必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): Beijing

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd

主机名(hostname): unknown

机构(organization): Shenzhen Tencent Computer Systems Company Limited

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:
类型 评论内容 时间
attack
Sep 27 19:58:12 ns37 sshd[17544]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.244.12.50
2019-09-28 03:01:23
attackbots
SSH Brute-Force reported by Fail2Ban
2019-09-24 08:51:24
attackbotsspam
Aug 24 16:49:29 plex sshd[7305]: Invalid user dp from 109.244.12.50 port 36810
2019-08-25 01:52:46
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.244.12.50
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28704
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;109.244.12.50.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082401 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Aug 25 01:52:40 CST 2019
;; MSG SIZE  rcvd: 117
HOST信息:
Host 50.12.244.109.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 50.12.244.109.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
116.196.93.89 attack
Nov  8 10:12:06 ovpn sshd\[19902\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.93.89  user=root
Nov  8 10:12:09 ovpn sshd\[19902\]: Failed password for root from 116.196.93.89 port 32880 ssh2
Nov  8 10:22:04 ovpn sshd\[21866\]: Invalid user markes from 116.196.93.89
Nov  8 10:22:04 ovpn sshd\[21866\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.93.89
Nov  8 10:22:05 ovpn sshd\[21866\]: Failed password for invalid user markes from 116.196.93.89 port 37794 ssh2
2019-11-08 18:01:40
46.97.76.154 attackspambots
Honeypot attack, port: 23, PTR: PTR record not found
2019-11-08 18:23:51
37.17.182.107 attackspam
Nov  8 07:21:41 mxgate1 postfix/postscreen[2829]: CONNECT from [37.17.182.107]:53747 to [176.31.12.44]:25
Nov  8 07:21:41 mxgate1 postfix/dnsblog[2831]: addr 37.17.182.107 listed by domain cbl.abuseat.org as 127.0.0.2
Nov  8 07:21:41 mxgate1 postfix/dnsblog[2835]: addr 37.17.182.107 listed by domain zen.spamhaus.org as 127.0.0.11
Nov  8 07:21:41 mxgate1 postfix/dnsblog[2835]: addr 37.17.182.107 listed by domain zen.spamhaus.org as 127.0.0.4
Nov  8 07:21:41 mxgate1 postfix/dnsblog[2832]: addr 37.17.182.107 listed by domain b.barracudacentral.org as 127.0.0.2
Nov  8 07:21:42 mxgate1 postfix/postscreen[2829]: PREGREET 22 after 0.11 from [37.17.182.107]:53747: EHLO [37.17.182.107]

Nov  8 07:21:42 mxgate1 postfix/postscreen[2829]: DNSBL rank 4 for [37.17.182.107]:53747
Nov x@x
Nov  8 07:21:42 mxgate1 postfix/postscreen[2829]: HANGUP after 0.34 from [37.17.182.107]:53747 in tests after SMTP handshake
Nov  8 07:21:42 mxgate1 postfix/postscreen[2829]: DISCONNECT [37.17.182.107........
-------------------------------
2019-11-08 18:02:46
40.73.100.56 attack
Nov  8 00:05:32 auw2 sshd\[10466\]: Invalid user pi from 40.73.100.56
Nov  8 00:05:32 auw2 sshd\[10466\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.100.56
Nov  8 00:05:34 auw2 sshd\[10466\]: Failed password for invalid user pi from 40.73.100.56 port 60302 ssh2
Nov  8 00:10:29 auw2 sshd\[10994\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.100.56  user=root
Nov  8 00:10:30 auw2 sshd\[10994\]: Failed password for root from 40.73.100.56 port 43680 ssh2
2019-11-08 18:24:32
93.113.110.46 attackbots
93.113.110.46 - - [08/Nov/2019:08:13:25 +0100] "GET /wp-login.php HTTP/1.1" 200 1238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
93.113.110.46 - - [08/Nov/2019:08:13:25 +0100] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
93.113.110.46 - - [08/Nov/2019:08:13:25 +0100] "GET /wp-login.php HTTP/1.1" 200 1238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
93.113.110.46 - - [08/Nov/2019:08:13:25 +0100] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
93.113.110.46 - - [08/Nov/2019:08:13:26 +0100] "GET /wp-login.php HTTP/1.1" 200 1238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
93.113.110.46 - - [08/Nov/2019:08:13:26 +0100] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2019-11-08 18:17:30
120.70.100.54 attack
Nov  7 23:34:06 auw2 sshd\[7840\]: Invalid user git from 120.70.100.54
Nov  7 23:34:06 auw2 sshd\[7840\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.70.100.54
Nov  7 23:34:09 auw2 sshd\[7840\]: Failed password for invalid user git from 120.70.100.54 port 40779 ssh2
Nov  7 23:39:25 auw2 sshd\[8379\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.70.100.54  user=root
Nov  7 23:39:26 auw2 sshd\[8379\]: Failed password for root from 120.70.100.54 port 59155 ssh2
2019-11-08 17:49:48
117.221.239.199 attack
Honeypot attack, port: 445, PTR: PTR record not found
2019-11-08 18:08:43
36.227.53.35 attackspambots
Honeypot attack, port: 5555, PTR: 36-227-53-35.dynamic-ip.hinet.net.
2019-11-08 18:03:42
89.164.190.77 attackspam
Automatic report - Web App Attack
2019-11-08 18:23:30
222.186.175.169 attack
Nov  8 11:12:49 MainVPS sshd[1659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169  user=root
Nov  8 11:12:52 MainVPS sshd[1659]: Failed password for root from 222.186.175.169 port 24662 ssh2
Nov  8 11:13:09 MainVPS sshd[1659]: error: maximum authentication attempts exceeded for root from 222.186.175.169 port 24662 ssh2 [preauth]
Nov  8 11:12:49 MainVPS sshd[1659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169  user=root
Nov  8 11:12:52 MainVPS sshd[1659]: Failed password for root from 222.186.175.169 port 24662 ssh2
Nov  8 11:13:09 MainVPS sshd[1659]: error: maximum authentication attempts exceeded for root from 222.186.175.169 port 24662 ssh2 [preauth]
Nov  8 11:13:17 MainVPS sshd[1690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169  user=root
Nov  8 11:13:19 MainVPS sshd[1690]: Failed password for root from 222.186.175.169 port 36618 ss
2019-11-08 18:22:11
124.29.235.10 attackbots
Honeypot attack, port: 445, PTR: PTR record not found
2019-11-08 18:21:39
111.125.126.234 attackbotsspam
Honeypot attack, port: 445, PTR: PTR record not found
2019-11-08 17:52:47
207.248.62.98 attackbotsspam
2019-11-08T07:31:11.681712abusebot-4.cloudsearch.cf sshd\[5216\]: Invalid user 123456 from 207.248.62.98 port 45140
2019-11-08 18:18:15
68.47.224.14 attackbotsspam
Nov  8 09:32:12 minden010 sshd[6248]: Failed password for root from 68.47.224.14 port 52036 ssh2
Nov  8 09:36:02 minden010 sshd[7025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.47.224.14
Nov  8 09:36:04 minden010 sshd[7025]: Failed password for invalid user kevin from 68.47.224.14 port 33556 ssh2
...
2019-11-08 17:57:54
188.143.91.142 attack
Nov  7 21:40:19 eddieflores sshd\[12908\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188-143-91-142.pool.digikabel.hu  user=root
Nov  7 21:40:21 eddieflores sshd\[12908\]: Failed password for root from 188.143.91.142 port 48376 ssh2
Nov  7 21:44:15 eddieflores sshd\[13238\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188-143-91-142.pool.digikabel.hu  user=root
Nov  7 21:44:17 eddieflores sshd\[13238\]: Failed password for root from 188.143.91.142 port 40168 ssh2
Nov  7 21:48:16 eddieflores sshd\[13545\]: Invalid user contador from 188.143.91.142
Nov  7 21:48:16 eddieflores sshd\[13545\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188-143-91-142.pool.digikabel.hu
2019-11-08 18:09:33

最近上报的IP列表

219.126.13.41 14.237.50.86 102.104.147.30 137.47.7.139
5.78.43.76 221.167.219.189 85.26.89.218 191.35.200.177
193.42.14.92 102.58.58.193 44.111.128.69 4.117.95.63
103.133.11.239 14.45.174.103 164.5.46.13 177.97.73.183
178.216.114.59 105.148.211.134 83.150.50.33 1.188.1.62