117.89.70.139 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
117.89.70.250	attack	Jul 4 14:39:17 home sshd[18297]: Failed password for root from 117.89.70.250 port 54327 ssh2 Jul 4 14:42:55 home sshd[18699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.89.70.250 Jul 4 14:42:57 home sshd[18699]: Failed password for invalid user jenkins from 117.89.70.250 port 57230 ssh2 ...	2020-07-04 21:09:49
117.89.70.250	attackbotsspam	2020-07-04T07:54:43.066035snf-827550 sshd[1033]: Invalid user wangy from 117.89.70.250 port 50987 2020-07-04T07:54:45.436143snf-827550 sshd[1033]: Failed password for invalid user wangy from 117.89.70.250 port 50987 ssh2 2020-07-04T07:56:05.102905snf-827550 sshd[1607]: Invalid user griffin from 117.89.70.250 port 34630 ...	2020-07-04 14:57:11

类型

评论内容

时间

117.89.70.250

attack

Jul  4 14:39:17 home sshd[18297]: Failed password for root from 117.89.70.250 port 54327 ssh2
Jul  4 14:42:55 home sshd[18699]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.89.70.250
Jul  4 14:42:57 home sshd[18699]: Failed password for invalid user jenkins from 117.89.70.250 port 57230 ssh2
...

2020-07-04 21:09:49

117.89.70.250

attackbotsspam

2020-07-04T07:54:43.066035snf-827550 sshd[1033]: Invalid user wangy from 117.89.70.250 port 50987
2020-07-04T07:54:45.436143snf-827550 sshd[1033]: Failed password for invalid user wangy from 117.89.70.250 port 50987 ssh2
2020-07-04T07:56:05.102905snf-827550 sshd[1607]: Invalid user griffin from 117.89.70.250 port 34630
...

2020-07-04 14:57:11

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.89.70.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47812
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;117.89.70.139.			IN	A

;; AUTHORITY SECTION:
.			281	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 22:56:20 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 139.70.89.117.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 139.70.89.117.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
45.129.36.173	attack	Sep 2 08:08:02 kh-dev-server sshd[8109]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.129.36.173 ...	2020-09-03 03:57:12
181.214.91.140	attackspambots	TCP (SYN) 181.214.91.140:48831 -> port 11211, len 44	2020-09-03 03:43:56
188.104.127.15	attack	Automatic report - Port Scan Attack	2020-09-03 04:08:03
223.220.168.22	attackbots	Unauthorized connection attempt detected from IP address 223.220.168.22 to port 1433 [T]	2020-09-03 03:35:39
62.173.139.193	attackspambots	[2020-09-01 16:16:59] NOTICE[1185][C-000098a6] chan_sip.c: Call from '' (62.173.139.193:50179) to extension '0100501114234051349' rejected because extension not found in context 'public'. [2020-09-01 16:16:59] SECURITY[1203] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-09-01T16:16:59.004-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="0100501114234051349",SessionID="0x7f10c4abec28",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.173.139.193/50179",ACLName="no_extension_match" [2020-09-01 16:18:24] NOTICE[1185][C-000098a8] chan_sip.c: Call from '' (62.173.139.193:60127) to extension '0100601114234051349' rejected because extension not found in context 'public'. [2020-09-01 16:18:24] SECURITY[1203] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-09-01T16:18:24.843-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="0100601114234051349",SessionID="0x7f10c4539a48",LocalAddress="IPV4/UDP/192.168.244.6/5060",Remot ...	2020-09-03 03:56:25
178.19.166.228	attack	TCP (SYN) 178.19.166.228:47969 -> port 7547, len 44	2020-09-03 04:12:21
118.24.104.55	attackbots	Sep 2 00:42:35 ns382633 sshd\[9640\]: Invalid user dac from 118.24.104.55 port 32994 Sep 2 00:42:35 ns382633 sshd\[9640\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.104.55 Sep 2 00:42:36 ns382633 sshd\[9640\]: Failed password for invalid user dac from 118.24.104.55 port 32994 ssh2 Sep 2 00:56:11 ns382633 sshd\[12079\]: Invalid user gmodserver from 118.24.104.55 port 54144 Sep 2 00:56:11 ns382633 sshd\[12079\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.104.55	2020-09-03 03:48:01
103.119.140.195	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-03 03:55:36
198.27.81.188	attack	198.27.81.188 - - [02/Sep/2020:20:23:13 +0100] "POST /wp-login.php HTTP/1.1" 200 5249 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 198.27.81.188 - - [02/Sep/2020:20:23:32 +0100] "POST /wp-login.php HTTP/1.1" 200 6639 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 198.27.81.188 - - [02/Sep/2020:20:26:17 +0100] "POST /wp-login.php HTTP/1.1" 200 5249 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" ...	2020-09-03 03:42:17
188.162.185.178	attack	Port Scan detected! ...	2020-09-03 03:39:36
103.65.183.52	attackbots	Fail2Ban Ban Triggered	2020-09-03 03:55:51
92.63.196.6	attackbots	[MK-Root1] Blocked by UFW	2020-09-03 03:37:38
192.232.253.241	attack	192.232.253.241 - - \[02/Sep/2020:20:18:15 +0200\] "POST /wp-login.php HTTP/1.0" 200 9887 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 192.232.253.241 - - \[02/Sep/2020:20:18:17 +0200\] "POST /wp-login.php HTTP/1.0" 200 9895 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 192.232.253.241 - - \[02/Sep/2020:20:18:19 +0200\] "POST /wp-login.php HTTP/1.0" 200 9883 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-09-03 03:54:47
180.124.4.48	attackbotsspam	spam (f2b h1)	2020-09-03 03:41:53
45.92.126.90	attackbots	Fail2Ban Ban Triggered	2020-09-03 04:05:09

最近上报的IP列表

117.89.70.13	117.89.70.156	117.89.70.187	117.89.70.197
117.89.70.190	117.89.70.243	114.233.38.136	117.89.70.7
117.89.70.57	117.89.70.96	117.89.70.217	117.89.71.11
117.89.70.252	114.233.4.186	114.233.4.213	114.233.4.76
114.233.48.9	114.233.49.103	114.233.49.109	114.233.49.110