131.196.141.168

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 131.196.141.168
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41927
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;131.196.141.168.		IN	A

;; AUTHORITY SECTION:
.			503	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400

;; Query time: 75 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 05:31:40 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

Host 168.141.196.131.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 168.141.196.131.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
178.128.201.224	attackbotsspam	Jul 10 10:45:30 amit sshd\[3135\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.201.224 user=mysql Jul 10 10:45:33 amit sshd\[3135\]: Failed password for mysql from 178.128.201.224 port 37604 ssh2 Jul 10 10:47:39 amit sshd\[7245\]: Invalid user gd from 178.128.201.224 ...	2019-07-10 23:25:24
74.82.47.2	attack	Port Scan 3389	2019-07-11 00:00:53
185.176.26.105	attack	10.07.2019 15:31:23 Connection to port 9989 blocked by firewall	2019-07-10 23:39:35
165.227.151.59	attack	Jul 10 16:06:46 [munged] sshd[19875]: Invalid user net from 165.227.151.59 port 32826 Jul 10 16:06:46 [munged] sshd[19875]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.151.59	2019-07-11 00:10:40
122.195.200.36	attackbotsspam	Jul 8 08:13:45 hgb10502 sshd[32380]: User r.r from 122.195.200.36 not allowed because not listed in AllowUsers Jul 8 08:13:45 hgb10502 sshd[32380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.195.200.36 user=r.r Jul 8 08:13:47 hgb10502 sshd[32380]: Failed password for invalid user r.r from 122.195.200.36 port 63855 ssh2 Jul 8 08:13:49 hgb10502 sshd[32380]: Failed password for invalid user r.r from 122.195.200.36 port 63855 ssh2 Jul 8 08:13:51 hgb10502 sshd[32380]: Failed password for invalid user r.r from 122.195.200.36 port 63855 ssh2 Jul 8 08:13:51 hgb10502 sshd[32380]: Connection reset by 122.195.200.36 port 63855 [preauth] Jul 8 08:13:51 hgb10502 sshd[32380]: PAM 2 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.195.200.36 user=r.r Jul 8 08:13:53 hgb10502 sshd[32389]: User r.r from 122.195.200.36 not allowed because not listed in AllowUsers Jul 8 08:13:53 hgb10502 sshd[32389]: pa........ -------------------------------	2019-07-11 00:26:36
62.234.5.142	attack	This address tries to hack into our database, bruteforce with dictionary. 62.234.5.142 - - [10/Jul/2019:10:28:49 +0200] "GET /phpmyadmin/index.php?pma_username=root&pma_password=star&server=1 HTTP/1.1" 200 15880 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT$ 62.234.5.142 - - [10/Jul/2019:10:28:51 +0200] "GET /phpmyadmin/index.php?pma_username=root&pma_password=aaa&server=1 HTTP/1.1" 200 15874 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT $ 62.234.5.142 - - [10/Jul/2019:10:28:51 +0200] "GET /phpmyadmin/index.php?pma_username=root&pma_password=web&server=1 HTTP/1.1" 200 15886 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT $ 62.234.5.142 - - [10/Jul/2019:10:28:53 +0200] "GET /phpmyadmin/index.php?pma_username=root&pma_password=asd&server=1 HTTP/1.1" 200 15875 "-" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT $	2019-07-11 00:13:49
103.252.5.93	attackspam	445/tcp [2019-07-10]1pkt	2019-07-11 00:02:42
5.182.210.220	attack	port scan and connect, tcp 23 (telnet)	2019-07-11 00:05:23
123.116.84.196	attackbotsspam	54068/tcp 54068/tcp 54068/tcp... [2019-07-10]6pkt,1pt.(tcp)	2019-07-11 00:11:18
5.188.86.114	attackspambots	firewall-block, port(s): 2340/tcp, 2744/tcp, 2915/tcp, 3006/tcp, 3341/tcp, 3831/tcp, 4028/tcp, 4300/tcp, 4425/tcp, 4844/tcp, 5003/tcp, 5671/tcp, 5723/tcp, 5999/tcp, 6430/tcp, 7035/tcp, 7304/tcp, 8796/tcp, 9043/tcp	2019-07-11 00:05:56
144.217.4.14	attackspam	Jul 10 11:56:32 unicornsoft sshd\[22078\]: Invalid user moodle from 144.217.4.14 Jul 10 11:56:32 unicornsoft sshd\[22078\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.4.14 Jul 10 11:56:34 unicornsoft sshd\[22078\]: Failed password for invalid user moodle from 144.217.4.14 port 57264 ssh2	2019-07-10 23:29:50
80.211.59.50	attack	WordPress brute force	2019-07-11 00:04:17
112.221.179.133	attack	SSH Brute Force, server-1 sshd[10087]: Failed password for invalid user group from 112.221.179.133 port 45982 ssh2	2019-07-10 23:52:49
185.232.67.11	attackbotsspam	2019-07-10T10:12:32.969162abusebot-2.cloudsearch.cf sshd\[14163\]: Invalid user admin from 185.232.67.11 port 35042	2019-07-10 23:46:55
109.88.224.139	attackspam	ssh failed login	2019-07-11 00:33:04

最近上报的IP列表

131.196.141.166	131.196.141.164	131.196.141.172	118.172.237.190
131.196.141.178	131.196.141.18	131.196.141.176	131.196.141.174
131.196.141.180	131.196.141.184	131.196.141.187	118.172.237.197
131.196.141.188	131.196.141.192	131.196.141.190	118.172.237.20
118.172.237.211	118.172.237.237	118.172.237.26	118.172.237.55