116.196.107.42

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
116.196.107.128	attack	Jun 22 12:00:22 localhost sshd[64910]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.107.128 user=root Jun 22 12:00:23 localhost sshd[64910]: Failed password for root from 116.196.107.128 port 43870 ssh2 Jun 22 12:01:29 localhost sshd[65081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.107.128 user=root Jun 22 12:01:31 localhost sshd[65081]: Failed password for root from 116.196.107.128 port 55614 ssh2 Jun 22 12:02:32 localhost sshd[65181]: Invalid user trading from 116.196.107.128 port 39124 ...	2020-06-23 02:14:17
116.196.107.128	attackspam	SSH Brute-Forcing (server1)	2020-06-21 05:00:15
116.196.107.128	attackspambots	Jun 13 08:57:53 home sshd[11298]: Failed password for root from 116.196.107.128 port 49116 ssh2 Jun 13 09:02:16 home sshd[11853]: Failed password for root from 116.196.107.128 port 41022 ssh2 ...	2020-06-13 17:32:41
116.196.107.128	attackspambots	Jun 6 15:22:00 ajax sshd[27008]: Failed password for root from 116.196.107.128 port 60182 ssh2	2020-06-07 00:44:34
116.196.107.128	attackbots	(sshd) Failed SSH login from 116.196.107.128 (CN/China/-): 5 in the last 3600 secs	2020-06-06 07:24:29
116.196.107.128	attackspam	Jun 3 20:15:09 php1 sshd\[24927\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.107.128 user=root Jun 3 20:15:12 php1 sshd\[24927\]: Failed password for root from 116.196.107.128 port 53652 ssh2 Jun 3 20:18:36 php1 sshd\[25230\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.107.128 user=root Jun 3 20:18:38 php1 sshd\[25230\]: Failed password for root from 116.196.107.128 port 45478 ssh2 Jun 3 20:22:07 php1 sshd\[25506\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.107.128 user=root	2020-06-04 16:02:34
116.196.107.128	attackbotsspam	bruteforce detected	2020-06-03 19:38:51
116.196.107.128	attack	2020-05-03T03:34:51.176001vps270029.vps.ovh.ca sshd[61214]: Invalid user bert from 116.196.107.128 port 46756 2020-05-03T03:34:53.542780vps270029.vps.ovh.ca sshd[61214]: Failed password for invalid user bert from 116.196.107.128 port 46756 ssh2 2020-05-03T03:37:20.295701vps270029.vps.ovh.ca sshd[61280]: Invalid user hadoop from 116.196.107.128 port 46808 2020-05-03T03:37:20.302961vps270029.vps.ovh.ca sshd[61280]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.107.128 2020-05-03T03:37:20.295701vps270029.vps.ovh.ca sshd[61280]: Invalid user hadoop from 116.196.107.128 port 46808 2020-05-03T03:37:22.116322vps270029.vps.ovh.ca sshd[61280]: Failed password for invalid user hadoop from 116.196.107.128 port 46808 ssh2 2020-05-03T03:39:54.090265vps270029.vps.ovh.ca sshd[61312]: Invalid user cruise from 116.196.107.128 port 46874 2020-05-03T03:39:54.095187vps270029.vps.ovh.ca sshd[61312]: pam_unix(sshd:auth): authentication failure; logname= uid= ...	2020-05-03 16:16:42
116.196.107.128	attackbotsspam	Apr 29 14:04:13 ns3164893 sshd[30253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.107.128 Apr 29 14:04:15 ns3164893 sshd[30253]: Failed password for invalid user investor from 116.196.107.128 port 42144 ssh2 ...	2020-04-29 20:10:41
116.196.107.128	attack	Apr 27 23:08:11 lukav-desktop sshd\[21889\]: Invalid user prueba from 116.196.107.128 Apr 27 23:08:11 lukav-desktop sshd\[21889\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.107.128 Apr 27 23:08:13 lukav-desktop sshd\[21889\]: Failed password for invalid user prueba from 116.196.107.128 port 60260 ssh2 Apr 27 23:11:30 lukav-desktop sshd\[5047\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.107.128 user=root Apr 27 23:11:32 lukav-desktop sshd\[5047\]: Failed password for root from 116.196.107.128 port 58064 ssh2	2020-04-28 05:43:17
116.196.107.128	attack	Found by fail2ban	2020-04-12 18:32:48
116.196.107.128	attackbots	$f2bV_matches	2020-04-11 19:19:26
116.196.107.128	attack	Apr 5 10:29:03 vmd48417 sshd[27498]: Failed password for root from 116.196.107.128 port 50746 ssh2	2020-04-05 18:55:31
116.196.107.128	attack	SSH brute force attempt	2020-04-03 05:32:05
116.196.107.128	attackspambots	Invalid user debian from 116.196.107.128 port 34336	2020-04-02 06:01:17

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.196.107.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44689
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.196.107.42.			IN	A

;; AUTHORITY SECTION:
.			368	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011002 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 11 14:43:04 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 42.107.196.116.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.107.196.116.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
82.102.188.199	attackbotsspam	23/tcp [2019-07-03]1pkt	2019-07-04 02:11:17
121.134.218.148	attackbots	Reported by AbuseIPDB proxy server.	2019-07-04 01:33:30
177.22.121.134	attack	Honeypot attack, port: 445, PTR: 177-22-121-134.rev.netcorporativa.com.br.	2019-07-04 02:12:57
192.144.207.2	attackspam	2019-06-29 16:54:32 10.2.3.200 tcp 192.144.207.2:29659 -> 10.110.1.55:80 SERVER-WEBAPP Drupal 8 remote code execution attempt (1:46316:4) (+0)	2019-07-04 01:27:14
89.38.145.79	attackbots	firewall-block, port(s): 443/tcp	2019-07-04 02:04:23
45.117.83.118	attack	2019-07-03T14:54:07.735270abusebot-4.cloudsearch.cf sshd\[5926\]: Invalid user admin from 45.117.83.118 port 36649	2019-07-04 01:55:45
157.55.39.136	attackspam	Web App Attack	2019-07-04 02:09:15
177.69.66.197	attack	TCP port 445 (SMB) attempt blocked by firewall. [2019-07-03 15:18:09]	2019-07-04 02:12:37
180.111.227.27	attackbots	Jul 3 15:20:12 localhost postfix/smtpd\[19098\]: warning: unknown\[180.111.227.27\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 3 15:20:12 localhost postfix/smtpd\[19126\]: warning: unknown\[180.111.227.27\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 3 15:20:17 localhost postfix/smtpd\[19128\]: warning: unknown\[180.111.227.27\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 3 15:20:17 localhost postfix/smtpd\[18971\]: warning: unknown\[180.111.227.27\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 3 15:20:20 localhost postfix/smtpd\[19098\]: warning: unknown\[180.111.227.27\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-07-04 01:52:38
216.7.159.250	attackspambots	Jul 3 15:19:35 srv03 sshd\[5475\]: Invalid user nagios from 216.7.159.250 port 47060 Jul 3 15:19:35 srv03 sshd\[5475\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.7.159.250 Jul 3 15:19:36 srv03 sshd\[5475\]: Failed password for invalid user nagios from 216.7.159.250 port 47060 ssh2	2019-07-04 02:10:00
71.6.165.200	attackspam	[03/Jul/2019:15:21:42 +0200] Web-Request: "GET /.well-known/security.txt", User-Agent: "-"	2019-07-04 01:27:36
192.182.124.9	attackspam	Jul 3 16:35:31 core01 sshd\[6154\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.182.124.9 user=root Jul 3 16:35:33 core01 sshd\[6154\]: Failed password for root from 192.182.124.9 port 56012 ssh2 ...	2019-07-04 02:11:36
45.171.46.150	attack	Port scan on 1 port(s): 4899	2019-07-04 02:05:14
220.165.248.100	attackbotsspam	firewall-block, port(s): 1433/tcp	2019-07-04 01:56:33
101.20.81.163	attack	DATE:2019-07-03_15:20:17, IP:101.20.81.163, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-07-04 01:54:52

最近上报的IP列表

18.35.110.159	105.84.61.50	7.31.224.250	50.115.9.166
221.97.24.90	31.58.183.143	109.50.241.252	66.249.75.52
241.108.69.14	139.168.251.193	44.42.197.202	84.125.185.190
242.67.128.64	68.3.46.113	65.68.159.244	180.216.16.196
157.53.67.182	45.245.110.250	178.120.230.255	43.74.186.110

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表