1.34.117.68 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan (Province of China)

运营商(isp): Chunghwa Telecom Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Unauthorized connection attempt detected from IP address 1.34.117.68 to port 2323 [J]	2020-02-23 17:47:42

相同子网IP讨论:

IP	类型	评论内容	时间
1.34.117.251	attackbotsspam	2019-11-25T20:06:03.734670suse-nuc sshd[27511]: Invalid user user from 1.34.117.251 port 44506 ...	2020-09-27 04:25:39
1.34.117.251	attackspam	2019-11-25T20:06:03.734670suse-nuc sshd[27511]: Invalid user user from 1.34.117.251 port 44506 ...	2020-09-26 20:33:08
1.34.117.189	attackbotsspam	Honeypot attack, port: 81, PTR: 1-34-117-189.HINET-IP.hinet.net.	2020-06-04 06:55:19
1.34.117.251	attackspambots	$f2bV_matches	2020-04-05 06:53:16
1.34.117.161	attackbotsspam	Honeypot attack, port: 81, PTR: 1-34-117-161.HINET-IP.hinet.net.	2020-03-26 03:16:45
1.34.117.161	attack	Honeypot attack, port: 81, PTR: 1-34-117-161.HINET-IP.hinet.net.	2020-02-25 09:17:46
1.34.117.251	attack	Feb 24 20:18:37 XXX sshd[36396]: Invalid user structuuropmaat from 1.34.117.251 port 36172	2020-02-25 05:20:06
1.34.117.251	attackspambots	2019-11-25T20:36:22.551119abusebot.cloudsearch.cf sshd\[18142\]: Invalid user setup from 1.34.117.251 port 48598	2019-11-26 05:14:02
1.34.117.251	attack	FTP Brute-Force reported by Fail2Ban	2019-11-23 19:36:01
1.34.117.251	attackbots	Nov 13 09:53:07 serwer sshd\[17873\]: Invalid user cyrus from 1.34.117.251 port 46040 Nov 13 09:53:07 serwer sshd\[17873\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.34.117.251 Nov 13 09:53:09 serwer sshd\[17873\]: Failed password for invalid user cyrus from 1.34.117.251 port 46040 ssh2 ...	2019-11-13 17:41:19
1.34.117.251	attackspam	Nov 11 18:54:38 odroid64 sshd\[8221\]: Invalid user admin from 1.34.117.251 Nov 11 18:54:38 odroid64 sshd\[8221\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.34.117.251 ...	2019-11-12 02:32:44

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.34.117.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.34.117.68.			IN	A

;; AUTHORITY SECTION:
.			312	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022300 1800 900 604800 86400

;; Query time: 94 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 23 17:47:40 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

68.117.34.1.in-addr.arpa domain name pointer 1-34-117-68.HINET-IP.hinet.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
68.117.34.1.in-addr.arpa	name = 1-34-117-68.HINET-IP.hinet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
164.132.171.6	attack	TCP Port scan. Source port 443 6.171.132.164.in-addr.arpa. 21599 IN PTR proxy-01.27zxc.com.	2019-06-25 01:49:56
103.110.89.148	attackspam	Jun 24 14:20:15 TORMINT sshd\[4962\]: Invalid user bugs from 103.110.89.148 Jun 24 14:20:15 TORMINT sshd\[4962\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.110.89.148 Jun 24 14:20:18 TORMINT sshd\[4962\]: Failed password for invalid user bugs from 103.110.89.148 port 39218 ssh2 ...	2019-06-25 02:21:08
77.40.58.183	attackbots	$f2bV_matches	2019-06-25 01:50:15
220.163.107.130	attackbots	Jun 24 19:58:38 ubuntu-2gb-nbg1-dc3-1 sshd[8494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.163.107.130 Jun 24 19:58:40 ubuntu-2gb-nbg1-dc3-1 sshd[8494]: Failed password for invalid user rolf from 220.163.107.130 port 15147 ssh2 ...	2019-06-25 02:08:10
201.198.151.8	attackspam	Triggered by Fail2Ban	2019-06-25 02:19:32
64.202.185.111	attackspambots	IP: 64.202.185.111 ASN: AS26496 GoDaddy.com LLC Port: http protocol over TLS/SSL 443 Found in one or more Blacklists Date: 24/06/2019 12:00:56 PM UTC	2019-06-25 01:54:28
213.230.115.112	attack	IP: 213.230.115.112 ASN: AS8193 Uzbektelekom Joint Stock Company Port: Simple Mail Transfer 25 Found in one or more Blacklists Date: 24/06/2019 12:00:43 PM UTC	2019-06-25 02:04:15
178.128.66.88	attackbots	WP Authentication failure	2019-06-25 01:51:51
198.245.53.5	attackbotsspam	198.245.53.5 - - \[24/Jun/2019:15:15:30 +0200\] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 198.245.53.5 - - \[24/Jun/2019:15:15:30 +0200\] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 198.245.53.5 - - \[24/Jun/2019:15:15:31 +0200\] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 198.245.53.5 - - \[24/Jun/2019:15:15:31 +0200\] "POST /wp-login.php HTTP/1.1" 200 1607 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 198.245.53.5 - - \[24/Jun/2019:15:15:32 +0200\] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 198.245.53.5 - - \[24/Jun/2019:15:15:32 +0200\] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/	2019-06-25 01:52:16
222.218.248.42	attackbotsspam	IMAP brute force ...	2019-06-25 01:38:03
144.217.255.89	attackspam	Malicious Traffic/Form Submission	2019-06-25 02:09:21
69.124.59.86	attackbots	Jun 24 14:12:06 mail sshd\[32176\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.124.59.86 user=root Jun 24 14:12:08 mail sshd\[32176\]: Failed password for root from 69.124.59.86 port 44614 ssh2 Jun 24 14:19:24 mail sshd\[738\]: Invalid user m from 69.124.59.86 port 59232 Jun 24 14:19:24 mail sshd\[738\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.124.59.86 Jun 24 14:19:25 mail sshd\[738\]: Failed password for invalid user m from 69.124.59.86 port 59232 ssh2	2019-06-25 01:45:44
188.165.0.128	attack	familiengesundheitszentrum-fulda.de 188.165.0.128 \[24/Jun/2019:17:53:50 +0200\] "POST /wp-login.php HTTP/1.1" 200 5690 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" familiengesundheitszentrum-fulda.de 188.165.0.128 \[24/Jun/2019:17:53:51 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4150 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-06-25 01:51:18
143.215.172.84	attackspambots	Port scan on 1 port(s): 53	2019-06-25 01:38:49
5.39.95.228	attack	IP: 5.39.95.228 ASN: AS16276 OVH SAS Port: http protocol over TLS/SSL 443 Found in one or more Blacklists Date: 24/06/2019 12:00:53 PM UTC	2019-06-25 01:56:09

最近上报的IP列表

176.65.85.21	175.206.192.195	173.64.104.76	171.241.36.39
159.192.220.155	138.122.74.147	88.131.224.177	123.204.88.119
121.157.134.23	116.105.68.3	115.133.220.141	114.33.235.109
114.32.1.167	111.241.190.206	110.7.168.117	108.83.65.54
103.120.118.31	99.243.16.225	95.86.34.140	207.169.206.102