116.1.149.196 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Guangxi Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	SSH login attempts.	2020-09-29 07:04:51
attack	Sep 27 02:13:28 serwer sshd\[6064\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 user=root Sep 27 02:13:30 serwer sshd\[6064\]: Failed password for root from 116.1.149.196 port 32960 ssh2 Sep 27 02:19:20 serwer sshd\[6894\]: Invalid user hadoop from 116.1.149.196 port 36166 Sep 27 02:19:20 serwer sshd\[6894\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Sep 27 02:19:22 serwer sshd\[6894\]: Failed password for invalid user hadoop from 116.1.149.196 port 36166 ssh2 Sep 27 02:21:56 serwer sshd\[7284\]: Invalid user uploader from 116.1.149.196 port 52046 Sep 27 02:21:56 serwer sshd\[7284\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Sep 27 02:21:58 serwer sshd\[7284\]: Failed password for invalid user uploader from 116.1.149.196 port 52046 ssh2 Sep 27 02:24:16 serwer sshd\[7514\]: Invalid user invoices from ...	2020-09-28 23:34:49
attack	2020-09-27T21:54:47.304042abusebot-2.cloudsearch.cf sshd[4911]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 user=root 2020-09-27T21:54:49.529562abusebot-2.cloudsearch.cf sshd[4911]: Failed password for root from 116.1.149.196 port 47872 ssh2 2020-09-27T22:00:25.225173abusebot-2.cloudsearch.cf sshd[5020]: Invalid user wangqi from 116.1.149.196 port 58737 2020-09-27T22:00:25.230664abusebot-2.cloudsearch.cf sshd[5020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 2020-09-27T22:00:25.225173abusebot-2.cloudsearch.cf sshd[5020]: Invalid user wangqi from 116.1.149.196 port 58737 2020-09-27T22:00:27.190175abusebot-2.cloudsearch.cf sshd[5020]: Failed password for invalid user wangqi from 116.1.149.196 port 58737 ssh2 2020-09-27T22:04:13.010538abusebot-2.cloudsearch.cf sshd[5043]: Invalid user spring from 116.1.149.196 port 60964 ...	2020-09-28 15:38:07
attackbots	Aug 19 14:23:51 inter-technics sshd[3588]: Invalid user kte from 116.1.149.196 port 54131 Aug 19 14:23:51 inter-technics sshd[3588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Aug 19 14:23:51 inter-technics sshd[3588]: Invalid user kte from 116.1.149.196 port 54131 Aug 19 14:23:52 inter-technics sshd[3588]: Failed password for invalid user kte from 116.1.149.196 port 54131 ssh2 Aug 19 14:26:21 inter-technics sshd[3721]: Invalid user git from 116.1.149.196 port 37794 ...	2020-08-20 03:24:12
attackbotsspam	Jul 23 14:04:09 ns3164893 sshd[7333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Jul 23 14:04:12 ns3164893 sshd[7333]: Failed password for invalid user wingate from 116.1.149.196 port 40570 ssh2 ...	2020-07-23 20:12:30
attack	Jul 11 07:34:31 server1 sshd\[11755\]: Invalid user karolina from 116.1.149.196 Jul 11 07:34:31 server1 sshd\[11755\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Jul 11 07:34:33 server1 sshd\[11755\]: Failed password for invalid user karolina from 116.1.149.196 port 59796 ssh2 Jul 11 07:36:53 server1 sshd\[12449\]: Invalid user jesus from 116.1.149.196 Jul 11 07:36:53 server1 sshd\[12449\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 ...	2020-07-11 21:40:19
attackbotsspam	...	2020-07-09 04:21:26
attack	Jun 20 18:21:53 124388 sshd[24834]: Invalid user rdy from 116.1.149.196 port 57703 Jun 20 18:21:53 124388 sshd[24834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Jun 20 18:21:53 124388 sshd[24834]: Invalid user rdy from 116.1.149.196 port 57703 Jun 20 18:21:54 124388 sshd[24834]: Failed password for invalid user rdy from 116.1.149.196 port 57703 ssh2 Jun 20 18:23:03 124388 sshd[24837]: Invalid user loyal from 116.1.149.196 port 36140	2020-06-21 04:01:43
attack	Jun 9 07:15:47 nextcloud sshd\[20903\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 user=root Jun 9 07:15:48 nextcloud sshd\[20903\]: Failed password for root from 116.1.149.196 port 55184 ssh2 Jun 9 07:20:00 nextcloud sshd\[25291\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 user=root	2020-06-09 15:47:52
attackspam	Apr 14 05:00:58 scw-6657dc sshd[25813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Apr 14 05:00:58 scw-6657dc sshd[25813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Apr 14 05:01:01 scw-6657dc sshd[25813]: Failed password for invalid user eil from 116.1.149.196 port 57407 ssh2 ...	2020-04-14 13:51:36
attackbotsspam	$f2bV_matches	2020-04-14 05:21:49
attackspam	Apr 12 09:32:58 *** sshd[31582]: User root from 116.1.149.196 not allowed because not listed in AllowUsers	2020-04-12 18:19:05
attackspam	Feb 3 05:43:41 v22018076622670303 sshd\[28638\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 user=root Feb 3 05:43:43 v22018076622670303 sshd\[28638\]: Failed password for root from 116.1.149.196 port 60598 ssh2 Feb 3 05:52:50 v22018076622670303 sshd\[28722\]: Invalid user test from 116.1.149.196 port 55310 Feb 3 05:52:50 v22018076622670303 sshd\[28722\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 ...	2020-02-03 14:53:32
attackbotsspam	Unauthorized connection attempt detected from IP address 116.1.149.196 to port 2220 [J]	2020-01-15 03:31:57
attackbots	Automatic report - Banned IP Access	2020-01-10 06:08:33
attack	$f2bV_matches	2019-12-22 20:14:35
attack	Dec 18 04:48:29 zx01vmsma01 sshd[170132]: Failed password for root from 116.1.149.196 port 33287 ssh2 ...	2019-12-18 13:47:54
attack	F2B jail: sshd. Time: 2019-12-10 08:01:40, Reported by: VKReport	2019-12-10 15:02:17
attackspambots	Nov 3 06:37:23 MK-Soft-VM4 sshd[31726]: Failed password for root from 116.1.149.196 port 41958 ssh2 ...	2019-11-03 22:31:08
attack	Oct 18 03:48:44 *** sshd[8835]: User root from 116.1.149.196 not allowed because not listed in AllowUsers	2019-10-18 16:55:51
attackbots	Oct 9 15:52:20 v22019058497090703 sshd[30639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Oct 9 15:52:22 v22019058497090703 sshd[30639]: Failed password for invalid user Carolina123 from 116.1.149.196 port 51333 ssh2 Oct 9 15:57:45 v22019058497090703 sshd[31035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 ...	2019-10-10 01:57:01
attack	Oct 7 10:07:50 vpn01 sshd[9568]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Oct 7 10:07:51 vpn01 sshd[9568]: Failed password for invalid user Spain@123 from 116.1.149.196 port 49742 ssh2 ...	2019-10-07 16:22:52
attackbotsspam	Sep 28 13:27:51 gw1 sshd[25600]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Sep 28 13:27:53 gw1 sshd[25600]: Failed password for invalid user sinusbot from 116.1.149.196 port 37369 ssh2 ...	2019-09-28 16:36:39
attackspambots	Sep 25 06:58:11 MK-Soft-Root2 sshd[22147]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Sep 25 06:58:14 MK-Soft-Root2 sshd[22147]: Failed password for invalid user den from 116.1.149.196 port 46218 ssh2 ...	2019-09-25 13:01:08
attack	Sep 6 05:39:23 hiderm sshd\[2821\]: Invalid user 123 from 116.1.149.196 Sep 6 05:39:23 hiderm sshd\[2821\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Sep 6 05:39:24 hiderm sshd\[2821\]: Failed password for invalid user 123 from 116.1.149.196 port 46430 ssh2 Sep 6 05:45:43 hiderm sshd\[3366\]: Invalid user password321 from 116.1.149.196 Sep 6 05:45:43 hiderm sshd\[3366\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196	2019-09-07 00:18:15
attack	Aug 15 01:59:22 vps647732 sshd[12473]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Aug 15 01:59:24 vps647732 sshd[12473]: Failed password for invalid user np from 116.1.149.196 port 60012 ssh2 ...	2019-08-15 08:05:05
attackspambots	Aug 2 05:05:07 ny01 sshd[17815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Aug 2 05:05:10 ny01 sshd[17815]: Failed password for invalid user joe from 116.1.149.196 port 55516 ssh2 Aug 2 05:09:32 ny01 sshd[18146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196	2019-08-02 17:16:42
attack	Jul 26 14:58:06 meumeu sshd[30503]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 Jul 26 14:58:08 meumeu sshd[30503]: Failed password for invalid user george from 116.1.149.196 port 42810 ssh2 Jul 26 14:59:58 meumeu sshd[30725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.1.149.196 ...	2019-07-27 00:07:49

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.1.149.196
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52281
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.1.149.196.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061801 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jun 19 12:29:19 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 196.149.1.116.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 196.149.1.116.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
87.251.74.48	attack	May 21 08:22:30 web01 sshd[23902]: Failed password for root from 87.251.74.48 port 21004 ssh2 May 21 08:22:30 web01 sshd[23903]: Failed password for root from 87.251.74.48 port 21046 ssh2 ...	2020-05-21 14:23:54
61.164.213.198	attack	2020-05-21T05:35:38.335393ionos.janbro.de sshd[89940]: Invalid user umi from 61.164.213.198 port 59493 2020-05-21T05:35:40.382994ionos.janbro.de sshd[89940]: Failed password for invalid user umi from 61.164.213.198 port 59493 ssh2 2020-05-21T05:45:51.565178ionos.janbro.de sshd[89988]: Invalid user qki from 61.164.213.198 port 34487 2020-05-21T05:45:51.647444ionos.janbro.de sshd[89988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.164.213.198 2020-05-21T05:45:51.565178ionos.janbro.de sshd[89988]: Invalid user qki from 61.164.213.198 port 34487 2020-05-21T05:45:53.385777ionos.janbro.de sshd[89988]: Failed password for invalid user qki from 61.164.213.198 port 34487 ssh2 2020-05-21T05:50:55.942062ionos.janbro.de sshd[89993]: Invalid user wmy from 61.164.213.198 port 36100 2020-05-21T05:50:55.985608ionos.janbro.de sshd[89993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.164.213.198 2020-05-21T05:50 ...	2020-05-21 14:11:23
138.68.107.225	attack	Brute-force attempt banned	2020-05-21 14:47:43
222.186.173.154	attackbots	2020-05-21T09:31:38.168656afi-git.jinr.ru sshd[2756]: Failed password for root from 222.186.173.154 port 20364 ssh2 2020-05-21T09:31:41.059922afi-git.jinr.ru sshd[2756]: Failed password for root from 222.186.173.154 port 20364 ssh2 2020-05-21T09:31:44.030841afi-git.jinr.ru sshd[2756]: Failed password for root from 222.186.173.154 port 20364 ssh2 2020-05-21T09:31:44.030987afi-git.jinr.ru sshd[2756]: error: maximum authentication attempts exceeded for root from 222.186.173.154 port 20364 ssh2 [preauth] 2020-05-21T09:31:44.031001afi-git.jinr.ru sshd[2756]: Disconnecting: Too many authentication failures [preauth] ...	2020-05-21 14:35:42
218.56.61.103	attackspambots	May 21 05:56:02 ncomp sshd[1080]: Invalid user swq from 218.56.61.103 May 21 05:56:02 ncomp sshd[1080]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.56.61.103 May 21 05:56:02 ncomp sshd[1080]: Invalid user swq from 218.56.61.103 May 21 05:56:04 ncomp sshd[1080]: Failed password for invalid user swq from 218.56.61.103 port 42606 ssh2	2020-05-21 14:39:08
119.29.16.190	attackspam	May 21 02:00:04 firewall sshd[12254]: Invalid user hig from 119.29.16.190 May 21 02:00:06 firewall sshd[12254]: Failed password for invalid user hig from 119.29.16.190 port 35062 ssh2 May 21 02:03:49 firewall sshd[12311]: Invalid user trz from 119.29.16.190 ...	2020-05-21 14:12:07
36.111.181.248	attackbotsspam	May 21 13:43:46 web1 sshd[16232]: Invalid user avisha from 36.111.181.248 port 47322 May 21 13:43:46 web1 sshd[16232]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.111.181.248 May 21 13:43:46 web1 sshd[16232]: Invalid user avisha from 36.111.181.248 port 47322 May 21 13:43:48 web1 sshd[16232]: Failed password for invalid user avisha from 36.111.181.248 port 47322 ssh2 May 21 13:52:48 web1 sshd[18530]: Invalid user wtu from 36.111.181.248 port 51444 May 21 13:52:48 web1 sshd[18530]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.111.181.248 May 21 13:52:48 web1 sshd[18530]: Invalid user wtu from 36.111.181.248 port 51444 May 21 13:52:50 web1 sshd[18530]: Failed password for invalid user wtu from 36.111.181.248 port 51444 ssh2 May 21 13:56:16 web1 sshd[19421]: Invalid user izz from 36.111.181.248 port 33654 ...	2020-05-21 14:29:44
175.157.236.151	attackbots	May 21 05:55:57 icecube postfix/smtpd[55217]: warning: unknown[175.157.236.151]: SASL CRAM-MD5 authentication failed: authentication failure	2020-05-21 14:46:02
106.75.174.87	attack	May 20 19:12:44 hpm sshd\[25746\]: Invalid user nls from 106.75.174.87 May 20 19:12:44 hpm sshd\[25746\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.174.87 May 20 19:12:46 hpm sshd\[25746\]: Failed password for invalid user nls from 106.75.174.87 port 45656 ssh2 May 20 19:18:23 hpm sshd\[26245\]: Invalid user wqv from 106.75.174.87 May 20 19:18:23 hpm sshd\[26245\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.174.87	2020-05-21 14:27:37
128.199.140.175	attackspambots	May 21 07:01:29 santamaria sshd\[3469\]: Invalid user ivb from 128.199.140.175 May 21 07:01:29 santamaria sshd\[3469\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.140.175 May 21 07:01:31 santamaria sshd\[3469\]: Failed password for invalid user ivb from 128.199.140.175 port 46310 ssh2 ...	2020-05-21 14:37:07
206.189.3.250	attackspam	May 21 06:20:24 game-panel sshd[5763]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.3.250 May 21 06:20:26 game-panel sshd[5763]: Failed password for invalid user mediafire from 206.189.3.250 port 49710 ssh2 May 21 06:24:35 game-panel sshd[9503]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.3.250	2020-05-21 14:49:14
222.186.175.182	attack	May 21 08:27:49 abendstille sshd\[31022\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root May 21 08:27:50 abendstille sshd\[31022\]: Failed password for root from 222.186.175.182 port 21458 ssh2 May 21 08:27:54 abendstille sshd\[31022\]: Failed password for root from 222.186.175.182 port 21458 ssh2 May 21 08:27:54 abendstille sshd\[31328\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root May 21 08:27:56 abendstille sshd\[31328\]: Failed password for root from 222.186.175.182 port 27600 ssh2 ...	2020-05-21 14:41:03
222.186.30.35	attackbots	21.05.2020 06:29:46 SSH access blocked by firewall	2020-05-21 14:30:20
174.219.29.152	attack	Brute forcing email accounts	2020-05-21 14:39:57
122.224.131.116	attackspambots	May 20 19:30:00 wbs sshd\[27777\]: Invalid user zwo from 122.224.131.116 May 20 19:30:00 wbs sshd\[27777\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.224.131.116 May 20 19:30:03 wbs sshd\[27777\]: Failed password for invalid user zwo from 122.224.131.116 port 42000 ssh2 May 20 19:34:16 wbs sshd\[28152\]: Invalid user tmbcn from 122.224.131.116 May 20 19:34:16 wbs sshd\[28152\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.224.131.116	2020-05-21 14:09:21

最近上报的IP列表

36.70.150.111	16.43.105.103	39.115.133.87	51.15.214.231
210.14.27.220	14.232.208.53	139.199.106.127	201.76.124.13
1.36.204.124	84.164.197.248	217.133.205.220	198.100.102.181
142.4.119.230	219.93.67.113	148.70.253.207	43.255.105.135
180.87.34.81	40.69.56.246	188.39.160.106	218.64.226.40