113.117.14.241

基本信息:

城市(city): Jieyang

省份(region): Guangdong

国家(country): China

运营商(isp): ChinaNet Guangdong Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Port Scan 1433	2019-11-08 05:46:50

相同子网IP讨论:

IP	类型	评论内容	时间
113.117.148.85	attack	Feb 9 01:46:19 grey postfix/smtpd\[26949\]: NOQUEUE: reject: RCPT from unknown\[113.117.148.85\]: 554 5.7.1 Service unavailable\; Client host \[113.117.148.85\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?113.117.148.85\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-09 10:01:55

类型

评论内容

时间

113.117.148.85

attack

Feb  9 01:46:19 grey postfix/smtpd\[26949\]: NOQUEUE: reject: RCPT from unknown\[113.117.148.85\]: 554 5.7.1 Service unavailable\; Client host \[113.117.148.85\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?113.117.148.85\; from=\ to=\ proto=ESMTP helo=\
...

2020-02-09 10:01:55

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.117.14.241
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54262
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.117.14.241.			IN	A

;; AUTHORITY SECTION:
.			242	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110701 1800 900 604800 86400

;; Query time: 171 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 08 05:46:47 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 241.14.117.113.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 241.14.117.113.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
189.236.163.217	attack	1582955062 - 02/29/2020 12:44:22 Host: dsl-189-236-163-217-dyn.prod-infinitum.com.mx/189.236.163.217 Port: 23 TCP Blocked ...	2020-02-29 15:24:19
210.175.50.124	attackbots	Feb 28 20:54:24 tdfoods sshd\[31245\]: Invalid user cpaneleximfilter from 210.175.50.124 Feb 28 20:54:24 tdfoods sshd\[31245\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.175.50.124 Feb 28 20:54:26 tdfoods sshd\[31245\]: Failed password for invalid user cpaneleximfilter from 210.175.50.124 port 8159 ssh2 Feb 28 21:00:54 tdfoods sshd\[31736\]: Invalid user jira1 from 210.175.50.124 Feb 28 21:00:54 tdfoods sshd\[31736\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.175.50.124	2020-02-29 15:05:20
121.153.51.215	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 14:57:31
222.254.92.183	attack	Port probing on unauthorized port 445	2020-02-29 15:10:55
220.134.196.223	attackbotsspam	Port probing on unauthorized port 4567	2020-02-29 15:29:36
178.33.229.120	attackbots	Feb 28 20:58:17 wbs sshd\[14015\]: Invalid user es from 178.33.229.120 Feb 28 20:58:17 wbs sshd\[14015\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns230823.ovh.net Feb 28 20:58:19 wbs sshd\[14015\]: Failed password for invalid user es from 178.33.229.120 port 36308 ssh2 Feb 28 21:04:59 wbs sshd\[14521\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns230823.ovh.net user=root Feb 28 21:05:02 wbs sshd\[14521\]: Failed password for root from 178.33.229.120 port 38774 ssh2	2020-02-29 15:17:15
176.52.97.73	attack	[portscan] Port scan	2020-02-29 15:39:49
40.114.205.165	attack	Feb 29 07:03:11 game-panel sshd[15705]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.114.205.165 Feb 29 07:03:13 game-panel sshd[15705]: Failed password for invalid user usertest from 40.114.205.165 port 48100 ssh2 Feb 29 07:12:38 game-panel sshd[16074]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.114.205.165	2020-02-29 15:16:26
183.83.92.164	attackbots	1582955095 - 02/29/2020 06:44:55 Host: 183.83.92.164/183.83.92.164 Port: 445 TCP Blocked	2020-02-29 15:03:17
94.102.53.10	attackbotsspam	02/29/2020-02:03:14.222571 94.102.53.10 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-02-29 15:04:17
89.136.52.0	attackspambots	Feb 28 21:05:06 hanapaa sshd\[23146\]: Invalid user mella from 89.136.52.0 Feb 28 21:05:06 hanapaa sshd\[23146\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.136.52.0 Feb 28 21:05:08 hanapaa sshd\[23146\]: Failed password for invalid user mella from 89.136.52.0 port 35424 ssh2 Feb 28 21:14:48 hanapaa sshd\[23900\]: Invalid user direction from 89.136.52.0 Feb 28 21:14:48 hanapaa sshd\[23900\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.136.52.0	2020-02-29 15:37:58
111.93.71.219	attackspambots	Feb 27 19:36:58 dax sshd[26705]: warning: /etc/hosts.deny, line 15136: host name/address mismatch: 111.93.71.219 != static-219.71.93.111-tataidc.co.in Feb 27 19:36:59 dax sshd[26705]: Address 111.93.71.219 maps to static-219.71.93.111-tataidc.co.in, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Feb 27 19:36:59 dax sshd[26705]: Invalid user admins from 111.93.71.219 Feb 27 19:36:59 dax sshd[26705]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.71.219 Feb 27 19:37:02 dax sshd[26705]: Failed password for invalid user admins from 111.93.71.219 port 34489 ssh2 Feb 27 19:37:02 dax sshd[26705]: Received disconnect from 111.93.71.219: 11: Bye Bye [preauth] Feb 27 19:48:15 dax sshd[28326]: warning: /etc/hosts.deny, line 15136: host name/address mismatch: 111.93.71.219 != static-219.71.93.111-tataidc.co.in Feb 27 19:48:16 dax sshd[28326]: Address 111.93.71.219 maps to static-219.71.93.111-tataidc.co.in, bu........ -------------------------------	2020-02-29 15:19:04
222.186.30.145	attackbots	Feb 29 08:10:28 v22018076622670303 sshd\[23898\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.145 user=root Feb 29 08:10:29 v22018076622670303 sshd\[23898\]: Failed password for root from 222.186.30.145 port 22023 ssh2 Feb 29 08:10:32 v22018076622670303 sshd\[23898\]: Failed password for root from 222.186.30.145 port 22023 ssh2 ...	2020-02-29 15:14:38
113.182.227.20	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 15:38:20
113.184.100.26	attack	Automatic report - Port Scan Attack	2020-02-29 15:28:07

最近上报的IP列表

2.34.35.105	94.103.94.168	212.83.135.58	117.50.66.150
60.170.209.19	113.2.244.85	37.39.146.229	195.82.116.64
59.174.108.180	156.155.177.24	17.58.101.224	113.65.153.51
59.126.203.165	185.17.245.102	182.86.225.237	77.40.44.178
89.33.108.115	222.112.70.86	202.162.36.82	211.75.227.130