117.11.91.12 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Tianjin Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 117.11.91.12 to port 8000 [J]	2020-01-27 17:07:15

相同子网IP讨论:

IP	类型	评论内容	时间
117.11.91.36	attackbotsspam	Unauthorized connection attempt detected from IP address 117.11.91.36 to port 8118 [J]	2020-03-02 19:31:27

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.11.91.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39175
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.11.91.12.			IN	A

;; AUTHORITY SECTION:
.			407	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012700 1800 900 604800 86400

;; Query time: 118 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 27 17:07:09 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

12.91.11.117.in-addr.arpa domain name pointer dns12.online.tj.cn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
12.91.11.117.in-addr.arpa	name = dns12.online.tj.cn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
101.89.216.223	attackspambots	Dec 22 17:27:50 host postfix/smtpd[17957]: warning: unknown[101.89.216.223]: SASL LOGIN authentication failed: authentication failure Dec 22 17:27:55 host postfix/smtpd[17957]: warning: unknown[101.89.216.223]: SASL LOGIN authentication failed: authentication failure ...	2019-12-23 01:10:47
37.187.120.96	attackspambots	Dec 22 07:18:29 sachi sshd\[13456\]: Invalid user ftp7777 from 37.187.120.96 Dec 22 07:18:29 sachi sshd\[13456\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns330887.ip-37-187-120.eu Dec 22 07:18:31 sachi sshd\[13456\]: Failed password for invalid user ftp7777 from 37.187.120.96 port 42120 ssh2 Dec 22 07:24:55 sachi sshd\[14112\]: Invalid user ernst123 from 37.187.120.96 Dec 22 07:24:55 sachi sshd\[14112\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns330887.ip-37-187-120.eu	2019-12-23 01:35:01
222.186.175.169	attackbots	Dec 22 17:12:16 localhost sshd\[22915\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169 user=root Dec 22 17:12:18 localhost sshd\[22915\]: Failed password for root from 222.186.175.169 port 24784 ssh2 Dec 22 17:12:21 localhost sshd\[22915\]: Failed password for root from 222.186.175.169 port 24784 ssh2 ...	2019-12-23 01:13:18
139.155.82.119	attack	Dec 22 16:26:08 *** sshd[2422]: Invalid user tucher from 139.155.82.119	2019-12-23 01:04:46
36.73.236.187	attack	1577026282 - 12/22/2019 15:51:22 Host: 36.73.236.187/36.73.236.187 Port: 445 TCP Blocked	2019-12-23 01:00:28
120.29.118.240	attack	Unauthorized connection attempt detected from IP address 120.29.118.240 to port 23	2019-12-23 01:27:42
41.234.229.208	attack	...	2019-12-23 01:24:31
186.3.213.164	attackbots	Dec 22 18:04:25 sd-53420 sshd\[16843\]: Invalid user guest8888 from 186.3.213.164 Dec 22 18:04:25 sd-53420 sshd\[16843\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.3.213.164 Dec 22 18:04:28 sd-53420 sshd\[16843\]: Failed password for invalid user guest8888 from 186.3.213.164 port 36784 ssh2 Dec 22 18:10:21 sd-53420 sshd\[19254\]: Invalid user kyleryan from 186.3.213.164 Dec 22 18:10:21 sd-53420 sshd\[19254\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.3.213.164 ...	2019-12-23 01:30:13
178.128.168.87	attackbotsspam	$f2bV_matches	2019-12-23 01:06:40
203.114.102.69	attack	Dec 22 17:36:54 localhost sshd\[7260\]: Invalid user Pass@word0111 from 203.114.102.69 port 46380 Dec 22 17:36:54 localhost sshd\[7260\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.114.102.69 Dec 22 17:36:56 localhost sshd\[7260\]: Failed password for invalid user Pass@word0111 from 203.114.102.69 port 46380 ssh2	2019-12-23 00:55:17
185.147.212.8	attack	\[2019-12-22 12:07:20\] NOTICE\[2839\] chan_sip.c: Registration from '\' failed for '185.147.212.8:59152' - Wrong password \[2019-12-22 12:07:20\] SECURITY\[2857\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-12-22T12:07:20.717-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="58303",SessionID="0x7f0fb446bb58",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.212.8/59152",Challenge="688b7844",ReceivedChallenge="688b7844",ReceivedHash="b2168f3c50a44967b44fbe773013c384" \[2019-12-22 12:11:06\] NOTICE\[2839\] chan_sip.c: Registration from '\' failed for '185.147.212.8:60855' - Wrong password \[2019-12-22 12:11:06\] SECURITY\[2857\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-12-22T12:11:06.093-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="96774",SessionID="0x7f0fb4a47618",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.1	2019-12-23 01:30:34
94.191.78.128	attackbots	Dec 22 16:47:16 localhost sshd\[22431\]: Invalid user solr from 94.191.78.128 port 58258 Dec 22 16:47:16 localhost sshd\[22431\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.78.128 Dec 22 16:47:18 localhost sshd\[22431\]: Failed password for invalid user solr from 94.191.78.128 port 58258 ssh2 ...	2019-12-23 01:28:52
165.22.43.33	attackbots	port scan and connect, tcp 80 (http)	2019-12-23 01:23:01
51.75.52.195	attackspam	2019-12-22T16:43:43.882146shield sshd\[2012\]: Invalid user paliga from 51.75.52.195 port 50226 2019-12-22T16:43:43.886362shield sshd\[2012\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3133228.ip-51-75-52.eu 2019-12-22T16:43:46.622447shield sshd\[2012\]: Failed password for invalid user paliga from 51.75.52.195 port 50226 ssh2 2019-12-22T16:49:21.631641shield sshd\[3752\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3133228.ip-51-75-52.eu user=root 2019-12-22T16:49:23.765315shield sshd\[3752\]: Failed password for root from 51.75.52.195 port 54630 ssh2	2019-12-23 00:57:11
218.173.148.90	attack	1577026245 - 12/22/2019 15:50:45 Host: 218.173.148.90/218.173.148.90 Port: 445 TCP Blocked	2019-12-23 01:31:12

最近上报的IP列表

218.72.50.246	213.190.10.234	211.22.209.126	189.213.38.70
188.252.230.14	188.75.85.254	187.19.13.11	185.215.62.178
183.191.29.198	76.159.15.66	153.86.206.196	86.193.185.54
23.110.88.1	10.19.116.21	183.80.98.141	183.60.110.119
219.64.180.180	180.241.188.243	55.104.70.181	177.128.35.131