必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 118.197.30.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33737
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;118.197.30.94.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021900 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 19 21:13:36 CST 2025
;; MSG SIZE  rcvd: 106
HOST信息:
Host 94.30.197.118.in-addr.arpa not found: 2(SERVFAIL)
NSLOOKUP信息:
server can't find 118.197.30.94.in-addr.arpa: SERVFAIL
相关IP信息:
最新评论:
IP 类型 评论内容 时间
206.189.143.91 attack
Sep 26 10:10:05 srv-ubuntu-dev3 sshd[67201]: Invalid user abc from 206.189.143.91
Sep 26 10:10:05 srv-ubuntu-dev3 sshd[67201]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.143.91
Sep 26 10:10:05 srv-ubuntu-dev3 sshd[67201]: Invalid user abc from 206.189.143.91
Sep 26 10:10:07 srv-ubuntu-dev3 sshd[67201]: Failed password for invalid user abc from 206.189.143.91 port 41852 ssh2
Sep 26 10:14:27 srv-ubuntu-dev3 sshd[67711]: Invalid user magento from 206.189.143.91
Sep 26 10:14:27 srv-ubuntu-dev3 sshd[67711]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.143.91
Sep 26 10:14:27 srv-ubuntu-dev3 sshd[67711]: Invalid user magento from 206.189.143.91
Sep 26 10:14:30 srv-ubuntu-dev3 sshd[67711]: Failed password for invalid user magento from 206.189.143.91 port 50698 ssh2
Sep 26 10:18:46 srv-ubuntu-dev3 sshd[68278]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= r
...
2020-09-26 16:35:00
120.131.13.198 attackbotsspam
Sep 26 08:28:41 sshgateway sshd\[24710\]: Invalid user gen from 120.131.13.198
Sep 26 08:28:41 sshgateway sshd\[24710\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.13.198
Sep 26 08:28:43 sshgateway sshd\[24710\]: Failed password for invalid user gen from 120.131.13.198 port 5442 ssh2
2020-09-26 16:11:44
23.101.156.218 attackspam
(sshd) Failed SSH login from 23.101.156.218 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 26 00:22:24 jbs1 sshd[24349]: Invalid user print from 23.101.156.218
Sep 26 00:22:24 jbs1 sshd[24349]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.101.156.218 
Sep 26 00:22:27 jbs1 sshd[24349]: Failed password for invalid user print from 23.101.156.218 port 57552 ssh2
Sep 26 00:39:04 jbs1 sshd[8307]: Invalid user osboxes from 23.101.156.218
Sep 26 00:39:04 jbs1 sshd[8307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.101.156.218
2020-09-26 16:30:50
187.176.185.65 attackspambots
[N1.H1.VM1] Port Scanner Detected Blocked by UFW
2020-09-26 16:08:57
192.157.233.175 attack
Sep 26 10:37:51 pkdns2 sshd\[10819\]: Address 192.157.233.175 maps to mountainhazelnuts.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Sep 26 10:37:53 pkdns2 sshd\[10819\]: Failed password for root from 192.157.233.175 port 36585 ssh2Sep 26 10:41:25 pkdns2 sshd\[11029\]: Address 192.157.233.175 maps to mountainhazelnuts.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!Sep 26 10:41:27 pkdns2 sshd\[11029\]: Failed password for root from 192.157.233.175 port 40939 ssh2Sep 26 10:45:20 pkdns2 sshd\[11217\]: Invalid user admwizzbe from 192.157.233.175Sep 26 10:45:21 pkdns2 sshd\[11217\]: Failed password for invalid user admwizzbe from 192.157.233.175 port 45286 ssh2
...
2020-09-26 16:02:50
45.79.110.218 attackspam
Port scan: Attack repeated for 24 hours
2020-09-26 16:18:12
167.71.70.81 attack
WordPress (CMS) attack attempts.
Date: 2020 Sep 25. 06:35:59
Source IP: 167.71.70.81

Portion of the log(s):
167.71.70.81 - [25/Sep/2020:06:35:49 +0200] "GET /wp-login.php HTTP/1.1" 200 2035 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
167.71.70.81 - [25/Sep/2020:06:35:51 +0200] "POST /wp-login.php HTTP/1.1" 200 2236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
167.71.70.81 - [25/Sep/2020:06:35:54 +0200] "POST /xmlrpc.php HTTP/1.1" 200 421 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-09-26 16:22:14
125.24.41.62 attackbots
1601066211 - 09/25/2020 22:36:51 Host: 125.24.41.62/125.24.41.62 Port: 445 TCP Blocked
2020-09-26 16:22:42
188.17.155.103 attack
Listed on    zen-spamhaus also barracudaCentral and abuseat.org   / proto=6  .  srcport=27259  .  dstport=2323  .     (3542)
2020-09-26 16:07:40
51.38.47.79 attack
51.38.47.79 - - [26/Sep/2020:06:25:45 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
51.38.47.79 - - [26/Sep/2020:06:54:24 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-09-26 16:10:07
190.143.137.114 attack
Sep 26 08:11:46 mail sshd[6750]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.143.137.114
Sep 26 08:11:48 mail sshd[6750]: Failed password for invalid user trace from 190.143.137.114 port 39584 ssh2
...
2020-09-26 16:31:36
103.130.109.8 attackspam
Sep 26 05:44:05 IngegnereFirenze sshd[20368]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.130.109.8  user=root
...
2020-09-26 16:04:16
121.133.94.205 attackbotsspam
4564/udp 23171/udp 7992/udp...
[2020-09-15/25]6pkt,6pt.(udp)
2020-09-26 16:02:35
62.234.80.115 attackbots
$f2bV_matches
2020-09-26 16:12:17
222.186.180.8 attackbotsspam
Sep 26 09:59:23 pve1 sshd[6441]: Failed password for root from 222.186.180.8 port 39856 ssh2
Sep 26 09:59:28 pve1 sshd[6441]: Failed password for root from 222.186.180.8 port 39856 ssh2
...
2020-09-26 16:00:27

最近上报的IP列表

128.208.245.104 162.44.173.87 234.93.245.132 158.126.23.126
174.118.117.10 140.11.255.224 27.132.154.167 206.72.89.234
37.209.14.97 118.207.94.152 133.229.111.159 224.204.236.83
42.193.57.239 73.176.219.21 245.92.44.95 97.14.204.8
49.235.151.190 196.190.119.56 30.222.107.44 65.251.5.167