必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 166.90.201.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64505
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;166.90.201.74.			IN	A

;; AUTHORITY SECTION:
.			555	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019103100 1800 900 604800 86400

;; Query time: 131 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 31 16:49:38 CST 2019
;; MSG SIZE  rcvd: 117
HOST信息:
74.201.90.166.in-addr.arpa domain name pointer ws10.transaction.net.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
74.201.90.166.in-addr.arpa	name = ws10.transaction.net.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
61.73.231.204 attack
Jan 13 19:41:43 sso sshd[4309]: Failed password for root from 61.73.231.204 port 47022 ssh2
Jan 13 19:56:15 sso sshd[6466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.73.231.204
...
2020-01-14 03:02:07
221.5.46.189 attack
/var/log/apache/pucorp.org.log:221.5.46.189 - - [13/Jan/2020:20:43:29 +0800] "GET / HTTP/1.1" 200 717 "-" "Mozilla/5.0 (compatible; Baiduspider/2.0; +hxxp://www.baidu.com/search/spider.html)"


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=221.5.46.189
2020-01-14 03:24:20
134.209.53.244 attack
[munged]::443 134.209.53.244 - - [13/Jan/2020:16:46:05 +0100] "POST /[munged]: HTTP/1.1" 200 9080 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 134.209.53.244 - - [13/Jan/2020:16:46:08 +0100] "POST /[munged]: HTTP/1.1" 200 9080 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 134.209.53.244 - - [13/Jan/2020:16:46:12 +0100] "POST /[munged]: HTTP/1.1" 200 9080 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 134.209.53.244 - - [13/Jan/2020:16:46:15 +0100] "POST /[munged]: HTTP/1.1" 200 9080 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 134.209.53.244 - - [13/Jan/2020:16:46:17 +0100] "POST /[munged]: HTTP/1.1" 200 9080 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 134.209.53.244 - - [13/Jan/2020:16:46:20 +0100] "POST /[munged]: HTTP/1.1" 200 9080 "-" "Mozilla/5.0 (X11
2020-01-14 03:19:20
107.174.170.183 attackspambots
PHI,WP GET //wp-includes/wlwmanifest.xml
2020-01-14 02:50:35
80.89.10.202 attack
Honeypot attack, port: 445, PTR: bras.net.vvo.ru.
2020-01-14 02:53:48
169.197.108.173 attackbotsspam
Honeypot attack, port: 81, PTR: survey.internet-census.org.
2020-01-14 02:49:30
210.212.78.34 attackspambots
Honeypot attack, port: 445, PTR: cyberrom.corp.bsnl.co.in.
2020-01-14 03:20:38
128.14.209.179 attackbotsspam
firewall-block, port(s): 80/tcp
2020-01-14 03:27:23
185.39.10.10 attack
Jan 13 18:45:00 h2177944 kernel: \[2135946.981469\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.39.10.10 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=12425 PROTO=TCP SPT=58672 DPT=3998 WINDOW=1024 RES=0x00 SYN URGP=0 
Jan 13 18:45:00 h2177944 kernel: \[2135946.981485\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.39.10.10 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=12425 PROTO=TCP SPT=58672 DPT=3998 WINDOW=1024 RES=0x00 SYN URGP=0 
Jan 13 19:35:28 h2177944 kernel: \[2138974.677538\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.39.10.10 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=2434 PROTO=TCP SPT=58672 DPT=3691 WINDOW=1024 RES=0x00 SYN URGP=0 
Jan 13 19:35:28 h2177944 kernel: \[2138974.677548\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.39.10.10 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=2434 PROTO=TCP SPT=58672 DPT=3691 WINDOW=1024 RES=0x00 SYN URGP=0 
Jan 13 19:45:03 h2177944 kernel: \[2139549.407121\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.39.10.10 DST=85.214.117.9 LEN=40
2020-01-14 02:48:41
39.98.124.123 attackspambots
The IP has triggered Cloudflare WAF. CF-Ray: 5540b398aac0d392 | WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: blog.skk.moe | User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:48.0) Gecko/20100101 Firefox/48.0 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).
2020-01-14 02:57:00
185.220.101.25 attack
Unauthorized connection attempt detected from IP address 185.220.101.25 to port 7800
2020-01-14 03:15:56
113.53.231.82 attackspam
port scan and connect, tcp 80 (http)
2020-01-14 03:13:28
69.162.79.242 attackspambots
WordPress wp-login brute force :: 69.162.79.242 0.116 BYPASS [13/Jan/2020:15:43:11  0000] [censored_4] "POST /wp-login.php HTTP/1.1" 200 2100 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-01-14 03:11:13
52.187.135.29 attackspambots
k+ssh-bruteforce
2020-01-14 03:23:10
190.206.228.181 attack
Honeypot attack, port: 445, PTR: 190-206-228-181.dyn.dsl.cantv.net.
2020-01-14 02:55:10

最近上报的IP列表

33.184.242.188 18.18.171.86 61.60.227.96 248.5.139.137
209.22.235.135 103.20.94.146 255.227.27.230 2.147.26.251
121.249.119.170 186.7.78.134 255.102.29.1 192.238.207.19
234.142.182.24 15.92.141.6 140.9.0.230 53.195.242.16
105.237.3.70 212.186.166.57 191.81.158.169 41.110.27.108