113.117.28.180

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Guangdong Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Unauthorized connection attempt detected from IP address 113.117.28.180 to port 6656 [T]	2020-01-29 18:45:32

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.117.28.180
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44380
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.117.28.180.			IN	A

;; AUTHORITY SECTION:
.			377	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012900 1800 900 604800 86400

;; Query time: 71 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 29 18:45:28 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 180.28.117.113.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 180.28.117.113.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
204.111.241.83	attack	$f2bV_matches	2020-02-11 20:38:22
54.39.138.246	attack	Unauthorized connection attempt detected from IP address 54.39.138.246 to port 22	2020-02-11 20:31:55
92.47.105.155	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-11 20:29:32
67.213.210.231	attackspam	TCP Port Scanning	2020-02-11 21:01:36
103.249.106.161	attack	2020-02-10 22:32:36 H=(mail.cosplay-pk.com) [103.249.106.161]:51105 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.11) (https://www.spamhaus.org/query/ip/103.249.106.161) 2020-02-10 22:40:07 H=(mail.cosplay-pk.com) [103.249.106.161]:40925 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.11) (https://www.spamhaus.org/query/ip/103.249.106.161) 2020-02-10 22:48:48 H=(mail.cosplay-pk.com) [103.249.106.161]:57919 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.11) (https://www.spamhaus.org/query/ip/103.249.106.161) ...	2020-02-11 20:34:44
84.90.2.184	attackbotsspam	Honeypot attack, port: 81, PTR: pa3-84-90-2-184.netvisao.pt.	2020-02-11 20:21:07
80.157.194.44	attackbotsspam	Feb 11 07:04:24 xxxxxxx0 sshd[6000]: Invalid user dap from 80.157.194.44 port 41668 Feb 11 07:04:24 xxxxxxx0 sshd[6000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.157.194.44 Feb 11 07:04:26 xxxxxxx0 sshd[6000]: Failed password for invalid user dap from 80.157.194.44 port 41668 ssh2 Feb 11 07:06:36 xxxxxxx0 sshd[6403]: Invalid user dap from 80.157.194.44 port 41330 Feb 11 07:06:36 xxxxxxx0 sshd[6403]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.157.194.44 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=80.157.194.44	2020-02-11 20:23:53
95.188.49.230	attackspam	Honeypot attack, port: 445, PTR: dnm.230.49.188.95.dsl.krasnet.ru.	2020-02-11 20:35:16
219.252.220.70	attack	Telnet/23 MH Probe, BF, Hack -	2020-02-11 20:35:54
125.161.139.90	attackspam	1581396504 - 02/11/2020 05:48:24 Host: 125.161.139.90/125.161.139.90 Port: 445 TCP Blocked	2020-02-11 20:55:44
80.211.166.139	attackspam	Feb 11 13:38:34 markkoudstaal sshd[22330]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.166.139 Feb 11 13:38:36 markkoudstaal sshd[22330]: Failed password for invalid user zmf from 80.211.166.139 port 60042 ssh2 Feb 11 13:41:10 markkoudstaal sshd[22825]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.166.139	2020-02-11 21:02:26
89.248.168.41	attackspam	Feb 11 13:32:37 debian-2gb-nbg1-2 kernel: \[3683590.466342\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=89.248.168.41 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=833 PROTO=TCP SPT=41279 DPT=1580 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-11 20:50:32
120.132.3.65	attack	Feb 11 08:26:33 h2177944 kernel: \[4603998.097225\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=120.132.3.65 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=234 ID=56981 PROTO=TCP SPT=53603 DPT=1433 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 11 08:26:33 h2177944 kernel: \[4603998.097240\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=120.132.3.65 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=234 ID=56981 PROTO=TCP SPT=53603 DPT=1433 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 11 08:55:17 h2177944 kernel: \[4605721.823233\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=120.132.3.65 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=234 ID=59551 PROTO=TCP SPT=40243 DPT=50000 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 11 08:55:17 h2177944 kernel: \[4605721.823246\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=120.132.3.65 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=234 ID=59551 PROTO=TCP SPT=40243 DPT=50000 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 11 09:01:19 h2177944 kernel: \[4606083.924498\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=120.132.3.65 DST=85.214.117.9 LE	2020-02-11 20:51:02
222.124.18.155	attack	Feb 11 13:43:28 XXX sshd[12180]: Invalid user ubuntu from 222.124.18.155 port 38632	2020-02-11 21:03:32
5.249.155.183	attackspambots	Feb 11 09:49:47 lnxmysql61 sshd[10007]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.249.155.183 Feb 11 09:49:49 lnxmysql61 sshd[10007]: Failed password for invalid user vfu from 5.249.155.183 port 43462 ssh2 Feb 11 09:52:15 lnxmysql61 sshd[10487]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.249.155.183	2020-02-11 20:22:25

最近上报的IP列表

223.214.207.39	221.230.116.11	220.189.96.241	182.108.168.207
182.108.47.187	180.119.19.151	175.44.108.16	171.4.25.68
125.121.118.7	125.111.149.140	123.179.130.195	53.50.38.80
123.169.39.12	119.186.18.78	119.5.78.223	117.94.215.164
117.69.240.19	117.68.245.223	117.63.131.252	117.57.82.118