116.1.149.196 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Guangxi Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	SSH login attempts.	2020-09-29 07:04:51
attack	Sep 27 02:13:28 serwer sshd\[6064\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 user=root Sep 27 02:13:30 serwer sshd\[6064\]: Failed password for root from 116.1.149.196 port 32960 ssh2 Sep 27 02:19:20 serwer sshd\[6894\]: Invalid user hadoop from 116.1.149.196 port 36166 Sep 27 02:19:20 serwer sshd\[6894\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Sep 27 02:19:22 serwer sshd\[6894\]: Failed password for invalid user hadoop from 116.1.149.196 port 36166 ssh2 Sep 27 02:21:56 serwer sshd\[7284\]: Invalid user uploader from 116.1.149.196 port 52046 Sep 27 02:21:56 serwer sshd\[7284\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Sep 27 02:21:58 serwer sshd\[7284\]: Failed password for invalid user uploader from 116.1.149.196 port 52046 ssh2 Sep 27 02:24:16 serwer sshd\[7514\]: Invalid user invoices from ...	2020-09-28 23:34:49
attack	2020-09-27T21:54:47.304042abusebot-2.cloudsearch.cf sshd[4911]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 user=root 2020-09-27T21:54:49.529562abusebot-2.cloudsearch.cf sshd[4911]: Failed password for root from 116.1.149.196 port 47872 ssh2 2020-09-27T22:00:25.225173abusebot-2.cloudsearch.cf sshd[5020]: Invalid user wangqi from 116.1.149.196 port 58737 2020-09-27T22:00:25.230664abusebot-2.cloudsearch.cf sshd[5020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 2020-09-27T22:00:25.225173abusebot-2.cloudsearch.cf sshd[5020]: Invalid user wangqi from 116.1.149.196 port 58737 2020-09-27T22:00:27.190175abusebot-2.cloudsearch.cf sshd[5020]: Failed password for invalid user wangqi from 116.1.149.196 port 58737 ssh2 2020-09-27T22:04:13.010538abusebot-2.cloudsearch.cf sshd[5043]: Invalid user spring from 116.1.149.196 port 60964 ...	2020-09-28 15:38:07
attackbots	Aug 19 14:23:51 inter-technics sshd[3588]: Invalid user kte from 116.1.149.196 port 54131 Aug 19 14:23:51 inter-technics sshd[3588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Aug 19 14:23:51 inter-technics sshd[3588]: Invalid user kte from 116.1.149.196 port 54131 Aug 19 14:23:52 inter-technics sshd[3588]: Failed password for invalid user kte from 116.1.149.196 port 54131 ssh2 Aug 19 14:26:21 inter-technics sshd[3721]: Invalid user git from 116.1.149.196 port 37794 ...	2020-08-20 03:24:12
attackbotsspam	Jul 23 14:04:09 ns3164893 sshd[7333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Jul 23 14:04:12 ns3164893 sshd[7333]: Failed password for invalid user wingate from 116.1.149.196 port 40570 ssh2 ...	2020-07-23 20:12:30
attack	Jul 11 07:34:31 server1 sshd\[11755\]: Invalid user karolina from 116.1.149.196 Jul 11 07:34:31 server1 sshd\[11755\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Jul 11 07:34:33 server1 sshd\[11755\]: Failed password for invalid user karolina from 116.1.149.196 port 59796 ssh2 Jul 11 07:36:53 server1 sshd\[12449\]: Invalid user jesus from 116.1.149.196 Jul 11 07:36:53 server1 sshd\[12449\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 ...	2020-07-11 21:40:19
attackbotsspam	...	2020-07-09 04:21:26
attack	Jun 20 18:21:53 124388 sshd[24834]: Invalid user rdy from 116.1.149.196 port 57703 Jun 20 18:21:53 124388 sshd[24834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Jun 20 18:21:53 124388 sshd[24834]: Invalid user rdy from 116.1.149.196 port 57703 Jun 20 18:21:54 124388 sshd[24834]: Failed password for invalid user rdy from 116.1.149.196 port 57703 ssh2 Jun 20 18:23:03 124388 sshd[24837]: Invalid user loyal from 116.1.149.196 port 36140	2020-06-21 04:01:43
attack	Jun 9 07:15:47 nextcloud sshd\[20903\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 user=root Jun 9 07:15:48 nextcloud sshd\[20903\]: Failed password for root from 116.1.149.196 port 55184 ssh2 Jun 9 07:20:00 nextcloud sshd\[25291\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 user=root	2020-06-09 15:47:52
attackspam	Apr 14 05:00:58 scw-6657dc sshd[25813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Apr 14 05:00:58 scw-6657dc sshd[25813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Apr 14 05:01:01 scw-6657dc sshd[25813]: Failed password for invalid user eil from 116.1.149.196 port 57407 ssh2 ...	2020-04-14 13:51:36
attackbotsspam	$f2bV_matches	2020-04-14 05:21:49
attackspam	Apr 12 09:32:58 *** sshd[31582]: User root from 116.1.149.196 not allowed because not listed in AllowUsers	2020-04-12 18:19:05
attackspam	Feb 3 05:43:41 v22018076622670303 sshd\[28638\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 user=root Feb 3 05:43:43 v22018076622670303 sshd\[28638\]: Failed password for root from 116.1.149.196 port 60598 ssh2 Feb 3 05:52:50 v22018076622670303 sshd\[28722\]: Invalid user test from 116.1.149.196 port 55310 Feb 3 05:52:50 v22018076622670303 sshd\[28722\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 ...	2020-02-03 14:53:32
attackbotsspam	Unauthorized connection attempt detected from IP address 116.1.149.196 to port 2220 [J]	2020-01-15 03:31:57
attackbots	Automatic report - Banned IP Access	2020-01-10 06:08:33
attack	$f2bV_matches	2019-12-22 20:14:35
attack	Dec 18 04:48:29 zx01vmsma01 sshd[170132]: Failed password for root from 116.1.149.196 port 33287 ssh2 ...	2019-12-18 13:47:54
attack	F2B jail: sshd. Time: 2019-12-10 08:01:40, Reported by: VKReport	2019-12-10 15:02:17
attackspambots	Nov 3 06:37:23 MK-Soft-VM4 sshd[31726]: Failed password for root from 116.1.149.196 port 41958 ssh2 ...	2019-11-03 22:31:08
attack	Oct 18 03:48:44 *** sshd[8835]: User root from 116.1.149.196 not allowed because not listed in AllowUsers	2019-10-18 16:55:51
attackbots	Oct 9 15:52:20 v22019058497090703 sshd[30639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Oct 9 15:52:22 v22019058497090703 sshd[30639]: Failed password for invalid user Carolina123 from 116.1.149.196 port 51333 ssh2 Oct 9 15:57:45 v22019058497090703 sshd[31035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 ...	2019-10-10 01:57:01
attack	Oct 7 10:07:50 vpn01 sshd[9568]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Oct 7 10:07:51 vpn01 sshd[9568]: Failed password for invalid user Spain@123 from 116.1.149.196 port 49742 ssh2 ...	2019-10-07 16:22:52
attackbotsspam	Sep 28 13:27:51 gw1 sshd[25600]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Sep 28 13:27:53 gw1 sshd[25600]: Failed password for invalid user sinusbot from 116.1.149.196 port 37369 ssh2 ...	2019-09-28 16:36:39
attackspambots	Sep 25 06:58:11 MK-Soft-Root2 sshd[22147]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Sep 25 06:58:14 MK-Soft-Root2 sshd[22147]: Failed password for invalid user den from 116.1.149.196 port 46218 ssh2 ...	2019-09-25 13:01:08
attack	Sep 6 05:39:23 hiderm sshd\[2821\]: Invalid user 123 from 116.1.149.196 Sep 6 05:39:23 hiderm sshd\[2821\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Sep 6 05:39:24 hiderm sshd\[2821\]: Failed password for invalid user 123 from 116.1.149.196 port 46430 ssh2 Sep 6 05:45:43 hiderm sshd\[3366\]: Invalid user password321 from 116.1.149.196 Sep 6 05:45:43 hiderm sshd\[3366\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196	2019-09-07 00:18:15
attack	Aug 15 01:59:22 vps647732 sshd[12473]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Aug 15 01:59:24 vps647732 sshd[12473]: Failed password for invalid user np from 116.1.149.196 port 60012 ssh2 ...	2019-08-15 08:05:05
attackspambots	Aug 2 05:05:07 ny01 sshd[17815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Aug 2 05:05:10 ny01 sshd[17815]: Failed password for invalid user joe from 116.1.149.196 port 55516 ssh2 Aug 2 05:09:32 ny01 sshd[18146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196	2019-08-02 17:16:42
attack	Jul 26 14:58:06 meumeu sshd[30503]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Jul 26 14:58:08 meumeu sshd[30503]: Failed password for invalid user george from 116.1.149.196 port 42810 ssh2 Jul 26 14:59:58 meumeu sshd[30725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 ...	2019-07-27 00:07:49

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.1.149.196
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52281
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.1.149.196.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061801 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jun 19 12:29:19 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 196.149.1.116.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 196.149.1.116.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
107.173.35.206	attack	Nov 22 06:10:59 sachi sshd\[18114\]: Invalid user bochinski from 107.173.35.206 Nov 22 06:10:59 sachi sshd\[18114\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.173.35.206 Nov 22 06:11:02 sachi sshd\[18114\]: Failed password for invalid user bochinski from 107.173.35.206 port 56242 ssh2 Nov 22 06:16:18 sachi sshd\[18523\]: Invalid user iwato from 107.173.35.206 Nov 22 06:16:18 sachi sshd\[18523\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.173.35.206	2019-11-23 00:28:08
62.12.83.235	attack	Automatic report - Banned IP Access	2019-11-23 00:17:54
191.180.225.11	attackbotsspam	Nov 22 05:33:32 php1 sshd\[8501\]: Invalid user blaze123 from 191.180.225.11 Nov 22 05:33:32 php1 sshd\[8501\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.180.225.11 Nov 22 05:33:35 php1 sshd\[8501\]: Failed password for invalid user blaze123 from 191.180.225.11 port 56338 ssh2 Nov 22 05:38:45 php1 sshd\[8934\]: Invalid user Liv3jAsMiN3c00l from 191.180.225.11 Nov 22 05:38:45 php1 sshd\[8934\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.180.225.11	2019-11-22 23:45:36
117.1.183.176	attack	Nov 21 18:18:37 penfold postfix/smtpd[15643]: warning: hostname localhost does not resolve to address 117.1.183.176 Nov 21 18:18:37 penfold postfix/smtpd[15643]: connect from unknown[117.1.183.176] Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=117.1.183.176	2019-11-23 00:06:43
193.255.111.139	attackspam	2019-11-22T15:56:02.007220abusebot.cloudsearch.cf sshd\[12688\]: Invalid user mogen from 193.255.111.139 port 51100	2019-11-22 23:56:14
220.246.26.9	attackspambots	Nov 22 12:11:43 server sshd\[10898\]: Invalid user admin from 220.246.26.9 Nov 22 12:11:43 server sshd\[10898\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=n220246026009.netvigator.com Nov 22 12:11:44 server sshd\[10898\]: Failed password for invalid user admin from 220.246.26.9 port 47113 ssh2 Nov 22 17:51:36 server sshd\[30991\]: Invalid user admin from 220.246.26.9 Nov 22 17:51:36 server sshd\[30991\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=n220246026009.netvigator.com ...	2019-11-22 23:55:42
14.42.196.245	attack	2019-11-20 15:00:55 H=([14.42.196.245]) [14.42.196.245]:10807 I=[10.100.18.23]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=14.42.196.245) 2019-11-20 15:00:57 unexpected disconnection while reading SMTP command from ([14.42.196.245]) [14.42.196.245]:10807 I=[10.100.18.23]:25 (error: Connection reset by peer) 2019-11-20 16:14:34 H=([14.42.196.245]) [14.42.196.245]:20680 I=[10.100.18.23]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=14.42.196.245) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.42.196.245	2019-11-23 00:21:16
106.75.122.81	attackspambots	Nov 22 16:55:14 MK-Soft-Root2 sshd[8102]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.122.81 Nov 22 16:55:16 MK-Soft-Root2 sshd[8102]: Failed password for invalid user hakima from 106.75.122.81 port 48154 ssh2 ...	2019-11-23 00:28:51
113.68.83.96	attack	badbot	2019-11-23 00:22:56
77.20.52.207	attackbots	Triggered by Fail2Ban at Vostok web server	2019-11-23 00:11:37
222.186.180.8	attack	2019-11-22T15:55:52.621047abusebot-6.cloudsearch.cf sshd\[7216\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.8 user=root	2019-11-22 23:56:56
151.80.140.166	attack	Nov 22 16:52:27 MK-Soft-VM5 sshd[891]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.140.166 Nov 22 16:52:29 MK-Soft-VM5 sshd[891]: Failed password for invalid user banan from 151.80.140.166 port 32798 ssh2 ...	2019-11-23 00:11:51
112.33.12.100	attack	Nov 22 20:48:01 areeb-Workstation sshd[23988]: Failed password for daemon from 112.33.12.100 port 54836 ssh2 Nov 22 20:53:11 areeb-Workstation sshd[25085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.33.12.100 ...	2019-11-22 23:49:57
95.44.107.52	attackspambots	Bot ignores robot.txt restrictions	2019-11-22 23:53:14
37.229.23.231	attackbotsspam	port scan and connect, tcp 23 (telnet)	2019-11-23 00:32:00

最近上报的IP列表

36.70.150.111	16.43.105.103	39.115.133.87	51.15.214.231
210.14.27.220	14.232.208.53	139.199.106.127	201.76.124.13
1.36.204.124	84.164.197.248	217.133.205.220	198.100.102.181
142.4.119.230	219.93.67.113	148.70.253.207	43.255.105.135
180.87.34.81	40.69.56.246	188.39.160.106	218.64.226.40