必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Nigeria

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
105.112.55.119 attack
Unauthorized connection attempt from IP address 105.112.55.119 on Port 445(SMB)
2020-02-29 00:04:29
105.112.55.218 attack
Honeypot attack, port: 445, PTR: PTR record not found
2020-01-25 06:18:18
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 105.112.55.31
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59753
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;105.112.55.31.			IN	A

;; AUTHORITY SECTION:
.			597	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 15:48:58 CST 2022
;; MSG SIZE  rcvd: 106
HOST信息:
Host 31.55.112.105.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 31.55.112.105.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
167.99.32.136 attackspam
Nov  9 07:19:04 our-server-hostname postfix/smtpd[8432]: connect from unknown[167.99.32.136]
Nov  9 07:19:05 our-server-hostname postfix/smtpd[8432]: NOQUEUE: reject: RCPT from unknown[167.99.32.136]: 504 5.5.2 : Helo command rejected: need fully-qualified hostname; from=x@x helo=
Nov  9 07:19:06 our-server-hostname postfix/smtpd[8432]: lost connection after RCPT from unknown[167.99.32.136]
Nov  9 07:19:06 our-server-hostname postfix/smtpd[8432]: disconnect from unknown[167.99.32.136]
Nov  9 08:03:41 our-server-hostname postfix/smtpd[26679]: connect from unknown[167.99.32.136]
Nov  9 08:03:42 our-server-hostname postfix/smtpd[26679]: NOQUEUE: reject: RCPT from unknown[167.99.32.136]: 504 5.5.2 : Helo command rejected: need fully-qualified hostname; from=x@x he
.... truncated .... 
m unknown[167.99.32.136]: 504 5.5.2 : Helo command rejected: need fully-qualified hostname; from=x@x helo=
Nov  9 17:13:40 our-server-hostname postfix/smtpd[1398........
-------------------------------
2019-11-10 18:30:30
119.28.239.222 attack
1573367255 - 11/10/2019 07:27:35 Host: 119.28.239.222/119.28.239.222 Port: 32772 UDP Blocked
2019-11-10 18:20:37
36.80.48.9 attackspambots
$f2bV_matches
2019-11-10 18:06:52
121.121.100.152 attack
Connection by 121.121.100.152 on port: 23 got caught by honeypot at 11/10/2019 5:28:02 AM
2019-11-10 18:07:46
64.91.244.152 attack
$f2bV_matches
2019-11-10 18:11:18
106.13.14.198 attackspam
Nov 10 11:20:15 vps01 sshd[24122]: Failed password for root from 106.13.14.198 port 57284 ssh2
2019-11-10 18:41:11
36.224.6.197 attackbotsspam
" "
2019-11-10 18:18:33
108.163.192.58 attackbots
TCP src-port=43682   dst-port=25   Listed on   dnsbl-sorbs abuseat-org spamcop         (646)
2019-11-10 18:41:37
198.108.67.83 attackbotsspam
198.108.67.83 was recorded 5 times by 4 hosts attempting to connect to the following ports: 8085,3105,2558,8836,8854. Incident counter (4h, 24h, all-time): 5, 15, 69
2019-11-10 18:37:49
61.145.96.162 attack
Nov  9 06:49:16 www sshd[2499]: Failed password for invalid user User from 61.145.96.162 port 3315 ssh2
Nov  9 06:49:17 www sshd[2499]: Received disconnect from 61.145.96.162 port 3315:11: Bye Bye [preauth]
Nov  9 06:49:17 www sshd[2499]: Disconnected from 61.145.96.162 port 3315 [preauth]
Nov  9 07:04:17 www sshd[2746]: Failed password for invalid user paps from 61.145.96.162 port 52980 ssh2
Nov  9 07:04:18 www sshd[2746]: Received disconnect from 61.145.96.162 port 52980:11: Bye Bye [preauth]
Nov  9 07:04:18 www sshd[2746]: Disconnected from 61.145.96.162 port 52980 [preauth]
Nov  9 07:09:21 www sshd[2856]: Failed password for invalid user client from 61.145.96.162 port 62866 ssh2
Nov  9 07:09:22 www sshd[2856]: Received disconnect from 61.145.96.162 port 62866:11: Bye Bye [preauth]
Nov  9 07:09:22 www sshd[2856]: Disconnected from 61.145.96.162 port 62866 [preauth]
Nov  9 07:14:18 www sshd[2898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=........
-------------------------------
2019-11-10 18:13:06
139.199.193.202 attackbotsspam
Nov 10 09:00:33 server sshd\[17771\]: Invalid user xv from 139.199.193.202
Nov 10 09:00:33 server sshd\[17771\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.193.202 
Nov 10 09:00:34 server sshd\[17771\]: Failed password for invalid user xv from 139.199.193.202 port 44192 ssh2
Nov 10 09:27:10 server sshd\[24552\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.193.202  user=root
Nov 10 09:27:11 server sshd\[24552\]: Failed password for root from 139.199.193.202 port 40278 ssh2
...
2019-11-10 18:36:43
206.189.231.196 attackbotsspam
206.189.231.196 - - [10/Nov/2019:07:26:46 +0100] "GET /wp-login.php HTTP/1.1" 200 1238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
206.189.231.196 - - [10/Nov/2019:07:26:57 +0100] "GET /wp-login.php HTTP/1.1" 200 1238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
206.189.231.196 - - [10/Nov/2019:07:26:57 +0100] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
206.189.231.196 - - [10/Nov/2019:07:27:02 +0100] "GET /wp-login.php HTTP/1.1" 200 1238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
206.189.231.196 - - [10/Nov/2019:07:27:08 +0100] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
206.189.231.196 - - [10/Nov/2019:07:27:14 +0100] "GET /wp-login.php HTTP/1.1" 200 1238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
..
2019-11-10 18:33:38
91.183.149.230 attackspambots
ILLEGAL ACCESS imap
2019-11-10 18:43:06
118.89.236.107 attackspam
Nov 10 10:47:23 lnxded63 sshd[31051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.236.107
2019-11-10 18:16:34
178.128.226.2 attack
Nov 10 07:38:30 sd-53420 sshd\[31451\]: User root from 178.128.226.2 not allowed because none of user's groups are listed in AllowGroups
Nov 10 07:38:30 sd-53420 sshd\[31451\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.226.2  user=root
Nov 10 07:38:32 sd-53420 sshd\[31451\]: Failed password for invalid user root from 178.128.226.2 port 49325 ssh2
Nov 10 07:42:20 sd-53420 sshd\[32561\]: User root from 178.128.226.2 not allowed because none of user's groups are listed in AllowGroups
Nov 10 07:42:20 sd-53420 sshd\[32561\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.226.2  user=root
...
2019-11-10 18:40:02

最近上报的IP列表

105.112.55.124 106.11.152.13 106.11.152.46 106.11.154.114
106.11.153.120 106.11.152.90 106.11.154.79 106.108.112.15
106.107.178.9 106.107.162.21 106.11.154.19 106.11.156.106
106.11.156.13 106.11.156.15 106.11.157.124 106.11.157.108
106.11.157.37 106.11.157.67 106.11.158.73 106.11.156.205