116.196.122.200

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Jingdong 360 Degree E-Commerce Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized SSH login attempts	2020-03-31 06:10:55
attackspam	Mar 13 13:19:47 Ubuntu-1404-trusty-64-minimal sshd\[3401\]: Invalid user www1 from 116.196.122.200 Mar 13 13:19:47 Ubuntu-1404-trusty-64-minimal sshd\[3401\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.122.200 Mar 13 13:19:49 Ubuntu-1404-trusty-64-minimal sshd\[3401\]: Failed password for invalid user www1 from 116.196.122.200 port 39812 ssh2 Mar 13 13:45:26 Ubuntu-1404-trusty-64-minimal sshd\[25114\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.122.200 user=root Mar 13 13:45:28 Ubuntu-1404-trusty-64-minimal sshd\[25114\]: Failed password for root from 116.196.122.200 port 50018 ssh2	2020-03-14 02:39:02
attackspambots	Mar 3 08:20:24 mail sshd[12676]: Invalid user steam from 116.196.122.200 Mar 3 08:20:24 mail sshd[12676]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.122.200 Mar 3 08:20:24 mail sshd[12676]: Invalid user steam from 116.196.122.200 Mar 3 08:20:25 mail sshd[12676]: Failed password for invalid user steam from 116.196.122.200 port 51396 ssh2 Mar 3 08:31:05 mail sshd[13999]: Invalid user rstudio from 116.196.122.200 ...	2020-03-03 20:21:07
attack	Feb 29 17:17:59 giraffe sshd[23021]: Invalid user condor from 116.196.122.200 Feb 29 17:17:59 giraffe sshd[23021]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.122.200 Feb 29 17:18:01 giraffe sshd[23021]: Failed password for invalid user condor from 116.196.122.200 port 59672 ssh2 Feb 29 17:18:01 giraffe sshd[23021]: Received disconnect from 116.196.122.200 port 59672:11: Bye Bye [preauth] Feb 29 17:18:01 giraffe sshd[23021]: Disconnected from 116.196.122.200 port 59672 [preauth] Feb 29 17:40:38 giraffe sshd[23793]: Invalid user yang from 116.196.122.200 Feb 29 17:40:38 giraffe sshd[23793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.122.200 Feb 29 17:40:40 giraffe sshd[23793]: Failed password for invalid user yang from 116.196.122.200 port 41440 ssh2 Feb 29 17:40:40 giraffe sshd[23793]: Received disconnect from 116.196.122.200 port 41440:11: Bye Bye [preauth] Feb 29 1........ -------------------------------	2020-03-01 08:36:27

相同子网IP讨论:

IP	类型	评论内容	时间
116.196.122.115	attackbotsspam	Lines containing failures of 116.196.122.115 Jul 8 22:08:56 shared12 sshd[18662]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.122.115 user=mail Jul 8 22:08:57 shared12 sshd[18662]: Failed password for mail from 116.196.122.115 port 50220 ssh2 Jul 8 22:08:57 shared12 sshd[18662]: Received disconnect from 116.196.122.115 port 50220:11: Bye Bye [preauth] Jul 8 22:08:57 shared12 sshd[18662]: Disconnected from authenticating user mail 116.196.122.115 port 50220 [preauth] Jul 8 22:19:42 shared12 sshd[22536]: Invalid user liwei from 116.196.122.115 port 39660 Jul 8 22:19:42 shared12 sshd[22536]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.122.115 Jul 8 22:19:44 shared12 sshd[22536]: Failed password for invalid user liwei from 116.196.122.115 port 39660 ssh2 Jul 8 22:19:44 shared12 sshd[22536]: Received disconnect from 116.196.122.115 port 39660:11: Bye Bye [preauth] ........ ------------------------------	2020-07-09 22:16:36
116.196.122.75	attackbots	May 27 13:38:54 gw1 sshd[18190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.122.75 May 27 13:38:56 gw1 sshd[18190]: Failed password for invalid user ftp_user from 116.196.122.75 port 46039 ssh2 ...	2020-05-27 16:48:16
116.196.122.39	attack	SSH invalid-user multiple login attempts	2020-03-06 06:44:12
116.196.122.39	attack	Feb 23 08:23:09 ny01 sshd[11458]: Failed password for root from 116.196.122.39 port 58742 ssh2 Feb 23 08:27:05 ny01 sshd[13419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.122.39 Feb 23 08:27:07 ny01 sshd[13419]: Failed password for invalid user dolphin from 116.196.122.39 port 54782 ssh2	2020-02-24 00:31:34
116.196.122.39	attack	$f2bV_matches	2020-02-17 20:36:09
116.196.122.54	attackbotsspam	port scan and connect, tcp 6379 (redis)	2019-07-25 00:15:48

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.196.122.200
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20633
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.196.122.200.		IN	A

;; AUTHORITY SECTION:
.			495	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022901 1800 900 604800 86400

;; Query time: 83 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 01 08:36:24 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 200.122.196.116.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 200.122.196.116.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
118.24.208.67	attack	Dec 22 10:05:01 sip sshd[30742]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.208.67 Dec 22 10:05:03 sip sshd[30742]: Failed password for invalid user fodell from 118.24.208.67 port 45322 ssh2 Dec 22 10:33:23 sip sshd[31024]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.208.67	2019-12-22 18:41:37
104.248.58.71	attackbotsspam	SSH Bruteforce attempt	2019-12-22 18:53:53
200.150.99.251	attackbotsspam	Dec 22 03:52:14 linuxvps sshd\[30601\]: Invalid user a from 200.150.99.251 Dec 22 03:52:14 linuxvps sshd\[30601\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.150.99.251 Dec 22 03:52:16 linuxvps sshd\[30601\]: Failed password for invalid user a from 200.150.99.251 port 30868 ssh2 Dec 22 03:59:01 linuxvps sshd\[35186\]: Invalid user chu from 200.150.99.251 Dec 22 03:59:01 linuxvps sshd\[35186\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.150.99.251	2019-12-22 18:42:28
202.73.9.76	attackspambots	Dec 22 11:19:51 Ubuntu-1404-trusty-64-minimal sshd\[5776\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.73.9.76 user=root Dec 22 11:19:53 Ubuntu-1404-trusty-64-minimal sshd\[5776\]: Failed password for root from 202.73.9.76 port 38364 ssh2 Dec 22 11:29:37 Ubuntu-1404-trusty-64-minimal sshd\[12388\]: Invalid user call from 202.73.9.76 Dec 22 11:29:37 Ubuntu-1404-trusty-64-minimal sshd\[12388\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.73.9.76 Dec 22 11:29:39 Ubuntu-1404-trusty-64-minimal sshd\[12388\]: Failed password for invalid user call from 202.73.9.76 port 54096 ssh2	2019-12-22 18:35:38
43.240.125.198	attackspam	$f2bV_matches	2019-12-22 18:37:12
139.199.29.114	attackbots	Dec 22 13:18:03 lcl-usvr-02 sshd[11806]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.29.114 user=root Dec 22 13:18:06 lcl-usvr-02 sshd[11806]: Failed password for root from 139.199.29.114 port 53392 ssh2 Dec 22 13:26:04 lcl-usvr-02 sshd[13549]: Invalid user bloechl from 139.199.29.114 port 49688 Dec 22 13:26:04 lcl-usvr-02 sshd[13549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.29.114 Dec 22 13:26:04 lcl-usvr-02 sshd[13549]: Invalid user bloechl from 139.199.29.114 port 49688 Dec 22 13:26:07 lcl-usvr-02 sshd[13549]: Failed password for invalid user bloechl from 139.199.29.114 port 49688 ssh2 ...	2019-12-22 18:52:38
194.150.15.70	attackbots	Dec 22 07:25:46 MK-Soft-VM7 sshd[29422]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.150.15.70 Dec 22 07:25:48 MK-Soft-VM7 sshd[29422]: Failed password for invalid user moine from 194.150.15.70 port 33985 ssh2 ...	2019-12-22 19:10:09
117.68.155.132	attackbots	Scanning	2019-12-22 18:48:53
23.97.180.45	attackspam	Invalid user admin from 23.97.180.45 port 43854	2019-12-22 18:50:48
211.192.167.36	attackbotsspam	Dec 22 11:42:34 eventyay sshd[11803]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.192.167.36 Dec 22 11:42:36 eventyay sshd[11803]: Failed password for invalid user mkt from 211.192.167.36 port 45886 ssh2 Dec 22 11:48:26 eventyay sshd[12014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.192.167.36 ...	2019-12-22 18:57:52
36.249.132.9	attackbotsspam	Automatic report - Port Scan	2019-12-22 19:06:27
152.136.203.208	attackbots	Dec 22 09:23:43 server sshd\[27839\]: Invalid user sagar from 152.136.203.208 Dec 22 09:23:43 server sshd\[27839\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.203.208 Dec 22 09:23:45 server sshd\[27839\]: Failed password for invalid user sagar from 152.136.203.208 port 39136 ssh2 Dec 22 09:38:30 server sshd\[31869\]: Invalid user tennis from 152.136.203.208 Dec 22 09:38:30 server sshd\[31869\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.203.208 ...	2019-12-22 18:51:38
190.15.203.50	attack	Dec 22 09:32:03 XXX sshd[39088]: Invalid user test from 190.15.203.50 port 58800	2019-12-22 19:01:38
31.46.42.108	attackbots	SSH Brute Force	2019-12-22 19:11:40
121.132.213.213	attackbots	Scanning	2019-12-22 19:02:16

最近上报的IP列表

96.7.88.138	166.88.90.5	208.125.185.40	179.181.92.168
58.159.131.158	136.255.17.87	58.230.101.163	170.106.79.177
54.230.149.105	179.100.66.32	150.244.214.217	184.142.40.80
86.40.49.178	153.64.83.24	46.1.142.185	41.82.159.54
91.221.59.26	70.135.86.93	221.160.209.126	169.212.183.87