必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): France

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
149.202.70.189 attack
Scanning unused Default website or suspicious access to valid sites from IP marked as abusive
2020-06-12 07:03:10
149.202.70.189 attackspam
149.202.70.189 - - [01/Jun/2020:05:55:16 +0200] "GET /wp-login.php HTTP/1.1" 200 6364 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
149.202.70.189 - - [01/Jun/2020:05:55:16 +0200] "POST /wp-login.php HTTP/1.1" 200 6615 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
149.202.70.189 - - [01/Jun/2020:05:55:17 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-06-01 12:05:12
149.202.70.189 attackbotsspam
149.202.70.189 - - \[17/May/2020:01:14:23 +0200\] "POST /wp-login.php HTTP/1.0" 200 6390 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
149.202.70.189 - - \[17/May/2020:01:14:24 +0200\] "POST /wp-login.php HTTP/1.0" 200 6359 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
149.202.70.189 - - \[17/May/2020:01:14:24 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2020-05-17 07:17:41
149.202.70.189 attackbots
xmlrpc attack
2020-05-16 02:07:44
149.202.70.67 attackspambots
5486/tcp 7822/tcp 4220/tcp...
[2020-02-06/04-05]14pkt,11pt.(tcp)
2020-04-06 04:56:21
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.202.70.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53445
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;149.202.70.21.			IN	A

;; AUTHORITY SECTION:
.			491	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020601 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 12:38:05 CST 2022
;; MSG SIZE  rcvd: 106
HOST信息:
21.70.202.149.in-addr.arpa domain name pointer ns3021781.ip-149-202-70.eu.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
21.70.202.149.in-addr.arpa	name = ns3021781.ip-149-202-70.eu.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
117.222.92.21 attackbots
Portscan or hack attempt detected by psad/fwsnort
2019-11-02 21:58:15
193.124.65.34 attack
SMB Server BruteForce Attack
2019-11-02 21:41:08
213.230.118.162 attackspambots
Nov  2 12:50:36 mxgate1 postfix/postscreen[2377]: CONNECT from [213.230.118.162]:1588 to [176.31.12.44]:25
Nov  2 12:50:36 mxgate1 postfix/dnsblog[2639]: addr 213.230.118.162 listed by domain zen.spamhaus.org as 127.0.0.11
Nov  2 12:50:36 mxgate1 postfix/dnsblog[2639]: addr 213.230.118.162 listed by domain zen.spamhaus.org as 127.0.0.4
Nov  2 12:50:36 mxgate1 postfix/dnsblog[2641]: addr 213.230.118.162 listed by domain cbl.abuseat.org as 127.0.0.2
Nov  2 12:50:36 mxgate1 postfix/dnsblog[2640]: addr 213.230.118.162 listed by domain b.barracudacentral.org as 127.0.0.2
Nov  2 12:50:36 mxgate1 postfix/postscreen[2377]: PREGREET 24 after 0.15 from [213.230.118.162]:1588: EHLO [213.230.118.162]

Nov  2 12:50:36 mxgate1 postfix/postscreen[2377]: DNSBL rank 4 for [213.230.118.162]:1588
Nov x@x
Nov  2 12:50:37 mxgate1 postfix/postscreen[2377]: HANGUP after 0.49 from [213.230.118.162]:1588 in tests after SMTP handshake
Nov  2 12:50:37 mxgate1 postfix/postscreen[2377]: DISCONNECT ........
-------------------------------
2019-11-02 21:52:19
138.68.254.131 attackbots
WordPress login Brute force / Web App Attack on client site.
2019-11-02 21:30:17
182.61.46.62 attack
2019-11-02T13:24:22.563937abusebot.cloudsearch.cf sshd\[27711\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.46.62  user=root
2019-11-02 21:29:20
37.59.37.69 attackbots
Nov  2 14:21:31 mout sshd[21761]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.37.69  user=root
Nov  2 14:21:33 mout sshd[21761]: Failed password for root from 37.59.37.69 port 48083 ssh2
2019-11-02 21:34:10
47.74.63.105 attack
11/02/2019-09:21:35.472354 47.74.63.105 Protocol: 6 ET SCAN Potential SSH Scan
2019-11-02 21:22:06
82.117.166.46 attackspambots
Connection by 82.117.166.46 on port: 5555 got caught by honeypot at 11/2/2019 11:58:11 AM
2019-11-02 21:20:02
5.187.2.89 attack
slow and persistent scanner
2019-11-02 21:53:36
222.186.175.167 attackbots
Nov  2 10:43:31 firewall sshd[6752]: Failed password for root from 222.186.175.167 port 63354 ssh2
Nov  2 10:43:48 firewall sshd[6752]: error: maximum authentication attempts exceeded for root from 222.186.175.167 port 63354 ssh2 [preauth]
Nov  2 10:43:48 firewall sshd[6752]: Disconnecting: Too many authentication failures [preauth]
...
2019-11-02 21:45:52
134.175.62.14 attackspam
Invalid user f from 134.175.62.14 port 55444
2019-11-02 21:47:35
50.199.94.84 attackspambots
Nov  2 18:19:53 gw1 sshd[29925]: Failed password for root from 50.199.94.84 port 45138 ssh2
...
2019-11-02 22:01:52
182.61.110.113 attackbotsspam
Nov  2 09:17:33 ny01 sshd[13228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.110.113
Nov  2 09:17:35 ny01 sshd[13228]: Failed password for invalid user cherry123 from 182.61.110.113 port 30932 ssh2
Nov  2 09:21:38 ny01 sshd[13608]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.110.113
2019-11-02 21:28:32
27.4.16.131 attackspam
IP Ban Report :  
 https://help-dysk.pl/wordpress-firewall-plugins/ip/27.4.16.131/ 
 
 IN - 1H : (45)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : IN 
 NAME ASN : ASN17488 
 
 IP : 27.4.16.131 
 
 CIDR : 27.4.0.0/18 
 
 PREFIX COUNT : 1124 
 
 UNIQUE IP COUNT : 1011712 
 
 
 ATTACKS DETECTED ASN17488 :  
  1H - 1 
  3H - 1 
  6H - 1 
 12H - 2 
 24H - 4 
 
 DateTime : 2019-11-02 12:57:27 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery
2019-11-02 21:48:31
138.19.71.44 attackbots
PostgreSQL port 5432
2019-11-02 21:36:04

最近上报的IP列表

95.182.105.44 64.188.171.176 95.68.187.53 74.73.96.249
216.109.161.129 108.5.147.57 222.136.23.26 197.42.32.71
118.156.202.110 113.65.39.44 210.89.59.49 212.119.29.137
1.55.52.170 83.53.222.223 217.29.214.237 1.116.140.147
47.97.231.105 91.227.33.244 69.163.165.196 34.223.37.242