必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Japan

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 133.198.248.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22363
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;133.198.248.49.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020901 1800 900 604800 86400

;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 12:21:20 CST 2025
;; MSG SIZE  rcvd: 107
HOST信息:
Host 49.248.198.133.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 49.248.198.133.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
14.177.149.229 attackspambots
Unauthorized connection attempt from IP address 14.177.149.229 on Port 445(SMB)
2020-08-09 20:26:40
159.65.149.139 attackspam
Aug  9 13:22:06 server sshd[22584]: Failed password for root from 159.65.149.139 port 59750 ssh2
Aug  9 13:27:59 server sshd[30613]: Failed password for root from 159.65.149.139 port 53884 ssh2
Aug  9 13:31:25 server sshd[2700]: Failed password for root from 159.65.149.139 port 48652 ssh2
2020-08-09 19:59:27
54.37.154.113 attackbots
Aug  9 13:04:12 rancher-0 sshd[948494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.154.113  user=root
Aug  9 13:04:15 rancher-0 sshd[948494]: Failed password for root from 54.37.154.113 port 38792 ssh2
...
2020-08-09 20:04:06
52.152.226.185 attackspambots
Aug  5 22:40:38 django sshd[29289]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.152.226.185  user=r.r
Aug  5 22:40:40 django sshd[29289]: Failed password for r.r from 52.152.226.185 port 39943 ssh2
Aug  5 22:40:41 django sshd[29290]: Received disconnect from 52.152.226.185: 11: Bye Bye
Aug  5 22:50:49 django sshd[30999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.152.226.185  user=r.r
Aug  5 22:50:51 django sshd[30999]: Failed password for r.r from 52.152.226.185 port 51551 ssh2
Aug  5 22:50:51 django sshd[31000]: Received disconnect from 52.152.226.185: 11: Bye Bye
Aug  5 22:53:55 django sshd[31761]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.152.226.185  user=r.r
Aug  5 22:53:57 django sshd[31761]: Failed password for r.r from 52.152.226.185 port 49047 ssh2
Aug  5 22:53:57 django sshd[31762]: Received disconnect from 52.152.226........
-------------------------------
2020-08-09 19:58:30
121.36.219.52 attack
20 attempts against mh-ssh on ray
2020-08-09 19:51:36
139.28.36.20 attackbotsspam
xmlrpc attack
2020-08-09 19:51:04
170.238.254.254 attackbots
Unauthorized connection attempt from IP address 170.238.254.254 on Port 445(SMB)
2020-08-09 20:04:59
106.51.113.15 attackspambots
Aug  9 06:55:11 scw-focused-cartwright sshd[2693]: Failed password for root from 106.51.113.15 port 59539 ssh2
2020-08-09 19:49:40
104.152.52.25 attackspam
Masscan Port Scanning Tool Detection
2020-08-09 20:30:04
5.51.111.195 attackbots
(sshd) Failed SSH login from 5.51.111.195 (FR/France/static-5-51-111-195.ftth.abo.bbox.fr): 5 in the last 3600 secs
2020-08-09 20:06:25
103.217.219.1 attackspambots
Attempted connection to port 445.
2020-08-09 19:48:11
195.154.53.237 attack
[2020-08-09 07:33:43] NOTICE[1248][C-00005119] chan_sip.c: Call from '' (195.154.53.237:55617) to extension '011972595725668' rejected because extension not found in context 'public'.
[2020-08-09 07:33:43] SECURITY[1275] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-09T07:33:43.373-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011972595725668",SessionID="0x7f27203c7888",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/195.154.53.237/55617",ACLName="no_extension_match"
[2020-08-09 07:35:52] NOTICE[1248][C-0000511c] chan_sip.c: Call from '' (195.154.53.237:63524) to extension '011972595725668' rejected because extension not found in context 'public'.
[2020-08-09 07:35:52] SECURITY[1275] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-09T07:35:52.880-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011972595725668",SessionID="0x7f2720302028",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/U
...
2020-08-09 20:00:35
78.128.113.116 attack
2020-08-09 13:38:33 dovecot_login authenticator failed for \(ip-113-116.4vendeta.com.\) \[78.128.113.116\]: 535 Incorrect authentication data \(set_id=ben@benjaminhauck.com\)
2020-08-09 13:38:39 dovecot_login authenticator failed for \(ip-113-116.4vendeta.com.\) \[78.128.113.116\]: 535 Incorrect authentication data
2020-08-09 13:38:48 dovecot_login authenticator failed for \(ip-113-116.4vendeta.com.\) \[78.128.113.116\]: 535 Incorrect authentication data
2020-08-09 13:38:53 dovecot_login authenticator failed for \(ip-113-116.4vendeta.com.\) \[78.128.113.116\]: 535 Incorrect authentication data
2020-08-09 13:42:21 dovecot_login authenticator failed for \(ip-113-116.4vendeta.com.\) \[78.128.113.116\]: 535 Incorrect authentication data \(set_id=adminadmin@no-server.de\)
...
2020-08-09 19:47:33
213.180.203.44 attackbotsspam
[Sun Aug 09 19:15:32.066791 2020] [:error] [pid 4581:tid 139856599889664] [client 213.180.203.44:46886] [client 213.180.203.44] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "Xy-o5MESi5EZXnEpWIA21AAAAko"]
...
2020-08-09 20:26:58
180.117.114.158 attackspam
 TCP (SYN) 180.117.114.158:38657 -> port 22, len 60
2020-08-09 19:50:41

最近上报的IP列表

147.132.237.123 216.66.62.30 149.118.14.171 133.56.69.16
143.133.6.132 62.90.55.141 185.61.237.140 148.81.114.195
6.23.1.137 23.99.0.158 52.164.90.37 185.251.26.230
66.51.41.140 51.21.244.110 86.118.115.70 98.217.30.79
151.222.208.74 237.212.155.250 52.27.187.245 79.73.34.197