117.107.190.157

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Sinnet Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-06-04 06:35:57
attackspambots	Unauthorized connection attempt from IP address 117.107.190.157 on Port 445(SMB)	2020-01-18 01:19:48

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.107.190.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32655
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.107.190.157.		IN	A

;; AUTHORITY SECTION:
.			476	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011700 1800 900 604800 86400

;; Query time: 126 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 18 01:19:42 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 157.190.107.117.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 100.100.2.136, trying next server
;; Got SERVFAIL reply from 100.100.2.138, trying next server
Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 157.190.107.117.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
72.167.190.198	attackbots	xmlrpc attack	2019-10-18 14:23:42
213.230.121.140	attackspambots	Oct 18 05:44:51 mxgate1 postfix/postscreen[19384]: CONNECT from [213.230.121.140]:5456 to [176.31.12.44]:25 Oct 18 05:44:51 mxgate1 postfix/dnsblog[19486]: addr 213.230.121.140 listed by domain cbl.abuseat.org as 127.0.0.2 Oct 18 05:44:51 mxgate1 postfix/dnsblog[19483]: addr 213.230.121.140 listed by domain zen.spamhaus.org as 127.0.0.11 Oct 18 05:44:51 mxgate1 postfix/dnsblog[19483]: addr 213.230.121.140 listed by domain zen.spamhaus.org as 127.0.0.4 Oct 18 05:44:51 mxgate1 postfix/dnsblog[19487]: addr 213.230.121.140 listed by domain bl.spamcop.net as 127.0.0.2 Oct 18 05:44:51 mxgate1 postfix/dnsblog[19485]: addr 213.230.121.140 listed by domain b.barracudacentral.org as 127.0.0.2 Oct 18 05:44:51 mxgate1 postfix/postscreen[19384]: PREGREET 24 after 0.12 from [213.230.121.140]:5456: EHLO [213.230.121.140] Oct 18 05:44:51 mxgate1 postfix/postscreen[19384]: DNSBL rank 5 for [213.230.121.140]:5456 Oct x@x Oct 18 05:44:51 mxgate1 postfix/postscreen[19384]: HANGUP after 0......... -------------------------------	2019-10-18 14:09:34
139.59.20.248	attackbotsspam	Oct 18 04:10:53 www_kotimaassa_fi sshd[23452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.20.248 Oct 18 04:10:56 www_kotimaassa_fi sshd[23452]: Failed password for invalid user student from 139.59.20.248 port 57666 ssh2 ...	2019-10-18 14:22:55
185.195.237.25	attackbots	Automatic report - Banned IP Access	2019-10-18 14:03:21
222.186.175.216	attack	Oct 18 07:29:26 root sshd[7735]: Failed password for root from 222.186.175.216 port 2006 ssh2 Oct 18 07:29:32 root sshd[7735]: Failed password for root from 222.186.175.216 port 2006 ssh2 Oct 18 07:29:38 root sshd[7735]: Failed password for root from 222.186.175.216 port 2006 ssh2 Oct 18 07:29:43 root sshd[7735]: Failed password for root from 222.186.175.216 port 2006 ssh2 ...	2019-10-18 14:24:47
156.67.217.56	attack	SSH/22 MH Probe, BF, Hack -	2019-10-18 13:57:50
60.221.255.176	attackbots	Oct 18 06:21:24 ncomp sshd[14812]: Invalid user support from 60.221.255.176 Oct 18 06:21:24 ncomp sshd[14812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.221.255.176 Oct 18 06:21:24 ncomp sshd[14812]: Invalid user support from 60.221.255.176 Oct 18 06:21:27 ncomp sshd[14812]: Failed password for invalid user support from 60.221.255.176 port 2225 ssh2	2019-10-18 14:26:48
95.241.131.255	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/95.241.131.255/ IT - 1H : (102) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : IT NAME ASN : ASN3269 IP : 95.241.131.255 CIDR : 95.241.0.0/16 PREFIX COUNT : 550 UNIQUE IP COUNT : 19507712 WYKRYTE ATAKI Z ASN3269 : 1H - 1 3H - 6 6H - 12 12H - 22 24H - 46 DateTime : 2019-10-18 05:53:19 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-10-18 14:29:12
106.13.148.44	attackspambots	Oct 18 05:00:48 localhost sshd\[104046\]: Invalid user Xenia123 from 106.13.148.44 port 59880 Oct 18 05:00:48 localhost sshd\[104046\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.148.44 Oct 18 05:00:50 localhost sshd\[104046\]: Failed password for invalid user Xenia123 from 106.13.148.44 port 59880 ssh2 Oct 18 05:06:12 localhost sshd\[104160\]: Invalid user denbeigh from 106.13.148.44 port 42302 Oct 18 05:06:12 localhost sshd\[104160\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.148.44 ...	2019-10-18 14:11:02
178.116.46.206	attackbotsspam	$f2bV_matches	2019-10-18 14:20:57
106.12.181.34	attackspam	$f2bV_matches_ltvn	2019-10-18 14:09:12
128.199.240.120	attackspam	Invalid user hk1410 from 128.199.240.120 port 53252	2019-10-18 14:13:03
123.206.17.141	attackspambots	2019-10-18T06:01:06.000391shield sshd\[28182\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.17.141 user=root 2019-10-18T06:01:08.062585shield sshd\[28182\]: Failed password for root from 123.206.17.141 port 52687 ssh2 2019-10-18T06:01:11.322635shield sshd\[28182\]: Failed password for root from 123.206.17.141 port 52687 ssh2 2019-10-18T06:01:13.448473shield sshd\[28182\]: Failed password for root from 123.206.17.141 port 52687 ssh2 2019-10-18T06:01:15.849950shield sshd\[28182\]: Failed password for root from 123.206.17.141 port 52687 ssh2	2019-10-18 14:04:38
51.4.195.188	attack	Oct 17 19:41:53 friendsofhawaii sshd\[5501\]: Invalid user style from 51.4.195.188 Oct 17 19:41:53 friendsofhawaii sshd\[5501\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.4.195.188 Oct 17 19:41:55 friendsofhawaii sshd\[5501\]: Failed password for invalid user style from 51.4.195.188 port 43816 ssh2 Oct 17 19:48:59 friendsofhawaii sshd\[6100\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.4.195.188 user=root Oct 17 19:49:01 friendsofhawaii sshd\[6100\]: Failed password for root from 51.4.195.188 port 57250 ssh2	2019-10-18 14:31:48
138.68.77.235	attack	Oct 18 06:53:15 www4 sshd\[53859\]: Invalid user se from 138.68.77.235 Oct 18 06:53:15 www4 sshd\[53859\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.77.235 Oct 18 06:53:17 www4 sshd\[53859\]: Failed password for invalid user se from 138.68.77.235 port 49612 ssh2 ...	2019-10-18 14:30:27

最近上报的IP列表

182.68.96.229	187.84.178.1	191.125.5.112	91.222.249.11
58.8.233.171	194.180.224.110	49.233.142.11	36.82.97.220
58.152.135.230	1.172.205.238	162.158.186.225	104.129.42.223
84.78.123.73	36.80.102.183	183.88.125.77	117.69.46.98
95.140.27.48	210.210.112.84	106.204.67.135	231.6.244.98