69.16.221.16 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Liquid Web L.L.C

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Autoban 69.16.221.16 AUTH/CONNECT	2019-11-18 22:49:44
attack	Nov 4 09:33:57 web1 postfix/smtpd[5463]: warning: unknown[69.16.221.16]: SASL LOGIN authentication failed: authentication failure ...	2019-11-04 23:52:08

相同子网IP讨论:

IP	类型	评论内容	时间
69.16.221.104	attackspambots	mail auth brute force	2019-11-07 21:46:42
69.16.221.104	attackspam	2019-11-06T20:45:52.282282mail01 postfix/smtpd[28819]: warning: unknown[69.16.221.104]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-06T20:46:11.440090mail01 postfix/smtpd[25211]: warning: unknown[69.16.221.104]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-06T20:51:35.301843mail01 postfix/smtpd[26955]: warning: unknown[69.16.221.104]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-07 04:03:49
69.16.221.104	attackspambots	2019-11-06T12:17:40.340879mail01 postfix/smtpd[30152]: warning: unknown[69.16.221.104]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-06T12:18:00.447921mail01 postfix/smtpd[30049]: warning: unknown[69.16.221.104]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-06T12:23:44.251151mail01 postfix/smtpd[29554]: warning: unknown[69.16.221.104]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-06 19:25:17
69.16.221.104	attackbots	2019-11-05T21:09:11.351555mail01 postfix/smtpd[19616]: warning: unknown[69.16.221.104]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-05T21:09:30.367860mail01 postfix/smtpd[19616]: warning: unknown[69.16.221.104]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-05T21:14:56.099133mail01 postfix/smtpd[12332]: warning: unknown[69.16.221.104]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-06 04:25:46
69.16.221.11	attackbotsspam	Nov 4 18:06:15 mail postfix/smtpd[7307]: warning: host1.bartervoip.com[69.16.221.11]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 4 18:11:14 mail postfix/smtpd[8900]: warning: host1.bartervoip.com[69.16.221.11]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 4 18:12:00 mail postfix/smtpd[8899]: warning: host1.bartervoip.com[69.16.221.11]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-05 01:13:27
69.16.221.104	attackbots	2019-11-04T14:22:04.344777mail01 postfix/smtpd[24738]: warning: unknown[69.16.221.104]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-04T14:22:23.038043mail01 postfix/smtpd[21003]: warning: unknown[69.16.221.104]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-04T14:28:28.344158mail01 postfix/smtpd[21099]: warning: unknown[69.16.221.104]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-04 21:32:56
69.16.221.11	attackbotsspam	Nov 4 13:42:10 mail postfix/smtpd[28192]: warning: host1.bartervoip.com[69.16.221.11]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 4 13:47:30 mail postfix/smtpd[29648]: warning: host1.bartervoip.com[69.16.221.11]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 4 13:50:37 mail postfix/smtpd[30230]: warning: host1.bartervoip.com[69.16.221.11]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-04 20:54:20
69.16.221.11	attackspambots	Nov 4 06:12:18 mail postfix/smtpd[26195]: warning: host1.bartervoip.com[69.16.221.11]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 4 06:15:30 mail postfix/smtpd[27862]: warning: host1.bartervoip.com[69.16.221.11]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 4 06:21:13 mail postfix/smtpd[30601]: warning: host1.bartervoip.com[69.16.221.11]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-04 13:32:16
69.16.221.87	attackspam	Nov 3 15:45:00 web1 postfix/smtpd[1013]: warning: unknown[69.16.221.87]: SASL LOGIN authentication failed: authentication failure ...	2019-11-04 06:26:31
69.16.221.104	attackspam	2019-11-03T22:41:22.003857mail01 postfix/smtpd[23944]: warning: unknown[69.16.221.104]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-03T22:41:42.300550mail01 postfix/smtpd[10235]: warning: unknown[69.16.221.104]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-03T22:47:22.440062mail01 postfix/smtpd[10225]: warning: unknown[69.16.221.104]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-04 05:55:15
69.16.221.11	attackspam	Nov 3 20:15:27 mail postfix/smtpd[9301]: warning: host1.bartervoip.com[69.16.221.11]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 3 20:16:02 mail postfix/smtpd[9288]: warning: host1.bartervoip.com[69.16.221.11]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 3 20:21:07 mail postfix/smtpd[9311]: warning: host1.bartervoip.com[69.16.221.11]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-04 03:30:12
69.16.221.104	attackbotsspam	2019-11-02T06:04:41.136774mail01 postfix/smtpd[18797]: warning: unknown[69.16.221.104]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-02T06:08:03.300200mail01 postfix/smtpd[23754]: warning: unknown[69.16.221.104]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-02T06:11:26.342695mail01 postfix/smtpd[9612]: warning: unknown[69.16.221.104]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-02 13:14:09
69.16.221.88	attackbots	Hits on port : 10022	2019-09-10 14:04:42
69.16.221.88	attackbots	(sshd) Failed SSH login from 69.16.221.88 (US/United States/dev02.bartervoip.com): 5 in the last 3600 secs	2019-09-10 03:38:44

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 69.16.221.16
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57793
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;69.16.221.16.			IN	A

;; AUTHORITY SECTION:
.			553	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110400 1800 900 604800 86400

;; Query time: 124 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 04 23:52:04 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

16.221.16.69.in-addr.arpa domain name pointer host4.bartervoip.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
16.221.16.69.in-addr.arpa	name = host4.bartervoip.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
142.44.247.87	attackbots	2019-07-29T00:24:48.956686abusebot-5.cloudsearch.cf sshd\[29539\]: Invalid user gallon from 142.44.247.87 port 46026	2019-07-29 09:04:25
206.189.136.160	attackspam	IP attempted unauthorised action	2019-07-29 08:52:01
178.128.48.92	attackbotsspam	Jul 29 01:46:46 debian sshd\[1999\]: Invalid user icd from 178.128.48.92 port 52850 Jul 29 01:46:46 debian sshd\[1999\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.48.92 ...	2019-07-29 08:57:58
49.88.112.59	attackbotsspam	SSH bruteforce (Triggered fail2ban)	2019-07-29 09:33:13
68.183.190.251	attack	Jul 29 00:47:09 MK-Soft-VM7 sshd\[3425\]: Invalid user iptv!@\# from 68.183.190.251 port 36866 Jul 29 00:47:09 MK-Soft-VM7 sshd\[3425\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.190.251 Jul 29 00:47:11 MK-Soft-VM7 sshd\[3425\]: Failed password for invalid user iptv!@\# from 68.183.190.251 port 36866 ssh2 ...	2019-07-29 08:49:29
188.165.44.159	attackspam	Jul 27 02:11:57 wordpress sshd[6174]: Did not receive identification string from 188.165.44.159 Jul 27 02:14:35 wordpress sshd[6204]: Invalid user serverpilot from 188.165.44.159 Jul 27 02:14:35 wordpress sshd[6204]: Received disconnect from 188.165.44.159 port 41850:11: Normal Shutdown, Thank you for playing [preauth] Jul 27 02:14:35 wordpress sshd[6204]: Disconnected from 188.165.44.159 port 41850 [preauth] Jul 27 02:16:36 wordpress sshd[6231]: Invalid user serverpilot from 188.165.44.159 Jul 27 02:16:37 wordpress sshd[6231]: Received disconnect from 188.165.44.159 port 35026:11: Normal Shutdown, Thank you for playing [preauth] Jul 27 02:16:37 wordpress sshd[6231]: Disconnected from 188.165.44.159 port 35026 [preauth] Jul 27 02:18:10 wordpress sshd[6253]: Invalid user serverpilot from 188.165.44.159 Jul 27 02:18:10 wordpress sshd[6253]: Received disconnect from 188.165.44.159 port 56431:11: Normal Shutdown, Thank you for playing [preauth] Jul 27 02:18:10 wordpress ssh........ -------------------------------	2019-07-29 09:22:14
148.64.98.84	attackbots	Honeypot attack, port: 23, PTR: 148-64-98-84.PUBLIC.monkeybrains.net.	2019-07-29 09:09:48
93.42.182.192	attackspam	2019-07-28T23:32:37.601638abusebot-7.cloudsearch.cf sshd\[18411\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-182-192.ip87.fastwebnet.it user=root	2019-07-29 08:49:43
5.135.105.44	attackspam	2019/07/28 23:27:17 [error] 1240#1240: 980 FastCGI sent in stderr: "PHP message: [5.135.105.44] user 9had: authentication failure for "https://nihad.dk/wp-admin/": Password Mismatch" while reading response header from upstream, client: 5.135.105.44, server: nihad.dk, request: "POST /wp-login.php HTTP/1.1", upstream: "fastcgi://unix:/var/run/php-fpm-nihad.dk.sock:", host: "nihad.dk" 2019/07/28 23:27:17 [error] 1240#1240: 982 FastCGI sent in stderr: "PHP message: [5.135.105.44] user [login]: authentication failure for "https://nihad.dk/wp-admin/": Password Mismatch" while reading response header from upstream, client: 5.135.105.44, server: nihad.dk, request: "POST /xmlrpc.php HTTP/1.1", upstream: "fastcgi://unix:/var/run/php-fpm-nihad.dk.sock:", host: "nihad.dk" ...	2019-07-29 09:21:56
116.1.3.209	attackspam	28.07.2019 21:28:00 SSH access blocked by firewall	2019-07-29 09:06:19
179.7.192.221	attackbots	postfix-gen jail [ma]	2019-07-29 09:24:59
45.172.190.10	attackbotsspam	Automatic report - Port Scan Attack	2019-07-29 09:08:45
80.211.187.250	attackspambots	Jul 26 17:22:23 ingram sshd[19586]: Failed password for r.r from 80.211.187.250 port 35538 ssh2 Jul 26 20:58:48 ingram sshd[21626]: Failed password for r.r from 80.211.187.250 port 40738 ssh2 Jul 26 21:06:06 ingram sshd[21707]: Failed password for r.r from 80.211.187.250 port 37190 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=80.211.187.250	2019-07-29 09:18:19
202.59.171.171	attackspambots	SPAM Delivery Attempt	2019-07-29 08:57:30
193.112.82.5	attackspam	Jul 28 20:34:39 xtremcommunity sshd\[23977\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.82.5 user=root Jul 28 20:34:41 xtremcommunity sshd\[23977\]: Failed password for root from 193.112.82.5 port 36932 ssh2 Jul 28 20:39:26 xtremcommunity sshd\[833\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.82.5 user=root Jul 28 20:39:28 xtremcommunity sshd\[833\]: Failed password for root from 193.112.82.5 port 56392 ssh2 Jul 28 20:44:04 xtremcommunity sshd\[9777\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.82.5 user=root ...	2019-07-29 09:09:06

最近上报的IP列表

190.22.167.147	105.235.137.32	191.34.106.219	109.92.142.234
182.97.113.36	95.211.162.11	77.121.5.14	120.28.162.134
112.25.76.8	34.213.111.117	200.37.108.33	192.241.161.115
186.96.110.3	170.80.226.112	52.58.140.147	119.81.225.28
27.45.85.45	47.100.101.224	223.97.199.28	122.118.220.182