必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
142.93.219.87 attackbots
Tried sshing with brute force.
2020-05-14 05:27:06
142.93.219.80 attackbots
...
2020-02-02 03:45:34
142.93.219.126 attack
Unauthorized connection attempt detected from IP address 142.93.219.126 to port 2220 [J]
2020-01-25 17:28:34
142.93.219.114 attackspam
Brute forcing Wordpress login
2019-08-13 13:38:32
142.93.219.67 attackbotsspam
WP Authentication failure
2019-07-14 06:17:35
142.93.219.126 attack
www noscript
...
2019-07-05 06:31:44
142.93.219.67 attackbots
Attempted WordPress login: "GET /wp-login.php"
2019-07-04 17:16:06
142.93.219.227 attack
Invalid user admin from 142.93.219.227 port 52496
2019-06-25 15:07:40
142.93.219.227 attackspambots
Jun 24 12:01:26 ip-172-31-62-245 sshd\[25675\]: Failed password for root from 142.93.219.227 port 46186 ssh2\
Jun 24 12:01:28 ip-172-31-62-245 sshd\[25677\]: Invalid user admin from 142.93.219.227\
Jun 24 12:01:30 ip-172-31-62-245 sshd\[25677\]: Failed password for invalid user admin from 142.93.219.227 port 49568 ssh2\
Jun 24 12:01:32 ip-172-31-62-245 sshd\[25679\]: Invalid user admin from 142.93.219.227\
Jun 24 12:01:33 ip-172-31-62-245 sshd\[25679\]: Failed password for invalid user admin from 142.93.219.227 port 52550 ssh2\
2019-06-25 01:36:41
142.93.219.227 attackspam
Invalid user admin from 142.93.219.227 port 52496
2019-06-24 13:17:29
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.93.219.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4417
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.93.219.148.			IN	A

;; AUTHORITY SECTION:
.			142	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 09:45:26 CST 2022
;; MSG SIZE  rcvd: 107
HOST信息:
Host 148.219.93.142.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 148.219.93.142.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
209.17.96.26 attack
IP: 209.17.96.26
Ports affected
    World Wide Web HTTP (80) 
Abuse Confidence rating 100%
Found in DNSBL('s)
ASN Details
   AS174 Cogent Communications
   United States (US)
   CIDR 209.17.96.0/20
Log Date: 16/03/2020 11:28:01 PM UTC
2020-03-17 14:05:18
64.62.245.106 attack
Time:     Mon Mar 16 22:12:41 2020 -0300
IP:       64.62.245.106 (US/United States/-)
Failures: 5 (mod_security)
Interval: 3600 seconds
Blocked:  Permanent Block
2020-03-17 14:09:52
121.46.29.116 attack
Fail2Ban - SSH Bruteforce Attempt
2020-03-17 14:15:39
51.89.68.141 attackspambots
Mar 17 08:38:28 server sshd\[4171\]: Invalid user energy from 51.89.68.141
Mar 17 08:38:28 server sshd\[4171\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip141.ip-51-89-68.eu 
Mar 17 08:38:30 server sshd\[4171\]: Failed password for invalid user energy from 51.89.68.141 port 41416 ssh2
Mar 17 09:12:34 server sshd\[11769\]: Invalid user default from 51.89.68.141
Mar 17 09:12:34 server sshd\[11769\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip141.ip-51-89-68.eu 
...
2020-03-17 14:36:26
140.143.80.8 attack
Triggered: repeated knocking on closed ports.
2020-03-17 14:11:16
125.161.154.23 attackbotsspam
Mar 17 00:53:40 vzmaster sshd[7121]: Address 125.161.154.23 maps to 23.subnet125-161-154.speedy.telkom.net.id, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!
Mar 17 00:53:40 vzmaster sshd[7121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.161.154.23  user=r.r
Mar 17 00:53:42 vzmaster sshd[7121]: Failed password for r.r from 125.161.154.23 port 41086 ssh2
Mar 17 00:54:59 vzmaster sshd[8735]: Address 125.161.154.23 maps to 23.subnet125-161-154.speedy.telkom.net.id, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!
Mar 17 00:54:59 vzmaster sshd[8735]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.161.154.23  user=r.r
Mar 17 00:55:01 vzmaster sshd[8735]: Failed password for r.r from 125.161.154.23 port 56616 ssh2
Mar 17 00:55:33 vzmaster sshd[9098]: Address 125.161.154.23 maps to 23.subnet125-161-154.speedy.telkom.net.id, but this does n........
-------------------------------
2020-03-17 14:39:33
193.57.40.38 attack
IP: 193.57.40.38
Ports affected
    http protocol over TLS/SSL (443) 
    World Wide Web HTTP (80) 
Abuse Confidence rating 100%
Found in DNSBL('s)
ASN Details
   AS49453 Global Layer B.V.
   Ukraine (UA)
   CIDR 193.57.40.0/24
Log Date: 17/03/2020 5:23:17 AM UTC
2020-03-17 14:23:49
202.55.191.40 attackspambots
Unauthorized connection attempt from IP address 202.55.191.40 on Port 445(SMB)
2020-03-17 14:03:45
209.17.96.130 attackbots
firewall-block, port(s): 8081/tcp
2020-03-17 14:06:46
106.13.82.54 attackspam
Mar 17 00:58:37 vps691689 sshd[10539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.54
Mar 17 00:58:39 vps691689 sshd[10539]: Failed password for invalid user testuser from 106.13.82.54 port 38934 ssh2
...
2020-03-17 13:55:34
220.156.167.132 attackbotsspam
(imapd) Failed IMAP login from 220.156.167.132 (NC/New Caledonia/host-220-156-167-132.canl.nc): 1 in the last 3600 secs
2020-03-17 14:35:17
185.39.10.73 attackbotsspam
[munged]::443 185.39.10.73 - - [17/Mar/2020:07:02:23 +0100] "POST /[munged]: HTTP/1.1" 200 7494 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:18.0) Gecko/20100101 Firefox/18.0"
[munged]::443 185.39.10.73 - - [17/Mar/2020:07:02:24 +0100] "POST /[munged]: HTTP/1.1" 200 7494 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:18.0) Gecko/20100101 Firefox/18.0"
[munged]::443 185.39.10.73 - - [17/Mar/2020:07:02:24 +0100] "POST /[munged]: HTTP/1.1" 200 7494 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:18.0) Gecko/20100101 Firefox/18.0"
[munged]::443 185.39.10.73 - - [17/Mar/2020:07:02:25 +0100] "POST /[munged]: HTTP/1.1" 200 7494 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:18.0) Gecko/20100101 Firefox/18.0"
[munged]::443 185.39.10.73 - - [17/Mar/2020:07:02:25 +0100] "POST /[munged]: HTTP/1.1" 200 7494 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:18.0) Gecko/20100101 Firefox/18.0"
[munged]::443 185.39.10.73 - - [17/Mar/2020:07:02:26 +0100] "POST /[munged]: HTTP/1.1" 200 7494 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:18.0) Gec
2020-03-17 14:20:21
45.238.229.211 attackspam
Mar 17 00:29:10 nextcloud sshd\[2183\]: Invalid user debian from 45.238.229.211
Mar 17 00:29:10 nextcloud sshd\[2183\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.238.229.211
Mar 17 00:29:12 nextcloud sshd\[2183\]: Failed password for invalid user debian from 45.238.229.211 port 62254 ssh2
2020-03-17 14:33:53
139.210.37.78 attack
03/16/2020-19:46:48.944341 139.210.37.78 Protocol: 6 ET SCAN NMAP -sS window 1024
2020-03-17 14:00:12
14.161.49.16 attackspambots
Unauthorized connection attempt from IP address 14.161.49.16 on Port 445(SMB)
2020-03-17 14:01:47

最近上报的IP列表

142.93.219.98 142.93.22.221 142.93.22.30 142.93.22.250
142.93.220.190 142.93.22.74 142.93.219.66 142.93.220.63
142.93.220.247 142.93.220.44 118.97.129.217 142.93.221.120
142.93.221.134 142.93.221.122 142.93.221.110 142.93.222.145
142.93.221.175 142.93.221.149 142.93.221.50 142.93.222.170