111.20.116.166

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Mobile Communications Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	firewall-block, port(s): 1433/tcp	2020-02-29 02:35:53
attack	Unauthorized connection attempt detected from IP address 111.20.116.166 to port 1433 [T]	2020-01-27 05:12:53
attack	Unauthorized connection attempt detected from IP address 111.20.116.166 to port 1433 [T]	2020-01-20 08:57:59
attack	Portscan or hack attempt detected by psad/fwsnort	2020-01-18 00:29:10
attackbotsspam	Unauthorized connection attempt detected from IP address 111.20.116.166 to port 1433 [J]	2020-01-06 13:24:43
attackspam	Fail2Ban Ban Triggered	2019-11-15 01:48:32
attackspambots	firewall-block, port(s): 1433/tcp	2019-10-31 17:00:13

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 111.20.116.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26664
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;111.20.116.166.			IN	A

;; AUTHORITY SECTION:
.			345	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019103100 1800 900 604800 86400

;; Query time: 461 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 31 17:00:08 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 166.116.20.111.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 166.116.20.111.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
85.163.230.163	attackspambots	Aug 15 16:43:12 aat-srv002 sshd[28408]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.163.230.163 Aug 15 16:43:14 aat-srv002 sshd[28408]: Failed password for invalid user replicator from 85.163.230.163 port 36918 ssh2 Aug 15 16:47:42 aat-srv002 sshd[28503]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.163.230.163 Aug 15 16:47:45 aat-srv002 sshd[28503]: Failed password for invalid user nano from 85.163.230.163 port 33197 ssh2 ...	2019-08-16 06:39:52
199.195.251.227	attackspam	SSH authentication failure x 6 reported by Fail2Ban ...	2019-08-16 06:56:22
203.99.57.115	attackbots	Aug 15 23:41:39 mail sshd\[17085\]: Failed password for invalid user suo from 203.99.57.115 port 35213 ssh2 Aug 15 23:57:43 mail sshd\[17506\]: Invalid user serv from 203.99.57.115 port 12122 Aug 15 23:57:43 mail sshd\[17506\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.99.57.115 ...	2019-08-16 07:12:37
201.211.153.58	attackspam	445/tcp [2019-08-15]1pkt	2019-08-16 06:41:17
5.249.149.174	attackspambots	Aug 16 00:34:14 ubuntu-2gb-nbg1-dc3-1 sshd[17896]: Failed password for root from 5.249.149.174 port 60574 ssh2 Aug 16 00:38:30 ubuntu-2gb-nbg1-dc3-1 sshd[18219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.249.149.174 ...	2019-08-16 06:53:23
128.199.138.31	attackbotsspam	Aug 16 00:24:41 ArkNodeAT sshd\[2773\]: Invalid user steven from 128.199.138.31 Aug 16 00:24:41 ArkNodeAT sshd\[2773\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.138.31 Aug 16 00:24:42 ArkNodeAT sshd\[2773\]: Failed password for invalid user steven from 128.199.138.31 port 49240 ssh2	2019-08-16 06:54:28
45.236.188.4	attackspam	Aug 16 00:29:56 root sshd[9425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.236.188.4 Aug 16 00:29:58 root sshd[9425]: Failed password for invalid user Adm from 45.236.188.4 port 49218 ssh2 Aug 16 00:35:15 root sshd[9479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.236.188.4 ...	2019-08-16 07:07:25
178.128.109.231	attackbotsspam	Aug 15 19:57:32 GIZ-Server-02 sshd[4231]: Invalid user farmacia from 178.128.109.231 Aug 15 19:57:32 GIZ-Server-02 sshd[4231]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.109.231 Aug 15 19:57:33 GIZ-Server-02 sshd[4231]: Failed password for invalid user farmacia from 178.128.109.231 port 58588 ssh2 Aug 15 19:57:34 GIZ-Server-02 sshd[4231]: Received disconnect from 178.128.109.231: 11: Bye Bye [preauth] Aug 15 20:06:03 GIZ-Server-02 sshd[5390]: Invalid user mailing-list from 178.128.109.231 Aug 15 20:06:03 GIZ-Server-02 sshd[5390]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.109.231 Aug 15 20:06:05 GIZ-Server-02 sshd[5390]: Failed password for invalid user mailing-list from 178.128.109.231 port 51148 ssh2 Aug 15 20:06:05 GIZ-Server-02 sshd[5390]: Received disconnect from 178.128.109.231: 11: Bye Bye [preauth] Aug 15 20:11:18 GIZ-Server-02 sshd[6510]: Invalid user nag........ -------------------------------	2019-08-16 06:35:17
84.120.41.118	attackbotsspam	Aug 15 15:17:54 cac1d2 sshd\[24273\]: Invalid user esbee from 84.120.41.118 port 60129 Aug 15 15:17:54 cac1d2 sshd\[24273\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.120.41.118 Aug 15 15:17:56 cac1d2 sshd\[24273\]: Failed password for invalid user esbee from 84.120.41.118 port 60129 ssh2 ...	2019-08-16 06:46:31
222.139.84.176	attack	Aug 15 22:09:27 online-web-vs-1 sshd[5713]: reveeclipse mapping checking getaddrinfo for hn.kd.ny.adsl [222.139.84.176] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 15 22:09:27 online-web-vs-1 sshd[5713]: Invalid user service from 222.139.84.176 Aug 15 22:09:27 online-web-vs-1 sshd[5713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.139.84.176 Aug 15 22:09:29 online-web-vs-1 sshd[5713]: Failed password for invalid user service from 222.139.84.176 port 54501 ssh2 Aug 15 22:09:31 online-web-vs-1 sshd[5713]: Failed password for invalid user service from 222.139.84.176 port 54501 ssh2 Aug 15 22:09:34 online-web-vs-1 sshd[5713]: Failed password for invalid user service from 222.139.84.176 port 54501 ssh2 Aug 15 22:09:36 online-web-vs-1 sshd[5713]: Failed password for invalid user service from 222.139.84.176 port 54501 ssh2 Aug 15 22:09:39 online-web-vs-1 sshd[5713]: Failed password for invalid user service from 222.139.84.176 port 5........ -------------------------------	2019-08-16 06:30:53
114.67.70.94	attack	SSH-BruteForce	2019-08-16 06:57:57
106.12.49.244	attackspambots	Aug 15 12:52:47 friendsofhawaii sshd\[15686\]: Invalid user cod2 from 106.12.49.244 Aug 15 12:52:47 friendsofhawaii sshd\[15686\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244 Aug 15 12:52:49 friendsofhawaii sshd\[15686\]: Failed password for invalid user cod2 from 106.12.49.244 port 46556 ssh2 Aug 15 12:58:14 friendsofhawaii sshd\[16132\]: Invalid user password from 106.12.49.244 Aug 15 12:58:14 friendsofhawaii sshd\[16132\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.49.244	2019-08-16 07:03:34
94.102.56.235	attack	Aug 16 00:33:15 h2177944 kernel: \[4232107.052998\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=94.102.56.235 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=30150 PROTO=TCP SPT=50122 DPT=1116 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 16 00:33:45 h2177944 kernel: \[4232137.084253\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=94.102.56.235 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=40776 PROTO=TCP SPT=50139 DPT=1352 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 16 00:34:27 h2177944 kernel: \[4232178.741197\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=94.102.56.235 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=59923 PROTO=TCP SPT=50122 DPT=1162 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 16 00:40:01 h2177944 kernel: \[4232512.931541\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=94.102.56.235 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=60768 PROTO=TCP SPT=50190 DPT=1818 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 16 00:52:33 h2177944 kernel: \[4233264.039560\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=94.102.56.235 DST=85.214.117.9	2019-08-16 07:13:54
121.141.5.199	attack	Aug 15 22:21:56 MK-Soft-VM6 sshd\[24595\]: Invalid user candice from 121.141.5.199 port 39448 Aug 15 22:21:56 MK-Soft-VM6 sshd\[24595\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.141.5.199 Aug 15 22:21:58 MK-Soft-VM6 sshd\[24595\]: Failed password for invalid user candice from 121.141.5.199 port 39448 ssh2 ...	2019-08-16 06:58:21
138.0.7.243	attackspambots	port scan and connect, tcp 22 (ssh)	2019-08-16 06:30:37

最近上报的IP列表

3.50.111.85	84.27.57.143	15.110.175.217	24.24.162.166
110.170.220.205	125.232.142.201	71.214.243.156	50.72.155.48
140.49.32.15	83.192.18.43	31.202.247.216	42.235.144.123
68.160.190.14	65.211.12.117	90.57.215.143	248.105.249.242
24.254.145.217	173.118.235.198	228.246.245.40	179.220.209.43