148.64.56.117 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United Kingdom

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
bots	爬虫区间是148.64.56.0 to 148.64.56.255 (148.64.56.0/24) 148.64.56.117 - - [28/Apr/2019:09:09:44 +0800] "GET /check-ip/58.17.114.102 HTTP/1.1" 200 10015 "-" "Mozilla/5.0 (compatible; GrapeshotCrawler/2.0; +http://www.grapeshot.co.uk/crawler.php)"	2019-04-28 09:15:32

类型

评论内容

时间

bots

爬虫区间是148.64.56.0 to 148.64.56.255 (148.64.56.0/24)
148.64.56.117 - - [28/Apr/2019:09:09:44 +0800] "GET /check-ip/58.17.114.102 HTTP/1.1" 200 10015 "-" "Mozilla/5.0 (compatible; GrapeshotCrawler/2.0; +http://www.grapeshot.co.uk/crawler.php)"

2019-04-28 09:15:32

相同子网IP讨论:

IP	类型	评论内容	时间
148.64.56.74	attackbotsspam	Automatic report - Banned IP Access	2020-04-12 20:47:52
148.64.56.114	attackspambots	Automatic report - Banned IP Access	2019-12-17 02:22:33
148.64.56.125	attack	Automatic report - Banned IP Access	2019-10-18 12:20:20
148.64.56.113	attackbots	Automatic report - Banned IP Access	2019-10-01 05:48:49
148.64.56.74	attackspam	Automatic report - Banned IP Access	2019-07-18 14:59:53
148.64.56.118	bots	148.64.56.118 - - [27/Apr/2019:14:02:00 +0800] "GET /check-ip HTTP/1.1" 301 194 "-" "Mozilla/5.0 (compatible; GrapeshotCrawler/2.0; +http://www.grapeshot.co.uk/crawler.php)" 148.64.56.118 - - [27/Apr/2019:14:02:02 +0800] "GET /check-ip HTTP/1.1" 200 2915 "-" "Mozilla/5.0 (compatible; GrapeshotCrawler/2.0; +http://www.grapeshot.co.uk/crawler.php)"	2019-04-27 14:03:35
148.64.56.66	bots	爬虫，可以禁掉 148.64.56.66 - - [27/Apr/2019:05:31:15 +0800] "GET /robots.txt HTTP/1.1" 301 194 "-" "Mozilla/5.0 (compatible; GrapeshotCrawler/2.0; +http://www.grapeshot.co.uk/crawler.php)" 148.64.56.66 - - [27/Apr/2019:05:31:17 +0800] "GET /robots.txt HTTP/1.1" 200 472 "-" "Mozilla/5.0 (compatible; GrapeshotCrawler/2.0; +http://www.grapeshot.co.uk/crawler.php)" 148.64.56.66 - - [27/Apr/2019:05:31:23 +0800] "GET /check-ip/193.85.177.25 HTTP/1.1" 301 194 "-" "Mozilla/5.0 (compatible; GrapeshotCrawler/2.0; +http://www.grapeshot.co.uk/crawler.php)" 148.64.56.66 - - [27/Apr/2019:05:31:24 +0800] "GET /check-ip/193.85.177.25 HTTP/1.1" 200 9571 "-" "Mozilla/5.0 (compatible; GrapeshotCrawler/2.0; +http://www.grapeshot.co.uk/crawler.php)"	2019-04-27 06:48:13

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.64.56.117
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57815
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;148.64.56.117.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019042702 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun Apr 28 09:15:31 +08 2019
;; MSG SIZE  rcvd: 117

HOST信息:

117.56.64.148.in-addr.arpa domain name pointer server117.hml.grapeshot.co.uk.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
117.56.64.148.in-addr.arpa	name = server117.hml.grapeshot.co.uk.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
199.189.195.147	attack	Unauthorized connection attempt detected from IP address 199.189.195.147 to port 1433	2019-12-29 16:21:27
67.205.144.236	attackbotsspam	Dec 29 02:35:54 plusreed sshd[7050]: Invalid user uftp from 67.205.144.236 ...	2019-12-29 15:46:55
202.29.33.74	attack	Repeated brute force against a port	2019-12-29 16:13:36
85.25.185.27	attack	php WP PHPmyadamin ABUSE blocked for 12h	2019-12-29 15:55:32
125.141.139.9	attackspambots	Dec 29 07:32:31 zeus sshd[1216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.141.139.9 Dec 29 07:32:33 zeus sshd[1216]: Failed password for invalid user memory from 125.141.139.9 port 51304 ssh2 Dec 29 07:36:38 zeus sshd[1389]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.141.139.9 Dec 29 07:36:41 zeus sshd[1389]: Failed password for invalid user mp3 from 125.141.139.9 port 52866 ssh2	2019-12-29 16:14:13
106.12.202.180	attackbots	Dec 29 08:56:39 localhost sshd\[4007\]: Invalid user mysql from 106.12.202.180 port 30073 Dec 29 08:56:39 localhost sshd\[4007\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.202.180 Dec 29 08:56:41 localhost sshd\[4007\]: Failed password for invalid user mysql from 106.12.202.180 port 30073 ssh2	2019-12-29 15:57:49
186.206.217.211	attackspam	scan z	2019-12-29 15:50:56
178.128.76.6	attackspambots	$f2bV_matches	2019-12-29 15:48:06
80.82.64.127	attackspambots	Dec 29 07:55:18 h2177944 kernel: \[801203.532594\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=80.82.64.127 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=9974 PROTO=TCP SPT=8080 DPT=3368 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 29 07:55:18 h2177944 kernel: \[801203.532608\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=80.82.64.127 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=9974 PROTO=TCP SPT=8080 DPT=3368 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 29 08:26:25 h2177944 kernel: \[803069.985930\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=80.82.64.127 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=43463 PROTO=TCP SPT=8080 DPT=3344 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 29 08:26:25 h2177944 kernel: \[803069.985944\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=80.82.64.127 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=43463 PROTO=TCP SPT=8080 DPT=3344 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 29 08:49:47 h2177944 kernel: \[804471.475735\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=80.82.64.127 DST=85.214.117.9 LEN=40 TOS=0x00	2019-12-29 15:49:53
69.75.144.250	attack	Unauthorized connection attempt detected from IP address 69.75.144.250 to port 81	2019-12-29 15:59:09
193.112.220.76	attackspambots	Dec 29 07:28:58 host sshd[35364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.220.76 user=root Dec 29 07:29:00 host sshd[35364]: Failed password for root from 193.112.220.76 port 37921 ssh2 ...	2019-12-29 15:54:49
222.161.56.248	attackspam	Dec 28 10:10:03 server sshd\[18847\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.161.56.248 user=mysql Dec 28 10:10:05 server sshd\[18847\]: Failed password for mysql from 222.161.56.248 port 51258 ssh2 Dec 29 09:28:23 server sshd\[21552\]: Invalid user kiat from 222.161.56.248 Dec 29 09:28:23 server sshd\[21552\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.161.56.248 Dec 29 09:28:25 server sshd\[21552\]: Failed password for invalid user kiat from 222.161.56.248 port 54621 ssh2 ...	2019-12-29 16:16:49
222.186.173.154	attack	Dec 29 09:02:45 dedicated sshd[4299]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.154 user=root Dec 29 09:02:47 dedicated sshd[4299]: Failed password for root from 222.186.173.154 port 63770 ssh2	2019-12-29 16:10:42
103.80.117.214	attackbots	Dec 29 08:34:19 mout sshd[6908]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.80.117.214 user=sshd Dec 29 08:34:21 mout sshd[6908]: Failed password for sshd from 103.80.117.214 port 42312 ssh2	2019-12-29 15:47:16
61.177.172.128	attackbotsspam	$f2bV_matches	2019-12-29 16:03:01

最近上报的IP列表

221.35.108.97	185.97.127.237	32.255.188.79	130.57.42.60
218.64.168.50	244.4.107.24	182.52.229.116	35.135.139.36
78.126.48.207	112.85.202.74	116.11.65.55	185.94.188.130
129.144.9.88	5.39.67.154	190.180.63.229	201.182.88.10
38.143.68.212	43.125.239.72	46.229.168.154	95.216.106.147