123.16.6.80 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-06-30 18:30:45

相同子网IP讨论:

IP	类型	评论内容	时间
123.16.66.218	attackspam	1594778412 - 07/15/2020 04:00:12 Host: 123.16.66.218/123.16.66.218 Port: 445 TCP Blocked	2020-07-15 17:47:32
123.16.62.10	attackspam	1593402780 - 06/29/2020 05:53:00 Host: 123.16.62.10/123.16.62.10 Port: 445 TCP Blocked	2020-06-29 16:57:49
123.16.61.18	attack	Apr 26 11:26:11 XXXXXX sshd[40475]: Invalid user admin from 123.16.61.18 port 40368	2020-04-27 02:02:02
123.16.68.83	attackbots	Email rejected due to spam filtering	2020-03-10 03:45:36
123.16.61.135	attackspambots	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-03-07 14:52:52
123.16.60.247	attackbotsspam	Unauthorized connection attempt detected from IP address 123.16.60.247 to port 5555 [J]	2020-03-01 05:37:26
123.16.66.38	attack	Unauthorized connection attempt detected from IP address 123.16.66.38 to port 445	2020-02-08 13:19:02
123.16.62.140	attackbotsspam	Unauthorized connection attempt detected from IP address 123.16.62.140 to port 8081 [J]	2020-01-12 23:05:35
123.16.64.44	attackspam	20/1/2@09:57:59: FAIL: Alarm-Network address from=123.16.64.44 20/1/2@09:57:59: FAIL: Alarm-Network address from=123.16.64.44 ...	2020-01-02 23:21:33
123.16.62.200	attack	Lines containing failures of 123.16.62.200 Dec 24 06:47:33 metroid sshd[23131]: warning: /etc/hosts.deny, line 18: host name/address mismatch: 123.16.62.200 != static.vnpt.vn Dec 24 06:47:33 metroid sshd[23131]: refused connect from 123.16.62.200 (123.16.62.200) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=123.16.62.200	2019-12-29 19:55:25
123.16.62.200	attack	Automatic report - SSH Brute-Force Attack	2019-12-25 07:55:25
123.16.60.175	attack	Sep 30 14:17:24 [munged] sshd[21882]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.16.60.175	2019-09-30 20:50:41
123.16.61.222	attack	IP: 123.16.61.222 ASN: AS45899 VNPT Corp Port: Message Submission 587 Found in one or more Blacklists Date: 28/07/2019 1:13:30 AM UTC	2019-07-28 11:42:58
123.16.67.174	attack	SSH authentication failure x 6 reported by Fail2Ban ...	2019-07-18 23:03:01
123.16.61.152	attackbots	Unauthorized connection attempt from IP address 123.16.61.152 on Port 445(SMB)	2019-07-11 12:54:35

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 123.16.6.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57315
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;123.16.6.80.			IN	A

;; AUTHORITY SECTION:
.			496	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020063000 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 30 18:30:40 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

80.6.16.123.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
80.6.16.123.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
213.202.100.79	attack	Automatic report - Banned IP Access	2019-08-07 08:39:07
81.22.45.63	attack	3389/tcp 3389/tcp 3389/tcp... [2019-06-06/08-06]63pkt,1pt.(tcp)	2019-08-07 09:05:21
218.76.158.162	attackspambots	Aug 7 05:21:27 vibhu-HP-Z238-Microtower-Workstation sshd\[22028\]: Invalid user yarn from 218.76.158.162 Aug 7 05:21:27 vibhu-HP-Z238-Microtower-Workstation sshd\[22028\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.76.158.162 Aug 7 05:21:29 vibhu-HP-Z238-Microtower-Workstation sshd\[22028\]: Failed password for invalid user yarn from 218.76.158.162 port 45202 ssh2 Aug 7 05:25:54 vibhu-HP-Z238-Microtower-Workstation sshd\[22158\]: Invalid user VM from 218.76.158.162 Aug 7 05:25:54 vibhu-HP-Z238-Microtower-Workstation sshd\[22158\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.76.158.162 ...	2019-08-07 09:15:22
14.161.8.109	attack	Aug 6 21:44:56 MK-Soft-VM5 sshd\[12567\]: Invalid user admin from 14.161.8.109 port 40238 Aug 6 21:44:56 MK-Soft-VM5 sshd\[12567\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.161.8.109 Aug 6 21:44:58 MK-Soft-VM5 sshd\[12567\]: Failed password for invalid user admin from 14.161.8.109 port 40238 ssh2 ...	2019-08-07 08:28:38
107.170.200.66	attackspambots	2078/tcp 31690/tcp 1400/tcp... [2019-06-08/08-06]59pkt,50pt.(tcp),3pt.(udp)	2019-08-07 08:53:21
218.215.188.167	attack	$f2bV_matches	2019-08-07 08:27:46
81.22.45.146	attack	Aug 7 02:22:30 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.146 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=21409 PROTO=TCP SPT=56288 DPT=3389 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-08-07 09:05:49
117.93.112.166	attack	20 attempts against mh-ssh on beach.magehost.pro	2019-08-07 08:52:59
167.99.79.156	attackspambots	167.99.79.156 - - [06/Aug/2019:23:43:15 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.99.79.156 - - [06/Aug/2019:23:43:16 +0200] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.99.79.156 - - [06/Aug/2019:23:43:17 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.99.79.156 - - [06/Aug/2019:23:43:18 +0200] "POST /wp-login.php HTTP/1.1" 200 1607 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.99.79.156 - - [06/Aug/2019:23:43:18 +0200] "GET /wp-login.php HTTP/1.1" 200 1237 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.99.79.156 - - [06/Aug/2019:23:43:19 +0200] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-08-07 09:02:48
196.52.43.118	attack	9200/tcp 4786/tcp 9418/tcp... [2019-06-07/08-06]36pkt,24pt.(tcp),7pt.(udp),1tp.(icmp)	2019-08-07 08:57:32
209.17.97.106	attackspam	Brute force attack stopped by firewall	2019-08-07 08:55:47
103.1.40.189	attackspambots	Aug 7 02:00:20 mout sshd[16837]: Invalid user jira from 103.1.40.189 port 60646	2019-08-07 08:37:16
187.109.10.100	attack	Aug 7 00:39:57 vpn01 sshd\[1276\]: Invalid user kathi from 187.109.10.100 Aug 7 00:39:57 vpn01 sshd\[1276\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.109.10.100 Aug 7 00:39:59 vpn01 sshd\[1276\]: Failed password for invalid user kathi from 187.109.10.100 port 37156 ssh2	2019-08-07 08:54:55
164.52.24.164	attack	Automatic report - Banned IP Access	2019-08-07 08:46:29
142.44.161.65	attackspambots	Aug 7 02:57:07 localhost sshd\[22340\]: Invalid user cmte from 142.44.161.65 port 48750 Aug 7 02:57:07 localhost sshd\[22340\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.161.65 Aug 7 02:57:09 localhost sshd\[22340\]: Failed password for invalid user cmte from 142.44.161.65 port 48750 ssh2	2019-08-07 09:04:49

最近上报的IP列表

120.244.232.211	11.98.34.171	231.103.120.177	60.190.63.70
95.97.232.171	203.101.165.73	191.34.41.204	240.5.188.200
107.173.177.168	14.234.3.222	145.239.10.50	193.27.229.18
150.158.184.178	189.210.128.208	223.206.218.176	114.67.224.247
64.227.75.188	223.17.181.62	13.71.119.38	45.182.51.244