1.163.42.134 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Republic of China (ROC)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
1.163.42.212	attack	TCP (SYN) 1.163.42.212:26855 -> port 23, len 44	2020-06-23 18:38:38

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.163.42.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15345
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.163.42.134.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022400 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 13:33:59 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

134.42.163.1.in-addr.arpa domain name pointer 1-163-42-134.dynamic-ip.hinet.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
134.42.163.1.in-addr.arpa	name = 1-163-42-134.dynamic-ip.hinet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
206.132.225.154	attackbots	206.132.225.154 - - [05/Oct/2020:22:44:50 +0200] "POST /xmlrpc.php HTTP/1.1" 403 5 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36" 206.132.225.154 - - [05/Oct/2020:22:44:51 +0200] "POST /xmlrpc.php HTTP/1.1" 403 5 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36" ...	2020-10-06 12:09:38
202.29.51.28	attackbots	2020-10-05T19:06:46.763340morrigan.ad5gb.com sshd[1595700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.29.51.28 user=root 2020-10-05T19:06:48.516931morrigan.ad5gb.com sshd[1595700]: Failed password for root from 202.29.51.28 port 57161 ssh2	2020-10-06 08:18:03
85.209.0.100	attack	Oct 6 06:05:19 ip106 sshd[3394]: Failed password for root from 85.209.0.100 port 3612 ssh2 Oct 6 06:05:20 ip106 sshd[3395]: Failed password for root from 85.209.0.100 port 3326 ssh2 ...	2020-10-06 12:21:09
218.92.0.173	attack	Oct 6 06:32:11 nopemail auth.info sshd[11876]: Unable to negotiate with 218.92.0.173 port 51795: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] ...	2020-10-06 12:39:51
192.99.0.98	attack	Malicious File Upload attempt	2020-10-06 12:26:21
180.76.100.26	attack	2 SSH login attempts.	2020-10-06 12:31:34
159.65.72.148	attack	prod8 ...	2020-10-06 12:05:44
192.35.168.16	attackspambots	Unauthorized connection attempt from IP address 192.35.168.16 on Port 465(SMTPS)	2020-10-06 12:22:51
180.101.221.152	attackbots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-10-05T21:11:46Z and 2020-10-05T21:18:51Z	2020-10-06 12:19:47
218.92.0.168	attackbots	2020-10-06T06:10:20.927457vps773228.ovh.net sshd[13728]: Failed password for root from 218.92.0.168 port 59030 ssh2 2020-10-06T06:10:24.126284vps773228.ovh.net sshd[13728]: Failed password for root from 218.92.0.168 port 59030 ssh2 2020-10-06T06:10:27.071676vps773228.ovh.net sshd[13728]: Failed password for root from 218.92.0.168 port 59030 ssh2 2020-10-06T06:10:30.426990vps773228.ovh.net sshd[13728]: Failed password for root from 218.92.0.168 port 59030 ssh2 2020-10-06T06:10:32.861088vps773228.ovh.net sshd[13728]: Failed password for root from 218.92.0.168 port 59030 ssh2 ...	2020-10-06 12:10:42
23.95.186.184	attackbotsspam	Lines containing failures of 23.95.186.184 Oct 5 08:24:17 siirappi sshd[27350]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.95.186.184 user=r.r Oct 5 08:24:19 siirappi sshd[27350]: Failed password for r.r from 23.95.186.184 port 42796 ssh2 Oct 5 08:24:20 siirappi sshd[27350]: Received disconnect from 23.95.186.184 port 42796:11: Bye Bye [preauth] Oct 5 08:24:20 siirappi sshd[27350]: Disconnected from authenticating user r.r 23.95.186.184 port 42796 [preauth] Oct 5 08:37:22 siirappi sshd[27504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.95.186.184 user=r.r Oct 5 08:37:24 siirappi sshd[27504]: Failed password for r.r from 23.95.186.184 port 44624 ssh2 Oct 5 08:37:26 siirappi sshd[27504]: Received disconnect from 23.95.186.184 port 44624:11: Bye Bye [preauth] Oct 5 08:37:26 siirappi sshd[27504]: Disconnected from authenticating user r.r 23.95.186.184 port 44624 [preauth........ ------------------------------	2020-10-06 12:23:17
1.186.248.30	attack	Scanned 3 times in the last 24 hours on port 22	2020-10-06 08:18:55
151.236.35.245	attack	Attempted multiple logins to NAS using admin and test until locked out.	2020-10-06 09:50:10
195.54.160.188	attackbots	Repeated RDP login failures. Last user: administrator	2020-10-06 12:37:45
45.55.157.158	attackbots	Oct 6 00:01:08 OPSO sshd\[29277\]: Invalid user postgres from 45.55.157.158 port 38142 Oct 6 00:01:08 OPSO sshd\[29277\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.157.158 Oct 6 00:01:10 OPSO sshd\[29277\]: Failed password for invalid user postgres from 45.55.157.158 port 38142 ssh2 Oct 6 00:01:13 OPSO sshd\[29280\]: Invalid user postgres from 45.55.157.158 port 38819 Oct 6 00:01:13 OPSO sshd\[29280\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.157.158	2020-10-06 12:05:59

最近上报的IP列表

1.163.42.122	1.163.42.142	199.96.221.73	1.163.42.146
1.163.42.167	1.163.42.204	1.163.42.248	1.163.42.32
1.163.42.43	1.163.42.51	1.163.42.52	1.163.42.68
1.163.42.86	1.163.43.153	1.163.43.179	1.163.43.205
1.163.43.225	1.163.43.226	1.163.43.235	1.163.43.32