必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 21.131.166.95
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41437
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;21.131.166.95.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025013100 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 31 15:51:37 CST 2025
;; MSG SIZE  rcvd: 106
HOST信息:
Host 95.166.131.21.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 95.166.131.21.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
128.199.158.182 attackbotsspam
128.199.158.182 - - \[14/Feb/2020:16:08:17 +0100\] "POST /wp-login.php HTTP/1.0" 200 5728 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
128.199.158.182 - - \[14/Feb/2020:16:08:20 +0100\] "POST /wp-login.php HTTP/1.0" 200 5728 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
128.199.158.182 - - \[14/Feb/2020:16:08:22 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 802 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2020-02-15 02:18:26
185.180.197.10 attack
Port scan (80/tcp)
2020-02-15 02:33:58
184.105.139.72 attack
MultiHost/MultiPort Probe, Scan, Hack -
2020-02-15 02:58:47
111.68.125.106 attackspam
2020-02-14T12:33:57.8122781495-001 sshd[38058]: Invalid user oracle from 111.68.125.106 port 51902
2020-02-14T12:33:57.8156481495-001 sshd[38058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.68.125.106
2020-02-14T12:33:57.8122781495-001 sshd[38058]: Invalid user oracle from 111.68.125.106 port 51902
2020-02-14T12:33:59.6008801495-001 sshd[38058]: Failed password for invalid user oracle from 111.68.125.106 port 51902 ssh2
2020-02-14T12:36:37.4843821495-001 sshd[38203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.68.125.106  user=apache
2020-02-14T12:36:39.5660701495-001 sshd[38203]: Failed password for apache from 111.68.125.106 port 45222 ssh2
2020-02-14T12:39:24.0500141495-001 sshd[38341]: Invalid user barbara from 111.68.125.106 port 38534
2020-02-14T12:39:24.0551481495-001 sshd[38341]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.68.125.106
2
...
2020-02-15 02:32:59
138.204.201.250 attackspam
Feb x@x
Feb x@x
Feb x@x


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=138.204.201.250
2020-02-15 02:24:28
213.32.92.57 attackbotsspam
(sshd) Failed SSH login from 213.32.92.57 (FR/France/ip57.ip-213-32-92.eu): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Feb 14 14:39:32 elude sshd[24514]: Invalid user sandhu from 213.32.92.57 port 49264
Feb 14 14:39:33 elude sshd[24514]: Failed password for invalid user sandhu from 213.32.92.57 port 49264 ssh2
Feb 14 14:45:02 elude sshd[24907]: Invalid user skamin from 213.32.92.57 port 35166
Feb 14 14:45:03 elude sshd[24907]: Failed password for invalid user skamin from 213.32.92.57 port 35166 ssh2
Feb 14 14:47:45 elude sshd[25090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.92.57  user=root
2020-02-15 02:39:30
192.241.235.112 attackbots
2020-02-14 17:43:40 SMTP protocol synchronization error (input sent whostnamehout wahostnameing for greeting): rejected connection from H=[192.241.235.112] input="EHLO zg0213a-258
"


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=192.241.235.112
2020-02-15 02:25:00
221.154.155.191 attackbotsspam
Invalid user pi from 221.154.155.191 port 39210
2020-02-15 02:59:15
162.243.134.244 attackbotsspam
trying to access non-authorized port
2020-02-15 02:54:39
14.242.134.24 attackbots
Automatic report - Port Scan Attack
2020-02-15 02:30:06
162.243.58.222 attack
Feb 14 16:50:07 vps647732 sshd[20027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.243.58.222
Feb 14 16:50:10 vps647732 sshd[20027]: Failed password for invalid user shizu from 162.243.58.222 port 49322 ssh2
...
2020-02-15 02:29:18
139.99.239.33 attack
Feb 14 15:59:27 srv-ubuntu-dev3 sshd[117930]: Invalid user 123,abc from 139.99.239.33
Feb 14 15:59:27 srv-ubuntu-dev3 sshd[117930]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.239.33
Feb 14 15:59:27 srv-ubuntu-dev3 sshd[117930]: Invalid user 123,abc from 139.99.239.33
Feb 14 15:59:29 srv-ubuntu-dev3 sshd[117930]: Failed password for invalid user 123,abc from 139.99.239.33 port 49416 ssh2
Feb 14 16:03:38 srv-ubuntu-dev3 sshd[118289]: Invalid user snuffy from 139.99.239.33
Feb 14 16:03:38 srv-ubuntu-dev3 sshd[118289]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.239.33
Feb 14 16:03:38 srv-ubuntu-dev3 sshd[118289]: Invalid user snuffy from 139.99.239.33
Feb 14 16:03:40 srv-ubuntu-dev3 sshd[118289]: Failed password for invalid user snuffy from 139.99.239.33 port 51734 ssh2
Feb 14 16:07:36 srv-ubuntu-dev3 sshd[118666]: Invalid user 12345 from 139.99.239.33
...
2020-02-15 02:31:10
121.150.243.169 attackspambots
Fri Feb 14 06:47:41 2020 - Child process 132866 handling connection
Fri Feb 14 06:47:41 2020 - New connection from: 121.150.243.169:33118
Fri Feb 14 06:47:41 2020 - Sending data to client: [Login: ]
Fri Feb 14 06:47:41 2020 - Child process 132867 handling connection
Fri Feb 14 06:47:41 2020 - New connection from: 121.150.243.169:33119
Fri Feb 14 06:47:41 2020 - Sending data to client: [Login: ]
Fri Feb 14 06:47:41 2020 - Got data: admin
Fri Feb 14 06:47:42 2020 - Sending data to client: [Password: ]
Fri Feb 14 06:47:42 2020 - Got data: 1234567890
Fri Feb 14 06:47:44 2020 - Child 132877 granting shell
Fri Feb 14 06:47:44 2020 - Child 132867 exiting
Fri Feb 14 06:47:44 2020 - Sending data to client: [Logged in]
Fri Feb 14 06:47:44 2020 - Sending data to client: [Welcome to MX990 Embedded Linux]
Fri Feb 14 06:47:44 2020 - Sending data to client: [[root@dvrdvs /]# ]
Fri Feb 14 06:47:44 2020 - Got data: enable
system
shell
sh
Fri Feb 14 06:47:44 2020 - Sending data to client: [Command
2020-02-15 02:52:31
35.154.98.248 attack
Brute-force attempt banned
2020-02-15 02:47:36
181.174.125.86 attack
Feb 14 14:47:35 MK-Soft-VM8 sshd[11409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.174.125.86 
Feb 14 14:47:37 MK-Soft-VM8 sshd[11409]: Failed password for invalid user minecraftpassword from 181.174.125.86 port 35809 ssh2
...
2020-02-15 02:46:33

最近上报的IP列表

252.11.55.65 210.110.6.183 254.230.167.101 68.119.43.96
169.119.77.25 2.9.251.107 132.94.191.113 146.29.158.91
162.120.83.26 230.232.123.232 251.159.247.76 6.13.15.192
120.33.226.179 244.208.127.138 119.193.17.254 13.200.27.213
214.123.80.68 74.228.68.45 168.4.209.41 75.22.165.158