必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 118.196.149.111
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6686
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;118.196.149.111.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020500 1800 900 604800 86400

;; Query time: 46 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 21:11:16 CST 2025
;; MSG SIZE  rcvd: 108
HOST信息:
Host 111.149.196.118.in-addr.arpa not found: 2(SERVFAIL)
NSLOOKUP信息:
server can't find 118.196.149.111.in-addr.arpa: SERVFAIL
相关IP信息:
最新评论:
IP 类型 评论内容 时间
139.59.90.40 attackspam
F2B jail: sshd. Time: 2019-10-14 12:20:47, Reported by: VKReport
2019-10-14 19:06:40
118.96.208.231 attackbots
Attempt to attack host OS, exploiting network vulnerabilities, on 14-10-2019 04:45:15.
2019-10-14 19:44:17
106.52.169.18 attack
Oct 14 12:43:45 hosting sshd[15502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.169.18  user=root
Oct 14 12:43:47 hosting sshd[15502]: Failed password for root from 106.52.169.18 port 52352 ssh2
...
2019-10-14 19:06:57
81.182.246.50 attackbots
Automatic report - Port Scan Attack
2019-10-14 19:24:17
106.12.206.53 attackspam
Oct 14 09:54:23 legacy sshd[19095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.206.53
Oct 14 09:54:25 legacy sshd[19095]: Failed password for invalid user End@123 from 106.12.206.53 port 60730 ssh2
Oct 14 10:00:26 legacy sshd[19150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.206.53
...
2019-10-14 19:33:28
137.74.115.225 attackbots
ssh brute force
2019-10-14 19:05:16
78.188.224.4 attackbots
Honeypot attack, port: 445, PTR: 78.188.224.4.static.ttnet.com.tr.
2019-10-14 19:30:59
201.66.230.67 attackbotsspam
Oct 14 06:42:54 OPSO sshd\[2926\]: Invalid user Wachtwoord1@3\$ from 201.66.230.67 port 39426
Oct 14 06:42:54 OPSO sshd\[2926\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.66.230.67
Oct 14 06:42:56 OPSO sshd\[2926\]: Failed password for invalid user Wachtwoord1@3\$ from 201.66.230.67 port 39426 ssh2
Oct 14 06:48:15 OPSO sshd\[3814\]: Invalid user ZXCDSAQWE\#@! from 201.66.230.67 port 58089
Oct 14 06:48:15 OPSO sshd\[3814\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.66.230.67
2019-10-14 19:16:39
167.99.65.138 attack
Oct 14 14:11:47 server sshd\[15895\]: User root from 167.99.65.138 not allowed because listed in DenyUsers
Oct 14 14:11:47 server sshd\[15895\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.65.138  user=root
Oct 14 14:11:49 server sshd\[15895\]: Failed password for invalid user root from 167.99.65.138 port 42900 ssh2
Oct 14 14:16:15 server sshd\[19992\]: User root from 167.99.65.138 not allowed because listed in DenyUsers
Oct 14 14:16:15 server sshd\[19992\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.65.138  user=root
2019-10-14 19:28:28
117.135.131.123 attackbots
$f2bV_matches
2019-10-14 19:10:04
118.121.206.66 attackbotsspam
Automatic report - Banned IP Access
2019-10-14 19:13:16
115.77.189.92 attack
" "
2019-10-14 19:21:50
186.213.129.159 attack
Attempt to attack host OS, exploiting network vulnerabilities, on 14-10-2019 04:45:18.
2019-10-14 19:40:41
45.55.50.222 attackspam
WordPress (CMS) attack attempts.
Date: 2019 Oct 14. 02:58:12
Source IP: 45.55.50.222

Portion of the log(s):
45.55.50.222 - [14/Oct/2019:02:58:12 +0200] "POST /wp-login.php HTTP/1.1" 200 2393 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
45.55.50.222 - [14/Oct/2019:02:58:10 +0200] "POST /wp-login.php HTTP/1.1" 200 2392 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
45.55.50.222 - [14/Oct/2019:02:58:09 +0200] "POST /wp-login.php HTTP/1.1" 200 2389 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
45.55.50.222 - [14/Oct/2019:02:58:07 +0200] "POST /wp-login.php HTTP/1.1" 200 2399 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
45.55.50.222 - [14/Oct/2019:02:58:05 +0200] "POST /wp-login.php HTTP/1.1" 200 2389 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
45.55.50.222 - [14/Oct/2019:02:58:04 +0200] "POST /wp-login.php HTTP/1.1"
2019-10-14 19:11:38
89.46.107.173 attackspambots
Automatic report - XMLRPC Attack
2019-10-14 19:03:14

最近上报的IP列表

73.136.57.85 255.75.44.190 240.76.182.152 84.53.63.39
60.226.50.187 205.229.165.121 149.45.187.55 180.196.206.246
254.59.142.41 3.122.0.110 162.243.139.221 119.91.19.7
153.175.176.60 47.207.31.101 232.173.46.9 145.93.133.216
55.166.88.50 57.46.15.159 23.193.106.130 8.215.85.24