142.165.134.172

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.165.134.172
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58315
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.165.134.172.		IN	A

;; AUTHORITY SECTION:
.			545	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011101 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 12 13:52:55 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

172.134.165.142.in-addr.arpa domain name pointer 142-165-134-172.msjw.hsdb.sasknet.sk.ca.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
172.134.165.142.in-addr.arpa	name = 142-165-134-172.msjw.hsdb.sasknet.sk.ca.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
5.188.211.16	attack	[SunOct1321:27:08.2312562019][:error][pid27856:tid139812017665792][client5.188.211.16:34966][client5.188.211.16]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"395"][id"397989"][rev"1"][msg"Atomicorp.comWAFRules:MSIE6.0detected\(DisableifyouwanttoallowMSIE6\)"][severity"WARNING"][hostname"www.guidamania.ch"][uri"/guidamania/index.php/ct-menu-item-5/venue/1-guidamania-sagl"][unique_id"XaN6jB72ZaIUUd6NKJYVogAAAEM"][SunOct1322:16:25.4288222019][:error][pid2401:tid139811901921024][client5.188.211.16:33530][client5.188.211.16]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"395"][id"397989"][rev"	2019-10-14 04:40:51
79.107.210.108	attackspambots	Here more information about 79.107.210.108 info: [Greece] 25472 Wind Hellas Telecommunications SA Connected: 3 servere(s) Reason: ssh Ports: 23 Services: telnet servere: Europe/Moscow (UTC+3) Found at blocklist: abuseat.org, spfbl.net myIP:89.179.244.250 [2019-10-12 07:04:48] (tcp) myIP:23 <- 79.107.210.108:46990 [2019-10-12 07:04:51] (tcp) myIP:23 <- 79.107.210.108:46990 [2019-10-12 07:04:57] (tcp) myIP:23 <- 79.107.210.108:46990 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=79.107.210.108	2019-10-14 04:10:37
168.232.49.167	attackspambots	Feb 17 21:21:17 dillonfme sshd\[17232\]: Invalid user nobody4 from 168.232.49.167 port 38952 Feb 17 21:21:17 dillonfme sshd\[17232\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.232.49.167 Feb 17 21:21:18 dillonfme sshd\[17232\]: Failed password for invalid user nobody4 from 168.232.49.167 port 38952 ssh2 Feb 17 21:26:38 dillonfme sshd\[17561\]: Invalid user git from 168.232.49.167 port 58284 Feb 17 21:26:38 dillonfme sshd\[17561\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.232.49.167 ...	2019-10-14 04:38:34
222.186.175.212	attackspambots	detected by Fail2Ban	2019-10-14 04:32:07
80.82.65.74	attackspam	10/13/2019-16:28:49.726712 80.82.65.74 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-10-14 04:29:40
178.128.213.126	attack	Oct 13 16:30:09 xtremcommunity sshd\[488339\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.213.126 user=root Oct 13 16:30:11 xtremcommunity sshd\[488339\]: Failed password for root from 178.128.213.126 port 60610 ssh2 Oct 13 16:34:50 xtremcommunity sshd\[488427\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.213.126 user=root Oct 13 16:34:52 xtremcommunity sshd\[488427\]: Failed password for root from 178.128.213.126 port 44382 ssh2 Oct 13 16:39:34 xtremcommunity sshd\[488530\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.213.126 user=root ...	2019-10-14 04:47:14
159.89.134.64	attack	Oct 13 22:27:57 ns381471 sshd[25134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.134.64 Oct 13 22:27:59 ns381471 sshd[25134]: Failed password for invalid user Retail2017 from 159.89.134.64 port 51572 ssh2 Oct 13 22:31:49 ns381471 sshd[25326]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.134.64	2019-10-14 04:39:01
89.151.179.175	attackspambots	Automatic report - Port Scan Attack	2019-10-14 04:23:26
210.245.33.77	attackspambots	Oct 13 22:16:49 mc1 kernel: \[2284189.306453\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=210.245.33.77 DST=159.69.205.51 LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=62354 PROTO=TCP SPT=6652 DPT=22 WINDOW=29200 RES=0x00 CWR ECE SYN URGP=0 Oct 13 22:16:50 mc1 kernel: \[2284190.327422\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=210.245.33.77 DST=159.69.205.51 LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=63179 PROTO=TCP SPT=6652 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 13 22:16:52 mc1 kernel: \[2284192.343379\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=210.245.33.77 DST=159.69.205.51 LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=345 PROTO=TCP SPT=6652 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 ...	2019-10-14 04:18:16
168.194.160.235	attackbotsspam	Mar 9 02:56:44 dillonfme sshd\[10119\]: User root from 168.194.160.235 not allowed because not listed in AllowUsers Mar 9 02:56:44 dillonfme sshd\[10119\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.160.235 user=root Mar 9 02:56:47 dillonfme sshd\[10119\]: Failed password for invalid user root from 168.194.160.235 port 28286 ssh2 Mar 9 03:04:20 dillonfme sshd\[10294\]: Invalid user musique from 168.194.160.235 port 19050 Mar 9 03:04:20 dillonfme sshd\[10294\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.160.235 ...	2019-10-14 04:48:31
168.227.99.10	attackspambots	Apr 16 14:43:36 yesfletchmain sshd\[9975\]: Invalid user loverd from 168.227.99.10 port 42994 Apr 16 14:43:36 yesfletchmain sshd\[9975\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.227.99.10 Apr 16 14:43:38 yesfletchmain sshd\[9975\]: Failed password for invalid user loverd from 168.227.99.10 port 42994 ssh2 Apr 16 14:47:07 yesfletchmain sshd\[10247\]: Invalid user hong from 168.227.99.10 port 41580 Apr 16 14:47:07 yesfletchmain sshd\[10247\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.227.99.10 ...	2019-10-14 04:43:42
168.63.250.142	attackspam	Aug 4 18:36:05 yesfletchmain sshd\[22109\]: Invalid user daniel from 168.63.250.142 port 52346 Aug 4 18:36:05 yesfletchmain sshd\[22109\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.63.250.142 Aug 4 18:36:08 yesfletchmain sshd\[22109\]: Failed password for invalid user daniel from 168.63.250.142 port 52346 ssh2 Aug 4 18:41:03 yesfletchmain sshd\[22301\]: Invalid user abc123 from 168.63.250.142 port 39486 Aug 4 18:41:03 yesfletchmain sshd\[22301\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.63.250.142 ...	2019-10-14 04:25:00
54.37.235.126	attackbotsspam	Port scan on 1 port(s): 22	2019-10-14 04:15:12
45.55.93.245	attack	WordPress wp-login brute force :: 45.55.93.245 0.044 BYPASS [14/Oct/2019:07:16:41 1100] [censored_2] "POST /wp-login.php HTTP/1.1" 200 4630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-14 04:31:34
168.232.8.9	attackspambots	Mar 9 03:50:55 dillonfme sshd\[11930\]: Invalid user guyoef5 from 168.232.8.9 port 53540 Mar 9 03:50:55 dillonfme sshd\[11930\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.232.8.9 Mar 9 03:50:57 dillonfme sshd\[11930\]: Failed password for invalid user guyoef5 from 168.232.8.9 port 53540 ssh2 Mar 9 03:59:53 dillonfme sshd\[12107\]: Invalid user testftp from 168.232.8.9 port 44684 Mar 9 03:59:53 dillonfme sshd\[12107\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.232.8.9 ...	2019-10-14 04:34:15

最近上报的IP列表

213.124.221.251	202.102.15.18	187.232.74.82	231.143.189.123
89.72.92.157	185.165.169.208	53.128.209.117	237.89.223.41
12.221.225.249	106.101.42.145	205.152.0.101	209.109.192.10
34.15.155.34	224.218.128.232	202.249.65.38	125.174.43.172
78.216.172.29	71.104.167.204	217.164.37.36	20.124.157.164