116.196.80.104

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Beijing Jingdong 360 Degree E-Commerce Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Commercial

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	$f2bV_matches	2020-05-04 12:50:36
attackspambots	Apr 11 02:09:20 web1 sshd\[6888\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.80.104 user=root Apr 11 02:09:22 web1 sshd\[6888\]: Failed password for root from 116.196.80.104 port 44488 ssh2 Apr 11 02:12:31 web1 sshd\[7249\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.80.104 user=root Apr 11 02:12:33 web1 sshd\[7249\]: Failed password for root from 116.196.80.104 port 41464 ssh2 Apr 11 02:15:36 web1 sshd\[7591\]: Invalid user canna from 116.196.80.104 Apr 11 02:15:36 web1 sshd\[7591\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.80.104	2020-04-12 01:39:04
attackspambots	2020-03-17 11:59:29 server sshd[96705]: Failed password for invalid user root from 116.196.80.104 port 58630 ssh2	2020-03-19 03:11:05
attack	SSH Bruteforce attempt	2020-02-10 07:53:21
attackspambots	Unauthorized connection attempt detected from IP address 116.196.80.104 to port 2220 [J]	2020-02-04 19:34:05
attackspambots	Unauthorized connection attempt detected from IP address 116.196.80.104 to port 2220 [J]	2020-01-25 00:42:20
attackbots	Unauthorized connection attempt detected from IP address 116.196.80.104 to port 2220 [J]	2020-01-04 23:57:36
attackbots	Invalid user krishan from 116.196.80.104 port 33116	2020-01-01 05:51:24
attackbotsspam	Dec 24 05:54:00 lnxweb61 sshd[4590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.80.104	2019-12-24 13:54:44
attackspam	Dec 13 15:18:27 sauna sshd[29198]: Failed password for root from 116.196.80.104 port 37710 ssh2 ...	2019-12-13 21:27:10
attack	Dec 6 23:03:54 mail sshd[1431]: Failed password for root from 116.196.80.104 port 47674 ssh2 Dec 6 23:11:08 mail sshd[3259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.80.104 Dec 6 23:11:10 mail sshd[3259]: Failed password for invalid user awhite from 116.196.80.104 port 48976 ssh2	2019-12-09 23:18:57
attack	Dec 6 23:03:54 mail sshd[1431]: Failed password for root from 116.196.80.104 port 47674 ssh2 Dec 6 23:11:08 mail sshd[3259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.80.104 Dec 6 23:11:10 mail sshd[3259]: Failed password for invalid user awhite from 116.196.80.104 port 48976 ssh2	2019-12-09 14:53:12
attack	Dec 6 23:03:54 mail sshd[1431]: Failed password for root from 116.196.80.104 port 47674 ssh2 Dec 6 23:11:08 mail sshd[3259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.80.104 Dec 6 23:11:10 mail sshd[3259]: Failed password for invalid user awhite from 116.196.80.104 port 48976 ssh2	2019-12-09 07:17:02
attack	Dec 6 23:03:54 mail sshd[1431]: Failed password for root from 116.196.80.104 port 47674 ssh2 Dec 6 23:11:08 mail sshd[3259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.80.104 Dec 6 23:11:10 mail sshd[3259]: Failed password for invalid user awhite from 116.196.80.104 port 48976 ssh2	2019-12-09 01:29:51
attackspam	Dec 6 23:03:54 mail sshd[1431]: Failed password for root from 116.196.80.104 port 47674 ssh2 Dec 6 23:11:08 mail sshd[3259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.80.104 Dec 6 23:11:10 mail sshd[3259]: Failed password for invalid user awhite from 116.196.80.104 port 48976 ssh2	2019-12-08 15:18:42
attackspambots	Dec 6 23:03:54 mail sshd[1431]: Failed password for root from 116.196.80.104 port 47674 ssh2 Dec 6 23:11:08 mail sshd[3259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.80.104 Dec 6 23:11:10 mail sshd[3259]: Failed password for invalid user awhite from 116.196.80.104 port 48976 ssh2	2019-12-08 09:22:39
attackbotsspam	Dec 6 23:03:54 mail sshd[1431]: Failed password for root from 116.196.80.104 port 47674 ssh2 Dec 6 23:11:08 mail sshd[3259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.80.104 Dec 6 23:11:10 mail sshd[3259]: Failed password for invalid user awhite from 116.196.80.104 port 48976 ssh2	2019-12-07 15:42:44
attack	Dec 6 23:03:54 mail sshd[1431]: Failed password for root from 116.196.80.104 port 47674 ssh2 Dec 6 23:11:08 mail sshd[3259]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.80.104 Dec 6 23:11:10 mail sshd[3259]: Failed password for invalid user awhite from 116.196.80.104 port 48976 ssh2	2019-12-07 13:28:20
attackbotsspam	Nov 16 17:32:58 Invalid user nen from 116.196.80.104 port 51026	2019-11-17 04:16:32
attackbotsspam	Nov 5 18:31:43 localhost sshd\[10360\]: Invalid user com from 116.196.80.104 port 50618 Nov 5 18:31:43 localhost sshd\[10360\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.80.104 Nov 5 18:31:44 localhost sshd\[10360\]: Failed password for invalid user com from 116.196.80.104 port 50618 ssh2 Nov 5 18:35:22 localhost sshd\[10471\]: Invalid user testtest123 from 116.196.80.104 port 56066 Nov 5 18:35:22 localhost sshd\[10471\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.80.104 ...	2019-11-06 02:51:51
attackbotsspam	2019-11-05 03:29:52,977 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 116.196.80.104 2019-11-05 04:03:46,628 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 116.196.80.104 2019-11-05 04:41:47,270 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 116.196.80.104 2019-11-05 05:16:12,717 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 116.196.80.104 2019-11-05 05:52:43,102 fail2ban.actions \[14488\]: NOTICE \[sshd\] Ban 116.196.80.104 ...	2019-11-05 14:19:56
attackbots	Nov 3 08:54:38 hosting sshd[7897]: Invalid user student2 from 116.196.80.104 port 49174 ...	2019-11-03 15:01:19
attackspambots	Automatic report - Banned IP Access	2019-10-26 23:23:39
attackspam	2019-10-26T03:47:44.619880abusebot-4.cloudsearch.cf sshd\[9836\]: Invalid user ack from 116.196.80.104 port 34634	2019-10-26 16:53:24
attack	2019-10-21T08:12:35.411595abusebot-7.cloudsearch.cf sshd\[28831\]: Invalid user mt from 116.196.80.104 port 53968	2019-10-21 16:22:50
attackbotsspam	Oct 14 17:47:36 markkoudstaal sshd[16332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.80.104 Oct 14 17:47:38 markkoudstaal sshd[16332]: Failed password for invalid user oracle from 116.196.80.104 port 46662 ssh2 Oct 14 17:53:24 markkoudstaal sshd[16800]: Failed password for root from 116.196.80.104 port 56452 ssh2	2019-10-15 00:20:56
attackspam	Oct 6 07:10:13 sauna sshd[188793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.80.104 Oct 6 07:10:16 sauna sshd[188793]: Failed password for invalid user abc@2018 from 116.196.80.104 port 47728 ssh2 ...	2019-10-06 12:33:15
attackbots	Sep 20 06:33:32 microserver sshd[13298]: Invalid user postgres from 116.196.80.104 port 56310 Sep 20 06:33:32 microserver sshd[13298]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.80.104 Sep 20 06:33:34 microserver sshd[13298]: Failed password for invalid user postgres from 116.196.80.104 port 56310 ssh2 Sep 20 06:38:04 microserver sshd[13958]: Invalid user upload from 116.196.80.104 port 40338 Sep 20 06:38:04 microserver sshd[13958]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.80.104 Sep 20 06:51:30 microserver sshd[15903]: Invalid user system from 116.196.80.104 port 48852 Sep 20 06:51:30 microserver sshd[15903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.80.104 Sep 20 06:51:32 microserver sshd[15903]: Failed password for invalid user system from 116.196.80.104 port 48852 ssh2 Sep 20 06:56:14 microserver sshd[16590]: Invalid user msimon from 116.196.80.1	2019-10-05 05:24:52
attackspambots	2019-10-02T01:15:03.426430shield sshd\[25778\]: Invalid user gy from 116.196.80.104 port 40938 2019-10-02T01:15:03.431199shield sshd\[25778\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.80.104 2019-10-02T01:15:04.675933shield sshd\[25778\]: Failed password for invalid user gy from 116.196.80.104 port 40938 ssh2 2019-10-02T01:18:35.488910shield sshd\[26172\]: Invalid user asael from 116.196.80.104 port 43888 2019-10-02T01:18:35.493197shield sshd\[26172\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.80.104	2019-10-02 09:29:58
attackspam	2019-09-29T05:29:24.903168abusebot-2.cloudsearch.cf sshd\[6981\]: Invalid user george from 116.196.80.104 port 36498	2019-09-29 14:03:52

相同子网IP讨论:

IP	类型	评论内容	时间
116.196.80.119	attackspam	Apr 18 11:29:54 marvibiene sshd[34039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.80.119 user=root Apr 18 11:29:56 marvibiene sshd[34039]: Failed password for root from 116.196.80.119 port 47338 ssh2 Apr 18 11:59:51 marvibiene sshd[34461]: Invalid user test from 116.196.80.119 port 48786 ...	2020-04-19 00:54:14

类型

评论内容

时间

116.196.80.119

attackspam

Apr 18 11:29:54 marvibiene sshd[34039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.80.119  user=root
Apr 18 11:29:56 marvibiene sshd[34039]: Failed password for root from 116.196.80.119 port 47338 ssh2
Apr 18 11:59:51 marvibiene sshd[34461]: Invalid user test from 116.196.80.119 port 48786
...

2020-04-19 00:54:14

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.196.80.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63719
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.196.80.104.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082601 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Aug 27 10:37:37 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 104.80.196.116.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 104.80.196.116.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
104.168.28.214	attackspambots	Invalid user rubens from 104.168.28.214 port 33666	2020-07-28 19:23:20
118.170.59.133	attackbotsspam	Unauthorised access (Jul 28) SRC=118.170.59.133 LEN=40 TTL=45 ID=39324 TCP DPT=23 WINDOW=60629 SYN	2020-07-28 19:52:33
2.48.3.18	attackspam	Invalid user esh from 2.48.3.18 port 34764	2020-07-28 19:48:20
210.186.42.140	attack	Automatic report - Port Scan Attack	2020-07-28 19:54:01
14.186.230.115	attackbotsspam	xmlrpc attack	2020-07-28 19:19:12
129.204.105.130	attackbotsspam	(sshd) Failed SSH login from 129.204.105.130 (CN/China/-): 5 in the last 3600 secs	2020-07-28 19:51:46
106.75.176.189	attackspambots	Jul 28 09:05:32 fhem-rasp sshd[27545]: Invalid user cmudehwe from 106.75.176.189 port 57520 ...	2020-07-28 19:25:15
176.56.237.176	attackbots	Jul 28 15:13:37 lunarastro sshd[4407]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.56.237.176 Jul 28 15:13:39 lunarastro sshd[4407]: Failed password for invalid user fengjw from 176.56.237.176 port 46542 ssh2	2020-07-28 19:27:01
221.2.35.78	attack	Jul 28 13:02:44 ns382633 sshd\[14285\]: Invalid user yuzhen from 221.2.35.78 port 3591 Jul 28 13:02:44 ns382633 sshd\[14285\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.2.35.78 Jul 28 13:02:46 ns382633 sshd\[14285\]: Failed password for invalid user yuzhen from 221.2.35.78 port 3591 ssh2 Jul 28 13:13:03 ns382633 sshd\[16334\]: Invalid user hysms from 221.2.35.78 port 3592 Jul 28 13:13:03 ns382633 sshd\[16334\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.2.35.78	2020-07-28 19:44:50
93.149.12.2	attackbotsspam	Jul 28 13:07:03 prod4 sshd\[4418\]: Invalid user aikou from 93.149.12.2 Jul 28 13:07:05 prod4 sshd\[4418\]: Failed password for invalid user aikou from 93.149.12.2 port 33806 ssh2 Jul 28 13:14:33 prod4 sshd\[8013\]: Invalid user tony from 93.149.12.2 ...	2020-07-28 19:56:45
118.179.225.26	attackspambots	Dovecot Invalid User Login Attempt.	2020-07-28 19:32:00
58.57.15.29	attackspambots	Invalid user test1 from 58.57.15.29 port 45209	2020-07-28 19:26:14
212.129.60.77	attackbotsspam	Invalid user yechen from 212.129.60.77 port 59048	2020-07-28 19:59:53
123.21.232.185	attackbots	(eximsyntax) Exim syntax errors from 123.21.232.185 (VN/Vietnam/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-07-28 08:19:21 SMTP call from [123.21.232.185] dropped: too many syntax or protocol errors (last command was "?ÿ\001??Q?\v?\004\003?\001\002?")	2020-07-28 19:28:14
158.101.157.58	attackspam	Jul 28 09:10:34 mellenthin sshd[12042]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.101.157.58 Jul 28 09:10:36 mellenthin sshd[12042]: Failed password for invalid user icml from 158.101.157.58 port 42028 ssh2	2020-07-28 19:19:55

最近上报的IP列表

130.61.27.145	120.51.167.0	107.170.209.246	163.112.58.52
17.192.115.249	139.119.163.141	178.46.128.103	9.252.145.169
235.21.149.78	192.247.255.118	156.7.126.110	243.194.233.192
238.171.99.82	46.183.222.117	124.154.99.56	233.125.183.224
58.140.229.218	1.235.40.213	43.176.227.230	224.253.140.27