116.10.106.80 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): ChinaNet Guangxi Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Aug 31 23:22:40 vz239 sshd[7777]: Invalid user service from 116.10.106.80 Aug 31 23:22:40 vz239 sshd[7777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.10.106.80 Aug 31 23:22:42 vz239 sshd[7777]: Failed password for invalid user service from 116.10.106.80 port 31433 ssh2 Aug 31 23:22:45 vz239 sshd[7777]: Failed password for invalid user service from 116.10.106.80 port 31433 ssh2 Aug 31 23:22:47 vz239 sshd[7777]: Failed password for invalid user service from 116.10.106.80 port 31433 ssh2 Aug 31 23:22:49 vz239 sshd[7777]: Failed password for invalid user service from 116.10.106.80 port 31433 ssh2 Aug 31 23:22:52 vz239 sshd[7777]: Failed password for invalid user service from 116.10.106.80 port 31433 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=116.10.106.80	2019-09-01 10:57:13

类型

评论内容

时间

attackbotsspam

Aug 31 23:22:40 vz239 sshd[7777]: Invalid user service from 116.10.106.80
Aug 31 23:22:40 vz239 sshd[7777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.10.106.80 
Aug 31 23:22:42 vz239 sshd[7777]: Failed password for invalid user service from 116.10.106.80 port 31433 ssh2
Aug 31 23:22:45 vz239 sshd[7777]: Failed password for invalid user service from 116.10.106.80 port 31433 ssh2
Aug 31 23:22:47 vz239 sshd[7777]: Failed password for invalid user service from 116.10.106.80 port 31433 ssh2
Aug 31 23:22:49 vz239 sshd[7777]: Failed password for invalid user service from 116.10.106.80 port 31433 ssh2
Aug 31 23:22:52 vz239 sshd[7777]: Failed password for invalid user service from 116.10.106.80 port 31433 ssh2


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=116.10.106.80

2019-09-01 10:57:13

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.10.106.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48455
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.10.106.80.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019083102 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Sep 01 10:57:07 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 80.106.10.116.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 80.106.10.116.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
77.253.207.153	attack	Dec 13 12:28:27 server sshd\[31067\]: Failed password for invalid user ssh from 77.253.207.153 port 53956 ssh2 Dec 14 10:28:18 server sshd\[4677\]: Invalid user harriot from 77.253.207.153 Dec 14 10:28:18 server sshd\[4677\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77-253-207-153.static.ip.netia.com.pl Dec 14 10:28:20 server sshd\[4677\]: Failed password for invalid user harriot from 77.253.207.153 port 38058 ssh2 Dec 14 12:13:28 server sshd\[3552\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77-253-207-153.static.ip.netia.com.pl user=uucp ...	2019-12-14 19:10:55
222.186.173.154	attackbots	SSH bruteforce	2019-12-14 19:23:56
40.117.135.57	attackbotsspam	Dec 14 11:39:51 localhost sshd\[3810\]: Invalid user ytrehgfdnbvc from 40.117.135.57 port 54442 Dec 14 11:39:51 localhost sshd\[3810\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.117.135.57 Dec 14 11:39:53 localhost sshd\[3810\]: Failed password for invalid user ytrehgfdnbvc from 40.117.135.57 port 54442 ssh2	2019-12-14 18:54:40
58.218.150.170	attackspambots	Invalid user underkover from 58.218.150.170 port 53690 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.218.150.170 Failed password for invalid user underkover from 58.218.150.170 port 53690 ssh2 Invalid user sz12 from 58.218.150.170 port 54758 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.218.150.170	2019-12-14 19:04:50
87.246.7.34	attackspambots	Dec 14 11:44:53 webserver postfix/smtpd\[23810\]: warning: unknown\[87.246.7.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 14 11:45:15 webserver postfix/smtpd\[23810\]: warning: unknown\[87.246.7.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 14 11:45:45 webserver postfix/smtpd\[23810\]: warning: unknown\[87.246.7.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 14 11:46:15 webserver postfix/smtpd\[23810\]: warning: unknown\[87.246.7.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 14 11:46:44 webserver postfix/smtpd\[23810\]: warning: unknown\[87.246.7.34\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-12-14 18:55:14
115.236.100.114	attack	Invalid user vcsa from 115.236.100.114 port 47113	2019-12-14 19:31:07
218.92.0.212	attackbots	2019-12-13 UTC: 3x - (3x)	2019-12-14 19:03:39
218.92.0.155	attackspam	Dec 14 11:45:24 MK-Soft-VM5 sshd[13404]: Failed password for root from 218.92.0.155 port 22275 ssh2 Dec 14 11:45:28 MK-Soft-VM5 sshd[13404]: Failed password for root from 218.92.0.155 port 22275 ssh2 ...	2019-12-14 19:00:57
85.37.38.195	attack	Dec 14 01:07:21 web1 sshd\[13425\]: Invalid user pit from 85.37.38.195 Dec 14 01:07:21 web1 sshd\[13425\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.37.38.195 Dec 14 01:07:23 web1 sshd\[13425\]: Failed password for invalid user pit from 85.37.38.195 port 38225 ssh2 Dec 14 01:12:50 web1 sshd\[14070\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.37.38.195 user=games Dec 14 01:12:53 web1 sshd\[14070\]: Failed password for games from 85.37.38.195 port 46560 ssh2	2019-12-14 19:21:32
112.85.42.194	attackspambots	2019-12-14T12:12:05.338025scmdmz1 sshd\[25369\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.194 user=root 2019-12-14T12:12:07.025234scmdmz1 sshd\[25369\]: Failed password for root from 112.85.42.194 port 24582 ssh2 2019-12-14T12:12:09.541346scmdmz1 sshd\[25369\]: Failed password for root from 112.85.42.194 port 24582 ssh2 ...	2019-12-14 19:14:05
159.203.123.196	attackspambots	$f2bV_matches	2019-12-14 19:30:47
34.66.28.207	attack	Invalid user test from 34.66.28.207 port 42942	2019-12-14 19:03:15
67.44.177.53	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 14-12-2019 06:25:12.	2019-12-14 19:06:54
110.164.205.133	attackbotsspam	2019-12-13 UTC: 3x - (3x)	2019-12-14 19:33:07
209.17.96.218	attackspambots	209.17.96.218 was recorded 21 times by 17 hosts attempting to connect to the following ports: 3333,5904,37777,10443,135,8082,5061,5222,8888,2160,80,143,5353,27017,50070,5908,993. Incident counter (4h, 24h, all-time): 21, 77, 2669	2019-12-14 19:27:26

最近上报的IP列表

58.107.172.30	59.74.169.172	193.164.201.12	207.227.9.128
79.132.246.58	70.107.50.172	193.59.217.28	199.226.105.165
28.33.179.105	112.68.71.199	56.23.156.80	187.113.225.208
217.253.80.24	212.242.171.176	155.88.67.218	249.230.160.246
64.251.27.96	249.216.40.53	204.212.169.71	142.213.31.153