91.107.117.1 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Russian Federation

运营商(isp): Quasar LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	[portscan] Port scan	2019-11-18 13:48:08

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 91.107.117.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49280
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;91.107.117.1.			IN	A

;; AUTHORITY SECTION:
.			411	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111701 1800 900 604800 86400

;; Query time: 80 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 18 13:48:04 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

1.117.107.91.in-addr.arpa domain name pointer r1.trkgurzuf.ru.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
1.117.107.91.in-addr.arpa	name = r1.trkgurzuf.ru.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
92.62.131.106	attackbots	Port scan: Attack repeated for 24 hours	2020-07-10 05:26:00
218.92.0.248	attack	Failed password for invalid user from 218.92.0.248 port 3015 ssh2	2020-07-10 05:11:16
193.112.98.79	attackbotsspam	Jul 9 22:20:57 sso sshd[28507]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.98.79 Jul 9 22:21:00 sso sshd[28507]: Failed password for invalid user royli from 193.112.98.79 port 15926 ssh2 ...	2020-07-10 05:06:20
222.186.42.136	attack	Jul 9 17:12:57 NPSTNNYC01T sshd[2632]: Failed password for root from 222.186.42.136 port 54847 ssh2 Jul 9 17:12:59 NPSTNNYC01T sshd[2632]: Failed password for root from 222.186.42.136 port 54847 ssh2 Jul 9 17:13:02 NPSTNNYC01T sshd[2632]: Failed password for root from 222.186.42.136 port 54847 ssh2 ...	2020-07-10 05:19:33
117.3.185.16	attackbots	Jul 9 22:21:09 debian-2gb-nbg1-2 kernel: \[16584661.712728\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=117.3.185.16 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=43 ID=26701 PROTO=TCP SPT=33649 DPT=85 WINDOW=37217 RES=0x00 SYN URGP=0	2020-07-10 04:57:33
106.124.142.30	attackbots	Jul 9 22:21:01 srv sshd[1488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.142.30	2020-07-10 05:05:45
46.38.145.247	attackbotsspam	2020-07-09 21:21:59 auth_plain authenticator failed for (User) [46.38.145.247]: 535 Incorrect authentication data (set_id=pyo@csmailer.org) 2020-07-09 21:22:22 auth_plain authenticator failed for (User) [46.38.145.247]: 535 Incorrect authentication data (set_id=deletefolder@csmailer.org) 2020-07-09 21:22:46 auth_plain authenticator failed for (User) [46.38.145.247]: 535 Incorrect authentication data (set_id=nd@csmailer.org) 2020-07-09 21:23:08 auth_plain authenticator failed for (User) [46.38.145.247]: 535 Incorrect authentication data (set_id=ufa@csmailer.org) 2020-07-09 21:23:31 auth_plain authenticator failed for (User) [46.38.145.247]: 535 Incorrect authentication data (set_id=three@csmailer.org) ...	2020-07-10 05:22:14
107.170.254.146	attackbotsspam	Jul 9 22:43:46 PorscheCustomer sshd[13766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.254.146 Jul 9 22:43:48 PorscheCustomer sshd[13766]: Failed password for invalid user builder from 107.170.254.146 port 51794 ssh2 Jul 9 22:45:52 PorscheCustomer sshd[13834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.254.146 ...	2020-07-10 05:00:00
68.183.156.109	attack	Brute force attempt	2020-07-10 04:58:52
80.82.65.90	attackbotsspam	ET CINS Active Threat Intelligence Poor Reputation IP group 70 - port: 53 proto: UDP cat: Misc Attack	2020-07-10 05:24:15
117.157.227.210	attack	SSH fail RA	2020-07-10 05:11:59
212.129.147.181	attackbots	Jul 9 22:31:37 h2779839 sshd[9018]: Invalid user liana from 212.129.147.181 port 14089 Jul 9 22:31:37 h2779839 sshd[9018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.147.181 Jul 9 22:31:37 h2779839 sshd[9018]: Invalid user liana from 212.129.147.181 port 14089 Jul 9 22:31:38 h2779839 sshd[9018]: Failed password for invalid user liana from 212.129.147.181 port 14089 ssh2 Jul 9 22:34:20 h2779839 sshd[9076]: Invalid user shuyaosong from 212.129.147.181 port 59059 Jul 9 22:34:20 h2779839 sshd[9076]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.147.181 Jul 9 22:34:20 h2779839 sshd[9076]: Invalid user shuyaosong from 212.129.147.181 port 59059 Jul 9 22:34:23 h2779839 sshd[9076]: Failed password for invalid user shuyaosong from 212.129.147.181 port 59059 ssh2 Jul 9 22:37:04 h2779839 sshd[9126]: Invalid user user from 212.129.147.181 port 40054 ...	2020-07-10 05:03:13
178.128.61.101	attackbotsspam	2020-07-10T03:15:36.929540billing sshd[22801]: Invalid user nomazulu from 178.128.61.101 port 34748 2020-07-10T03:15:38.644065billing sshd[22801]: Failed password for invalid user nomazulu from 178.128.61.101 port 34748 ssh2 2020-07-10T03:20:38.340144billing sshd[30891]: Invalid user leen from 178.128.61.101 port 34488 ...	2020-07-10 05:25:10
119.29.195.187	attack	Brute-force attempt banned	2020-07-10 05:17:01
118.100.176.138	attackbotsspam	Jul 9 22:11:55 nbi-636 sshd[26912]: Bad protocol version identification '' from 118.100.176.138 port 39133 Jul 9 22:11:57 nbi-636 sshd[26922]: Invalid user pi from 118.100.176.138 port 39299 Jul 9 22:11:57 nbi-636 sshd[26922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.100.176.138 Jul 9 22:11:58 nbi-636 sshd[26922]: Failed password for invalid user pi from 118.100.176.138 port 39299 ssh2 Jul 9 22:11:59 nbi-636 sshd[26922]: Connection closed by invalid user pi 118.100.176.138 port 39299 [preauth] Jul 9 22:12:01 nbi-636 sshd[26944]: Invalid user pi from 118.100.176.138 port 40297 Jul 9 22:12:01 nbi-636 sshd[26944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.100.176.138 Jul 9 22:12:03 nbi-636 sshd[26944]: Failed password for invalid user pi from 118.100.176.138 port 40297 ssh2 Jul 9 22:12:03 nbi-636 sshd[26944]: Connection closed by invalid user pi 118.100.176.138 p........ -------------------------------	2020-07-10 04:53:07

最近上报的IP列表

113.224.94.168	88.133.35.38	86.200.244.194	63.88.23.220
188.216.25.93	118.68.252.208	125.161.130.160	218.78.63.144
171.240.240.239	114.47.66.241	177.207.2.87	39.152.57.253
157.119.29.20	150.136.201.200	184.75.211.130	182.176.168.91
44.150.69.15	47.153.57.13	192.99.3.173	54.238.158.165