1.217.116.142 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): South Korea

运营商(isp): LG Dacom Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Telnet/23 MH Probe, BF, Hack -	2020-02-11 04:21:30

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.217.116.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47901
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.217.116.142.			IN	A

;; AUTHORITY SECTION:
.			474	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021001 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 11 04:21:28 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 142.116.217.1.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.116.217.1.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
49.232.152.36	attack	Total attacks: 2	2020-04-19 18:59:00
222.186.175.216	attack	Apr 19 11:09:48 server sshd[45965]: Failed none for root from 222.186.175.216 port 15294 ssh2 Apr 19 11:09:51 server sshd[45965]: Failed password for root from 222.186.175.216 port 15294 ssh2 Apr 19 11:09:54 server sshd[45965]: Failed password for root from 222.186.175.216 port 15294 ssh2	2020-04-19 19:11:38
42.159.228.125	attack	Apr 19 12:21:13 ncomp sshd[11086]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.159.228.125 user=root Apr 19 12:21:15 ncomp sshd[11086]: Failed password for root from 42.159.228.125 port 34755 ssh2 Apr 19 12:30:24 ncomp sshd[11274]: Invalid user na from 42.159.228.125	2020-04-19 18:47:54
129.204.7.213	attack	Invalid user zw from 129.204.7.213 port 44296	2020-04-19 18:52:48
193.186.15.35	attackbotsspam	Apr 19 12:36:00 tuxlinux sshd[65312]: Invalid user hadoop from 193.186.15.35 port 55903 Apr 19 12:36:00 tuxlinux sshd[65312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.186.15.35 Apr 19 12:36:00 tuxlinux sshd[65312]: Invalid user hadoop from 193.186.15.35 port 55903 Apr 19 12:36:00 tuxlinux sshd[65312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.186.15.35 Apr 19 12:36:00 tuxlinux sshd[65312]: Invalid user hadoop from 193.186.15.35 port 55903 Apr 19 12:36:00 tuxlinux sshd[65312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.186.15.35 Apr 19 12:36:02 tuxlinux sshd[65312]: Failed password for invalid user hadoop from 193.186.15.35 port 55903 ssh2 ...	2020-04-19 19:15:23
200.23.223.21	attackbotsspam	k+ssh-bruteforce	2020-04-19 19:26:18
181.48.18.130	attackbotsspam	Apr 19 12:52:18 pornomens sshd\[29937\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.18.130 user=root Apr 19 12:52:21 pornomens sshd\[29937\]: Failed password for root from 181.48.18.130 port 52952 ssh2 Apr 19 13:00:17 pornomens sshd\[30053\]: Invalid user informix from 181.48.18.130 port 59702 Apr 19 13:00:17 pornomens sshd\[30053\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.18.130 ...	2020-04-19 19:06:51
94.191.24.214	attack	odoo8 ...	2020-04-19 19:21:00
170.84.71.114	attackbotsspam	port scan and connect, tcp 80 (http)	2020-04-19 19:11:55
5.239.244.252	attackspambots	Apr 19 09:46:20 l03 sshd[32750]: Invalid user admin from 5.239.244.252 port 50194 ...	2020-04-19 18:56:08
185.147.215.14	attack	[2020-04-19 07:20:24] NOTICE[1170] chan_sip.c: Registration from '' failed for '185.147.215.14:50015' - Wrong password [2020-04-19 07:20:24] SECURITY[1184] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-19T07:20:24.288-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="3159",SessionID="0x7f6c0817f3c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.215.14/50015",Challenge="3d0d9232",ReceivedChallenge="3d0d9232",ReceivedHash="231aed60a1c259792e9e1b0fd4392bab" [2020-04-19 07:22:40] NOTICE[1170] chan_sip.c: Registration from '' failed for '185.147.215.14:61091' - Wrong password [2020-04-19 07:22:40] SECURITY[1184] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-04-19T07:22:40.201-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="3160",SessionID="0x7f6c08341c08",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.21 ...	2020-04-19 19:23:49
118.27.13.124	attackbots	Apr 19 00:31:05 web1 sshd\[10959\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.27.13.124 user=root Apr 19 00:31:07 web1 sshd\[10959\]: Failed password for root from 118.27.13.124 port 57180 ssh2 Apr 19 00:36:00 web1 sshd\[11486\]: Invalid user oracle from 118.27.13.124 Apr 19 00:36:00 web1 sshd\[11486\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.27.13.124 Apr 19 00:36:02 web1 sshd\[11486\]: Failed password for invalid user oracle from 118.27.13.124 port 49742 ssh2	2020-04-19 19:00:08
210.245.92.228	attackspam	Apr 19 12:08:14 server sshd[16878]: Failed password for root from 210.245.92.228 port 37738 ssh2 Apr 19 12:12:28 server sshd[17693]: Failed password for invalid user github from 210.245.92.228 port 40801 ssh2 Apr 19 12:16:06 server sshd[18416]: Failed password for invalid user oracle from 210.245.92.228 port 41505 ssh2	2020-04-19 19:18:23
222.189.186.67	attackspam	CMS (WordPress or Joomla) login attempt.	2020-04-19 18:52:28
122.51.83.60	attackbotsspam	Apr 19 07:48:02 163-172-32-151 sshd[32755]: Invalid user ubuntu from 122.51.83.60 port 60450 ...	2020-04-19 19:06:21

最近上报的IP列表

238.132.114.174	156.17.124.232	68.13.214.111	143.202.222.114
221.110.207.247	60.13.110.22	79.101.58.71	219.199.241.176
103.205.71.241	134.74.4.71	58.219.174.116	112.86.48.119
137.215.1.165	131.60.126.210	14.167.140.123	219.220.18.173
13.58.199.228	97.40.189.239	62.118.198.87	185.64.45.254