117.91.131.242

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
117.91.131.23	spamattack	[2020/03/09 06:00:07] [117.91.131.23:2103-0] User luxnet@luxnetcorp.com.tw AUTH fails. [2020/03/09 06:00:07] [117.91.131.23:2100-0] User luxnet@luxnetcorp.com.tw AUTH fails. [2020/03/09 06:00:07] [117.91.131.23:2101-0] User luxnet@luxnetcorp.com.tw AUTH fails. [2020/03/09 06:00:08] [117.91.131.23:2104-0] User luxnet@luxnetcorp.com.tw AUTH fails. [2020/03/09 06:00:08] [117.91.131.23:2098-0] User luxnet@luxnetcorp.com.tw AUTH fails. [2020/03/09 06:00:08] [117.91.131.23:2105-0] User luxnet@luxnetcorp.com.tw AUTH fails. [2020/03/09 06:00:09] [117.91.131.23:2099-0] User luxnet@luxnetcorp.com.tw AUTH fails. [2020/03/09 06:00:09] [117.91.131.23:2103-0] User luxnet@luxnetcorp.com.tw AUTH fails.	2020-03-09 08:59:47
117.91.131.119	attack	Oct 28 07:48:38 esmtp postfix/smtpd[19680]: lost connection after AUTH from unknown[117.91.131.119] Oct 28 07:48:40 esmtp postfix/smtpd[19680]: lost connection after AUTH from unknown[117.91.131.119] Oct 28 07:48:45 esmtp postfix/smtpd[19680]: lost connection after AUTH from unknown[117.91.131.119] Oct 28 07:48:48 esmtp postfix/smtpd[19680]: lost connection after AUTH from unknown[117.91.131.119] Oct 28 07:48:50 esmtp postfix/smtpd[19680]: lost connection after AUTH from unknown[117.91.131.119] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=117.91.131.119	2019-10-29 02:09:44
117.91.131.64	attack	SASL broute force	2019-10-27 05:08:47
117.91.131.50	attack	SASL broute force	2019-10-27 04:52:12
117.91.131.161	attack	Fail2Ban - SMTP Bruteforce Attempt	2019-10-26 05:32:25

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.91.131.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48632
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;117.91.131.242.			IN	A

;; AUTHORITY SECTION:
.			152	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022031101 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 12 05:18:35 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 242.131.91.117.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 242.131.91.117.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
111.199.76.11	attackbots	May 6 11:52:08 game-panel sshd[23161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.199.76.11 May 6 11:52:10 game-panel sshd[23161]: Failed password for invalid user bao from 111.199.76.11 port 56833 ssh2 May 6 12:02:08 game-panel sshd[23682]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.199.76.11	2020-05-06 20:45:10
103.54.101.111	attackspam	1588766549 - 05/06/2020 14:02:29 Host: 103.54.101.111/103.54.101.111 Port: 445 TCP Blocked	2020-05-06 20:25:51
58.210.140.214	attackspam	port scan and connect, tcp 1433 (ms-sql-s)	2020-05-06 20:36:23
45.125.44.107	attackbotsspam	May 6 14:02:35 melroy-server sshd[17872]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.125.44.107 May 6 14:02:37 melroy-server sshd[17872]: Failed password for invalid user abspladmin from 45.125.44.107 port 46856 ssh2 ...	2020-05-06 20:14:12
54.169.243.149	attackbots	HTTP 503 XSS Attempt	2020-05-06 20:28:43
180.150.187.159	attack	May 6 14:02:20 melroy-server sshd[17797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.150.187.159 May 6 14:02:22 melroy-server sshd[17797]: Failed password for invalid user cristiano from 180.150.187.159 port 60998 ssh2 ...	2020-05-06 20:32:55
186.4.184.218	attackbotsspam	May 6 14:02:36 vpn01 sshd[27542]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.4.184.218 May 6 14:02:38 vpn01 sshd[27542]: Failed password for invalid user dvr from 186.4.184.218 port 47334 ssh2 ...	2020-05-06 20:13:22
206.81.5.13	attackbots	trying to access non-authorized port	2020-05-06 20:41:49
198.245.53.163	attackbotsspam	SSH authentication failure x 6 reported by Fail2Ban ...	2020-05-06 20:38:16
49.232.152.36	attackbots	(sshd) Failed SSH login from 49.232.152.36 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 6 14:30:48 srv sshd[8025]: Invalid user milagros from 49.232.152.36 port 57276 May 6 14:30:49 srv sshd[8025]: Failed password for invalid user milagros from 49.232.152.36 port 57276 ssh2 May 6 14:51:56 srv sshd[8526]: Invalid user itsupport from 49.232.152.36 port 53696 May 6 14:51:58 srv sshd[8526]: Failed password for invalid user itsupport from 49.232.152.36 port 53696 ssh2 May 6 15:01:55 srv sshd[8758]: Invalid user rcj from 49.232.152.36 port 43068	2020-05-06 20:55:26
79.124.62.66	attack	Port scan: Attack repeated for 24 hours	2020-05-06 20:26:26
31.24.230.105	attackbotsspam	May 6 13:57:02 mail1 sshd[10522]: Invalid user fiona from 31.24.230.105 port 40338 May 6 13:57:02 mail1 sshd[10522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.24.230.105 May 6 13:57:04 mail1 sshd[10522]: Failed password for invalid user fiona from 31.24.230.105 port 40338 ssh2 May 6 13:57:04 mail1 sshd[10522]: Received disconnect from 31.24.230.105 port 40338:11: Bye Bye [preauth] May 6 13:57:04 mail1 sshd[10522]: Disconnected from 31.24.230.105 port 40338 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=31.24.230.105	2020-05-06 20:52:59
211.208.225.110	attackbotsspam	May 6 14:26:37 sip sshd[137104]: Invalid user ftpuser from 211.208.225.110 port 36644 May 6 14:26:39 sip sshd[137104]: Failed password for invalid user ftpuser from 211.208.225.110 port 36644 ssh2 May 6 14:31:32 sip sshd[137149]: Invalid user admin from 211.208.225.110 port 48228 ...	2020-05-06 20:33:50
122.51.21.208	attack	May 6 13:25:14 ns382633 sshd\[10438\]: Invalid user user3 from 122.51.21.208 port 37118 May 6 13:25:14 ns382633 sshd\[10438\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.21.208 May 6 13:25:16 ns382633 sshd\[10438\]: Failed password for invalid user user3 from 122.51.21.208 port 37118 ssh2 May 6 14:02:31 ns382633 sshd\[17526\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.21.208 user=root May 6 14:02:33 ns382633 sshd\[17526\]: Failed password for root from 122.51.21.208 port 56680 ssh2	2020-05-06 20:18:14
35.184.181.227	attack	HTTP 503 XSS Attempt	2020-05-06 20:34:55

Recently Reported IPs

117.91.131.240	117.91.131.244	117.91.131.247	117.91.131.42
117.91.132.169	117.91.132.43	117.91.133.133	117.91.138.223
117.91.163.10	117.91.164.59	117.91.164.81	117.91.198.94
117.91.232.101	117.91.232.25	117.91.232.252	117.91.232.27
117.91.232.28	117.91.232.3	34.74.219.249	117.91.232.30