1.192.242.120 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.192.242.120
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2540
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.192.242.120.			IN	A

;; AUTHORITY SECTION:
.			576	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022400 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 15:43:17 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 120.242.192.1.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 120.242.192.1.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
2.32.48.245	attack	Automatic report - Port Scan Attack	2020-08-07 00:03:46
138.246.253.15	attackbotsspam	CF RAY ID: 5be922ac2e11d44f IP Class: unknown URI: /	2020-08-06 23:50:03
192.241.235.104	attack	" "	2020-08-06 23:45:40
183.61.109.23	attackspam	Aug 6 15:18:53 [host] sshd[26045]: pam_unix(sshd: Aug 6 15:18:54 [host] sshd[26045]: Failed passwor Aug 6 15:24:20 [host] sshd[26250]: pam_unix(sshd:	2020-08-06 23:56:12
5.9.177.157	attack	Aug 4 17:03:53 h2040555 sshd[2918]: Failed password for r.r from 5.9.177.157 port 50900 ssh2 Aug 4 17:03:53 h2040555 sshd[2918]: Received disconnect from 5.9.177.157: 11: Bye Bye [preauth] Aug 4 17:11:38 h2040555 sshd[3088]: Failed password for r.r from 5.9.177.157 port 45988 ssh2 Aug 4 17:11:38 h2040555 sshd[3088]: Received disconnect from 5.9.177.157: 11: Bye Bye [preauth] Aug 4 17:16:35 h2040555 sshd[3129]: Failed password for r.r from 5.9.177.157 port 34268 ssh2 Aug 4 17:16:35 h2040555 sshd[3129]: Received disconnect from 5.9.177.157: 11: Bye Bye [preauth] Aug 4 17:20:54 h2040555 sshd[3370]: Failed password for r.r from 5.9.177.157 port 50444 ssh2 Aug 4 17:20:54 h2040555 sshd[3370]: Received disconnect from 5.9.177.157: 11: Bye Bye [preauth] Aug 4 17:25:04 h2040555 sshd[3422]: Failed password for r.r from 5.9.177.157 port 38366 ssh2 Aug 4 17:25:04 h2040555 sshd[3422]: Received disconnect from 5.9.177.157: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://ww	2020-08-06 23:40:16
122.139.63.154	attack	Lines containing failures of 122.139.63.154 Aug 3 15:05:48 install sshd[32242]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.139.63.154 user=r.r Aug 3 15:05:50 install sshd[32242]: Failed password for r.r from 122.139.63.154 port 45428 ssh2 Aug 3 15:05:51 install sshd[32242]: Received disconnect from 122.139.63.154 port 45428:11: Bye Bye [preauth] Aug 3 15:05:51 install sshd[32242]: Disconnected from authenticating user r.r 122.139.63.154 port 45428 [preauth] Aug 3 15:17:27 install sshd[2634]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.139.63.154 user=r.r Aug 3 15:17:30 install sshd[2634]: Failed password for r.r from 122.139.63.154 port 23640 ssh2 Aug 3 15:17:30 install sshd[2634]: Received disconnect from 122.139.63.154 port 23640:11: Bye Bye [preauth] Aug 3 15:17:30 install sshd[2634]: Disconnected from authenticating user r.r 122.139.63.154 port 23640 [preauth] A........ ------------------------------	2020-08-06 23:41:13
110.78.23.220	attack	Aug 6 03:20:36 web9 sshd\[10418\]: Invalid user qazqaz from 110.78.23.220 Aug 6 03:20:36 web9 sshd\[10418\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.78.23.220 Aug 6 03:20:38 web9 sshd\[10418\]: Failed password for invalid user qazqaz from 110.78.23.220 port 64486 ssh2 Aug 6 03:24:31 web9 sshd\[10923\]: Invalid user zp123456 from 110.78.23.220 Aug 6 03:24:31 web9 sshd\[10923\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.78.23.220	2020-08-06 23:43:55
104.158.244.29	attack	(sshd) Failed SSH login from 104.158.244.29 (CA/Canada/29.244.158.104.in-addr.arpa): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 6 17:50:16 amsweb01 sshd[31059]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.158.244.29 user=root Aug 6 17:50:19 amsweb01 sshd[31059]: Failed password for root from 104.158.244.29 port 44366 ssh2 Aug 6 17:56:33 amsweb01 sshd[31894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.158.244.29 user=root Aug 6 17:56:35 amsweb01 sshd[31894]: Failed password for root from 104.158.244.29 port 51962 ssh2 Aug 6 18:00:36 amsweb01 sshd[32449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.158.244.29 user=root	2020-08-07 00:18:51
222.186.31.166	attackbotsspam	Aug 6 11:47:38 NPSTNNYC01T sshd[14326]: Failed password for root from 222.186.31.166 port 59538 ssh2 Aug 6 11:47:42 NPSTNNYC01T sshd[14326]: Failed password for root from 222.186.31.166 port 59538 ssh2 Aug 6 11:47:46 NPSTNNYC01T sshd[14326]: Failed password for root from 222.186.31.166 port 59538 ssh2 ...	2020-08-06 23:55:05
220.166.241.138	attack	Aug 4 14:05:50 * sshd[11941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.166.241.138 user=r.r Aug 4 14:05:52 * sshd[11941]: Failed password for r.r from 220.166.241.138 port 48516 ssh2 Aug 4 14:05:52 * sshd[11941]: Received disconnect from 220.166.241.138 port 48516:11: Bye Bye [preauth] Aug 4 14:05:52 * sshd[11941]: Disconnected from 220.166.241.138 port 48516 [preauth] Aug 4 14:12:13 * sshd[12045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.166.241.138 user=r.r Aug 4 14:12:15 * sshd[12045]: Failed password for r.r from 220.166.241.138 port 48792 ssh2 Aug 4 14:12:16 * sshd[12045]: Received disconnect from 220.166.241.138 port 48792:11: Bye Bye [preauth] Aug 4 14:12:16 * sshd[12045]: Disconnected from 220.166.241.138 port 48792 [preauth] Aug 4 14:14:58 *** sshd[12103]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruse........ -------------------------------	2020-08-07 00:06:48
104.211.167.49	attackspambots	Aug 6 18:11:10 abendstille sshd\[8019\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.211.167.49 user=root Aug 6 18:11:12 abendstille sshd\[8019\]: Failed password for root from 104.211.167.49 port 1024 ssh2 Aug 6 18:15:46 abendstille sshd\[12501\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.211.167.49 user=root Aug 6 18:15:48 abendstille sshd\[12501\]: Failed password for root from 104.211.167.49 port 1024 ssh2 Aug 6 18:20:11 abendstille sshd\[16481\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.211.167.49 user=root ...	2020-08-07 00:24:17
5.188.62.147	attack	5.188.62.147 - - [06/Aug/2020:16:47:51 +0100] "POST /wp-login.php HTTP/1.1" 200 2196 "-" "Mozilla/5.0 (Windows NT 6.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2224.3 Safari/537.36" 5.188.62.147 - - [06/Aug/2020:16:47:51 +0100] "POST /wp-login.php HTTP/1.1" 200 2261 "-" "Mozilla/5.0 (Windows NT 6.2) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2224.3 Safari/537.36" 5.188.62.147 - - [06/Aug/2020:16:47:52 +0100] "POST /wp-login.php HTTP/1.1" 200 2196 "-" "Mozilla/5.0 (Windows NT 6.0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/41.0.2225.0 Safari/537.36" ...	2020-08-07 00:16:04
185.53.88.63	attackspam	SmallBizIT.US 3 packets to udp(5060)	2020-08-07 00:05:20
222.186.42.7	attackspam	Aug 6 17:47:51 minden010 sshd[15798]: Failed password for root from 222.186.42.7 port 47031 ssh2 Aug 6 17:47:53 minden010 sshd[15798]: Failed password for root from 222.186.42.7 port 47031 ssh2 Aug 6 17:47:56 minden010 sshd[15798]: Failed password for root from 222.186.42.7 port 47031 ssh2 ...	2020-08-06 23:49:41
49.235.64.227	attackbotsspam	Aug 4 14:41:58 pl3server sshd[29923]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.64.227 user=r.r Aug 4 14:42:00 pl3server sshd[29923]: Failed password for r.r from 49.235.64.227 port 60526 ssh2 Aug 4 14:42:00 pl3server sshd[29923]: Received disconnect from 49.235.64.227 port 60526:11: Bye Bye [preauth] Aug 4 14:42:00 pl3server sshd[29923]: Disconnected from 49.235.64.227 port 60526 [preauth] Aug 4 15:00:28 pl3server sshd[10059]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.64.227 user=r.r Aug 4 15:00:30 pl3server sshd[10059]: Failed password for r.r from 49.235.64.227 port 42108 ssh2 Aug 4 15:00:30 pl3server sshd[10059]: Received disconnect from 49.235.64.227 port 42108:11: Bye Bye [preauth] Aug 4 15:00:30 pl3server sshd[10059]: Disconnected from 49.235.64.227 port 42108 [preauth] Aug 4 15:05:37 pl3server sshd[15231]: pam_unix(sshd:auth): authentication failu........ -------------------------------	2020-08-07 00:01:46

最近上报的IP列表

203.67.76.107	1.192.242.123	60.126.57.194	1.192.242.124
1.192.242.13	239.161.155.75	79.22.74.40	1.192.242.131
1.192.242.137	1.192.242.14	1.192.242.141	1.192.242.144
1.192.242.147	1.192.242.150	1.192.242.155	1.192.242.157
1.192.242.160	1.192.242.162	1.192.242.177	1.192.242.178