117.11.155.132

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom Tianjin Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 117.11.155.132 to port 1433 [T]	2020-01-07 00:43:04

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.11.155.132
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60454
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.11.155.132.			IN	A

;; AUTHORITY SECTION:
.			526	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010600 1800 900 604800 86400

;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 07 00:42:59 CST 2020
;; MSG SIZE  rcvd: 118

Host info

132.155.11.117.in-addr.arpa domain name pointer dns132.online.tj.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
132.155.11.117.in-addr.arpa	name = dns132.online.tj.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
89.40.143.240	attack	Jun 3 18:43:14 debian kernel: [101559.124663] [UFW BLOCK] IN=eth0 OUT= MAC=52:54:00:be:e4:65:08:e8:4f:6e:48:0c:08:00 SRC=89.40.143.240 DST=89.252.131.35 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=35064 PROTO=TCP SPT=57572 DPT=4313 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-04 00:04:10
97.74.24.45	attack	Automatic report - XMLRPC Attack	2020-06-04 00:11:37
125.124.254.31	attackbotsspam	Jun 3 07:50:38 NPSTNNYC01T sshd[14894]: Failed password for root from 125.124.254.31 port 56992 ssh2 Jun 3 07:51:23 NPSTNNYC01T sshd[14953]: Failed password for root from 125.124.254.31 port 36352 ssh2 ...	2020-06-04 00:22:29
14.142.143.138	attack	Jun 3 12:01:57 NPSTNNYC01T sshd[11267]: Failed password for root from 14.142.143.138 port 55840 ssh2 Jun 3 12:06:05 NPSTNNYC01T sshd[11603]: Failed password for root from 14.142.143.138 port 47886 ssh2 ...	2020-06-04 00:23:52
157.34.111.215	attack	Port probing on unauthorized port 445	2020-06-04 00:32:31
221.194.137.28	attack	2020-06-03T05:52:39.339984linuxbox-skyline sshd[108208]: Invalid user shipping\r from 221.194.137.28 port 38436 ...	2020-06-04 00:01:25
159.146.95.198	attackspam	Automatic report - Port Scan Attack	2020-06-04 00:05:36
137.74.119.128	attack	Jun 3 16:52:18 gw1 sshd[17807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.119.128 Jun 3 16:52:20 gw1 sshd[17807]: Failed password for invalid user coco from 137.74.119.128 port 48466 ssh2 ...	2020-06-04 00:15:10
183.45.88.211	attack	Jun 3 14:30:45 host proftpd[13415]: 0.0.0.0 (183.45.88.211[183.45.88.211]) - USER anonymous: no such user found from 183.45.88.211 [183.45.88.211] to 163.172.107.87:21 ...	2020-06-04 00:01:53
92.170.38.177	attack	Jun 3 16:15:02 legacy sshd[16857]: Failed password for root from 92.170.38.177 port 46722 ssh2 Jun 3 16:18:45 legacy sshd[16953]: Failed password for root from 92.170.38.177 port 52228 ssh2 ...	2020-06-04 00:36:40
39.41.104.21	attackspam	Automatic report - XMLRPC Attack	2020-06-04 00:35:54
93.179.118.218	attackbots	Jun 3 17:27:54 mail sshd\[15907\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.179.118.218 user=root Jun 3 17:27:56 mail sshd\[15907\]: Failed password for root from 93.179.118.218 port 33536 ssh2 Jun 3 17:34:48 mail sshd\[16153\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.179.118.218 user=root ...	2020-06-04 00:00:40
43.227.67.213	attack	Jun 3 13:43:33 eventyay sshd[16568]: Failed password for root from 43.227.67.213 port 52668 ssh2 Jun 3 13:48:07 eventyay sshd[16729]: Failed password for root from 43.227.67.213 port 46878 ssh2 ...	2020-06-03 23:58:08
223.194.43.27	attack	TCP (SYN) 223.194.43.27:41895 -> port 27560, len 44	2020-06-04 00:34:24
111.93.71.219	attackspam	Jun 3 14:51:37 hosting sshd[26127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.71.219 user=root Jun 3 14:51:39 hosting sshd[26127]: Failed password for root from 111.93.71.219 port 56221 ssh2 ...	2020-06-04 00:39:56

Recently Reported IPs

49.68.226.192	49.35.201.133	42.119.124.3	42.117.251.229
23.31.157.174	1.198.7.61	1.53.116.161	222.185.118.94
217.150.77.109	192.253.224.194	122.63.202.65	183.80.142.157
2.77.41.152	180.116.198.103	244.187.188.150	171.103.53.178
2.237.220.187	112.15.1.125	141.195.36.113	150.130.155.182