必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.17.104.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8045
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.17.104.166.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012101 1800 900 604800 86400

;; Query time: 38 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 22 02:04:28 CST 2025
;; MSG SIZE  rcvd: 107
HOST信息:
Host 166.104.17.116.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 166.104.17.116.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
68.183.211.45 attackbots
2019/07/28 23:49:21 [error] 1240#1240: *1326 FastCGI sent in stderr: "PHP message: [68.183.211.45] user 9had: authentication failure for "https://nihad.dk/wp-admin/": Password Mismatch" while reading response header from upstream, client: 68.183.211.45, server: nihad.dk, request: "POST /wp-login.php HTTP/1.1", upstream: "fastcgi://unix:/var/run/php-fpm-nihad.dk.sock:", host: "nihad.dk"
2019/07/28 23:49:22 [error] 1240#1240: *1328 FastCGI sent in stderr: "PHP message: [68.183.211.45] user [login]: authentication failure for "https://nihad.dk/wp-admin/": Password Mismatch" while reading response header from upstream, client: 68.183.211.45, server: nihad.dk, request: "POST /xmlrpc.php HTTP/1.1", upstream: "fastcgi://unix:/var/run/php-fpm-nihad.dk.sock:", host: "nihad.dk"
...
2019-07-29 09:56:50
157.230.43.173 attack
Jul 29 01:55:14 Ubuntu-1404-trusty-64-minimal sshd\[2358\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.43.173  user=root
Jul 29 01:55:16 Ubuntu-1404-trusty-64-minimal sshd\[2358\]: Failed password for root from 157.230.43.173 port 32952 ssh2
Jul 29 02:11:25 Ubuntu-1404-trusty-64-minimal sshd\[12192\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.43.173  user=root
Jul 29 02:11:27 Ubuntu-1404-trusty-64-minimal sshd\[12192\]: Failed password for root from 157.230.43.173 port 56290 ssh2
Jul 29 02:16:35 Ubuntu-1404-trusty-64-minimal sshd\[13366\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.43.173  user=root
2019-07-29 09:52:27
203.196.52.45 attackspam
Automatic report - Port Scan Attack
2019-07-29 09:46:08
78.141.200.18 attackbotsspam
port scan and connect, tcp 3306 (mysql)
2019-07-29 09:16:34
189.163.201.144 attackbots
Jul 26 21:40:45 rb06 sshd[28492]: reveeclipse mapping checking getaddrinfo for dsl-189-163-201-144-dyn.prod-infinhostnameum.com.mx [189.163.201.144] failed - POSSIBLE BREAK-IN ATTEMPT!
Jul 26 21:40:45 rb06 sshd[28492]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.163.201.144  user=r.r
Jul 26 21:40:47 rb06 sshd[28492]: Failed password for r.r from 189.163.201.144 port 12313 ssh2
Jul 26 21:40:47 rb06 sshd[28492]: Received disconnect from 189.163.201.144: 11: Bye Bye [preauth]
Jul 26 21:50:42 rb06 sshd[32144]: reveeclipse mapping checking getaddrinfo for dsl-189-163-201-144-dyn.prod-infinhostnameum.com.mx [189.163.201.144] failed - POSSIBLE BREAK-IN ATTEMPT!
Jul 26 21:50:42 rb06 sshd[32144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.163.201.144  user=r.r
Jul 26 
.... truncated .... 

Jul 26 21:40:45 rb06 sshd[28492]: reveeclipse mapping checking getaddrinfo for dsl-189-163-201-........
-------------------------------
2019-07-29 09:37:17
223.167.18.193 attackspambots
Jul 28 23:26:01 pornomens sshd\[21502\]: Invalid user passw0wd from 223.167.18.193 port 47580
Jul 28 23:26:01 pornomens sshd\[21502\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.167.18.193
Jul 28 23:26:02 pornomens sshd\[21502\]: Failed password for invalid user passw0wd from 223.167.18.193 port 47580 ssh2
...
2019-07-29 09:55:33
193.46.24.168 attackspambots
Jul 28 23:42:56 localhost sshd\[6475\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.46.24.168  user=root
Jul 28 23:42:58 localhost sshd\[6475\]: Failed password for root from 193.46.24.168 port 42814 ssh2
Jul 29 00:04:52 localhost sshd\[6788\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.46.24.168  user=root
...
2019-07-29 09:31:29
220.83.143.26 attack
" "
2019-07-29 09:50:56
95.111.59.210 attack
Jul 27 04:39:06 pl3server sshd[2555911]: Bad protocol version identification '' from 95.111.59.210 port 41134
Jul 27 04:39:12 pl3server sshd[2555912]: reveeclipse mapping checking getaddrinfo for ip-95-111-59-210.home.megalan.bg [95.111.59.210] failed - POSSIBLE BREAK-IN ATTEMPT!
Jul 27 04:39:12 pl3server sshd[2555912]: Invalid user nexthink from 95.111.59.210
Jul 27 04:39:12 pl3server sshd[2555912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.111.59.210


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=95.111.59.210
2019-07-29 09:28:10
188.76.207.150 attackspam
188.76.207.150 - - [28/Jul/2019:23:26:00 +0200] "GET /xmlrpc.php HTTP/1.1" 302 569
...
2019-07-29 09:57:29
51.38.232.163 attackbotsspam
Jul 29 03:07:43 SilenceServices sshd[6488]: Failed password for root from 51.38.232.163 port 60802 ssh2
Jul 29 03:12:03 SilenceServices sshd[9152]: Failed password for root from 51.38.232.163 port 56322 ssh2
2019-07-29 09:34:02
81.22.45.22 attack
Jul 29 02:20:37 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.22 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=15808 PROTO=TCP SPT=43420 DPT=33372 WINDOW=1024 RES=0x00 SYN URGP=0 
...
2019-07-29 09:43:52
5.135.105.44 attackspam
2019/07/28 23:27:17 [error] 1240#1240: *980 FastCGI sent in stderr: "PHP message: [5.135.105.44] user 9had: authentication failure for "https://nihad.dk/wp-admin/": Password Mismatch" while reading response header from upstream, client: 5.135.105.44, server: nihad.dk, request: "POST /wp-login.php HTTP/1.1", upstream: "fastcgi://unix:/var/run/php-fpm-nihad.dk.sock:", host: "nihad.dk"
2019/07/28 23:27:17 [error] 1240#1240: *982 FastCGI sent in stderr: "PHP message: [5.135.105.44] user [login]: authentication failure for "https://nihad.dk/wp-admin/": Password Mismatch" while reading response header from upstream, client: 5.135.105.44, server: nihad.dk, request: "POST /xmlrpc.php HTTP/1.1", upstream: "fastcgi://unix:/var/run/php-fpm-nihad.dk.sock:", host: "nihad.dk"
...
2019-07-29 09:21:56
59.88.68.222 attackbots
Automatic report - Port Scan Attack
2019-07-29 09:50:00
185.86.149.2 attack
Probing sign-up form.
2019-07-29 09:56:23

最近上报的IP列表

106.204.167.35 246.172.28.1 136.127.116.27 193.21.11.179
159.224.62.93 234.134.32.148 116.27.89.35 148.154.5.70
90.100.65.198 189.253.106.210 64.163.187.145 248.96.102.35
98.75.144.211 212.70.21.241 249.98.173.80 41.187.250.128
239.24.172.155 173.197.162.171 4.248.196.73 123.217.134.203