必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Austria

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 144.208.140.63
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8486
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;144.208.140.63.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022500 1800 900 604800 86400

;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 26 01:48:27 CST 2025
;; MSG SIZE  rcvd: 107
HOST信息:
Host 63.140.208.144.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 63.140.208.144.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
77.247.110.70 attack
\[2019-08-11 22:45:13\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-11T22:45:13.792-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="900970598528175",SessionID="0x7ff4d07e79a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.70/5070",ACLName="no_extension_match"
\[2019-08-11 22:45:48\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-11T22:45:48.992-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="900972598528175",SessionID="0x7ff4d02d8f48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.70/5070",ACLName="no_extension_match"
\[2019-08-11 22:45:58\] SECURITY\[2326\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-08-11T22:45:58.773-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="900972598528175",SessionID="0x7ff4d004fe18",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.70/5070",ACLName="no_extens
2019-08-12 11:57:11
31.210.154.233 attackbotsspam
SMB Server BruteForce Attack
2019-08-12 12:00:30
112.245.219.42 attackspambots
Unauthorised access (Aug 12) SRC=112.245.219.42 LEN=40 TTL=49 ID=55521 TCP DPT=8080 WINDOW=29032 SYN
2019-08-12 11:38:03
188.217.41.101 attack
Unauthorised access (Aug 12) SRC=188.217.41.101 LEN=44 TTL=54 ID=40411 TCP DPT=8080 WINDOW=132 SYN 
Unauthorised access (Aug 11) SRC=188.217.41.101 LEN=44 TTL=54 ID=54626 TCP DPT=8080 WINDOW=19574 SYN 
Unauthorised access (Aug 11) SRC=188.217.41.101 LEN=44 TTL=54 ID=64750 TCP DPT=8080 WINDOW=19574 SYN 
Unauthorised access (Aug 11) SRC=188.217.41.101 LEN=44 TTL=54 ID=38096 TCP DPT=8080 WINDOW=19574 SYN
2019-08-12 11:23:17
86.101.71.245 attackbotsspam
Aug 12 04:13:51 h2177944 kernel: \[3899803.510447\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=86.101.71.245 DST=85.214.117.9 LEN=44 TOS=0x00 PREC=0x00 TTL=50 ID=34596 PROTO=TCP SPT=3308 DPT=23 WINDOW=53044 RES=0x00 SYN URGP=0 
Aug 12 04:33:29 h2177944 kernel: \[3900981.216082\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=86.101.71.245 DST=85.214.117.9 LEN=44 TOS=0x00 PREC=0x00 TTL=50 ID=34596 PROTO=TCP SPT=3308 DPT=23 WINDOW=53044 RES=0x00 SYN URGP=0 
Aug 12 04:36:36 h2177944 kernel: \[3901167.515000\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=86.101.71.245 DST=85.214.117.9 LEN=44 TOS=0x00 PREC=0x00 TTL=50 ID=34596 PROTO=TCP SPT=3308 DPT=23 WINDOW=53044 RES=0x00 SYN URGP=0 
Aug 12 04:40:44 h2177944 kernel: \[3901415.589263\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=86.101.71.245 DST=85.214.117.9 LEN=44 TOS=0x00 PREC=0x00 TTL=50 ID=34596 PROTO=TCP SPT=3308 DPT=23 WINDOW=53044 RES=0x00 SYN URGP=0 
Aug 12 04:46:05 h2177944 kernel: \[3901736.955270\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=86.101.71.245 DST=85.214.117.9 LEN=44 TOS=
2019-08-12 11:53:43
171.244.18.14 attackspambots
Aug 12 05:49:06 nextcloud sshd\[13514\]: Invalid user fachbereich from 171.244.18.14
Aug 12 05:49:06 nextcloud sshd\[13514\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.244.18.14
Aug 12 05:49:08 nextcloud sshd\[13514\]: Failed password for invalid user fachbereich from 171.244.18.14 port 40710 ssh2
...
2019-08-12 11:50:11
118.122.191.187 attack
Aug 12 04:25:35 host sshd[10462]: Invalid user school from 118.122.191.187 port 28652
Aug 12 04:25:35 host sshd[10462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.122.191.187
Aug 12 04:25:36 host sshd[10462]: Failed password for invalid user school from 118.122.191.187 port 28652 ssh2
Aug 12 04:25:37 host sshd[10462]: Received disconnect from 118.122.191.187 port 28652:11: Bye Bye [preauth]
Aug 12 04:25:37 host sshd[10462]: Disconnected from invalid user school 118.122.191.187 port 28652 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=118.122.191.187
2019-08-12 12:06:07
178.154.200.50 attack
[Mon Aug 12 09:46:46.252476 2019] [:error] [pid 14411:tid 140680957478656] [client 178.154.200.50:65069] [client 178.154.200.50] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.1.1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "792"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.1.1"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XVDTFhdwU8lNS@e-HuOMLQAAAA0"]
...
2019-08-12 11:31:43
222.98.37.25 attackbots
Aug 12 05:16:45 [host] sshd[23294]: Invalid user ktk from 222.98.37.25
Aug 12 05:16:45 [host] sshd[23294]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.98.37.25
Aug 12 05:16:47 [host] sshd[23294]: Failed password for invalid user ktk from 222.98.37.25 port 14549 ssh2
2019-08-12 11:51:25
109.130.161.199 attackbotsspam
Aug 12 04:28:50 shared02 sshd[18848]: Invalid user ll from 109.130.161.199
Aug 12 04:28:50 shared02 sshd[18848]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.130.161.199
Aug 12 04:28:52 shared02 sshd[18848]: Failed password for invalid user ll from 109.130.161.199 port 42762 ssh2
Aug 12 04:28:52 shared02 sshd[18848]: Received disconnect from 109.130.161.199 port 42762:11: Bye Bye [preauth]
Aug 12 04:28:52 shared02 sshd[18848]: Disconnected from 109.130.161.199 port 42762 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=109.130.161.199
2019-08-12 11:27:57
207.154.192.152 attackspambots
Aug 12 05:16:05 eventyay sshd[8647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.192.152
Aug 12 05:16:07 eventyay sshd[8647]: Failed password for invalid user rox from 207.154.192.152 port 37142 ssh2
Aug 12 05:21:25 eventyay sshd[10108]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.192.152
...
2019-08-12 11:22:03
49.88.112.90 attack
Aug 11 22:26:34 aat-srv002 sshd[26027]: Failed password for root from 49.88.112.90 port 45100 ssh2
Aug 11 22:26:53 aat-srv002 sshd[26038]: Failed password for root from 49.88.112.90 port 11697 ssh2
Aug 11 22:26:56 aat-srv002 sshd[26038]: Failed password for root from 49.88.112.90 port 11697 ssh2
...
2019-08-12 11:59:52
31.182.57.162 attackbots
Aug 12 02:47:05 MK-Soft-VM4 sshd\[8261\]: Invalid user ferari from 31.182.57.162 port 58434
Aug 12 02:47:05 MK-Soft-VM4 sshd\[8261\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.182.57.162
Aug 12 02:47:07 MK-Soft-VM4 sshd\[8261\]: Failed password for invalid user ferari from 31.182.57.162 port 58434 ssh2
...
2019-08-12 11:18:33
46.249.60.194 attackspambots
08/11/2019-22:46:13.784202 46.249.60.194 Protocol: 6 ET SCAN Potential SSH Scan
2019-08-12 11:48:29
151.48.180.189 attackbots
DATE:2019-08-12 04:45:45, IP:151.48.180.189, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)
2019-08-12 12:03:40

最近上报的IP列表

213.28.17.78 239.10.69.116 140.46.40.179 117.255.38.42
164.167.45.140 112.161.33.34 223.1.171.29 169.99.244.116
76.168.141.114 213.57.155.197 135.230.131.231 253.138.163.21
9.43.47.230 97.255.192.12 6.93.225.93 64.60.171.32
68.172.144.166 188.33.115.185 174.7.184.124 140.241.55.146