52
187.150.168.221	attackspambots	Automatic report - Port Scan Attack	2020-08-05 07:44:45
194.170.156.9	attack	2020-08-05T00:15:02.717768vps751288.ovh.net sshd\[26813\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.170.156.9 user=root 2020-08-05T00:15:04.120118vps751288.ovh.net sshd\[26813\]: Failed password for root from 194.170.156.9 port 55401 ssh2 2020-08-05T00:18:51.031485vps751288.ovh.net sshd\[26853\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.170.156.9 user=root 2020-08-05T00:18:53.206453vps751288.ovh.net sshd\[26853\]: Failed password for root from 194.170.156.9 port 57134 ssh2 2020-08-05T00:23:00.595430vps751288.ovh.net sshd\[26908\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.170.156.9 user=root	2020-08-05 07:46:16
67.205.155.68	attack	Aug 4 19:50:43 buvik sshd[24161]: Failed password for root from 67.205.155.68 port 43332 ssh2 Aug 4 19:53:44 buvik sshd[24513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.155.68 user=root Aug 4 19:53:46 buvik sshd[24513]: Failed password for root from 67.205.155.68 port 38452 ssh2 ...	2020-08-05 07:57:24
167.71.209.115	attackbots	Automatic report - XMLRPC Attack	2020-08-05 08:01:44
86.152.90.231	attackspam	Telnet Honeypot -> Telnet Bruteforce / Login	2020-08-05 08:06:46
201.40.244.146	attackbotsspam	Aug 5 00:31:12 Ubuntu-1404-trusty-64-minimal sshd\[17474\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.40.244.146 user=root Aug 5 00:31:13 Ubuntu-1404-trusty-64-minimal sshd\[17474\]: Failed password for root from 201.40.244.146 port 44430 ssh2 Aug 5 00:43:17 Ubuntu-1404-trusty-64-minimal sshd\[23047\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.40.244.146 user=root Aug 5 00:43:19 Ubuntu-1404-trusty-64-minimal sshd\[23047\]: Failed password for root from 201.40.244.146 port 50592 ssh2 Aug 5 00:52:42 Ubuntu-1404-trusty-64-minimal sshd\[27275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.40.244.146 user=root	2020-08-05 07:55:05
45.10.88.24	attackbotsspam	Brute forcing RDP port 3389	2020-08-05 07:39:03
133.242.155.85	attack	2020-08-04T23:03:12.510522abusebot-8.cloudsearch.cf sshd[5501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=www.fm-net.ne.jp user=root 2020-08-04T23:03:14.663369abusebot-8.cloudsearch.cf sshd[5501]: Failed password for root from 133.242.155.85 port 48242 ssh2 2020-08-04T23:05:52.975238abusebot-8.cloudsearch.cf sshd[5515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=www.fm-net.ne.jp user=root 2020-08-04T23:05:54.757346abusebot-8.cloudsearch.cf sshd[5515]: Failed password for root from 133.242.155.85 port 34752 ssh2 2020-08-04T23:08:19.940628abusebot-8.cloudsearch.cf sshd[5545]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=www.fm-net.ne.jp user=root 2020-08-04T23:08:22.238754abusebot-8.cloudsearch.cf sshd[5545]: Failed password for root from 133.242.155.85 port 49426 ssh2 2020-08-04T23:10:48.230208abusebot-8.cloudsearch.cf sshd[5784]: pam_unix(sshd:auth): ...	2020-08-05 08:03:26
45.145.67.86	attackspam	3389BruteforceStormFW22	2020-08-05 07:55:57

最近上报的IP列表

182.99.52.149	164.77.56.96	36.37.94.197	186.53.189.22
190.0.39.54	179.13.166.216	177.84.147.182	227.9.71.12
109.200.178.184	62.109.186.145	80.211.145.66	202.162.194.211
215.235.151.203	155.131.202.159	68.230.21.105	187.41.255.166
182.232.158.119	93.93.246.143	173.247.235.202	3.91.64.23