必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): Si Racha

省份(region): Chon Buri

国家(country): Thailand

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
1.20.207.86 attack
hack
2021-02-14 19:26:32
1.20.207.55 attackspam
SSH bruteforce more then 50 syn to 22 port per 10 seconds.
2020-05-12 14:53:37
1.20.207.30 attack
Port scan detected on ports: 8291[TCP], 8291[TCP], 8291[TCP]
2020-04-22 23:43:01
1.20.207.94 attackspambots
Unauthorized connection attempt from IP address 1.20.207.94 on Port 445(SMB)
2020-01-03 18:41:58
1.20.207.105 attackbots
Honeypot attack, port: 445, PTR: PTR record not found
2020-01-02 16:16:49
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.20.207.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12131
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.20.207.149.			IN	A

;; AUTHORITY SECTION:
.			553	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030300 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 03 22:39:21 CST 2022
;; MSG SIZE  rcvd: 105
HOST信息:
Host 149.207.20.1.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 149.207.20.1.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
193.27.13.78 attack
Fail2Ban Ban Triggered
HTTP SQL Injection Attempt
2020-08-12 22:51:06
58.187.167.160 attackbotsspam
Lines containing failures of 58.187.167.160
Aug 12 14:25:20 omfg postfix/smtpd[5531]: connect from unknown[58.187.167.160]
Aug x@x


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=58.187.167.160
2020-08-12 22:50:28
95.163.150.11 attackbotsspam
Fail2Ban Ban Triggered
HTTP SQL Injection Attempt
2020-08-12 23:22:27
222.186.30.59 attackspambots
Aug 12 17:03:23 alpha sshd[29582]: Unable to negotiate with 222.186.30.59 port 52716: no matching host key type found. Their offer: ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-rsa,ssh-dss [preauth]
Aug 12 17:04:47 alpha sshd[29589]: Unable to negotiate with 222.186.30.59 port 50081: no matching host key type found. Their offer: ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-rsa,ssh-dss [preauth]
Aug 12 17:06:12 alpha sshd[29597]: Unable to negotiate with 222.186.30.59 port 32494: no matching host key type found. Their offer: ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521,ssh-rsa,ssh-dss [preauth]
2020-08-12 23:12:57
60.167.180.216 attack
$f2bV_matches
2020-08-12 22:41:18
49.135.33.170 attackbots
Aug 12 14:06:45 rs-7 sshd[39196]: Connection closed by 49.135.33.170 port 51392 [preauth]
Aug 12 14:16:35 rs-7 sshd[41534]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.135.33.170  user=r.r
Aug 12 14:16:37 rs-7 sshd[41534]: Failed password for r.r from 49.135.33.170 port 33616 ssh2
Aug 12 14:16:37 rs-7 sshd[41534]: Received disconnect from 49.135.33.170 port 33616:11: Bye Bye [preauth]
Aug 12 14:16:37 rs-7 sshd[41534]: Disconnected from 49.135.33.170 port 33616 [preauth]
Aug 12 14:24:28 rs-7 sshd[43028]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.135.33.170  user=r.r


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=49.135.33.170
2020-08-12 22:44:59
182.107.238.41 attackbots
MultiHost/MultiPort Probe, Scan, Hack -
2020-08-12 22:51:34
180.126.170.42 attackbots
Aug 12 15:02:20 h2427292 sshd\[25670\]: Invalid user admin from 180.126.170.42
Aug 12 15:02:21 h2427292 sshd\[25670\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.126.170.42 
Aug 12 15:02:23 h2427292 sshd\[25670\]: Failed password for invalid user admin from 180.126.170.42 port 37680 ssh2
...
2020-08-12 23:29:10
173.46.92.76 attackbots
Fail2Ban Ban Triggered
HTTP SQL Injection Attempt
2020-08-12 22:55:47
116.228.160.20 attackbotsspam
Aug 12 16:00:06 mout sshd[18341]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.228.160.20  user=root
Aug 12 16:00:08 mout sshd[18341]: Failed password for root from 116.228.160.20 port 51725 ssh2
2020-08-12 23:01:42
192.169.200.135 attack
192.169.200.135 - - [12/Aug/2020:14:41:33 +0200] "GET /wp-login.php HTTP/1.1" 200 6060 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
192.169.200.135 - - [12/Aug/2020:14:41:35 +0200] "POST /wp-login.php HTTP/1.1" 200 6311 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
192.169.200.135 - - [12/Aug/2020:14:41:37 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-08-12 23:20:08
49.83.57.216 attack
Lines containing failures of 49.83.57.216
Aug 12 14:38:47 games sshd[7833]: Bad protocol version identification '' from 49.83.57.216 port 62185
Aug 12 14:39:20 games sshd[7834]: Invalid user pi from 49.83.57.216 port 62285
Aug 12 14:39:22 games sshd[7834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.83.57.216 
Aug 12 14:39:22 games sshd[7834]: pam_sss(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.83.57.216 user=pi
Aug 12 14:39:24 games sshd[7834]: Failed password for invalid user pi from 49.83.57.216 port 62285 ssh2
Aug 12 14:39:26 games sshd[7834]: Connection closed by invalid user pi 49.83.57.216 port 62285 [preauth]
Aug 12 14:40:03 games sshd[7901]: Invalid user pi from 49.83.57.216 port 64862
Aug 12 14:40:05 games sshd[7901]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.83.57.216 
Aug 12 14:40:05 games sshd[7901]: pam_sss(sshd:auth): authen........
------------------------------
2020-08-12 23:26:23
156.155.235.78 attackbotsspam
php WP PHPmyadamin ABUSE blocked for 12h
2020-08-12 22:49:31
185.81.157.115 attack
port scan and connect, tcp 80 (http)
2020-08-12 23:24:55
173.46.92.78 attackbots
Fail2Ban Ban Triggered
HTTP SQL Injection Attempt
2020-08-12 22:53:20

最近上报的IP列表

1.20.203.76 1.20.207.53 1.20.216.248 1.20.227.214
1.20.229.103 1.20.232.155 1.202.113.159 1.202.113.161
1.202.113.177 1.202.113.207 1.202.113.217 1.202.113.222
1.202.113.254 1.202.113.45 1.202.113.55 1.202.113.59
1.202.113.87 171.62.188.241 1.202.113.88 1.202.113.95