111.20.116.166

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Mobile Communications Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	firewall-block, port(s): 1433/tcp	2020-02-29 02:35:53
attack	Unauthorized connection attempt detected from IP address 111.20.116.166 to port 1433 [T]	2020-01-27 05:12:53
attack	Unauthorized connection attempt detected from IP address 111.20.116.166 to port 1433 [T]	2020-01-20 08:57:59
attack	Portscan or hack attempt detected by psad/fwsnort	2020-01-18 00:29:10
attackbotsspam	Unauthorized connection attempt detected from IP address 111.20.116.166 to port 1433 [J]	2020-01-06 13:24:43
attackspam	Fail2Ban Ban Triggered	2019-11-15 01:48:32
attackspambots	firewall-block, port(s): 1433/tcp	2019-10-31 17:00:13

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 111.20.116.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26664
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;111.20.116.166.			IN	A

;; AUTHORITY SECTION:
.			345	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019103100 1800 900 604800 86400

;; Query time: 461 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 31 17:00:08 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 166.116.20.111.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 166.116.20.111.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
209.107.204.248	attackspambots	Port Scan detected! ...	2020-06-21 13:26:20
212.70.149.82	attackspam	Jun 21 06:58:18 mail postfix/smtpd\[30487\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 21 07:28:34 mail postfix/smtpd\[31548\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 21 07:29:06 mail postfix/smtpd\[31548\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jun 21 07:29:37 mail postfix/smtpd\[30487\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2020-06-21 13:36:32
134.209.252.17	attackbots	Invalid user linux from 134.209.252.17 port 35018	2020-06-21 13:14:56
122.114.189.58	attack	Jun 21 06:57:37 piServer sshd[28824]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.114.189.58 Jun 21 06:57:39 piServer sshd[28824]: Failed password for invalid user user3 from 122.114.189.58 port 40206 ssh2 Jun 21 07:01:20 piServer sshd[29087]: Failed password for root from 122.114.189.58 port 33226 ssh2 ...	2020-06-21 13:15:22
140.143.57.195	attackbots	Jun 21 07:30:05 [host] sshd[8108]: Invalid user te Jun 21 07:30:05 [host] sshd[8108]: pam_unix(sshd:a Jun 21 07:30:07 [host] sshd[8108]: Failed password	2020-06-21 13:36:58
106.13.232.193	attackspam	Jun 21 10:36:03 dhoomketu sshd[926849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.232.193 Jun 21 10:36:03 dhoomketu sshd[926849]: Invalid user board from 106.13.232.193 port 43916 Jun 21 10:36:05 dhoomketu sshd[926849]: Failed password for invalid user board from 106.13.232.193 port 43916 ssh2 Jun 21 10:39:19 dhoomketu sshd[926974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.232.193 user=root Jun 21 10:39:20 dhoomketu sshd[926974]: Failed password for root from 106.13.232.193 port 57846 ssh2 ...	2020-06-21 13:33:34
94.28.101.166	attackbots	Invalid user alice from 94.28.101.166 port 37182	2020-06-21 13:12:51
185.143.75.153	attackspambots	2020-06-20T23:20:28.078225linuxbox-skyline auth[50513]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=ns2a rhost=185.143.75.153 ...	2020-06-21 13:20:42
14.165.46.3	attackbotsspam	Jun2105:45:05server6pure-ftpd:\(\?@14.165.46.3\)[WARNING]Authenticationfailedforuser[data]Jun2105:57:10server6pure-ftpd:\(\?@14.165.46.3\)[WARNING]Authenticationfailedforuser[ftp]Jun2105:57:14server6pure-ftpd:\(\?@14.165.46.3\)[WARNING]Authenticationfailedforuser[ftp]Jun2105:57:19server6pure-ftpd:\(\?@14.165.46.3\)[WARNING]Authenticationfailedforuser[ftp]Jun2105:57:23server6pure-ftpd:\(\?@14.165.46.3\)[WARNING]Authenticationfailedforuser[ftp]Jun2105:57:29server6pure-ftpd:\(\?@14.165.46.3\)[WARNING]Authenticationfailedforuser[ftp]Jun2105:57:33server6pure-ftpd:\(\?@14.165.46.3\)[WARNING]Authenticationfailedforuser[administrator]Jun2105:57:39server6pure-ftpd:\(\?@14.165.46.3\)[WARNING]Authenticationfailedforuser[administrator]Jun2105:57:44server6pure-ftpd:\(\?@14.165.46.3\)[WARNING]Authenticationfailedforuser[administrator]Jun2105:57:49server6pure-ftpd:\(\?@14.165.46.3\)[WARNING]Authenticationfailedforuser[administrator]	2020-06-21 13:38:25
159.89.162.203	attackbotsspam	Invalid user admin from 159.89.162.203 port 3616	2020-06-21 13:09:10
138.99.6.184	attackspam	Jun 21 06:51:41 srv-ubuntu-dev3 sshd[47158]: Invalid user sftptest from 138.99.6.184 Jun 21 06:51:41 srv-ubuntu-dev3 sshd[47158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.6.184 Jun 21 06:51:41 srv-ubuntu-dev3 sshd[47158]: Invalid user sftptest from 138.99.6.184 Jun 21 06:51:43 srv-ubuntu-dev3 sshd[47158]: Failed password for invalid user sftptest from 138.99.6.184 port 34372 ssh2 Jun 21 06:55:42 srv-ubuntu-dev3 sshd[47864]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.6.184 user=root Jun 21 06:55:44 srv-ubuntu-dev3 sshd[47864]: Failed password for root from 138.99.6.184 port 34234 ssh2 Jun 21 06:59:39 srv-ubuntu-dev3 sshd[48460]: Invalid user cdr from 138.99.6.184 Jun 21 06:59:39 srv-ubuntu-dev3 sshd[48460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.6.184 Jun 21 06:59:39 srv-ubuntu-dev3 sshd[48460]: Invalid user cdr from 138.99.6. ...	2020-06-21 13:11:00
85.185.67.215	attackbotsspam	Jun 21 05:58:30 SRV001 postfix/smtpd[3099]: NOQUEUE: reject: RCPT from unknown[85.185.67.215]: 504 5.5.2 : Helo command rejected: need fully-qualified hostname; from= to= proto=ESMTP helo= ...	2020-06-21 13:02:00
202.102.95.4	attackbots	Brute forcing RDP port 3389	2020-06-21 13:03:56
86.60.245.140	attackbotsspam	Jun 21 07:17:30 ns382633 sshd\[11322\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.60.245.140 user=root Jun 21 07:17:32 ns382633 sshd\[11322\]: Failed password for root from 86.60.245.140 port 44390 ssh2 Jun 21 07:25:49 ns382633 sshd\[12838\]: Invalid user appuser from 86.60.245.140 port 40639 Jun 21 07:25:49 ns382633 sshd\[12838\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.60.245.140 Jun 21 07:25:52 ns382633 sshd\[12838\]: Failed password for invalid user appuser from 86.60.245.140 port 40639 ssh2	2020-06-21 13:30:13
213.251.184.102	attack	Invalid user erick from 213.251.184.102 port 58976	2020-06-21 13:42:06

最近上报的IP列表

3.50.111.85	84.27.57.143	15.110.175.217	24.24.162.166
110.170.220.205	125.232.142.201	71.214.243.156	50.72.155.48
140.49.32.15	83.192.18.43	31.202.247.216	42.235.144.123
68.160.190.14	65.211.12.117	90.57.215.143	248.105.249.242
24.254.145.217	173.118.235.198	228.246.245.40	179.220.209.43