必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Vietnam

运营商(isp): Viettel Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
类型 评论内容 时间
attackspambots
445/tcp
[2019-09-08]1pkt
2019-09-09 00:19:31
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.104.0.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9231
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.104.0.54.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090800 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Sep 09 00:19:17 CST 2019
;; MSG SIZE  rcvd: 116
HOST信息:
Host 54.0.104.116.in-addr.arpa not found: 2(SERVFAIL)
NSLOOKUP信息:
;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 54.0.104.116.in-addr.arpa: SERVFAIL
相关IP信息:
最新评论:
IP 类型 评论内容 时间
207.182.135.164 attack
Apr  4 22:30:10 vpn01 sshd[20669]: Failed password for root from 207.182.135.164 port 35196 ssh2
...
2020-04-05 05:21:04
123.253.37.44 attack
123.253.37.44

WEB Remote Command Execution via Shell Script -1.a
2020-04-05 05:11:39
171.100.51.90 attackspam
Apr  4 15:34:00 ks10 sshd[2480112]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.100.51.90 
Apr  4 15:34:02 ks10 sshd[2480112]: Failed password for invalid user admin from 171.100.51.90 port 46701 ssh2
...
2020-04-05 05:32:39
188.163.24.160 spam
Creates e-commerce orders with invalid name and phone
2020-04-05 05:17:18
85.209.0.5 attack
SSH bruteforce (Triggered fail2ban)
2020-04-05 05:33:54
50.3.60.24 attack
2020-04-04 08:34:07 H=(07660fc9.virusmeter.uno) [50.3.60.24]:44136 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS)
2020-04-04 08:34:07 H=(076a801c.virusmeter.uno) [50.3.60.24]:33056 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS)
2020-04-04 08:34:07 H=(0768dd7f.virusmeter.uno) [50.3.60.24]:42510 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS)
...
2020-04-05 05:28:43
87.246.7.37 attack
Apr  4 15:31:14 mail.srvfarm.net postfix/smtpd[3299407]: warning: unknown[87.246.7.37]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Apr  4 15:31:14 mail.srvfarm.net postfix/smtpd[3299407]: lost connection after AUTH from unknown[87.246.7.37]
Apr  4 15:31:20 mail.srvfarm.net postfix/smtpd[3318080]: warning: unknown[87.246.7.37]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Apr  4 15:31:20 mail.srvfarm.net postfix/smtpd[3318080]: lost connection after AUTH from unknown[87.246.7.37]
Apr  4 15:31:30 mail.srvfarm.net postfix/smtpd[3317480]: warning: unknown[87.246.7.37]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
2020-04-05 05:06:26
86.173.93.191 attackbotsspam
$f2bV_matches
2020-04-05 05:42:02
104.131.218.29 attackbotsspam
DigitalOcean BotNet attack - 10s of requests to non- pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks
UA removed
2020-04-05 05:08:47
107.6.183.229 attack
Port 22 Scan, PTR: sh-ams-nl-gp1-wk110.internet-census.org.
2020-04-05 05:24:51
187.190.236.88 attackbots
Apr  4 22:03:14 plex sshd[19556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.190.236.88  user=root
Apr  4 22:03:15 plex sshd[19556]: Failed password for root from 187.190.236.88 port 49286 ssh2
2020-04-05 05:35:18
186.139.218.8 attackspam
Apr  4 22:46:51 ns382633 sshd\[31224\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.139.218.8  user=root
Apr  4 22:46:53 ns382633 sshd\[31224\]: Failed password for root from 186.139.218.8 port 59907 ssh2
Apr  4 22:55:41 ns382633 sshd\[1101\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.139.218.8  user=root
Apr  4 22:55:42 ns382633 sshd\[1101\]: Failed password for root from 186.139.218.8 port 2665 ssh2
Apr  4 23:00:38 ns382633 sshd\[2196\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.139.218.8  user=root
2020-04-05 05:05:31
70.60.171.10 attackbots
Scanning an empty webserver with deny all robots.txt
2020-04-05 05:29:18
95.107.45.174 attackbotsspam
23/tcp
[2020-04-04]1pkt
2020-04-05 05:41:24
201.248.8.39 attackspambots
445/tcp
[2020-04-04]1pkt
2020-04-05 05:16:25

最近上报的IP列表

140.148.229.141 87.7.193.187 179.6.198.119 92.75.91.201
123.19.213.185 129.114.206.50 27.64.176.154 90.70.225.84
145.232.22.246 137.110.194.206 147.162.222.95 151.199.69.205
12.194.141.116 220.104.23.140 179.147.85.42 135.40.131.123
173.231.228.206 32.202.75.1 146.86.67.61 175.170.219.74