116.12.51.216 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): USONYX Singapore Broadband Web Hosting Services

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	116.12.51.216 - - [12/Jul/2019:23:29:53 +0200] "GET /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 116.12.51.216 - - [12/Jul/2019:23:29:55 +0200] "POST /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 116.12.51.216 - - [12/Jul/2019:23:29:56 +0200] "GET /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 116.12.51.216 - - [12/Jul/2019:23:29:57 +0200] "POST /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 116.12.51.216 - - [12/Jul/2019:23:29:58 +0200] "GET /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 116.12.51.216 - - [12/Jul/2019:23:29:59 +0200] "POST /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-07-13 11:36:05
attack	Wordpress Admin Login attack	2019-07-05 04:46:02

类型

评论内容

时间

attack

116.12.51.216 - - [12/Jul/2019:23:29:53 +0200] "GET /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
116.12.51.216 - - [12/Jul/2019:23:29:55 +0200] "POST /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
116.12.51.216 - - [12/Jul/2019:23:29:56 +0200] "GET /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
116.12.51.216 - - [12/Jul/2019:23:29:57 +0200] "POST /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
116.12.51.216 - - [12/Jul/2019:23:29:58 +0200] "GET /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
116.12.51.216 - - [12/Jul/2019:23:29:59 +0200] "POST /wp-login.php HTTP/1.1" 200 4404 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...

2019-07-13 11:36:05

attack

Wordpress Admin Login attack

2019-07-05 04:46:02

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.12.51.216
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28633
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.12.51.216.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070401 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jul 05 04:45:56 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 216.51.12.116.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 216.51.12.116.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
122.51.16.26	attack	Jun 30 12:32:34 game-panel sshd[31052]: Failed password for root from 122.51.16.26 port 33178 ssh2 Jun 30 12:34:15 game-panel sshd[31103]: Failed password for root from 122.51.16.26 port 51430 ssh2	2020-07-01 22:17:01
118.36.234.187	attack	Jun 30 19:07:58 ns3033917 sshd[26223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.36.234.187 user=root Jun 30 19:08:00 ns3033917 sshd[26223]: Failed password for root from 118.36.234.187 port 40630 ssh2 Jun 30 19:11:19 ns3033917 sshd[26348]: Invalid user user1 from 118.36.234.187 port 35432 ...	2020-07-01 22:03:15
211.220.0.117	attackbots	Unauthorized connection attempt detected from IP address 211.220.0.117 to port 80	2020-07-01 22:18:59
165.22.43.225	attackspam	Invalid user deploy from 165.22.43.225 port 38380	2020-07-01 22:14:34
118.71.255.230	attackbots	Unauthorized connection attempt detected from IP address 118.71.255.230 to port 445	2020-07-01 22:15:07
118.89.228.58	attack	Jun 30 21:29:20 sip sshd[11921]: Failed password for root from 118.89.228.58 port 31709 ssh2 Jun 30 21:34:37 sip sshd[13862]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.228.58 Jun 30 21:34:39 sip sshd[13862]: Failed password for invalid user dominic from 118.89.228.58 port 17717 ssh2	2020-07-01 21:51:31
193.228.91.108	attack	Brute-force attempt banned	2020-07-01 21:44:40
119.96.85.98	attackbots	SSH login attempts.	2020-07-01 21:59:32
177.37.176.78	attack	TCP (SYN) 177.37.176.78:17098 -> port 23, len 44	2020-07-01 21:48:42
104.248.34.219	attack	2020/06/30 14:47:45 [error] 20617#20617: 3577399 open() "/usr/share/nginx/html/wp-login.php" failed (2: No such file or directory), client: 104.248.34.219, server: _, request: "GET /wp-login.php HTTP/1.1", host: "1-2-dsl.net" 2020/06/30 14:47:45 [error] 20617#20617: 3577400 open() "/usr/share/nginx/html/wp-login.php" failed (2: No such file or directory), client: 104.248.34.219, server: _, request: "GET /wp-login.php HTTP/1.1", host: "1-2-dsl.org"	2020-07-01 21:38:38
191.7.145.246	attack	Jun 30 21:41:12 server sshd[23620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.7.145.246 Jun 30 21:41:15 server sshd[23620]: Failed password for invalid user aaa from 191.7.145.246 port 51344 ssh2 Jun 30 21:42:26 server sshd[23653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.7.145.246 ...	2020-07-01 21:36:12
185.216.140.251	attackspambots	12 attempts against mh_ha-misc-ban on sun	2020-07-01 22:03:48
192.35.168.225	attack	TCP (SYN) 192.35.168.225:29844 -> port 8175, len 44	2020-07-01 22:29:31
85.56.162.45	attackbots	Honeypot attack, port: 445, PTR: 45.pool85-56-162.dynamic.orange.es.	2020-07-01 22:22:23
178.128.86.188	attackspam	Jun 30 21:42:01 server sshd[33360]: Failed password for root from 178.128.86.188 port 39636 ssh2 Jun 30 21:45:24 server sshd[36183]: User postgres from 178.128.86.188 not allowed because not listed in AllowUsers Jun 30 21:45:26 server sshd[36183]: Failed password for invalid user postgres from 178.128.86.188 port 37800 ssh2	2020-07-01 21:37:50

最近上报的IP列表

234.97.188.1	1.126.108.68	139.5.254.144	113.177.65.86
56.25.83.52	16.2.191.247	70.215.151.152	5.107.202.121
176.159.239.246	154.192.234.168	58.32.114.162	96.10.90.222
46.190.107.218	181.48.147.133	41.230.133.14	204.89.98.91
190.85.156.226	65.102.115.103	100.197.120.61	245.17.59.135