必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United Kingdom of Great Britain and Northern Ireland (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.155.68.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59042
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;149.155.68.48.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021100 1800 900 604800 86400

;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 12 01:30:48 CST 2025
;; MSG SIZE  rcvd: 106
HOST信息:
Host 48.68.155.149.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 48.68.155.149.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
41.165.88.132 attackspam
Time:     Thu Oct  1 20:51:45 2020 +0000
IP:       41.165.88.132 (ZA/South Africa/iredmail.docview.co.za)
Failures: 5 (sshd)
Interval: 3600 seconds
Blocked:  Permanent Block [LF_SSHD]

Log entries:

Oct  1 20:40:49 29-1 sshd[13172]: Invalid user cod4server from 41.165.88.132 port 53114
Oct  1 20:40:51 29-1 sshd[13172]: Failed password for invalid user cod4server from 41.165.88.132 port 53114 ssh2
Oct  1 20:49:12 29-1 sshd[14444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.165.88.132  user=root
Oct  1 20:49:14 29-1 sshd[14444]: Failed password for root from 41.165.88.132 port 58622 ssh2
Oct  1 20:51:43 29-1 sshd[14797]: Invalid user sistema from 41.165.88.132 port 38588
2020-10-02 06:25:28
119.28.93.152 attackbotsspam
Oct  1 22:38:21 plex-server sshd[1862329]: Invalid user teamspeak from 119.28.93.152 port 34660
Oct  1 22:38:21 plex-server sshd[1862329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.93.152 
Oct  1 22:38:21 plex-server sshd[1862329]: Invalid user teamspeak from 119.28.93.152 port 34660
Oct  1 22:38:24 plex-server sshd[1862329]: Failed password for invalid user teamspeak from 119.28.93.152 port 34660 ssh2
Oct  1 22:40:52 plex-server sshd[1863330]: Invalid user frappe from 119.28.93.152 port 18410
...
2020-10-02 06:44:38
45.148.122.20 attack
Sep 30 19:17:45 kunden sshd[4130]: Invalid user fake from 45.148.122.20
Sep 30 19:17:45 kunden sshd[4130]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.122.20 
Sep 30 19:17:47 kunden sshd[4130]: Failed password for invalid user fake from 45.148.122.20 port 44306 ssh2
Sep 30 19:17:47 kunden sshd[4130]: Received disconnect from 45.148.122.20: 11: Bye Bye [preauth]
Sep 30 19:17:51 kunden sshd[4138]: Invalid user admin from 45.148.122.20
Sep 30 19:17:51 kunden sshd[4138]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.122.20 
Sep 30 19:17:54 kunden sshd[4138]: Failed password for invalid user admin from 45.148.122.20 port 51340 ssh2
Sep 30 19:17:54 kunden sshd[4138]: Received disconnect from 45.148.122.20: 11: Bye Bye [preauth]
Sep 30 19:17:55 kunden sshd[4168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.122.20  user=r.r
Sep 3........
-------------------------------
2020-10-02 06:34:07
45.7.182.15 attackbots
Unauthorized SMTP/IMAP/POP3 connection attempt
2020-10-02 06:49:33
82.65.19.181 attackbots
2020-10-01T11:49:58.843516abusebot-8.cloudsearch.cf sshd[7083]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82-65-19-181.subs.proxad.net  user=root
2020-10-01T11:50:00.417111abusebot-8.cloudsearch.cf sshd[7083]: Failed password for root from 82.65.19.181 port 50400 ssh2
2020-10-01T11:55:01.779623abusebot-8.cloudsearch.cf sshd[7085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82-65-19-181.subs.proxad.net  user=root
2020-10-01T11:55:03.950697abusebot-8.cloudsearch.cf sshd[7085]: Failed password for root from 82.65.19.181 port 43094 ssh2
2020-10-01T11:58:37.700148abusebot-8.cloudsearch.cf sshd[7092]: Invalid user victoria from 82.65.19.181 port 51606
2020-10-01T11:58:37.709830abusebot-8.cloudsearch.cf sshd[7092]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82-65-19-181.subs.proxad.net
2020-10-01T11:58:37.700148abusebot-8.cloudsearch.cf sshd[7092]: Invalid us
...
2020-10-02 06:40:38
45.179.165.207 attack
Sep 30 22:39:30 mellenthin postfix/smtpd[20705]: NOQUEUE: reject: RCPT from 207.165.179.45.in-addr.arpa[45.179.165.207]: 554 5.7.1 Service unavailable; Client host [45.179.165.207] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/45.179.165.207; from= to= proto=ESMTP helo=<245.165.179.45.in-addr.arpa>
2020-10-02 06:17:39
66.41.236.80 attack
[f2b] sshd bruteforce, retries: 1
2020-10-02 06:30:41
186.209.115.138 attackspambots
Sep 30 15:52:54 cumulus sshd[4382]: Invalid user mcserver from 186.209.115.138 port 54649
Sep 30 15:52:54 cumulus sshd[4382]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.209.115.138
Sep 30 15:52:56 cumulus sshd[4382]: Failed password for invalid user mcserver from 186.209.115.138 port 54649 ssh2
Sep 30 15:52:56 cumulus sshd[4382]: Received disconnect from 186.209.115.138 port 54649:11: Bye Bye [preauth]
Sep 30 15:52:56 cumulus sshd[4382]: Disconnected from 186.209.115.138 port 54649 [preauth]
Sep 30 16:10:34 cumulus sshd[5896]: Invalid user dm from 186.209.115.138 port 40467
Sep 30 16:10:34 cumulus sshd[5896]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.209.115.138
Sep 30 16:10:36 cumulus sshd[5896]: Failed password for invalid user dm from 186.209.115.138 port 40467 ssh2
Sep 30 16:10:36 cumulus sshd[5896]: Received disconnect from 186.209.115.138 port 40467:11: Bye Bye [prea........
-------------------------------
2020-10-02 06:15:16
52.172.38.185 attackspam
Oct  1 18:46:18 Tower sshd[17985]: Connection from 52.172.38.185 port 57522 on 192.168.10.220 port 22 rdomain ""
Oct  1 18:46:19 Tower sshd[17985]: Invalid user user10 from 52.172.38.185 port 57522
Oct  1 18:46:19 Tower sshd[17985]: error: Could not get shadow information for NOUSER
Oct  1 18:46:19 Tower sshd[17985]: Failed password for invalid user user10 from 52.172.38.185 port 57522 ssh2
Oct  1 18:46:19 Tower sshd[17985]: Received disconnect from 52.172.38.185 port 57522:11: Bye Bye [preauth]
Oct  1 18:46:19 Tower sshd[17985]: Disconnected from invalid user user10 52.172.38.185 port 57522 [preauth]
2020-10-02 06:46:46
49.233.147.147 attack
Invalid user lucia from 49.233.147.147 port 54016
2020-10-02 06:27:06
41.231.82.93 attackbotsspam
F2B blocked SSH BF
2020-10-02 06:19:10
111.89.169.113 attackspambots
111.89.169.113 - - [02/Oct/2020:00:37:59 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
111.89.169.113 - - [02/Oct/2020:00:38:01 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
111.89.169.113 - - [02/Oct/2020:00:38:04 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-10-02 06:41:35
164.90.181.196 attack
164.90.181.196 - - [01/Oct/2020:22:07:17 +0100] "POST /wp-login.php HTTP/1.1" 200 2596 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
164.90.181.196 - - [01/Oct/2020:22:07:23 +0100] "POST /wp-login.php HTTP/1.1" 200 2597 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
164.90.181.196 - - [01/Oct/2020:22:07:23 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-10-02 06:18:11
173.242.115.171 attack
fail2ban -- 173.242.115.171
...
2020-10-02 06:26:18
156.54.171.41 attackbots
2020-10-01T23:51:01.900688hostname sshd[13285]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.54.171.41
2020-10-01T23:51:01.859544hostname sshd[13285]: Invalid user vlc from 156.54.171.41 port 50804
2020-10-01T23:51:03.543770hostname sshd[13285]: Failed password for invalid user vlc from 156.54.171.41 port 50804 ssh2
...
2020-10-02 06:24:08

最近上报的IP列表

119.58.141.155 146.67.95.201 245.116.191.237 73.135.132.196
54.81.42.80 34.25.84.51 86.41.19.222 234.118.160.158
4.85.125.244 194.38.106.34 247.128.129.98 51.96.75.69
190.225.239.154 189.7.41.15 89.70.186.186 7.237.67.196
224.205.121.47 192.83.36.95 175.229.80.105 193.162.59.201