117.11.91.12 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Tianjin Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 117.11.91.12 to port 8000 [J]	2020-01-27 17:07:15

相同子网IP讨论:

IP	类型	评论内容	时间
117.11.91.36	attackbotsspam	Unauthorized connection attempt detected from IP address 117.11.91.36 to port 8118 [J]	2020-03-02 19:31:27

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.11.91.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39175
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.11.91.12.			IN	A

;; AUTHORITY SECTION:
.			407	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012700 1800 900 604800 86400

;; Query time: 118 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 27 17:07:09 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

12.91.11.117.in-addr.arpa domain name pointer dns12.online.tj.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
12.91.11.117.in-addr.arpa	name = dns12.online.tj.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
167.57.246.39	attackbotsspam	RDP Scan	2019-09-04 20:37:00
118.24.101.182	attackspambots	Sep 4 06:22:58 meumeu sshd[3387]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.101.182 Sep 4 06:23:00 meumeu sshd[3387]: Failed password for invalid user bonec from 118.24.101.182 port 44908 ssh2 Sep 4 06:27:17 meumeu sshd[4001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.101.182 ...	2019-09-04 20:45:55
71.6.233.208	attack	5984/tcp 8001/tcp 9060/tcp... [2019-07-11/09-04]7pkt,7pt.(tcp)	2019-09-04 20:56:40
54.37.230.141	attackbotsspam	Sep 4 00:29:06 web1 sshd\[13698\]: Invalid user yx from 54.37.230.141 Sep 4 00:29:06 web1 sshd\[13698\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.230.141 Sep 4 00:29:09 web1 sshd\[13698\]: Failed password for invalid user yx from 54.37.230.141 port 44702 ssh2 Sep 4 00:32:57 web1 sshd\[14035\]: Invalid user eun from 54.37.230.141 Sep 4 00:32:57 web1 sshd\[14035\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.230.141	2019-09-04 20:23:07
116.239.107.216	attackspambots	Sep 3 22:45:51 eola postfix/smtpd[29377]: connect from unknown[116.239.107.216] Sep 3 22:45:52 eola postfix/smtpd[29377]: lost connection after AUTH from unknown[116.239.107.216] Sep 3 22:45:52 eola postfix/smtpd[29377]: disconnect from unknown[116.239.107.216] ehlo=1 auth=0/1 commands=1/2 Sep 3 22:45:52 eola postfix/smtpd[29377]: connect from unknown[116.239.107.216] Sep 3 22:45:53 eola postfix/smtpd[29377]: lost connection after AUTH from unknown[116.239.107.216] Sep 3 22:45:53 eola postfix/smtpd[29377]: disconnect from unknown[116.239.107.216] ehlo=1 auth=0/1 commands=1/2 Sep 3 22:45:53 eola postfix/smtpd[29377]: connect from unknown[116.239.107.216] Sep 3 22:45:54 eola postfix/smtpd[29377]: lost connection after AUTH from unknown[116.239.107.216] Sep 3 22:45:54 eola postfix/smtpd[29377]: disconnect from unknown[116.239.107.216] ehlo=1 auth=0/1 commands=1/2 Sep 3 22:45:54 eola postfix/smtpd[29377]: connect from unknown[116.239.107.216] Sep 3 22:45:56 eola ........ -------------------------------	2019-09-04 20:37:37
159.65.13.203	attack	Sep 3 22:19:14 eddieflores sshd\[18604\]: Invalid user mini from 159.65.13.203 Sep 3 22:19:14 eddieflores sshd\[18604\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.13.203 Sep 3 22:19:17 eddieflores sshd\[18604\]: Failed password for invalid user mini from 159.65.13.203 port 59949 ssh2 Sep 3 22:24:19 eddieflores sshd\[19100\]: Invalid user sftp from 159.65.13.203 Sep 3 22:24:19 eddieflores sshd\[19100\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.13.203	2019-09-04 20:21:47
134.175.205.46	attackspam	Sep 4 07:01:05 www sshd\[20412\]: Invalid user hoandy from 134.175.205.46Sep 4 07:01:06 www sshd\[20412\]: Failed password for invalid user hoandy from 134.175.205.46 port 33058 ssh2Sep 4 07:05:53 www sshd\[20629\]: Invalid user ggg from 134.175.205.46 ...	2019-09-04 20:56:18
60.248.137.155	attack	34567/tcp 9000/tcp [2019-08-24/09-04]2pkt	2019-09-04 20:10:54
88.231.115.232	attackspambots	Caught in portsentry honeypot	2019-09-04 20:31:36
181.50.80.20	attack	" "	2019-09-04 20:21:12
167.99.13.45	attack	Sep 4 13:16:19 minden010 sshd[9088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.13.45 Sep 4 13:16:21 minden010 sshd[9088]: Failed password for invalid user 123456 from 167.99.13.45 port 43114 ssh2 Sep 4 13:20:11 minden010 sshd[12414]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.13.45 ...	2019-09-04 20:51:21
106.13.53.173	attackspambots	Sep 4 08:40:06 vps200512 sshd\[10343\]: Invalid user lz from 106.13.53.173 Sep 4 08:40:06 vps200512 sshd\[10343\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.53.173 Sep 4 08:40:09 vps200512 sshd\[10343\]: Failed password for invalid user lz from 106.13.53.173 port 35772 ssh2 Sep 4 08:45:35 vps200512 sshd\[10500\]: Invalid user camelia from 106.13.53.173 Sep 4 08:45:35 vps200512 sshd\[10500\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.53.173	2019-09-04 20:53:32
37.59.107.100	attackspam	Aug 12 14:27:52 Server10 sshd[26391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.107.100 Aug 12 14:27:54 Server10 sshd[26391]: Failed password for invalid user server from 37.59.107.100 port 35998 ssh2	2019-09-04 20:36:28
62.215.6.11	attackspambots	Sep 4 08:29:43 ns341937 sshd[21562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.215.6.11 Sep 4 08:29:45 ns341937 sshd[21562]: Failed password for invalid user id from 62.215.6.11 port 44865 ssh2 Sep 4 08:36:38 ns341937 sshd[23203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.215.6.11 ...	2019-09-04 20:55:16
14.215.165.131	attackbotsspam	Too many connections or unauthorized access detected from Arctic banned ip	2019-09-04 20:09:35

最近上报的IP列表

218.72.50.246	213.190.10.234	211.22.209.126	189.213.38.70
188.252.230.14	188.75.85.254	187.19.13.11	185.215.62.178
183.191.29.198	76.159.15.66	153.86.206.196	86.193.185.54
23.110.88.1	10.19.116.21	183.80.98.141	183.60.110.119
219.64.180.180	180.241.188.243	55.104.70.181	177.128.35.131