118.114.201.119

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 118.114.201.119
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35041
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;118.114.201.119.		IN	A

;; AUTHORITY SECTION:
.			323	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110100 1800 900 604800 86400

;; Query time: 95 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 01 16:17:13 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 119.201.114.118.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 119.201.114.118.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
119.45.12.105	attack	Invalid user git from 119.45.12.105 port 40806	2020-08-21 17:57:51
219.131.193.180	attack	Aug 21 11:40:03 hidden sshd[25202]: Invalid user web from 219.131.193.180 port 2186 Aug 21 11:40:03 hidden sshd[25202]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.131.193.180 Aug 21 11:40:05 hidden sshd[25202]: Failed password for invalid user web from 219.131.193.180 port 2186 ssh2	2020-08-21 17:48:51
162.142.125.13	attackspam	ET SCAN Suspicious inbound to Oracle SQL port 1521 - port: 1521 proto: tcp cat: Potentially Bad Trafficbytes: 60	2020-08-21 17:54:34
178.62.238.152	attackbotsspam	Aug 21 02:56:13 vm1 sshd[8052]: Did not receive identification string from 178.62.238.152 port 38122 Aug 21 02:56:22 vm1 sshd[8053]: Received disconnect from 178.62.238.152 port 44138:11: Normal Shutdown, Thank you for playing [preauth] Aug 21 02:56:22 vm1 sshd[8053]: Disconnected from 178.62.238.152 port 44138 [preauth] Aug 21 02:56:35 vm1 sshd[8055]: Invalid user oracle from 178.62.238.152 port 43878 Aug 21 02:56:35 vm1 sshd[8055]: Received disconnect from 178.62.238.152 port 43878:11: Normal Shutdown, Thank you for playing [preauth] Aug 21 02:56:35 vm1 sshd[8055]: Disconnected from 178.62.238.152 port 43878 [preauth] Aug 21 02:56:48 vm1 sshd[8057]: Received disconnect from 178.62.238.152 port 43336:11: Normal Shutdown, Thank you for playing [preauth] Aug 21 02:56:48 vm1 sshd[8057]: Disconnected from 178.62.238.152 port 43336 [preauth] Aug 21 02:57:02 vm1 sshd[8059]: Invalid user postgres from 178.62.238.152 port 43036 Aug 21 02:57:02 vm1 sshd[8059]: Received disconne........ -------------------------------	2020-08-21 18:08:33
160.153.154.4	attackbotsspam	Automatic report - XMLRPC Attack	2020-08-21 18:16:46
124.170.167.240	attackbotsspam	2020-08-20 UTC: (65x) - admin(5x),alexis,anton,ars,backup,bhd,charlie,david,df,dixie,gw,halley,homer,idc,jamie,jesse,joomla,jorge,le,lyn,omar,otavio,peu01,plasma,postgres,pyy,rdf,root(13x),sakai,seafile,shane,simone,spark,summer,sysop,teamspeak3-user,teaspeak,ter,test(2x),tim,ts,user,user1,vss,wilson,xerox,xu,yarn	2020-08-21 18:11:38
121.29.82.55	attack	Telnet Honeypot -> Telnet Bruteforce / Login	2020-08-21 18:12:10
192.95.30.59	attackspam	192.95.30.59 - - [21/Aug/2020:10:41:19 +0100] "POST /wp-login.php HTTP/1.1" 200 6139 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 192.95.30.59 - - [21/Aug/2020:10:43:11 +0100] "POST /wp-login.php HTTP/1.1" 200 6139 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 192.95.30.59 - - [21/Aug/2020:10:46:40 +0100] "POST /wp-login.php HTTP/1.1" 200 6139 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" ...	2020-08-21 18:06:42
149.202.160.188	attackspambots	Aug 21 08:58:22 pornomens sshd\[17709\]: Invalid user ubuntu from 149.202.160.188 port 40526 Aug 21 08:58:22 pornomens sshd\[17709\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.160.188 Aug 21 08:58:25 pornomens sshd\[17709\]: Failed password for invalid user ubuntu from 149.202.160.188 port 40526 ssh2 ...	2020-08-21 17:48:22
114.67.105.7	attack	Aug 21 09:02:15 db sshd[12379]: User root from 114.67.105.7 not allowed because none of user's groups are listed in AllowGroups ...	2020-08-21 18:17:03
128.199.158.12	attack	Aug 20 23:51:59 web1 sshd\[11072\]: Invalid user git from 128.199.158.12 Aug 20 23:51:59 web1 sshd\[11072\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.158.12 Aug 20 23:52:01 web1 sshd\[11072\]: Failed password for invalid user git from 128.199.158.12 port 51254 ssh2 Aug 20 23:59:22 web1 sshd\[11719\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.158.12 user=root Aug 20 23:59:24 web1 sshd\[11719\]: Failed password for root from 128.199.158.12 port 58830 ssh2	2020-08-21 18:02:48
117.92.214.63	attackspam	Fail2Ban Ban Triggered HTTP SQL Injection Attempt	2020-08-21 18:14:21
107.179.13.141	attack	Aug 21 07:44:01 *** sshd[14360]: User root from 107.179.13.141 not allowed because not listed in AllowUsers	2020-08-21 17:47:32
105.107.143.18	attackbotsspam	105.107.143.18 - - [21/Aug/2020:04:51:30 +0100] "POST /wp-login.php HTTP/1.1" 200 1874 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 105.107.143.18 - - [21/Aug/2020:04:51:33 +0100] "POST /wp-login.php HTTP/1.1" 200 1877 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 105.107.143.18 - - [21/Aug/2020:04:51:35 +0100] "POST /wp-login.php HTTP/1.1" 200 1874 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-21 18:18:09
59.125.248.139	attackbots	(imapd) Failed IMAP login from 59.125.248.139 (TW/Taiwan/59-125-248-139.HINET-IP.hinet.net): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Aug 21 08:22:23 ir1 dovecot[3110802]: imap-login: Disconnected (auth failed, 1 attempts in 6 secs): user=, method=PLAIN, rip=59.125.248.139, lip=5.63.12.44, session=	2020-08-21 17:39:04

最近上报的IP列表

5.244.239.81	203.84.30.198	117.99.209.197	120.249.103.228
209.245.241.248	170.47.102.73	100.67.86.17	189.35.127.26
75.56.107.10	62.145.254.105	114.32.157.11	58.91.182.1
253.69.50.41	197.80.115.4	4.33.231.115	86.12.208.235
69.26.102.141	9.166.66.204	155.102.64.71	171.100.23.253