116.202.12.11 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Germany

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
116.202.128.29	attack	116.202.128.29 - - [05/Aug/2020:16:07:44 +0100] "POST /wp-login.php HTTP/1.1" 200 2348 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 116.202.128.29 - - [05/Aug/2020:16:07:45 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 116.202.128.29 - - [05/Aug/2020:16:13:21 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-06 00:33:50
116.202.12.135	attack	Jan 22 07:40:32 www_kotimaassa_fi sshd[24374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.202.12.135 Jan 22 07:40:34 www_kotimaassa_fi sshd[24374]: Failed password for invalid user ftpadmin from 116.202.12.135 port 41934 ssh2 ...	2020-01-22 15:42:37

类型

评论内容

时间

116.202.128.29

attack

116.202.128.29 - - [05/Aug/2020:16:07:44 +0100] "POST /wp-login.php HTTP/1.1" 200 2348 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
116.202.128.29 - - [05/Aug/2020:16:07:45 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
116.202.128.29 - - [05/Aug/2020:16:13:21 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...

2020-08-06 00:33:50

116.202.12.135

attack

Jan 22 07:40:32 www_kotimaassa_fi sshd[24374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.202.12.135
Jan 22 07:40:34 www_kotimaassa_fi sshd[24374]: Failed password for invalid user ftpadmin from 116.202.12.135 port 41934 ssh2
...

2020-01-22 15:42:37

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.202.12.11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51472
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.202.12.11.			IN	A

;; AUTHORITY SECTION:
.			230	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021801 1800 900 604800 86400

;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 19 03:34:21 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

11.12.202.116.in-addr.arpa domain name pointer node.misswhence.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
11.12.202.116.in-addr.arpa	name = node.misswhence.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
2.233.125.227	attack	2020-04-20T23:03:11.026474vps751288.ovh.net sshd\[11180\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.233.125.227 user=root 2020-04-20T23:03:13.125355vps751288.ovh.net sshd\[11180\]: Failed password for root from 2.233.125.227 port 43792 ssh2 2020-04-20T23:07:56.494051vps751288.ovh.net sshd\[11218\]: Invalid user dk from 2.233.125.227 port 35696 2020-04-20T23:07:56.502140vps751288.ovh.net sshd\[11218\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.233.125.227 2020-04-20T23:07:58.058998vps751288.ovh.net sshd\[11218\]: Failed password for invalid user dk from 2.233.125.227 port 35696 ssh2	2020-04-21 05:09:53
41.0.202.246	attack	Apr 20 21:44:00 server sshd[20286]: Failed password for root from 41.0.202.246 port 34390 ssh2 Apr 20 21:50:31 server sshd[21788]: Failed password for root from 41.0.202.246 port 42170 ssh2 Apr 20 21:57:01 server sshd[23369]: Failed password for root from 41.0.202.246 port 49966 ssh2	2020-04-21 04:55:41
173.245.239.241	attackspambots	IMAP brute force ...	2020-04-21 04:44:37
139.59.89.180	attack	Brute force attempt	2020-04-21 05:01:14
223.215.177.90	attack	attempts made to access microsoft email after using zoom. Botscan IMAP/POP3 detected from China/Malaysia/Thailand. 4/12/2020 6:11 PM Unsuccessful sign-in China Device/ Windows Browser/app Firefox IP address 59.173.53.125 Automatic Malaysia Protocol: IMAP IP:2001:e68:5059:781c:12be:f5ff:fe31:1778 Time: Yesterday 11:57 PM Malaysia Type: Unsuccessful Protocol:IMAP IP:183.88.219.206 Time:4/5/2020 1:11 AM Thailand Type: Unsuccessful Protocol:IMAP IP:223.215.177.90 Time:4/5/2020 12:39 AM China Type: Unsuccessful Protocol:IMAP IP:210.48.204.118 Time:4/3/2020 10:49 AM Malaysia Type: Unsuccessful Protocol:POP3 IP:240e:3a0:6e04:4434:942c:a58e:660e:5fe Time:3/28/2020 10:34 AM Not available Type: Unsuccessful Protocol:POP3 IP:240e:3a0:c001:957c:c8b3:ec00:cc6a:2dc2 Time:3/26/2020 6:17 AM China Type: Unsuccessful Protocol:IMAP IP:36.27.30.220 Time:3/25/2020 9:56 PM China Type: Unsuccessful Protocol:IMAP IP:240e:390:1040:11b0:245:5db3:7100:1937 Time:3/25/2020 9:56 PM China Type: Unsuccessful	2020-04-21 05:25:18
190.89.188.128	attack	Apr 20 21:56:37 ArkNodeAT sshd\[16973\]: Invalid user test from 190.89.188.128 Apr 20 21:56:37 ArkNodeAT sshd\[16973\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.89.188.128 Apr 20 21:56:39 ArkNodeAT sshd\[16973\]: Failed password for invalid user test from 190.89.188.128 port 51658 ssh2	2020-04-21 05:07:04
49.234.200.167	attackspam	2020-04-20T20:07:32.258933shield sshd\[22420\]: Invalid user ox from 49.234.200.167 port 48372 2020-04-20T20:07:32.262961shield sshd\[22420\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.200.167 2020-04-20T20:07:34.311384shield sshd\[22420\]: Failed password for invalid user ox from 49.234.200.167 port 48372 ssh2 2020-04-20T20:11:09.518671shield sshd\[23070\]: Invalid user wwwroot from 49.234.200.167 port 59558 2020-04-20T20:11:09.522728shield sshd\[23070\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.200.167	2020-04-21 04:47:31
106.54.42.129	attackspam	Apr 20 21:55:35 legacy sshd[25498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.42.129 Apr 20 21:55:37 legacy sshd[25498]: Failed password for invalid user admin from 106.54.42.129 port 34680 ssh2 Apr 20 21:57:01 legacy sshd[25527]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.42.129 ...	2020-04-21 04:55:15
106.13.31.176	attackspam	Apr 20 21:41:22 h2646465 sshd[18502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.31.176 user=nobody Apr 20 21:41:24 h2646465 sshd[18502]: Failed password for nobody from 106.13.31.176 port 45136 ssh2 Apr 20 21:53:21 h2646465 sshd[19812]: Invalid user ea from 106.13.31.176 Apr 20 21:53:21 h2646465 sshd[19812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.31.176 Apr 20 21:53:21 h2646465 sshd[19812]: Invalid user ea from 106.13.31.176 Apr 20 21:53:23 h2646465 sshd[19812]: Failed password for invalid user ea from 106.13.31.176 port 51818 ssh2 Apr 20 21:57:06 h2646465 sshd[20411]: Invalid user admin from 106.13.31.176 Apr 20 21:57:06 h2646465 sshd[20411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.31.176 Apr 20 21:57:06 h2646465 sshd[20411]: Invalid user admin from 106.13.31.176 Apr 20 21:57:08 h2646465 sshd[20411]: Failed password for invalid user admin from 10	2020-04-21 04:46:12
27.78.14.83	attackspambots	SSH brute-force attempt	2020-04-21 04:45:43
52.230.15.23	attackbotsspam	Apr 20 21:54:15 h2022099 sshd[13014]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.230.15.23 user=r.r Apr 20 21:54:17 h2022099 sshd[13014]: Failed password for r.r from 52.230.15.23 port 56588 ssh2 Apr 20 21:54:17 h2022099 sshd[13014]: Received disconnect from 52.230.15.23: 11: Bye Bye [preauth] Apr 20 22:02:57 h2022099 sshd[14335]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.230.15.23 user=r.r Apr 20 22:02:59 h2022099 sshd[14335]: Failed password for r.r from 52.230.15.23 port 54266 ssh2 Apr 20 22:02:59 h2022099 sshd[14335]: Received disconnect from 52.230.15.23: 11: Bye Bye [preauth] Apr 20 22:06:24 h2022099 sshd[14981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.230.15.23 user=r.r Apr 20 22:06:26 h2022099 sshd[14981]: Failed password for r.r from 52.230.15.23 port 33472 ssh2 Apr 20 22:06:26 h2022099 sshd[14981]: Received disc........ -------------------------------	2020-04-21 05:10:39
185.242.6.29	attack	OpenVas Scan	2020-04-21 04:59:03
106.13.97.10	attackbotsspam	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-04-21 05:14:50
51.79.144.38	attackspam	Apr 20 19:56:30 work-partkepr sshd\[18098\]: Invalid user admin from 51.79.144.38 port 40488 Apr 20 19:56:30 work-partkepr sshd\[18098\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.144.38 ...	2020-04-21 05:23:48
49.233.151.126	attack	Port scan detected on ports: 1433[TCP], 1433[TCP], 65529[TCP]	2020-04-21 04:50:54

最近上报的IP列表

116.202.128.32	116.202.131.155	116.202.131.175	116.202.132.241
116.202.148.227	116.202.130.41	116.202.113.81	116.202.157.31
116.202.157.58	116.202.175.87	116.202.172.35	116.202.180.36
116.202.184.218	116.202.194.123	116.202.161.89	116.202.200.130
116.202.222.164	116.202.203.61	116.202.198.222	116.202.197.213