必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.21.91.147
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5880
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.21.91.147.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021701 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 03:14:34 CST 2022
;; MSG SIZE  rcvd: 106
HOST信息:
Host 147.91.21.104.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 147.91.21.104.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
89.109.23.190 attackbotsspam
$f2bV_matches
2019-10-07 20:32:45
45.142.195.5 attack
Oct  7 12:23:24 heicom postfix/smtpd\[15092\]: warning: unknown\[45.142.195.5\]: SASL LOGIN authentication failed: authentication failure
Oct  7 12:24:10 heicom postfix/smtpd\[15092\]: warning: unknown\[45.142.195.5\]: SASL LOGIN authentication failed: authentication failure
Oct  7 12:24:56 heicom postfix/smtpd\[15092\]: warning: unknown\[45.142.195.5\]: SASL LOGIN authentication failed: authentication failure
Oct  7 12:25:44 heicom postfix/smtpd\[15092\]: warning: unknown\[45.142.195.5\]: SASL LOGIN authentication failed: authentication failure
Oct  7 12:26:32 heicom postfix/smtpd\[17024\]: warning: unknown\[45.142.195.5\]: SASL LOGIN authentication failed: authentication failure
...
2019-10-07 20:37:18
109.169.64.234 attack
Automated report (2019-10-07T11:47:14+00:00). Probe detected.
2019-10-07 21:06:13
185.23.201.206 attack
php WP PHPmyadamin ABUSE blocked for 12h
2019-10-07 20:34:55
163.172.180.179 attackspambots
Automatic report - Banned IP Access
2019-10-07 21:04:35
157.245.143.221 attackspam
Honeypot hit.
2019-10-07 20:41:24
5.196.217.179 attack
Oct  7 11:46:05  postfix/smtpd: warning: unknown[5.196.217.179]: SASL LOGIN authentication failed
2019-10-07 20:25:57
188.158.180.75 attackspambots
IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/188.158.180.75/ 
 IR - 1H : (80)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : IR 
 NAME ASN : ASN39501 
 
 IP : 188.158.180.75 
 
 CIDR : 188.158.160.0/19 
 
 PREFIX COUNT : 91 
 
 UNIQUE IP COUNT : 203776 
 
 
 WYKRYTE ATAKI Z ASN39501 :  
  1H - 1 
  3H - 1 
  6H - 1 
 12H - 1 
 24H - 4 
 
 DateTime : 2019-10-07 13:47:32 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery
2019-10-07 20:51:50
194.181.185.102 attack
/var/log/messages:Oct  7 10:35:10 sanyalnet-cloud-vps audispd: node=sanyalnet-cloud-vps.freeddns.org type=CRYPTO_SESSION msg=audhostname(1570444510.085:133875): pid=20987 uid=0 auid=4294967295 ses=4294967295 msg='op=start direction=from-server cipher=aes256-ctr ksize=256 mac=hmac-sha1 pfs=ecdh-sha2-nistp256 spid=20988 suid=74 rport=39174 laddr=104.167.106.93 lport=23  exe="/usr/sbin/sshd" hostname=? addr=194.181.185.102 terminal=? res=success'
/var/log/messages:Oct  7 10:35:10 sanyalnet-cloud-vps audispd: node=sanyalnet-cloud-vps.freeddns.org type=CRYPTO_SESSION msg=audhostname(1570444510.089:133876): pid=20987 uid=0 auid=4294967295 ses=4294967295 msg='op=start direction=from-client cipher=aes256-ctr ksize=256 mac=hmac-sha1 pfs=ecdh-sha2-nistp256 spid=20988 suid=74 rport=39174 laddr=104.167.106.93 lport=23  exe="/usr/sbin/sshd" hostname=? addr=194.181.185.102 terminal=? res=success'
/var/log/messages:Oct  7 10:35:10 sanyalnet-cloud-vps fail2ban.filter[1378]: INFO [sshd]........
-------------------------------
2019-10-07 20:45:13
201.235.19.122 attackspambots
Oct  7 02:29:08 auw2 sshd\[30442\]: Invalid user Game123 from 201.235.19.122
Oct  7 02:29:08 auw2 sshd\[30442\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122-19-235-201.fibertel.com.ar
Oct  7 02:29:10 auw2 sshd\[30442\]: Failed password for invalid user Game123 from 201.235.19.122 port 43277 ssh2
Oct  7 02:34:33 auw2 sshd\[30879\]: Invalid user Kitty@2017 from 201.235.19.122
Oct  7 02:34:33 auw2 sshd\[30879\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122-19-235-201.fibertel.com.ar
2019-10-07 20:43:30
41.212.141.245 attackbotsspam
IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/41.212.141.245/ 
 MU - 1H : (5)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : MU 
 NAME ASN : ASN23889 
 
 IP : 41.212.141.245 
 
 CIDR : 41.212.140.0/23 
 
 PREFIX COUNT : 521 
 
 UNIQUE IP COUNT : 946944 
 
 
 WYKRYTE ATAKI Z ASN23889 :  
  1H - 1 
  3H - 1 
  6H - 2 
 12H - 2 
 24H - 5 
 
 DateTime : 2019-10-07 13:47:32 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery
2019-10-07 20:52:32
157.52.229.199 attack
Oct  7 13:26:01 mxgate1 postfix/postscreen[15229]: CONNECT from [157.52.229.199]:38416 to [176.31.12.44]:25
Oct  7 13:26:01 mxgate1 postfix/dnsblog[15806]: addr 157.52.229.199 listed by domain zen.spamhaus.org as 127.0.0.3
Oct  7 13:26:01 mxgate1 postfix/dnsblog[15808]: addr 157.52.229.199 listed by domain bl.spamcop.net as 127.0.0.2
Oct  7 13:26:07 mxgate1 postfix/postscreen[15229]: DNSBL rank 3 for [157.52.229.199]:38416
Oct x@x
Oct  7 13:26:07 mxgate1 postfix/postscreen[15229]: DISCONNECT [157.52.229.199]:38416


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=157.52.229.199
2019-10-07 20:51:09
1.179.185.50 attackspambots
Oct  7 14:44:13 dedicated sshd[24157]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.179.185.50  user=root
Oct  7 14:44:16 dedicated sshd[24157]: Failed password for root from 1.179.185.50 port 35732 ssh2
2019-10-07 20:50:14
51.15.211.148 attackbots
Oct  7 11:43:44 localhost sshd\[107740\]: Invalid user 123Serial from 51.15.211.148 port 39996
Oct  7 11:43:44 localhost sshd\[107740\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.211.148
Oct  7 11:43:45 localhost sshd\[107740\]: Failed password for invalid user 123Serial from 51.15.211.148 port 39996 ssh2
Oct  7 11:47:38 localhost sshd\[107859\]: Invalid user Passwort@12 from 51.15.211.148 port 52306
Oct  7 11:47:38 localhost sshd\[107859\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.211.148
...
2019-10-07 20:47:27
119.29.242.48 attackspambots
Oct  7 12:35:00 work-partkepr sshd\[29708\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.242.48  user=root
Oct  7 12:35:02 work-partkepr sshd\[29708\]: Failed password for root from 119.29.242.48 port 50388 ssh2
...
2019-10-07 21:00:30

最近上报的IP列表

104.21.91.140 104.21.91.142 104.21.91.149 104.21.91.148
104.21.91.151 104.21.91.15 104.21.91.145 104.21.91.146
104.21.91.143 104.21.91.144 104.21.91.153 104.21.91.158
104.21.91.16 104.21.91.166 104.21.91.161 104.21.91.165
104.21.91.17 104.21.91.169 104.21.91.167 104.21.91.168