116.49.27.95 - IPInfo

基本信息:

城市(city): Kowloon

省份(region): Kowloon City

国家(country): Hong Kong

运营商(isp): Hong Kong Telecommunications (HKT) Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Honeypot attack, port: 5555, PTR: n1164927095.netvigator.com.	2020-03-07 05:05:26

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.49.27.95
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13035
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.49.27.95.			IN	A

;; AUTHORITY SECTION:
.			416	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030601 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 07 05:05:24 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

95.27.49.116.in-addr.arpa domain name pointer n1164927095.netvigator.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
95.27.49.116.in-addr.arpa	name = n1164927095.netvigator.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
185.176.27.42	attack	Jul 24 20:05:25 debian-2gb-nbg1-2 kernel: \[17872444.863140\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.42 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=6901 PROTO=TCP SPT=53325 DPT=19164 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-25 02:32:18
185.136.192.72	attack	Jul 24 11:04:24 mail.srvfarm.net postfix/smtpd[2185003]: warning: unknown[185.136.192.72]: SASL PLAIN authentication failed: Jul 24 11:04:24 mail.srvfarm.net postfix/smtpd[2185003]: lost connection after AUTH from unknown[185.136.192.72] Jul 24 11:09:23 mail.srvfarm.net postfix/smtpd[2185298]: warning: unknown[185.136.192.72]: SASL PLAIN authentication failed: Jul 24 11:09:23 mail.srvfarm.net postfix/smtpd[2185298]: lost connection after AUTH from unknown[185.136.192.72] Jul 24 11:10:22 mail.srvfarm.net postfix/smtps/smtpd[2191171]: warning: unknown[185.136.192.72]: SASL PLAIN authentication failed:	2020-07-25 02:45:38
190.196.226.145	attackspambots	mail brute force	2020-07-25 02:56:48
170.81.19.227	attackbotsspam	Jul 24 10:54:25 mail.srvfarm.net postfix/smtpd[2184124]: warning: unknown[170.81.19.227]: SASL PLAIN authentication failed: Jul 24 10:54:25 mail.srvfarm.net postfix/smtpd[2184124]: lost connection after AUTH from unknown[170.81.19.227] Jul 24 11:02:00 mail.srvfarm.net postfix/smtpd[2189961]: warning: unknown[170.81.19.227]: SASL PLAIN authentication failed: Jul 24 11:02:00 mail.srvfarm.net postfix/smtpd[2189961]: lost connection after AUTH from unknown[170.81.19.227] Jul 24 11:03:04 mail.srvfarm.net postfix/smtps/smtpd[2191171]: warning: unknown[170.81.19.227]: SASL PLAIN authentication failed:	2020-07-25 02:49:26
114.34.214.34	attackspambots	Attempted connection to port 23.	2020-07-25 03:03:41
218.63.225.22	attackbots	Attempted connection to port 23.	2020-07-25 02:37:41
112.220.29.100	attack	$f2bV_matches	2020-07-25 03:08:12
178.122.47.243	attackbotsspam	Attempted connection to port 445.	2020-07-25 02:57:33
151.235.235.133	attackbotsspam	Attempted connection to port 8080.	2020-07-25 02:58:43
175.158.216.103	attackbotsspam	Attempted connection to port 445.	2020-07-25 02:57:52
95.222.236.144	attackspam	Jul 24 14:09:07 mail.srvfarm.net dovecot: pop3-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=95.222.236.144, lip=185.118.197.126, TLS: Connection closed, session=<5jPj1i6rGo1f3uyQ> Jul 24 14:09:33 mail.srvfarm.net dovecot: pop3-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=95.222.236.144, lip=185.118.197.126, TLS: Connection closed, session= Jul 24 14:10:13 mail.srvfarm.net dovecot: pop3-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=95.222.236.144, lip=185.118.197.126, TLS: Connection closed, session=<3JzO2i6ryqhf3uyQ> Jul 24 14:12:01 mail.srvfarm.net dovecot: pop3-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=95.222.236.144, lip=185.118.197.126, TLS: Connection closed, session= Jul 24 14:12:22 mail.srvfarm.net dovecot: pop3-logi	2020-07-25 02:59:48
37.239.32.115	attackspam	Jul 24 11:19:42 mail.srvfarm.net postfix/smtps/smtpd[2188742]: warning: unknown[37.239.32.115]: SASL PLAIN authentication failed: Jul 24 11:19:42 mail.srvfarm.net postfix/smtps/smtpd[2188742]: lost connection after AUTH from unknown[37.239.32.115] Jul 24 11:26:57 mail.srvfarm.net postfix/smtps/smtpd[2208721]: warning: unknown[37.239.32.115]: SASL PLAIN authentication failed: Jul 24 11:26:58 mail.srvfarm.net postfix/smtps/smtpd[2208721]: lost connection after AUTH from unknown[37.239.32.115] Jul 24 11:27:33 mail.srvfarm.net postfix/smtps/smtpd[2191179]: warning: unknown[37.239.32.115]: SASL PLAIN authentication failed:	2020-07-25 02:53:30
103.237.57.148	attackspam	Jul 24 10:24:21 mail.srvfarm.net postfix/smtps/smtpd[2165722]: warning: unknown[103.237.57.148]: SASL PLAIN authentication failed: Jul 24 10:24:22 mail.srvfarm.net postfix/smtps/smtpd[2165722]: lost connection after AUTH from unknown[103.237.57.148] Jul 24 10:28:28 mail.srvfarm.net postfix/smtps/smtpd[2179072]: warning: unknown[103.237.57.148]: SASL PLAIN authentication failed: Jul 24 10:28:28 mail.srvfarm.net postfix/smtps/smtpd[2179072]: lost connection after AUTH from unknown[103.237.57.148] Jul 24 10:29:38 mail.srvfarm.net postfix/smtps/smtpd[2184251]: warning: unknown[103.237.57.148]: SASL PLAIN authentication failed:	2020-07-25 02:59:27
62.31.14.199	attack	Unauthorized connection attempt from IP address 62.31.14.199 on Port 445(SMB)	2020-07-25 03:04:27
213.192.31.47	attack	Jul 24 10:52:03 mail.srvfarm.net postfix/smtps/smtpd[2188771]: warning: unknown[213.192.31.47]: SASL PLAIN authentication failed: Jul 24 10:52:03 mail.srvfarm.net postfix/smtps/smtpd[2188771]: lost connection after AUTH from unknown[213.192.31.47] Jul 24 10:59:46 mail.srvfarm.net postfix/smtps/smtpd[2191174]: warning: unknown[213.192.31.47]: SASL PLAIN authentication failed: Jul 24 10:59:46 mail.srvfarm.net postfix/smtps/smtpd[2191174]: lost connection after AUTH from unknown[213.192.31.47] Jul 24 11:01:19 mail.srvfarm.net postfix/smtpd[2184124]: warning: unknown[213.192.31.47]: SASL PLAIN authentication failed:	2020-07-25 02:39:50

最近上报的IP列表

116.35.62.0	41.131.201.121	2.141.43.0	95.182.86.196
148.71.154.47	34.93.245.159	198.24.159.43	157.35.247.194
5.139.152.204	183.129.42.115	184.14.87.206	110.251.205.233
182.45.74.161	220.64.85.150	82.117.109.15	99.9.186.76
103.139.2.154	174.153.42.8	91.62.130.215	81.177.76.245