117.159.5.113 - IPInfo

基本信息:

城市(city): Zhengzhou

省份(region): Henan

国家(country): China

运营商(isp): China Mobile Communications Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 117.159.5.113 to port 1433 [T]	2020-06-24 00:18:14
attackbotsspam	Port scan: Attack repeated for 24 hours	2020-05-04 19:08:31
attack	[portscan] tcp/1433 [MsSQL] *(RWIN=1024)(04301449)	2020-05-01 00:13:36
attack	Unauthorized access or intrusion attempt detected from Thor banned IP	2020-04-25 17:04:11
attack	Unauthorized connection attempt detected from IP address 117.159.5.113 to port 1433 [T]	2020-03-25 18:28:17
attackbotsspam	Unauthorized connection attempt detected from IP address 117.159.5.113 to port 1433 [J]	2020-03-01 17:40:02
attack	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic	2020-02-23 08:45:32
attack	Unauthorized connection attempt detected from IP address 117.159.5.113 to port 1433 [J]	2020-01-28 22:29:02
attack	Unauthorized connection attempt detected from IP address 117.159.5.113 to port 1433 [J]	2020-01-21 03:27:35
attackspambots	Unauthorized connection attempt detected from IP address 117.159.5.113 to port 1433 [T]	2020-01-20 06:54:33
attack	Unauthorized connection attempt detected from IP address 117.159.5.113 to port 1433 [J]	2020-01-06 17:04:16
attackspam	1433/tcp 1433/tcp 1433/tcp... [2019-10-09/11-20]12pkt,1pt.(tcp)	2019-11-21 04:19:53

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.159.5.113
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49587
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.159.5.113.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112003 1800 900 604800 86400

;; Query time: 725 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Nov 21 04:19:49 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 113.5.159.117.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 100.100.2.136, trying next server
;; Got SERVFAIL reply from 100.100.2.138, trying next server
Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 113.5.159.117.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
164.163.2.4	attackbots	Aug 25 01:38:14 meumeu sshd[4980]: Failed password for invalid user ftpuser from 164.163.2.4 port 39064 ssh2 Aug 25 01:43:13 meumeu sshd[5716]: Failed password for invalid user ecastro from 164.163.2.4 port 56500 ssh2 ...	2019-08-25 08:37:24
119.197.26.181	attackbots	Reported by AbuseIPDB proxy server.	2019-08-25 09:16:30
23.20.111.64	attack	23.20.111.64 - - [25/Aug/2019:00:35:13 +0200] "POST [munged]wp-login.php HTTP/1.1" 444 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 0.000	2019-08-25 08:39:21
66.172.98.206	attackbotsspam	Unauthorised access (Aug 25) SRC=66.172.98.206 LEN=40 TTL=50 ID=12115 TCP DPT=8080 WINDOW=42631 SYN	2019-08-25 08:51:28
46.109.141.80	attackspambots	Unauthorized connection attempt from IP address 46.109.141.80 on Port 445(SMB)	2019-08-25 08:47:11
36.69.168.66	attack	Unauthorized connection attempt from IP address 36.69.168.66 on Port 445(SMB)	2019-08-25 08:58:42
167.71.200.201	attackspambots	Aug 25 00:44:10 MK-Soft-VM4 sshd\[5426\]: Invalid user avendoria from 167.71.200.201 port 32458 Aug 25 00:44:10 MK-Soft-VM4 sshd\[5426\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.200.201 Aug 25 00:44:12 MK-Soft-VM4 sshd\[5426\]: Failed password for invalid user avendoria from 167.71.200.201 port 32458 ssh2 ...	2019-08-25 08:51:45
183.6.155.108	attack	Aug 24 20:53:06 debian sshd\[28129\]: Invalid user infoadm from 183.6.155.108 port 6679 Aug 24 20:53:06 debian sshd\[28129\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.6.155.108 Aug 24 20:53:08 debian sshd\[28129\]: Failed password for invalid user infoadm from 183.6.155.108 port 6679 ssh2 ...	2019-08-25 09:19:50
201.71.144.254	attackspam	Unauthorized connection attempt from IP address 201.71.144.254 on Port 445(SMB)	2019-08-25 09:14:03
200.24.67.110	attack	Unauthorized connection attempt from IP address 200.24.67.110 on Port 587(SMTP-MSA)	2019-08-25 09:08:35
104.210.35.133	attackspambots	Aug 25 02:27:15 lnxmail61 sshd[29362]: Failed password for root from 104.210.35.133 port 28288 ssh2 Aug 25 02:31:14 lnxmail61 sshd[29811]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.210.35.133 Aug 25 02:31:16 lnxmail61 sshd[29811]: Failed password for invalid user intel from 104.210.35.133 port 28288 ssh2	2019-08-25 08:44:46
201.131.246.248	attackspambots	Unauthorized connection attempt from IP address 201.131.246.248 on Port 445(SMB)	2019-08-25 09:17:18
106.248.249.26	attackspambots	Aug 24 20:21:50 xtremcommunity sshd\[17311\]: Invalid user art from 106.248.249.26 port 49784 Aug 24 20:21:50 xtremcommunity sshd\[17311\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.248.249.26 Aug 24 20:21:52 xtremcommunity sshd\[17311\]: Failed password for invalid user art from 106.248.249.26 port 49784 ssh2 Aug 24 20:27:52 xtremcommunity sshd\[17573\]: Invalid user www from 106.248.249.26 port 36928 Aug 24 20:27:52 xtremcommunity sshd\[17573\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.248.249.26 ...	2019-08-25 08:50:33
54.36.232.60	attackbots	Aug 24 23:42:11 legacy sshd[10544]: Failed password for root from 54.36.232.60 port 25658 ssh2 Aug 24 23:43:10 legacy sshd[10564]: Failed password for root from 54.36.232.60 port 33698 ssh2 ...	2019-08-25 08:53:09
210.187.87.185	attackspam	Aug 25 01:46:24 mail sshd\[3206\]: Failed password for invalid user arma from 210.187.87.185 port 52586 ssh2 Aug 25 01:51:03 mail sshd\[3715\]: Invalid user maxim from 210.187.87.185 port 37612 Aug 25 01:51:03 mail sshd\[3715\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.187.87.185 Aug 25 01:51:05 mail sshd\[3715\]: Failed password for invalid user maxim from 210.187.87.185 port 37612 ssh2 Aug 25 01:55:46 mail sshd\[4391\]: Invalid user hadoop from 210.187.87.185 port 50866 Aug 25 01:55:46 mail sshd\[4391\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.187.87.185	2019-08-25 08:48:20

最近上报的IP列表

44.250.205.37	92.45.192.235	122.68.156.167	173.26.53.179
73.111.184.191	218.102.219.207	89.227.243.140	106.39.232.160
198.140.181.17	85.159.212.250	191.85.176.45	114.226.15.243
47.98.9.167	83.30.148.204	103.113.158.176	92.248.217.138
185.72.227.94	175.89.59.86	124.204.66.26	97.216.207.83