必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Canada

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
149.56.142.1 attackspambots
Attempt to hack Wordpress Login, XMLRPC or other login
2020-10-11 00:35:24
149.56.142.1 attackspam
149.56.142.1 - - [10/Oct/2020:09:46:40 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
149.56.142.1 - - [10/Oct/2020:09:46:42 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
149.56.142.1 - - [10/Oct/2020:09:46:43 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-10-10 16:24:09
149.56.142.1 attackbots
149.56.142.1 - - \[19/Sep/2020:19:09:40 +0200\] "POST /wp-login.php HTTP/1.0" 200 9485 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
149.56.142.1 - - \[19/Sep/2020:19:09:42 +0200\] "POST /wp-login.php HTTP/1.0" 200 9315 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
149.56.142.1 - - \[19/Sep/2020:19:09:43 +0200\] "POST /wp-login.php HTTP/1.0" 200 9309 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2020-09-20 03:49:31
149.56.142.1 attack
149.56.142.1 - - [19/Sep/2020:09:32:39 +0100] "POST /wp-login.php HTTP/1.1" 200 2391 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
149.56.142.1 - - [19/Sep/2020:09:32:40 +0100] "POST /wp-login.php HTTP/1.1" 200 2325 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
149.56.142.1 - - [19/Sep/2020:09:32:40 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-09-19 19:54:48
149.56.142.47 attack
Jul 27 18:14:15 vpn01 sshd[4207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.142.47
Jul 27 18:14:17 vpn01 sshd[4207]: Failed password for invalid user wtli from 149.56.142.47 port 60222 ssh2
...
2020-07-28 01:14:01
149.56.142.47 attack
Jul 17 11:19:12 pixelmemory sshd[3118379]: Invalid user library from 149.56.142.47 port 48908
Jul 17 11:19:12 pixelmemory sshd[3118379]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.142.47 
Jul 17 11:19:12 pixelmemory sshd[3118379]: Invalid user library from 149.56.142.47 port 48908
Jul 17 11:19:14 pixelmemory sshd[3118379]: Failed password for invalid user library from 149.56.142.47 port 48908 ssh2
Jul 17 11:25:05 pixelmemory sshd[3137853]: Invalid user rocha from 149.56.142.47 port 36840
...
2020-07-18 02:37:34
149.56.142.47 attack
Jul  9 15:09:41 rancher-0 sshd[211744]: Invalid user lisa from 149.56.142.47 port 39858
...
2020-07-09 23:12:56
149.56.142.47 attackbotsspam
Jun  3 14:39:09 electroncash sshd[12501]: Failed password for root from 149.56.142.47 port 41284 ssh2
Jun  3 14:41:30 electroncash sshd[13102]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.142.47  user=root
Jun  3 14:41:31 electroncash sshd[13102]: Failed password for root from 149.56.142.47 port 41748 ssh2
Jun  3 14:43:54 electroncash sshd[13719]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.142.47  user=root
Jun  3 14:43:56 electroncash sshd[13719]: Failed password for root from 149.56.142.47 port 42212 ssh2
...
2020-06-03 20:50:50
149.56.142.47 attackbots
Invalid user webmaster1 from 149.56.142.47 port 42356
2020-05-16 23:30:37
149.56.142.47 attackbotsspam
Total attacks: 4
2020-05-13 03:22:27
149.56.142.47 attack
May  6 22:23:10 ns381471 sshd[693]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.142.47
May  6 22:23:12 ns381471 sshd[693]: Failed password for invalid user xwq from 149.56.142.47 port 45916 ssh2
2020-05-07 04:44:11
149.56.142.47 attackspambots
SSH Invalid Login
2020-05-05 05:56:40
149.56.142.47 attackspambots
hit -> srv3:22
2020-05-01 16:13:57
149.56.142.198 attackbots
Apr 30 16:44:14 server sshd[19472]: Failed password for invalid user sammy from 149.56.142.198 port 54246 ssh2
Apr 30 16:49:37 server sshd[23590]: Failed password for invalid user dcc from 149.56.142.198 port 36804 ssh2
Apr 30 16:54:59 server sshd[27505]: User postgres from 149.56.142.198 not allowed because not listed in AllowUsers
2020-05-01 03:26:10
149.56.142.198 attack
Apr 29 19:57:40 web1 sshd\[17360\]: Invalid user group3 from 149.56.142.198
Apr 29 19:57:40 web1 sshd\[17360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.142.198
Apr 29 19:57:43 web1 sshd\[17360\]: Failed password for invalid user group3 from 149.56.142.198 port 45436 ssh2
Apr 29 20:03:07 web1 sshd\[17738\]: Invalid user fred from 149.56.142.198
Apr 29 20:03:07 web1 sshd\[17738\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.142.198
2020-04-30 15:23:01
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.56.142.215
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61581
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;149.56.142.215.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 14:38:47 CST 2022
;; MSG SIZE  rcvd: 107
HOST信息:
215.142.56.149.in-addr.arpa domain name pointer 215.ip-149-56-142.net.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
215.142.56.149.in-addr.arpa	name = 215.ip-149-56-142.net.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
151.217.114.23 attack
Hits on port : 27017
2019-12-27 03:59:18
106.12.102.143 attackspambots
Invalid user maddie from 106.12.102.143 port 46758
2019-12-27 03:51:33
103.97.124.200 attackspambots
2019-12-26T17:56:33.988510vps751288.ovh.net sshd\[821\]: Invalid user mali from 103.97.124.200 port 59694
2019-12-26T17:56:33.999522vps751288.ovh.net sshd\[821\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.97.124.200
2019-12-26T17:56:35.627337vps751288.ovh.net sshd\[821\]: Failed password for invalid user mali from 103.97.124.200 port 59694 ssh2
2019-12-26T17:59:52.881256vps751288.ovh.net sshd\[833\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.97.124.200  user=root
2019-12-26T17:59:54.829852vps751288.ovh.net sshd\[833\]: Failed password for root from 103.97.124.200 port 60284 ssh2
2019-12-27 04:04:16
123.206.128.207 attack
Dec 26 19:10:34 legacy sshd[21076]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.128.207
Dec 26 19:10:37 legacy sshd[21076]: Failed password for invalid user estene from 123.206.128.207 port 33054 ssh2
Dec 26 19:14:20 legacy sshd[21189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.128.207
...
2019-12-27 04:01:13
144.217.188.81 attack
Dec 26 15:35:48 mout sshd[12786]: Invalid user saufer from 144.217.188.81 port 47040
Dec 26 15:35:50 mout sshd[12786]: Failed password for invalid user saufer from 144.217.188.81 port 47040 ssh2
Dec 26 15:50:07 mout sshd[14120]: Invalid user dbus from 144.217.188.81 port 51882
2019-12-27 03:49:10
81.4.150.134 attackbots
Dec 26 20:28:23 vps58358 sshd\[25825\]: Invalid user liles from 81.4.150.134Dec 26 20:28:25 vps58358 sshd\[25825\]: Failed password for invalid user liles from 81.4.150.134 port 50050 ssh2Dec 26 20:33:36 vps58358 sshd\[25905\]: Invalid user ricardo from 81.4.150.134Dec 26 20:33:38 vps58358 sshd\[25905\]: Failed password for invalid user ricardo from 81.4.150.134 port 37696 ssh2Dec 26 20:37:59 vps58358 sshd\[25936\]: Invalid user lara123 from 81.4.150.134Dec 26 20:38:01 vps58358 sshd\[25936\]: Failed password for invalid user lara123 from 81.4.150.134 port 50891 ssh2
...
2019-12-27 04:05:17
201.248.145.237 attackspambots
Attempt to attack host OS, exploiting network vulnerabilities, on 26-12-2019 14:50:10.
2019-12-27 03:43:06
122.224.175.218 attackspam
Dec 26 20:48:43 lnxded64 sshd[24456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.224.175.218
Dec 26 20:48:43 lnxded64 sshd[24456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.224.175.218
Dec 26 20:48:45 lnxded64 sshd[24456]: Failed password for invalid user nginx from 122.224.175.218 port 39883 ssh2
2019-12-27 03:58:26
78.29.32.173 attackspambots
Invalid user ol from 78.29.32.173 port 50662
2019-12-27 04:15:53
46.38.144.117 attackspam
Dec 26 21:14:17 relay postfix/smtpd\[4298\]: warning: unknown\[46.38.144.117\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Dec 26 21:15:26 relay postfix/smtpd\[11901\]: warning: unknown\[46.38.144.117\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Dec 26 21:15:57 relay postfix/smtpd\[7822\]: warning: unknown\[46.38.144.117\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Dec 26 21:17:08 relay postfix/smtpd\[9596\]: warning: unknown\[46.38.144.117\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Dec 26 21:17:38 relay postfix/smtpd\[7820\]: warning: unknown\[46.38.144.117\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
...
2019-12-27 04:18:07
176.31.217.184 attack
Dec 26 20:18:28 vibhu-HP-Z238-Microtower-Workstation sshd\[24240\]: Invalid user password4444 from 176.31.217.184
Dec 26 20:18:28 vibhu-HP-Z238-Microtower-Workstation sshd\[24240\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.217.184
Dec 26 20:18:31 vibhu-HP-Z238-Microtower-Workstation sshd\[24240\]: Failed password for invalid user password4444 from 176.31.217.184 port 49572 ssh2
Dec 26 20:19:50 vibhu-HP-Z238-Microtower-Workstation sshd\[24306\]: Invalid user visvanat from 176.31.217.184
Dec 26 20:19:50 vibhu-HP-Z238-Microtower-Workstation sshd\[24306\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.217.184
...
2019-12-27 04:00:01
59.10.5.156 attack
Dec 27 02:02:18 itv-usvr-02 sshd[15768]: Invalid user office from 59.10.5.156 port 43992
Dec 27 02:02:18 itv-usvr-02 sshd[15768]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.10.5.156
Dec 27 02:02:18 itv-usvr-02 sshd[15768]: Invalid user office from 59.10.5.156 port 43992
Dec 27 02:02:20 itv-usvr-02 sshd[15768]: Failed password for invalid user office from 59.10.5.156 port 43992 ssh2
Dec 27 02:09:39 itv-usvr-02 sshd[15901]: Invalid user f033 from 59.10.5.156 port 59594
2019-12-27 03:54:07
182.35.83.133 attack
Dec 26 09:30:39 esmtp postfix/smtpd[11380]: lost connection after AUTH from unknown[182.35.83.133]
Dec 26 09:30:45 esmtp postfix/smtpd[11566]: lost connection after AUTH from unknown[182.35.83.133]
Dec 26 09:30:49 esmtp postfix/smtpd[11555]: lost connection after AUTH from unknown[182.35.83.133]
Dec 26 09:30:53 esmtp postfix/smtpd[11380]: lost connection after AUTH from unknown[182.35.83.133]
Dec 26 09:30:58 esmtp postfix/smtpd[11555]: lost connection after AUTH from unknown[182.35.83.133]

........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=182.35.83.133
2019-12-27 04:09:52
196.200.184.22 attackbotsspam
Dec 26 12:34:34 www sshd[23346]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.200.184.22  user=r.r
Dec 26 12:34:36 www sshd[23346]: Failed password for r.r from 196.200.184.22 port 50904 ssh2
Dec 26 12:34:36 www sshd[23346]: Received disconnect from 196.200.184.22 port 50904:11: Bye Bye [preauth]
Dec 26 12:34:36 www sshd[23346]: Disconnected from 196.200.184.22 port 50904 [preauth]
Dec 26 12:43:58 www sshd[23966]: Failed password for invalid user lilli from 196.200.184.22 port 55272 ssh2
Dec 26 12:43:58 www sshd[23966]: Received disconnect from 196.200.184.22 port 55272:11: Bye Bye [preauth]
Dec 26 12:43:58 www sshd[23966]: Disconnected from 196.200.184.22 port 55272 [preauth]
Dec 26 12:46:20 www sshd[24064]: Failed password for invalid user odoo from 196.200.184.22 port 34744 ssh2
Dec 26 12:46:21 www sshd[24064]: Received disconnect from 196.200.184.22 port 34744:11: Bye Bye [preauth]
Dec 26 12:46:21 www sshd[24064]: Disco........
-------------------------------
2019-12-27 03:58:46
112.85.42.175 attackspambots
SSH Brute Force, server-1 sshd[25151]: Failed password for root from 112.85.42.175 port 63552 ssh2
2019-12-27 04:09:02

最近上报的IP列表

149.56.143.238 149.56.150.67 149.56.14.162 149.56.134.58
149.56.150.66 149.28.65.207 149.56.151.116 149.28.84.137
149.56.157.48 178.65.187.86 149.56.164.193 149.56.173.44
149.56.164.132 149.56.179.185 149.56.180.105 149.56.18.207
149.56.164.148 149.56.173.231 149.56.17.190 149.56.172.171