116.255.193.49

基本信息:

城市(city): unknown

省份(region): Beijing

国家(country): China

运营商(isp): Zhengzhou Gainet Computer Network Technology Co. Ltd.

主机名(hostname): unknown

机构(organization): CHINA UNICOM China169 Backbone

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Automatic report generated by Wazuh	2019-06-30 01:50:57

相同子网IP讨论:

IP	类型	评论内容	时间
116.255.193.51	attack	unauthorized connection attempt	2020-01-09 20:12:11
116.255.193.51	attack	Unauthorized connection attempt detected from IP address 116.255.193.51 to port 1433	2019-12-31 09:20:03
116.255.193.132	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-09-10 08:08:39
116.255.193.83	attack	Brute-force attack to non-existent web resources	2019-07-08 03:43:49
116.255.193.132	attack	[portscan] tcp/22 [SSH] *(RWIN=65535)(06271037)	2019-06-27 16:15:20

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.255.193.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49349
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.255.193.49.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062901 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jun 30 01:50:44 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 49.193.255.116.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
*** Can't find 49.193.255.116.in-addr.arpa.: No answer

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
71.6.233.19	attackbotsspam	" "	2019-09-10 00:17:00
213.136.70.175	attackspambots	Sep 9 22:05:25 webhost01 sshd[32714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.136.70.175 Sep 9 22:05:27 webhost01 sshd[32714]: Failed password for invalid user gitlab-runner from 213.136.70.175 port 41776 ssh2 ...	2019-09-09 23:20:37
46.34.151.110	attackspambots	Unauthorized connection attempt from IP address 46.34.151.110 on Port 445(SMB)	2019-09-10 00:02:35
117.2.104.145	attack	Unauthorized connection attempt from IP address 117.2.104.145 on Port 445(SMB)	2019-09-09 23:00:40
77.42.117.235	attackbotsspam	Automatic report - Port Scan Attack	2019-09-10 00:05:03
174.138.17.79	attackbots	Sep 9 15:10:21 MainVPS sshd[20012]: Invalid user ts from 174.138.17.79 port 43928 Sep 9 15:10:21 MainVPS sshd[20012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.17.79 Sep 9 15:10:21 MainVPS sshd[20012]: Invalid user ts from 174.138.17.79 port 43928 Sep 9 15:10:23 MainVPS sshd[20012]: Failed password for invalid user ts from 174.138.17.79 port 43928 ssh2 Sep 9 15:16:40 MainVPS sshd[20439]: Invalid user systest from 174.138.17.79 port 40011 ...	2019-09-09 22:59:42
154.8.197.176	attack	Sep 9 16:20:38 MK-Soft-VM6 sshd\[10749\]: Invalid user tomi from 154.8.197.176 port 43210 Sep 9 16:20:38 MK-Soft-VM6 sshd\[10749\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.197.176 Sep 9 16:20:40 MK-Soft-VM6 sshd\[10749\]: Failed password for invalid user tomi from 154.8.197.176 port 43210 ssh2 ...	2019-09-10 00:45:53
223.31.41.82	attack	Unauthorized connection attempt from IP address 223.31.41.82 on Port 445(SMB)	2019-09-10 00:13:09
103.242.13.70	attack	Sep 9 06:22:22 hcbb sshd\[6533\]: Invalid user nagios from 103.242.13.70 Sep 9 06:22:22 hcbb sshd\[6533\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.242.13.70 Sep 9 06:22:23 hcbb sshd\[6533\]: Failed password for invalid user nagios from 103.242.13.70 port 58516 ssh2 Sep 9 06:29:30 hcbb sshd\[8016\]: Invalid user ftpuser from 103.242.13.70 Sep 9 06:29:30 hcbb sshd\[8016\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.242.13.70	2019-09-10 00:37:13
187.49.72.230	attackbotsspam	Sep 9 17:05:02 ubuntu-2gb-nbg1-dc3-1 sshd[29283]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.49.72.230 Sep 9 17:05:04 ubuntu-2gb-nbg1-dc3-1 sshd[29283]: Failed password for invalid user admin from 187.49.72.230 port 27937 ssh2 ...	2019-09-09 23:09:18
107.191.56.229	attack	Sql/code injection probe	2019-09-09 23:46:53
180.96.14.98	attackspam	2019-09-09T15:04:57.310245abusebot-5.cloudsearch.cf sshd\[22830\]: Invalid user student2 from 180.96.14.98 port 21357	2019-09-09 23:27:58
165.22.72.226	attackbots	$f2bV_matches	2019-09-09 23:31:04
128.199.54.252	attackspambots	Sep 9 18:23:56 server sshd\[2337\]: Invalid user csr1dev from 128.199.54.252 port 46066 Sep 9 18:23:56 server sshd\[2337\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.54.252 Sep 9 18:23:58 server sshd\[2337\]: Failed password for invalid user csr1dev from 128.199.54.252 port 46066 ssh2 Sep 9 18:30:13 server sshd\[1057\]: Invalid user ts3server from 128.199.54.252 port 51444 Sep 9 18:30:13 server sshd\[1057\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.54.252	2019-09-09 23:34:06
58.214.9.102	attackbots	2019-09-09T16:00:27.102369abusebot-6.cloudsearch.cf sshd\[5771\]: Invalid user teamspeak from 58.214.9.102 port 38216	2019-09-10 00:27:25

最近上报的IP列表

98.196.53.164	45.21.236.230	41.63.85.202	115.72.172.146
118.61.9.160	134.73.161.3	51.140.235.116	132.145.213.87
199.27.180.200	221.81.139.53	110.130.72.220	54.39.173.190
151.166.148.182	202.162.204.90	184.145.168.25	183.236.34.133
183.236.34.130	139.93.32.166	104.140.188.6	183.236.34.140