必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.131.93.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38477
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;105.131.93.49.			IN	A

;; AUTHORITY SECTION:
.			281	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023112203 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Nov 23 10:28:20 CST 2023
;; MSG SIZE  rcvd: 106
HOST信息:
Host 49.93.131.105.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 49.93.131.105.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
188.163.89.136 attackspambots
188.163.89.136 - [08/Sep/2020:13:51:05 +0300] "POST /wp-login.php HTTP/1.1" 404 8609 "https://varpunen.fi/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2785.143 Safari/537.36" "5.13"
188.163.89.136 - [08/Sep/2020:13:51:07 +0300] "POST /wp-login.php HTTP/1.1" 404 8609 "https://varpunen.fi/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2785.143 Safari/537.36" "5.13"
188.163.89.136 - [08/Sep/2020:13:54:46 +0300] "POST /wp-login.php HTTP/1.1" 404 8609 "https://varpunen.fi/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2785.143 Safari/537.36" "5.13"
188.163.89.136 - [08/Sep/2020:13:55:00 +0300] "POST /wp-login.php HTTP/1.1" 404 8609 "https://varpunen.fi/wp-login.php" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/53.0.2785.143 Safari/537.36" "5.13"
188.163.89.136 - [08/Sep/2020:13:58:26 +
...
2020-09-08 19:02:32
182.23.3.226 attack
Sep  8 09:13:57 root sshd[32525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.23.3.226 
...
2020-09-08 19:32:40
51.89.149.241 attackbots
Sep  8 11:18:58 serwer sshd\[5781\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.89.149.241  user=root
Sep  8 11:19:01 serwer sshd\[5781\]: Failed password for root from 51.89.149.241 port 47182 ssh2
Sep  8 11:24:07 serwer sshd\[6349\]: Invalid user flores2 from 51.89.149.241 port 51996
Sep  8 11:24:07 serwer sshd\[6349\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.89.149.241
Sep  8 11:24:09 serwer sshd\[6349\]: Failed password for invalid user flores2 from 51.89.149.241 port 51996 ssh2
Sep  8 11:29:03 serwer sshd\[6866\]: Invalid user shader from 51.89.149.241 port 56802
Sep  8 11:29:03 serwer sshd\[6866\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.89.149.241
Sep  8 11:29:05 serwer sshd\[6866\]: Failed password for invalid user shader from 51.89.149.241 port 56802 ssh2
Sep  8 11:33:45 serwer sshd\[7674\]: pam_unix\(sshd:auth\): authen
...
2020-09-08 19:31:51
45.61.136.79 attackbots
 TCP (SYN) 45.61.136.79:50876 -> port 3389, len 44
2020-09-08 19:12:05
119.29.41.117 attack
...
2020-09-08 19:05:53
111.38.26.173 attack
D-Link DAP-1860 Remote Command Injection Vulnerability, PTR: PTR record not found
2020-09-08 19:33:55
218.92.0.168 attackspam
(sshd) Failed SSH login from 218.92.0.168 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep  8 06:59:55 optimus sshd[7273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.168  user=root
Sep  8 06:59:56 optimus sshd[7275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.168  user=root
Sep  8 06:59:57 optimus sshd[7273]: Failed password for root from 218.92.0.168 port 64970 ssh2
Sep  8 06:59:59 optimus sshd[7275]: Failed password for root from 218.92.0.168 port 32704 ssh2
Sep  8 06:59:59 optimus sshd[7283]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.168  user=root
2020-09-08 19:06:56
198.71.239.36 attackbots
Automatic report - Banned IP Access
2020-09-08 19:13:56
129.150.222.204 attackspambots
srvr2: (mod_security) mod_security (id:920350) triggered by 129.150.222.204 (US/-/oc-129-150-222-204.compute.oraclecloud.com): 1 in the last 600 secs; Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/07 18:47:02 [error] 260960#0: *252580 [client 129.150.222.204] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host'  [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "159949722274.418435"] [ref "o0,17v21,17"], client: 129.150.222.204, [redacted] request: "GET / HTTP/1.1" [redacted]
2020-09-08 19:11:23
192.99.59.91 attackbotsspam
Sep  8 03:36:13 ajax sshd[31196]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.59.91 
Sep  8 03:36:15 ajax sshd[31196]: Failed password for invalid user test from 192.99.59.91 port 58386 ssh2
2020-09-08 19:12:58
106.12.205.137 attack
Sep  8 11:46:40 fhem-rasp sshd[27719]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.205.137
Sep  8 11:46:41 fhem-rasp sshd[27719]: Failed password for invalid user admin from 106.12.205.137 port 53122 ssh2
...
2020-09-08 19:09:10
94.11.82.26 attackbots
94.11.82.26 - - [07/Sep/2020:18:38:12 +0200] "POST /xmlrpc.php HTTP/1.1" 403 548 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)"
94.11.82.26 - - [07/Sep/2020:18:46:46 +0200] "POST /xmlrpc.php HTTP/1.1" 403 548 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)"
...
2020-09-08 19:24:22
175.6.108.213 attackspam
SIP/5060 Probe, BF, Hack -
2020-09-08 19:05:37
106.13.232.79 attack
ET CINS Active Threat Intelligence Poor Reputation IP group 99 - port: 20323 proto: tcp cat: Misc Attackbytes: 60
2020-09-08 19:15:43
221.207.8.254 attack
Sep  8 06:12:09 root sshd[4338]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.207.8.254 
Sep  8 06:31:57 root sshd[25000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.207.8.254 
...
2020-09-08 19:25:11

最近上报的IP列表

105.132.182.14 105.131.79.16 105.132.115.7 105.132.20.178
105.132.216.192 105.132.134.24 105.132.118.155 105.131.81.138
105.133.54.122 105.132.144.173 105.131.32.19 105.132.193.59
105.131.65.158 105.131.78.190 105.131.85.167 105.132.10.151
105.132.114.0 105.131.220.89 105.131.61.13 105.132.128.82