必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): unknown

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 119.131.105.190
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28193
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;119.131.105.190.		IN	A

;; AUTHORITY SECTION:
.			101	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 11:58:08 CST 2022
;; MSG SIZE  rcvd: 108
HOST信息:
Host 190.105.131.119.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 190.105.131.119.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
160.119.141.196 attack
Too many connections or unauthorized access detected from Arctic banned ip
2019-10-13 02:50:23
132.232.14.180 attackbots
Oct 12 11:43:01 nandi sshd[14796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.14.180  user=r.r
Oct 12 11:43:03 nandi sshd[14796]: Failed password for r.r from 132.232.14.180 port 47250 ssh2
Oct 12 11:43:03 nandi sshd[14796]: Received disconnect from 132.232.14.180: 11: Bye Bye [preauth]
Oct 12 11:54:52 nandi sshd[22761]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.14.180  user=r.r
Oct 12 11:54:54 nandi sshd[22761]: Failed password for r.r from 132.232.14.180 port 60670 ssh2
Oct 12 11:54:55 nandi sshd[22761]: Received disconnect from 132.232.14.180: 11: Bye Bye [preauth]
Oct 12 11:59:49 nandi sshd[25668]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.14.180  user=r.r
Oct 12 11:59:51 nandi sshd[25668]: Failed password for r.r from 132.232.14.180 port 42630 ssh2
Oct 12 11:59:52 nandi sshd[25668]: Received disconnect from........
-------------------------------
2019-10-13 03:16:03
185.138.250.50 attackspambots
TCP src-port=38589   dst-port=25   Listed on   spam-sorbs unsubscore         (870)
2019-10-13 02:47:13
222.186.180.17 attackbotsspam
Oct 12 20:56:52 minden010 sshd[10642]: Failed password for root from 222.186.180.17 port 4464 ssh2
Oct 12 20:56:56 minden010 sshd[10642]: Failed password for root from 222.186.180.17 port 4464 ssh2
Oct 12 20:57:01 minden010 sshd[10642]: Failed password for root from 222.186.180.17 port 4464 ssh2
Oct 12 20:57:05 minden010 sshd[10642]: Failed password for root from 222.186.180.17 port 4464 ssh2
...
2019-10-13 03:06:09
159.203.197.157 attack
firewall-block, port(s): 7001/tcp
2019-10-13 03:24:56
179.111.206.154 attackbots
Oct 10 15:59:57 ihweb002 sshd[11827]: Connection from 179.111.206.154 port 31722 on 46.101.90.124 port 22
Oct 10 16:01:02 ihweb002 sshd[11832]: Connection from 179.111.206.154 port 28608 on 46.101.90.124 port 22
Oct 10 16:01:42 ihweb002 sshd[11833]: Connection from 179.111.206.154 port 1700 on 46.101.90.124 port 22
Oct 10 16:01:44 ihweb002 sshd[11833]: reveeclipse mapping checking getaddrinfo for 179-111-206-154.dsl.telesp.net.br [179.111.206.154] failed - POSSIBLE BREAK-IN ATTEMPT!
Oct 10 16:01:44 ihweb002 sshd[11833]: User r.r from 179.111.206.154 not allowed because none of user's groups are listed in AllowGroups
Oct 10 16:01:44 ihweb002 sshd[11833]: Received disconnect from 179.111.206.154: 11: Normal Shutdown, Thank you for playing [preauth]
Oct 10 16:02:15 ihweb002 sshd[11835]: Connection from 179.111.206.154 port 42385 on 46.101.90.124 port 22
Oct 10 16:02:16 ihweb002 sshd[11835]: reveeclipse mapping checking getaddrinfo for 179-111-206-154.dsl.telesp.net.br [179........
-------------------------------
2019-10-13 03:21:53
67.222.7.109 attackbotsspam
Unsolicited bulk porn & phishing - varying ISPs (primarily Chinanet); spam volume up to 15/day.  Spam series change: shift from repetitive redirects from blacklisted IP 92.63.192.124 & .151 to malicious attachments.

Unsolicited bulk spam - panotetsu.com, CHINANET hebei province network - 106.115.39.239

Permitted sender domain jmramosmejia.com.ar = 67.222.7.109 PrivateSystems Networks

Repetitive reply to:
Reply-To: nanikarige@yahoo.com = 72.30.35.9 Oath Holdings Inc.

Repetitive Apple mail:
-	boundary=" Apple-Mail-B7687EC7-712A-D2F6-E174-B1707B9FFC68"
-	X-Mailer: iPad Mail (13E238)

Spam series change: no phishing redirect spam link.  Malicious attachment - Outlook blocked access to unsafe attachment: 22.jpg
2019-10-13 03:25:54
157.230.136.255 attack
Oct 12 20:53:12 SilenceServices sshd[24172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.136.255
Oct 12 20:53:15 SilenceServices sshd[24172]: Failed password for invalid user 123 from 157.230.136.255 port 40424 ssh2
Oct 12 20:57:04 SilenceServices sshd[25213]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.136.255
2019-10-13 03:09:28
219.90.115.237 attack
Lines containing failures of 219.90.115.237
Oct  7 08:35:02 shared06 sshd[31696]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.90.115.237  user=r.r
Oct  7 08:35:04 shared06 sshd[31696]: Failed password for r.r from 219.90.115.237 port 21589 ssh2
Oct  7 08:35:04 shared06 sshd[31696]: Received disconnect from 219.90.115.237 port 21589:11: Bye Bye [preauth]
Oct  7 08:35:04 shared06 sshd[31696]: Disconnected from authenticating user r.r 219.90.115.237 port 21589 [preauth]
Oct  7 08:49:40 shared06 sshd[3547]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.90.115.237  user=r.r
Oct  7 08:49:42 shared06 sshd[3547]: Failed password for r.r from 219.90.115.237 port 28954 ssh2
Oct  7 08:49:42 shared06 sshd[3547]: Received disconnect from 219.90.115.237 port 28954:11: Bye Bye [preauth]
Oct  7 08:49:42 shared06 sshd[3547]: Disconnected from authenticating user r.r 219.90.115.237 port 28954 [pr........
------------------------------
2019-10-13 03:23:22
5.199.130.188 attackspambots
goldgier-uhren-ankauf.de:80 5.199.130.188 - - \[12/Oct/2019:16:11:34 +0200\] "POST /xmlrpc.php HTTP/1.0" 301 515 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
goldgier-uhren-ankauf.de 5.199.130.188 \[12/Oct/2019:16:11:35 +0200\] "POST /xmlrpc.php HTTP/1.0" 302 3617 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2019-10-13 02:49:45
47.88.230.242 attackbots
2019-10-12T17:53:58.814455lon01.zurich-datacenter.net sshd\[18018\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.88.230.242  user=root
2019-10-12T17:54:01.141248lon01.zurich-datacenter.net sshd\[18018\]: Failed password for root from 47.88.230.242 port 38768 ssh2
2019-10-12T17:58:42.259034lon01.zurich-datacenter.net sshd\[18108\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.88.230.242  user=root
2019-10-12T17:58:44.904640lon01.zurich-datacenter.net sshd\[18108\]: Failed password for root from 47.88.230.242 port 50400 ssh2
2019-10-12T18:03:17.745022lon01.zurich-datacenter.net sshd\[18221\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.88.230.242  user=root
...
2019-10-13 03:01:23
60.182.34.97 attackspambots
Oct 12 10:02:51 eola postfix/smtpd[3512]: warning: hostname 97.34.182.60.broad.jh.zj.dynamic.163data.com.cn does not resolve to address 60.182.34.97: Name or service not known
Oct 12 10:02:51 eola postfix/smtpd[3512]: connect from unknown[60.182.34.97]
Oct 12 10:02:52 eola postfix/smtpd[3512]: lost connection after AUTH from unknown[60.182.34.97]
Oct 12 10:02:52 eola postfix/smtpd[3512]: disconnect from unknown[60.182.34.97] ehlo=1 auth=0/1 commands=1/2
Oct 12 10:02:52 eola postfix/smtpd[3512]: warning: hostname 97.34.182.60.broad.jh.zj.dynamic.163data.com.cn does not resolve to address 60.182.34.97: Name or service not known
Oct 12 10:02:52 eola postfix/smtpd[3512]: connect from unknown[60.182.34.97]
Oct 12 10:02:53 eola postfix/smtpd[3512]: lost connection after AUTH from unknown[60.182.34.97]
Oct 12 10:02:53 eola postfix/smtpd[3512]: disconnect from unknown[60.182.34.97] ehlo=1 auth=0/1 commands=1/2
Oct 12 10:02:53 eola postfix/smtpd[3512]: warning: hostname 97.34.18........
-------------------------------
2019-10-13 03:19:21
77.42.76.195 attack
Automatic report - Port Scan Attack
2019-10-13 02:43:54
213.159.206.233 attackspam
rdp brute-force attack
2019-10-13 02:54:10
178.62.41.7 attackbots
Oct 12 20:31:23 SilenceServices sshd[18248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.41.7
Oct 12 20:31:25 SilenceServices sshd[18248]: Failed password for invalid user Lyon_123 from 178.62.41.7 port 34372 ssh2
Oct 12 20:35:36 SilenceServices sshd[19411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.41.7
2019-10-13 02:47:39

最近上报的IP列表

119.130.3.2 119.131.105.206 119.131.105.24 210.96.0.247
119.131.105.87 119.131.106.105 119.131.106.202 119.131.116.187
119.131.117.126 119.131.117.193 119.131.117.235 119.131.118.28
119.131.118.76 119.131.119.193 119.131.119.232 119.131.119.6
119.131.130.94 119.131.142.171 119.131.143.93 237.220.108.132