117.66.149.175

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
117.66.149.229	attackspam	Dec 8 09:52:42 esmtp postfix/smtpd[12149]: lost connection after AUTH from unknown[117.66.149.229] Dec 8 09:52:52 esmtp postfix/smtpd[12149]: lost connection after AUTH from unknown[117.66.149.229] Dec 8 09:53:00 esmtp postfix/smtpd[12149]: lost connection after AUTH from unknown[117.66.149.229] Dec 8 09:53:12 esmtp postfix/smtpd[12184]: lost connection after AUTH from unknown[117.66.149.229] Dec 8 09:53:20 esmtp postfix/smtpd[12149]: lost connection after AUTH from unknown[117.66.149.229] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=117.66.149.229	2019-12-09 03:08:50

类型

评论内容

时间

117.66.149.229

attackspam

Dec  8 09:52:42 esmtp postfix/smtpd[12149]: lost connection after AUTH from unknown[117.66.149.229]
Dec  8 09:52:52 esmtp postfix/smtpd[12149]: lost connection after AUTH from unknown[117.66.149.229]
Dec  8 09:53:00 esmtp postfix/smtpd[12149]: lost connection after AUTH from unknown[117.66.149.229]
Dec  8 09:53:12 esmtp postfix/smtpd[12184]: lost connection after AUTH from unknown[117.66.149.229]
Dec  8 09:53:20 esmtp postfix/smtpd[12149]: lost connection after AUTH from unknown[117.66.149.229]

........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=117.66.149.229

2019-12-09 03:08:50

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.66.149.175
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52168
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;117.66.149.175.			IN	A

;; AUTHORITY SECTION:
.			356	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400

;; Query time: 26 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 22:07:24 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 175.149.66.117.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 175.149.66.117.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
193.35.48.18	attack	Jun 5 11:11:55 mailserver postfix/smtps/smtpd[22305]: lost connection after AUTH from unknown[193.35.48.18] Jun 5 11:11:55 mailserver postfix/smtps/smtpd[22305]: disconnect from unknown[193.35.48.18] Jun 5 11:11:56 mailserver postfix/smtps/smtpd[22312]: connect from unknown[193.35.48.18] Jun 5 11:12:01 mailserver postfix/smtps/smtpd[22305]: connect from unknown[193.35.48.18] Jun 5 11:12:01 mailserver postfix/smtps/smtpd[22312]: lost connection after AUTH from unknown[193.35.48.18] Jun 5 11:12:01 mailserver postfix/smtps/smtpd[22312]: disconnect from unknown[193.35.48.18] Jun 5 11:12:06 mailserver postfix/smtps/smtpd[22312]: connect from unknown[193.35.48.18] Jun 5 11:12:06 mailserver postfix/smtps/smtpd[22305]: lost connection after AUTH from unknown[193.35.48.18] Jun 5 11:12:06 mailserver postfix/smtps/smtpd[22305]: disconnect from unknown[193.35.48.18] Jun 5 11:12:07 mailserver dovecot: auth-worker(22251): sql([hidden],193.35.48.18): unknown user	2020-06-05 17:39:23
178.62.108.111	attack	TCP (SYN) 178.62.108.111:46517 -> port 285, len 44	2020-06-05 17:43:13
111.229.63.21	attackbotsspam	Jun 5 07:04:26 localhost sshd\[16563\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.63.21 user=root Jun 5 07:04:28 localhost sshd\[16563\]: Failed password for root from 111.229.63.21 port 51038 ssh2 Jun 5 07:07:53 localhost sshd\[16855\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.63.21 user=root Jun 5 07:07:55 localhost sshd\[16855\]: Failed password for root from 111.229.63.21 port 60176 ssh2 Jun 5 07:11:16 localhost sshd\[17140\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.63.21 user=root ...	2020-06-05 17:13:49
104.236.244.98	attack	Jun 5 06:55:25 ajax sshd[4910]: Failed password for root from 104.236.244.98 port 39124 ssh2	2020-06-05 17:04:43
5.9.112.210	attack	[Fri Jun 05 14:54:23.037467 2020] [:error] [pid 24724:tid 140392347465472] [client 5.9.112.210:61172] [client 5.9.112.210] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "MJ12bot" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-913-SCANNER-DETECTION.conf"] [line "183"] [id "913102"] [msg "Found User-Agent associated with web crawler/bot"] [data "Matched Data: MJ12bot found within REQUEST_HEADERS:User-Agent: mozilla/5.0 (compatible; mj12bot/v1.4.8; http://mj12bot.com/)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-reputation-crawler"] [tag "OWASP_CRS"] [tag "OWASP_CRS/AUTOMATION/CRAWLER"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [tag "paranoia-level/2"] [hostname "staklim-malang.info"] [uri "/robots.txt"] [unique_id "Xtn6L-Qy55fPjN-7jctB2QAAAcI"] ...	2020-06-05 17:27:46
200.2.142.51	attack	Jun 5 10:48:37 vmd17057 sshd[4359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.2.142.51 Jun 5 10:48:39 vmd17057 sshd[4359]: Failed password for invalid user user from 200.2.142.51 port 55148 ssh2 ...	2020-06-05 17:41:26
118.27.9.23	attackspam	Jun 5 06:35:19 vps647732 sshd[1482]: Failed password for root from 118.27.9.23 port 35840 ssh2 ...	2020-06-05 17:10:37
5.53.114.209	attackbotsspam	2020-06-05T05:44:55.702013v22018076590370373 sshd[9641]: Failed password for root from 5.53.114.209 port 23087 ssh2 2020-06-05T05:48:17.168580v22018076590370373 sshd[18377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.53.114.209 user=root 2020-06-05T05:48:19.073924v22018076590370373 sshd[18377]: Failed password for root from 5.53.114.209 port 3335 ssh2 2020-06-05T05:51:46.843572v22018076590370373 sshd[21030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.53.114.209 user=root 2020-06-05T05:51:48.776053v22018076590370373 sshd[21030]: Failed password for root from 5.53.114.209 port 4508 ssh2 ...	2020-06-05 17:40:35
207.248.111.54	attack	(MX/Mexico/-) SMTP Bruteforcing attempts	2020-06-05 17:05:46
134.122.79.233	attackspam	2020-06-05T07:52:21.994977abusebot.cloudsearch.cf sshd[24689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.79.233 user=root 2020-06-05T07:52:24.269552abusebot.cloudsearch.cf sshd[24689]: Failed password for root from 134.122.79.233 port 53840 ssh2 2020-06-05T07:55:47.234607abusebot.cloudsearch.cf sshd[24880]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.79.233 user=root 2020-06-05T07:55:49.454339abusebot.cloudsearch.cf sshd[24880]: Failed password for root from 134.122.79.233 port 57960 ssh2 2020-06-05T07:58:54.955493abusebot.cloudsearch.cf sshd[25058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.122.79.233 user=root 2020-06-05T07:58:56.511818abusebot.cloudsearch.cf sshd[25058]: Failed password for root from 134.122.79.233 port 33846 ssh2 2020-06-05T08:02:07.993107abusebot.cloudsearch.cf sshd[25248]: pam_unix(sshd:auth): authenticatio ...	2020-06-05 17:44:55
207.248.113.63	attackspambots	(MX/Mexico/-) SMTP Bruteforcing attempts	2020-06-05 17:02:40
67.217.115.157	attack	20/6/4@23:52:40: FAIL: Alarm-Network address from=67.217.115.157 20/6/4@23:52:40: FAIL: Alarm-Network address from=67.217.115.157 ...	2020-06-05 17:01:16
60.190.243.230	attackspam	Jun 5 14:28:59 itv-usvr-02 sshd[27941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.190.243.230 user=root Jun 5 14:31:02 itv-usvr-02 sshd[28046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.190.243.230 user=root Jun 5 14:32:54 itv-usvr-02 sshd[28109]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.190.243.230 user=root	2020-06-05 17:33:59
193.112.250.77	attackspambots	Jun 5 10:50:43 localhost sshd\[641\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.250.77 user=root Jun 5 10:50:45 localhost sshd\[641\]: Failed password for root from 193.112.250.77 port 42040 ssh2 Jun 5 10:55:41 localhost sshd\[1008\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.250.77 user=root Jun 5 10:55:42 localhost sshd\[1008\]: Failed password for root from 193.112.250.77 port 38722 ssh2 Jun 5 11:00:36 localhost sshd\[1449\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.250.77 user=root ...	2020-06-05 17:36:58
220.135.66.219	attackbots	[MK-VM6] Blocked by UFW	2020-06-05 17:34:59

最近上报的IP列表

117.66.149.149	117.66.149.146	117.66.149.188	117.66.149.170
117.66.149.181	117.66.149.192	117.66.149.191	117.66.149.197
117.66.149.215	117.66.149.218	117.66.149.217	117.66.149.22
117.66.149.225	114.229.33.182	117.66.149.200	117.66.149.202
117.66.149.21	117.66.149.222	117.66.149.220	117.66.149.240