必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): Beijing

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd

主机名(hostname): unknown

机构(organization): Shenzhen Tencent Computer Systems Company Limited

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:
类型 评论内容 时间
attack
Sep 27 19:58:12 ns37 sshd[17544]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.244.12.50
2019-09-28 03:01:23
attackbots
SSH Brute-Force reported by Fail2Ban
2019-09-24 08:51:24
attackbotsspam
Aug 24 16:49:29 plex sshd[7305]: Invalid user dp from 109.244.12.50 port 36810
2019-08-25 01:52:46
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.244.12.50
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28704
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;109.244.12.50.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082401 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Aug 25 01:52:40 CST 2019
;; MSG SIZE  rcvd: 117
HOST信息:
Host 50.12.244.109.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 50.12.244.109.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
115.75.137.222 attackspambots
Jun 29 14:54:58 localhost kernel: [13078692.125430] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=115.75.137.222 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x00 TTL=115 ID=17127 DF PROTO=TCP SPT=51651 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 
Jun 29 14:54:58 localhost kernel: [13078692.125456] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=115.75.137.222 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x00 TTL=115 ID=17127 DF PROTO=TCP SPT=51651 DPT=445 SEQ=2947763053 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT (020405AC0103030201010402) 
Jun 29 14:55:01 localhost kernel: [13078695.126113] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=115.75.137.222 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x00 TTL=115 ID=17853 DF PROTO=TCP SPT=51651 DPT=445 WINDOW=8192 RES=0x00 SYN URGP=0 
Jun 29 14:55:01 localhost kernel: [13078695.126134] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=115.75
2019-06-30 08:33:28
112.219.201.124 attack
SPF Fail sender not permitted to send mail for @looneytours.it / Mail sent to address hacked/leaked from Destructoid
2019-06-30 08:15:50
201.46.61.120 attackspambots
SMTP Fraud Orders
2019-06-30 07:59:08
180.120.198.189 attackspambots
2019-06-29T20:44:33.054469 X postfix/smtpd[29428]: warning: unknown[180.120.198.189]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
2019-06-29T20:55:33.022958 X postfix/smtpd[29428]: warning: unknown[180.120.198.189]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
2019-06-29T20:55:41.466363 X postfix/smtpd[29428]: warning: unknown[180.120.198.189]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
2019-06-30 08:12:25
77.247.110.78 attackbots
CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found
2019-06-30 08:08:19
138.197.72.48 attackspam
Jun 29 16:48:20 Ubuntu-1404-trusty-64-minimal sshd\[6791\]: Invalid user ubuntu from 138.197.72.48
Jun 29 16:48:20 Ubuntu-1404-trusty-64-minimal sshd\[6791\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.72.48
Jun 29 16:48:22 Ubuntu-1404-trusty-64-minimal sshd\[6791\]: Failed password for invalid user ubuntu from 138.197.72.48 port 47342 ssh2
Jun 30 02:01:44 Ubuntu-1404-trusty-64-minimal sshd\[20556\]: Invalid user mysql from 138.197.72.48
Jun 30 02:01:44 Ubuntu-1404-trusty-64-minimal sshd\[20556\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.72.48
2019-06-30 08:05:20
41.210.252.100 attackbotsspam
@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-06-29 18:40:54,526 INFO [amun_request_handler] PortScan Detected on Port: 445 (41.210.252.100)
2019-06-30 08:01:12
119.183.162.129 attack
TCP port 23 (Telnet) attempt blocked by firewall. [2019-06-29 20:54:43]
2019-06-30 08:27:03
191.241.242.12 attack
@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-06-29 18:36:39,455 INFO [amun_request_handler] PortScan Detected on Port: 445 (191.241.242.12)
2019-06-30 08:27:40
113.176.98.12 attackspambots
@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-06-29 18:38:59,864 INFO [amun_request_handler] PortScan Detected on Port: 445 (113.176.98.12)
2019-06-30 08:18:33
186.156.177.115 attackbotsspam
Jun 29 22:11:20 *** sshd[9043]: Invalid user stea from 186.156.177.115
2019-06-30 07:55:16
159.65.153.163 attackspambots
Jun 29 23:37:40 apollo sshd\[32480\]: Invalid user sirsi from 159.65.153.163Jun 29 23:37:42 apollo sshd\[32480\]: Failed password for invalid user sirsi from 159.65.153.163 port 37322 ssh2Jun 29 23:40:41 apollo sshd\[32493\]: Invalid user prod from 159.65.153.163
...
2019-06-30 08:14:48
68.57.86.37 attackbots
Jun 30 00:37:45 Proxmox sshd\[9394\]: Invalid user openvpn from 68.57.86.37 port 37998
Jun 30 00:37:45 Proxmox sshd\[9394\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.57.86.37
Jun 30 00:37:47 Proxmox sshd\[9394\]: Failed password for invalid user openvpn from 68.57.86.37 port 37998 ssh2
Jun 30 00:42:52 Proxmox sshd\[13361\]: Invalid user git4 from 68.57.86.37 port 53490
Jun 30 00:42:52 Proxmox sshd\[13361\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.57.86.37
Jun 30 00:42:54 Proxmox sshd\[13361\]: Failed password for invalid user git4 from 68.57.86.37 port 53490 ssh2
2019-06-30 08:13:40
207.154.227.200 attackbots
Jun 29 14:30:45 cac1d2 sshd\[10544\]: Invalid user server1 from 207.154.227.200 port 55658
Jun 29 14:30:45 cac1d2 sshd\[10544\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.227.200
Jun 29 14:30:47 cac1d2 sshd\[10544\]: Failed password for invalid user server1 from 207.154.227.200 port 55658 ssh2
...
2019-06-30 08:02:22
219.92.0.57 attack
Many RDP login attempts detected by IDS script
2019-06-30 07:53:27

最近上报的IP列表

219.126.13.41 14.237.50.86 102.104.147.30 137.47.7.139
5.78.43.76 221.167.219.189 85.26.89.218 191.35.200.177
193.42.14.92 102.58.58.193 44.111.128.69 4.117.95.63
103.133.11.239 14.45.174.103 164.5.46.13 177.97.73.183
178.216.114.59 105.148.211.134 83.150.50.33 1.188.1.62