117.85.104.249

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.85.104.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4662
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;117.85.104.249.			IN	A

;; AUTHORITY SECTION:
.			573	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 22:46:29 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 249.104.85.117.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 249.104.85.117.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
175.125.149.217	attack	Oct 7 22:06:10 hidden sshd[30819]: Invalid user support from 175.125.149.217 port 64427 Oct 7 22:06:10 hidden sshd[30819]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.125.149.217 Oct 7 22:06:13 hidden sshd[30819]: Failed password for invalid user support from 175.125.149.217 port 64427 ssh2	2020-10-11 04:52:54
159.89.170.154	attack	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-10-11 05:03:36
96.67.97.105	attackbotsspam	TCP (SYN) 96.67.97.105:55103 -> port 2323, len 44	2020-10-11 05:04:50
90.171.35.83	attack	2020-10-10T20:50:13.004850ks3355764 sshd[30209]: Invalid user ubuntu from 90.171.35.83 port 35952 2020-10-10T20:50:15.111850ks3355764 sshd[30209]: Failed password for invalid user ubuntu from 90.171.35.83 port 35952 ssh2 ...	2020-10-11 05:10:51
62.94.193.216	attack	web-1 [ssh_2] SSH Attack	2020-10-11 04:57:00
62.234.6.147	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-11 04:46:21
176.31.253.204	attackbots	Oct 10 03:19:09 s1 sshd\[17167\]: User root from 176.31.253.204 not allowed because not listed in AllowUsers Oct 10 03:19:09 s1 sshd\[17167\]: Failed password for invalid user root from 176.31.253.204 port 29139 ssh2 Oct 10 03:19:09 s1 sshd\[17167\]: Failed password for invalid user root from 176.31.253.204 port 29139 ssh2 Oct 10 03:19:09 s1 sshd\[17167\]: Failed password for invalid user root from 176.31.253.204 port 29139 ssh2 Oct 10 03:45:47 s1 sshd\[23564\]: User root from 176.31.253.204 not allowed because not listed in AllowUsers Oct 10 03:45:47 s1 sshd\[23564\]: Failed password for invalid user root from 176.31.253.204 port 39891 ssh2 ...	2020-10-11 04:41:38
113.31.102.8	attack	(sshd) Failed SSH login from 113.31.102.8 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 10 15:02:41 optimus sshd[15815]: Invalid user danny from 113.31.102.8 Oct 10 15:02:41 optimus sshd[15815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.31.102.8 Oct 10 15:02:43 optimus sshd[15815]: Failed password for invalid user danny from 113.31.102.8 port 38408 ssh2 Oct 10 15:09:41 optimus sshd[17942]: Invalid user laraht from 113.31.102.8 Oct 10 15:09:41 optimus sshd[17942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.31.102.8	2020-10-11 04:50:39
45.143.221.41	attackbots	[2020-10-10 16:45:38] NOTICE[1182] chan_sip.c: Registration from '"907" ' failed for '45.143.221.41:6172' - Wrong password [2020-10-10 16:45:38] SECURITY[1204] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-10-10T16:45:38.611-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="907",SessionID="0x7f22f8484ff8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.221.41/6172",Challenge="6c1b0b0f",ReceivedChallenge="6c1b0b0f",ReceivedHash="2d83b66488be591ed2c2c9aac767a224" [2020-10-10 16:45:38] NOTICE[1182] chan_sip.c: Registration from '"907" ' failed for '45.143.221.41:6172' - Wrong password [2020-10-10 16:45:38] SECURITY[1204] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-10-10T16:45:38.786-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="907",SessionID="0x7f22f84679a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.2 ...	2020-10-11 04:54:36
190.21.45.234	attackspam	SSH Brute Force (F)	2020-10-11 05:08:26
128.199.194.107	attackspam	Oct 10 22:21:13 OPSO sshd\[5836\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.194.107 user=root Oct 10 22:21:15 OPSO sshd\[5836\]: Failed password for root from 128.199.194.107 port 35272 ssh2 Oct 10 22:25:07 OPSO sshd\[6804\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.194.107 user=root Oct 10 22:25:09 OPSO sshd\[6804\]: Failed password for root from 128.199.194.107 port 41278 ssh2 Oct 10 22:29:04 OPSO sshd\[8070\]: Invalid user user1 from 128.199.194.107 port 47294 Oct 10 22:29:04 OPSO sshd\[8070\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.194.107	2020-10-11 04:40:10
188.166.1.95	attack	188.166.1.95 (NL/Netherlands/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Oct 10 18:15:42 server2 sshd[16057]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.254.64 user=root Oct 10 18:16:42 server2 sshd[16158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.1.95 user=root Oct 10 18:16:44 server2 sshd[16158]: Failed password for root from 188.166.1.95 port 44426 ssh2 Oct 10 18:15:02 server2 sshd[15889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.27.9.23 user=root Oct 10 18:15:44 server2 sshd[16057]: Failed password for root from 138.68.254.64 port 55582 ssh2 Oct 10 18:18:38 server2 sshd[16485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.232.152.254 user=root IP Addresses Blocked: 138.68.254.64 (US/United States/-)	2020-10-11 05:08:47
175.181.96.77	attackspambots	Oct 7 14:01:08 hidden sshd[20616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.181.96.77 Oct 7 14:01:10 hidden sshd[20616]: Failed password for invalid user pi from 175.181.96.77 port 46770 ssh2 Oct 8 00:01:38 hidden sshd[24206]: Invalid user ubnt from 175.181.96.77 port 55930	2020-10-11 04:43:55
174.106.139.18	attackbotsspam	1 hits Ports 80,443,465 : ET EXPLOIT Possible VXWORKS Urgent11 RCE Attempt - Urgent Flag	2020-10-11 05:12:51
212.166.68.146	attack	Oct 10 22:27:43 ns382633 sshd\[512\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.166.68.146 user=root Oct 10 22:27:45 ns382633 sshd\[512\]: Failed password for root from 212.166.68.146 port 57892 ssh2 Oct 10 22:35:59 ns382633 sshd\[2418\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.166.68.146 user=root Oct 10 22:36:00 ns382633 sshd\[2418\]: Failed password for root from 212.166.68.146 port 48082 ssh2 Oct 10 22:40:14 ns382633 sshd\[3418\]: Invalid user web from 212.166.68.146 port 52940 Oct 10 22:40:14 ns382633 sshd\[3418\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.166.68.146	2020-10-11 04:49:26

最近上报的IP列表

117.85.104.72	117.85.105.135	117.85.105.152	114.233.168.78
117.85.105.167	117.85.105.197	117.85.105.179	117.85.105.158
117.85.105.192	117.85.105.175	117.85.104.94	117.85.105.50
117.85.105.216	117.85.105.199	117.85.105.232	114.233.168.8
117.85.106.11	117.85.105.234	117.85.105.213	117.85.105.78