116.48.80.138 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Hong Kong Telecommunications (HKT) Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Honeypot attack, port: 5555, PTR: n1164880138.netvigator.com.	2020-02-11 18:18:31

相同子网IP讨论:

IP	类型	评论内容	时间
116.48.80.182	attackbotsspam	Honeypot attack, port: 5555, PTR: n1164880182.netvigator.com.	2020-02-23 21:41:33

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.48.80.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26134
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.48.80.138.			IN	A

;; AUTHORITY SECTION:
.			358	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021101 1800 900 604800 86400

;; Query time: 239 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 11 18:18:28 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

138.80.48.116.in-addr.arpa domain name pointer n1164880138.netvigator.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
138.80.48.116.in-addr.arpa	name = n1164880138.netvigator.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
13.75.69.108	attack	Dec 22 01:20:32 hpm sshd\[26551\]: Invalid user guest from 13.75.69.108 Dec 22 01:20:32 hpm sshd\[26551\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.75.69.108 Dec 22 01:20:34 hpm sshd\[26551\]: Failed password for invalid user guest from 13.75.69.108 port 44964 ssh2 Dec 22 01:25:40 hpm sshd\[27637\]: Invalid user home from 13.75.69.108 Dec 22 01:25:40 hpm sshd\[27637\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.75.69.108	2019-12-22 19:32:24
178.62.0.138	attackspambots	Dec 21 23:39:57 web1 sshd\[26186\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.0.138 user=backup Dec 21 23:39:59 web1 sshd\[26186\]: Failed password for backup from 178.62.0.138 port 36637 ssh2 Dec 21 23:45:07 web1 sshd\[26675\]: Invalid user zinkie from 178.62.0.138 Dec 21 23:45:07 web1 sshd\[26675\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.0.138 Dec 21 23:45:09 web1 sshd\[26675\]: Failed password for invalid user zinkie from 178.62.0.138 port 39064 ssh2	2019-12-22 19:24:43
61.223.136.52	attack	1576995937 - 12/22/2019 07:25:37 Host: 61.223.136.52/61.223.136.52 Port: 445 TCP Blocked	2019-12-22 19:18:18
106.12.25.123	attackspambots	$f2bV_matches	2019-12-22 19:03:45
185.153.196.80	attack	12/22/2019-06:07:16.129695 185.153.196.80 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-12-22 19:24:03
118.71.1.222	attack	1576995918 - 12/22/2019 07:25:18 Host: 118.71.1.222/118.71.1.222 Port: 445 TCP Blocked	2019-12-22 19:34:14
189.211.84.71	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-22 19:02:54
37.187.0.223	attackbotsspam	Dec 22 08:23:38 yesfletchmain sshd\[311\]: User lp from 37.187.0.223 not allowed because not listed in AllowUsers Dec 22 08:23:38 yesfletchmain sshd\[311\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.0.223 user=lp Dec 22 08:23:40 yesfletchmain sshd\[311\]: Failed password for invalid user lp from 37.187.0.223 port 32800 ssh2 Dec 22 08:31:48 yesfletchmain sshd\[600\]: User root from 37.187.0.223 not allowed because not listed in AllowUsers Dec 22 08:31:48 yesfletchmain sshd\[600\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.0.223 user=root ...	2019-12-22 19:05:52
187.32.227.205	attackspambots	Dec 22 10:38:07 hcbbdb sshd\[19228\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.32.227.205 user=root Dec 22 10:38:09 hcbbdb sshd\[19228\]: Failed password for root from 187.32.227.205 port 51330 ssh2 Dec 22 10:44:49 hcbbdb sshd\[19980\]: Invalid user sandvold from 187.32.227.205 Dec 22 10:44:49 hcbbdb sshd\[19980\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.32.227.205 Dec 22 10:44:50 hcbbdb sshd\[19980\]: Failed password for invalid user sandvold from 187.32.227.205 port 52954 ssh2	2019-12-22 19:04:29
51.77.202.178	attack	Dec 22 11:59:51 vps691689 sshd[18618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.202.178 Dec 22 11:59:53 vps691689 sshd[18618]: Failed password for invalid user cloudsigma from 51.77.202.178 port 33842 ssh2 ...	2019-12-22 19:23:34
54.37.204.154	attackbotsspam	Dec 22 10:09:52 server sshd\[8303\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.ip-54-37-204.eu user=root Dec 22 10:09:54 server sshd\[8303\]: Failed password for root from 54.37.204.154 port 39566 ssh2 Dec 22 10:19:35 server sshd\[11175\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.ip-54-37-204.eu user=root Dec 22 10:19:37 server sshd\[11175\]: Failed password for root from 54.37.204.154 port 39108 ssh2 Dec 22 10:24:36 server sshd\[12938\]: Invalid user buer from 54.37.204.154 Dec 22 10:24:36 server sshd\[12938\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.ip-54-37-204.eu ...	2019-12-22 19:04:04
124.156.64.185	attackbots	" "	2019-12-22 19:43:31
54.39.145.59	attack	Dec 21 23:44:51 hpm sshd\[16828\]: Invalid user olkowski from 54.39.145.59 Dec 21 23:44:51 hpm sshd\[16828\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.ip-54-39-145.net Dec 21 23:44:54 hpm sshd\[16828\]: Failed password for invalid user olkowski from 54.39.145.59 port 55554 ssh2 Dec 21 23:50:00 hpm sshd\[17310\]: Invalid user volden from 54.39.145.59 Dec 21 23:50:00 hpm sshd\[17310\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.ip-54-39-145.net	2019-12-22 19:07:29
202.129.80.225	attackspambots	Unauthorized connection attempt detected from IP address 202.129.80.225 to port 1433	2019-12-22 19:27:12
121.132.213.213	attackbots	Scanning	2019-12-22 19:02:16

最近上报的IP列表

27.76.222.215	14.47.14.44	218.20.10.10	110.137.2.109
123.28.156.121	138.197.154.79	183.87.107.210	182.253.71.108
115.124.65.62	27.34.20.71	89.160.24.135	42.231.163.120
185.46.109.41	123.231.86.189	177.22.86.49	49.233.176.124
218.186.167.25	220.142.172.143	182.125.172.31	103.82.198.25