117.0.34.39 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
117.0.34.168	attackspam	Unauthorized connection attempt from IP address 117.0.34.168 on Port 445(SMB)	2020-01-11 19:17:06
117.0.34.168	attack	Unauthorized connection attempt from IP address 117.0.34.168 on Port 445(SMB)	2019-12-22 02:15:10
117.0.34.158	attackbotsspam	Unauthorized connection attempt from IP address 117.0.34.158 on Port 445(SMB)	2019-08-13 20:10:45

类型

评论内容

时间

117.0.34.168

attackspam

Unauthorized connection attempt from IP address 117.0.34.168 on Port 445(SMB)

2020-01-11 19:17:06

117.0.34.168

attack

Unauthorized connection attempt from IP address 117.0.34.168 on Port 445(SMB)

2019-12-22 02:15:10

117.0.34.158

attackbotsspam

Unauthorized connection attempt from IP address 117.0.34.158 on Port 445(SMB)

2019-08-13 20:10:45

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.0.34.39
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5400
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;117.0.34.39.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022701 1800 900 604800 86400

;; Query time: 99 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 03:18:12 CST 2022
;; MSG SIZE  rcvd: 104

HOST信息:

39.34.0.117.in-addr.arpa domain name pointer localhost.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
39.34.0.117.in-addr.arpa	name = localhost.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
170.106.81.157	attackbotsspam	Unauthorized connection attempt detected from IP address 170.106.81.157 to port 84	2020-08-09 12:23:35
89.248.168.2	attackspambots	08/08/2020-19:38:11.522121 89.248.168.2 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-08-09 08:34:39
112.85.42.185	attackspam	Aug 9 06:00:52 host sshd\[16868\]: User user from 112.85.42.185 not allowed because none of user's groups are listed in AllowGroups	2020-08-09 12:22:50
144.217.85.4	attackbotsspam	Aug 9 06:07:46 OPSO sshd\[22334\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.85.4 user=root Aug 9 06:07:48 OPSO sshd\[22334\]: Failed password for root from 144.217.85.4 port 49998 ssh2 Aug 9 06:11:46 OPSO sshd\[23403\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.85.4 user=root Aug 9 06:11:49 OPSO sshd\[23403\]: Failed password for root from 144.217.85.4 port 32864 ssh2 Aug 9 06:15:48 OPSO sshd\[24351\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.85.4 user=root	2020-08-09 12:24:40
141.85.216.231	attack	HTTP DDOS	2020-08-09 08:33:12
183.155.197.37	attack	Brute force attempt	2020-08-09 12:12:16
222.186.42.137	attackspambots	Aug 9 04:09:06 IngegnereFirenze sshd[29085]: User root from 222.186.42.137 not allowed because not listed in AllowUsers ...	2020-08-09 12:10:21
180.117.116.220	attack	$f2bV_matches	2020-08-09 12:20:42
189.90.14.101	attackbotsspam	Aug 9 05:51:24 buvik sshd[28996]: Failed password for root from 189.90.14.101 port 9889 ssh2 Aug 9 05:56:09 buvik sshd[29671]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.90.14.101 user=root Aug 9 05:56:11 buvik sshd[29671]: Failed password for root from 189.90.14.101 port 25602 ssh2 ...	2020-08-09 12:05:27
66.70.142.231	attackbots	Aug 9 03:51:23 scw-tender-jepsen sshd[23339]: Failed password for root from 66.70.142.231 port 54698 ssh2	2020-08-09 12:11:08
152.32.106.35	attack	Wordpress attack	2020-08-09 12:03:34
122.51.126.135	attackspam	Aug 9 05:51:07 cho sshd[277587]: Failed password for root from 122.51.126.135 port 54984 ssh2 Aug 9 05:53:25 cho sshd[277654]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.126.135 user=root Aug 9 05:53:26 cho sshd[277654]: Failed password for root from 122.51.126.135 port 51692 ssh2 Aug 9 05:55:39 cho sshd[277737]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.126.135 user=root Aug 9 05:55:41 cho sshd[277737]: Failed password for root from 122.51.126.135 port 48398 ssh2 ...	2020-08-09 12:30:03
45.195.201.111	attackspam	Aug 8 15:19:57 dignus sshd[3018]: Failed password for root from 45.195.201.111 port 55864 ssh2 Aug 8 15:22:13 dignus sshd[3441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.195.201.111 user=root Aug 8 15:22:15 dignus sshd[3441]: Failed password for root from 45.195.201.111 port 42811 ssh2 Aug 8 15:24:28 dignus sshd[3902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.195.201.111 user=root Aug 8 15:24:31 dignus sshd[3902]: Failed password for root from 45.195.201.111 port 57992 ssh2 ...	2020-08-09 08:36:39
178.62.5.39	attackbots	178.62.5.39 - - [09/Aug/2020:05:55:43 +0200] "GET /wp-login.php HTTP/1.1" 200 1901 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.62.5.39 - - [09/Aug/2020:05:55:43 +0200] "POST /wp-login.php HTTP/1.1" 200 2031 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.62.5.39 - - [09/Aug/2020:05:55:43 +0200] "GET /wp-login.php HTTP/1.1" 200 1901 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.62.5.39 - - [09/Aug/2020:05:55:48 +0200] "POST /wp-login.php HTTP/1.1" 200 2007 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.62.5.39 - - [09/Aug/2020:05:55:48 +0200] "GET /wp-login.php HTTP/1.1" 200 1901 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.62.5.39 - - [09/Aug/2020:05:55:53 +0200] "POST /wp-login.php HTTP/1.1" 200 2008 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-09 12:22:00
92.112.61.169	attackbots	(mod_security) mod_security (id:920350) triggered by 92.112.61.169 (UA/-/169-61-112-92.pool.ukrtel.net): 1 in the last 600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/09 05:55:45 [error] 3682#0: 26148 [client 92.112.61.169] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "159694534593.207344"] [ref "o0,14v21,14"], client: 92.112.61.169, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-08-09 12:27:07

最近上报的IP列表

117.0.142.109	117.0.75.14	117.1.215.222	117.0.91.92
117.0.51.172	117.0.94.174	117.1.222.49	117.1.251.174
117.102.103.34	117.102.254.20	117.11.88.86	117.102.72.114
117.103.197.78	117.104.193.238	222.70.228.218	117.143.124.46
117.14.159.156	117.140.106.228	117.140.118.155	117.140.251.104