城市(city): unknown
省份(region): unknown
国家(country): IANA Special-Purpose Address
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 192.168.0.0 - 192.168.255.255
CIDR: 192.168.0.0/16
NetName: PRIVATE-ADDRESS-CBLK-RFC1918-IANA-RESERVED
NetHandle: NET-192-168-0-0-1
Parent: NET192 (NET-192-0-0-0-0)
NetType: IANA Special Use
OriginAS:
Organization: Internet Assigned Numbers Authority (IANA)
RegDate: 1994-03-15
Updated: 2024-05-24
Comment: These addresses are in use by many millions of independently operated networks, which might be as small as a single computer connected to a home gateway, and are automatically configured in hundreds of millions of devices. They are only intended for use within a private context and traffic that needs to cross the Internet will need to use a different, unique address.
Comment:
Comment: These addresses can be used by anyone without any need to coordinate with IANA or an Internet registry. The traffic from these addresses does not come from ICANN or IANA. We are not the source of activity you may see on logs or in e-mail records. Please refer to http://www.iana.org/abuse/answers
Comment:
Comment: These addresses were assigned by the IETF, the organization that develops Internet protocols, in the Best Current Practice document, RFC 1918 which can be found at:
Comment: http://datatracker.ietf.org/doc/rfc1918
Ref: https://rdap.arin.net/registry/ip/192.168.0.0
OrgName: Internet Assigned Numbers Authority
OrgId: IANA
Address: 12025 Waterfront Drive
Address: Suite 300
City: Los Angeles
StateProv: CA
PostalCode: 90292
Country: US
RegDate:
Updated: 2024-05-24
Ref: https://rdap.arin.net/registry/entity/IANA
OrgTechHandle: IANA-IP-ARIN
OrgTechName: ICANN
OrgTechPhone: +1-310-301-5820
OrgTechEmail: abuse@iana.org
OrgTechRef: https://rdap.arin.net/registry/entity/IANA-IP-ARIN
OrgAbuseHandle: IANA-IP-ARIN
OrgAbuseName: ICANN
OrgAbusePhone: +1-310-301-5820
OrgAbuseEmail: abuse@iana.org
OrgAbuseRef: https://rdap.arin.net/registry/entity/IANA-IP-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 192.168.42.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58922
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;192.168.42.1. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026062000 1800 900 604800 86400
;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jun 20 22:24:27 CST 2026
;; MSG SIZE rcvd: 105Host 1.42.168.192.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 1.42.168.192.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 5.135.224.151 | attack | 2020-08-07T16:21:17.265826correo.[domain] sshd[11683]: Failed password for root from 5.135.224.151 port 38064 ssh2 2020-08-07T16:25:01.894277correo.[domain] sshd[12399]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip151.ip-5-135-224.eu user=root 2020-08-07T16:25:04.155756correo.[domain] sshd[12399]: Failed password for root from 5.135.224.151 port 46888 ssh2 ... |
2020-08-08 06:50:14 |
| 34.68.44.190 | attack | POST /xmlrpc.php HTTP/1.1 POST /xmlrpc.php HTTP/1.1 POST /xmlrpc.php HTTP/1.1 |
2020-08-08 06:45:18 |
| 120.132.13.131 | attack | Aug 7 23:27:38 nextcloud sshd\[23564\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.13.131 user=root Aug 7 23:27:39 nextcloud sshd\[23564\]: Failed password for root from 120.132.13.131 port 52208 ssh2 Aug 7 23:31:54 nextcloud sshd\[27688\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.13.131 user=root |
2020-08-08 06:19:35 |
| 195.144.21.56 | attackspambots | HACKING |
2020-08-08 06:23:31 |
| 198.12.156.214 | attackspambots | 198.12.156.214 - - [07/Aug/2020:22:45:53 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.12.156.214 - - [07/Aug/2020:23:12:05 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-08-08 06:23:15 |
| 212.129.16.53 | attackbots | Aug 7 23:31:03 *hidden* sshd[10318]: Failed password for *hidden* from 212.129.16.53 port 37506 ssh2 Aug 7 23:34:34 *hidden* sshd[10827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.16.53 user=root Aug 7 23:34:36 *hidden* sshd[10827]: Failed password for *hidden* from 212.129.16.53 port 48184 ssh2 |
2020-08-08 06:34:37 |
| 159.65.138.161 | attackbots | Aug 7 22:25:54 debian-2gb-nbg1-2 kernel: \[19090404.371385\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=159.65.138.161 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x40 TTL=242 ID=55299 PROTO=TCP SPT=48232 DPT=2071 WINDOW=1024 RES=0x00 SYN URGP=0 |
2020-08-08 06:39:31 |
| 1.173.112.8 | attackspambots | 1596831986 - 08/07/2020 22:26:26 Host: 1.173.112.8/1.173.112.8 Port: 445 TCP Blocked |
2020-08-08 06:24:45 |
| 64.227.86.81 | attackspam | Attempted to establish connection to non opened port 22 |
2020-08-08 06:32:45 |
| 61.12.67.133 | attackspam | Aug 8 00:06:18 * sshd[10395]: Failed password for root from 61.12.67.133 port 28886 ssh2 |
2020-08-08 06:26:41 |
| 218.92.0.165 | attack | Aug 7 23:12:16 santamaria sshd\[25708\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.165 user=root Aug 7 23:12:18 santamaria sshd\[25708\]: Failed password for root from 218.92.0.165 port 33861 ssh2 Aug 7 23:12:43 santamaria sshd\[25712\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.165 user=root ... |
2020-08-08 06:17:39 |
| 45.55.242.212 | attackbots | Aug 7 23:57:10 ip106 sshd[31572]: Failed password for root from 45.55.242.212 port 43241 ssh2 ... |
2020-08-08 06:18:46 |
| 114.104.134.29 | attackbotsspam | MAIL: User Login Brute Force Attempt |
2020-08-08 06:20:39 |
| 61.177.172.41 | attack | Aug 7 23:15:35 vps1 sshd[28214]: Failed none for invalid user root from 61.177.172.41 port 8463 ssh2 Aug 7 23:15:36 vps1 sshd[28214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.41 user=root Aug 7 23:15:38 vps1 sshd[28214]: Failed password for invalid user root from 61.177.172.41 port 8463 ssh2 Aug 7 23:15:43 vps1 sshd[28214]: Failed password for invalid user root from 61.177.172.41 port 8463 ssh2 Aug 7 23:15:49 vps1 sshd[28214]: Failed password for invalid user root from 61.177.172.41 port 8463 ssh2 Aug 7 23:15:53 vps1 sshd[28214]: Failed password for invalid user root from 61.177.172.41 port 8463 ssh2 Aug 7 23:15:59 vps1 sshd[28214]: Failed password for invalid user root from 61.177.172.41 port 8463 ssh2 Aug 7 23:16:01 vps1 sshd[28214]: error: maximum authentication attempts exceeded for invalid user root from 61.177.172.41 port 8463 ssh2 [preauth] ... |
2020-08-08 06:40:48 |
| 51.79.44.52 | attackspam | Aug 7 22:58:33 eventyay sshd[27569]: Failed password for root from 51.79.44.52 port 45744 ssh2 Aug 7 23:02:43 eventyay sshd[27715]: Failed password for root from 51.79.44.52 port 56424 ssh2 ... |
2020-08-08 06:47:01 |