131.221.80.150

基本信息:

城市(city): São Paulo

省份(region): Sao Paulo

国家(country): Brazil

运营商(isp): China Telecom do Brasil Ltda.

主机名(hostname): unknown

机构(organization): China Telecom Next Generation Carrier Network

使用类型(Usage Type): Commercial

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Invalid user dpi from 131.221.80.150 port 29377	2019-06-26 08:22:52

相同子网IP讨论:

IP	类型	评论内容	时间
131.221.80.145	attack	2020-06-23T20:40:35.416258randservbullet-proofcloud-66.localdomain sshd[22783]: Invalid user khs from 131.221.80.145 port 58849 2020-06-23T20:40:35.420432randservbullet-proofcloud-66.localdomain sshd[22783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=131.221.80.145 2020-06-23T20:40:35.416258randservbullet-proofcloud-66.localdomain sshd[22783]: Invalid user khs from 131.221.80.145 port 58849 2020-06-23T20:40:36.800654randservbullet-proofcloud-66.localdomain sshd[22783]: Failed password for invalid user khs from 131.221.80.145 port 58849 ssh2 ...	2020-06-24 05:24:31
131.221.80.145	attackbotsspam	Invalid user nwu from 131.221.80.145 port 19041	2020-06-22 02:40:14
131.221.80.161	attack	May 9 07:52:41 localhost sshd[1210482]: Invalid user victor from 131.221.80.161 port 34753 ...	2020-05-09 15:48:52
131.221.80.177	attack	Failed password for root from 131.221.80.177 port 16033 ssh2	2020-04-30 02:38:54
131.221.80.177	attackspam	Apr 21 06:23:02 srv01 sshd[14642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=131.221.80.177 user=root Apr 21 06:23:04 srv01 sshd[14642]: Failed password for root from 131.221.80.177 port 19169 ssh2 Apr 21 06:28:17 srv01 sshd[22172]: Invalid user git from 131.221.80.177 port 10465 Apr 21 06:28:17 srv01 sshd[22172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=131.221.80.177 Apr 21 06:28:17 srv01 sshd[22172]: Invalid user git from 131.221.80.177 port 10465 Apr 21 06:28:19 srv01 sshd[22172]: Failed password for invalid user git from 131.221.80.177 port 10465 ssh2 ...	2020-04-21 16:04:08
131.221.80.177	attackbotsspam	SSH Brute-Forcing (server1)	2020-04-08 13:47:25
131.221.80.177	attack	Invalid user admin from 131.221.80.177 port 17185	2020-04-04 02:02:32
131.221.80.161	attack	Unauthorized connection attempt detected from IP address 131.221.80.161 to port 2220 [J]	2020-02-02 20:51:43
131.221.80.129	attack	$f2bV_matches	2020-01-12 01:29:10
131.221.80.177	attack	Jan 7 21:24:07 gw1 sshd[13097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=131.221.80.177 Jan 7 21:24:09 gw1 sshd[13097]: Failed password for invalid user test from 131.221.80.177 port 39713 ssh2 ...	2020-01-08 00:33:24
131.221.80.129	attack	Jan 1 15:51:53 * sshd[5488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=131.221.80.129 Jan 1 15:51:55 * sshd[5488]: Failed password for invalid user server from 131.221.80.129 port 25121 ssh2	2020-01-02 00:40:16
131.221.80.193	attack	Dec 20 22:34:14 web9 sshd\[2661\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=131.221.80.193 user=backup Dec 20 22:34:16 web9 sshd\[2661\]: Failed password for backup from 131.221.80.193 port 10401 ssh2 Dec 20 22:41:35 web9 sshd\[3706\]: Invalid user openstack from 131.221.80.193 Dec 20 22:41:35 web9 sshd\[3706\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=131.221.80.193 Dec 20 22:41:37 web9 sshd\[3706\]: Failed password for invalid user openstack from 131.221.80.193 port 19617 ssh2	2019-12-21 16:43:44
131.221.80.177	attackspambots	Dec 19 09:07:43 dallas01 sshd[19780]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=131.221.80.177 Dec 19 09:07:45 dallas01 sshd[19780]: Failed password for invalid user minecraftserver from 131.221.80.177 port 28641 ssh2 Dec 19 09:14:55 dallas01 sshd[24966]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=131.221.80.177	2019-12-20 00:07:31
131.221.80.211	attackbotsspam	Dec 3 21:27:37 ArkNodeAT sshd\[31786\]: Invalid user mysql from 131.221.80.211 Dec 3 21:27:37 ArkNodeAT sshd\[31786\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=131.221.80.211 Dec 3 21:27:39 ArkNodeAT sshd\[31786\]: Failed password for invalid user mysql from 131.221.80.211 port 48258 ssh2	2019-12-04 05:00:29
131.221.80.211	attack	39 failed attempt(s) in the last 24h	2019-12-03 08:08:35

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 131.221.80.150
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45957
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;131.221.80.150.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061300 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jun 13 19:59:21 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 150.80.221.131.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 150.80.221.131.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
129.204.74.158	attack	$f2bV_matches	2020-07-26 04:03:34
118.89.160.141	attack	Jul 25 22:15:17 master sshd[21828]: Failed password for invalid user guest from 118.89.160.141 port 38432 ssh2 Jul 25 22:16:52 master sshd[21830]: Failed password for invalid user bob from 118.89.160.141 port 54080 ssh2 Jul 25 22:17:50 master sshd[21835]: Failed password for invalid user gsb from 118.89.160.141 port 33540 ssh2 Jul 25 22:18:47 master sshd[21839]: Failed password for invalid user admin from 118.89.160.141 port 41234 ssh2 Jul 25 22:19:40 master sshd[21841]: Failed password for invalid user weblogic from 118.89.160.141 port 48924 ssh2 Jul 25 22:20:33 master sshd[21910]: Failed password for invalid user cs from 118.89.160.141 port 56616 ssh2 Jul 25 22:21:22 master sshd[21914]: Failed password for invalid user ftpadmin from 118.89.160.141 port 36064 ssh2 Jul 25 22:22:18 master sshd[21920]: Failed password for invalid user admin from 118.89.160.141 port 43750 ssh2 Jul 25 22:23:08 master sshd[21922]: Failed password for invalid user omar from 118.89.160.141 port 51438 ssh2	2020-07-26 04:11:52
129.204.87.153	attackbots	Exploited Host.	2020-07-26 04:01:46
128.199.174.201	attackbots	Exploited Host.	2020-07-26 04:14:16
45.153.240.152	attack	Fail2Ban Ban Triggered	2020-07-26 03:59:38
175.125.95.160	attackbots	Jul 25 21:48:30 vps647732 sshd[16100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.125.95.160 Jul 25 21:48:32 vps647732 sshd[16100]: Failed password for invalid user postgres from 175.125.95.160 port 39384 ssh2 ...	2020-07-26 04:04:18
140.143.228.18	attackspambots	Bruteforce detected by fail2ban	2020-07-26 03:57:39
193.27.228.214	attackbotsspam	Jul 25 21:52:37 debian-2gb-nbg1-2 kernel: \[17965271.506701\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=193.27.228.214 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=8549 PROTO=TCP SPT=47101 DPT=41244 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-26 04:00:55
129.213.86.27	attackspam	Exploited Host.	2020-07-26 03:57:05
128.199.81.66	attackbotsspam	(sshd) Failed SSH login from 128.199.81.66 (SG/Singapore/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 25 20:49:58 srv sshd[14491]: Invalid user nam from 128.199.81.66 port 39170 Jul 25 20:50:00 srv sshd[14491]: Failed password for invalid user nam from 128.199.81.66 port 39170 ssh2 Jul 25 21:15:21 srv sshd[14937]: Invalid user martin from 128.199.81.66 port 40346 Jul 25 21:15:23 srv sshd[14937]: Failed password for invalid user martin from 128.199.81.66 port 40346 ssh2 Jul 25 21:30:59 srv sshd[15238]: Invalid user manish from 128.199.81.66 port 55076	2020-07-26 04:07:57
122.228.19.80	attack	Jul 25 21:54:02 debian-2gb-nbg1-2 kernel: \[17965355.654507\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=122.228.19.80 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=111 ID=42698 PROTO=TCP SPT=63404 DPT=5800 WINDOW=29200 RES=0x00 SYN URGP=0	2020-07-26 04:06:20
103.90.233.35	attack	Jul 25 15:28:08 r.ca sshd[7635]: Failed password for invalid user zhaoyang from 103.90.233.35 port 48302 ssh2	2020-07-26 03:52:44
180.166.229.4	attack	SSH Brute-Forcing (server2)	2020-07-26 04:17:41
180.76.114.61	attackspambots	2020-07-25T01:02:39.084557hostname sshd[66045]: Failed password for invalid user marty from 180.76.114.61 port 42330 ssh2 ...	2020-07-26 04:15:41
13.76.153.175	attackbotsspam	Exploited Host.	2020-07-26 03:47:51

最近上报的IP列表

222.109.145.187	125.88.192.246	214.248.108.196	106.81.221.156
71.37.144.145	103.97.241.114	120.36.142.234	223.41.52.113
87.80.28.10	14.169.177.232	189.134.226.139	102.133.50.117
72.74.154.34	82.102.16.132	156.94.62.197	177.156.84.80
147.213.54.101	202.165.163.82	114.116.109.83	95.103.96.122