必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Brazil

运营商(isp): Sul Americana Tecnologia e Informatica Ltda.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:
类型 评论内容 时间
attackspam
email spam
2019-12-19 19:22:23
attackbots
email spam
2019-12-17 20:54:40
attackspam
Mail sent to address hacked/leaked from Last.fm
2019-06-23 22:08:09
相同子网IP讨论:
IP 类型 评论内容 时间
189.45.42.242 attack
Unauthorized connection attempt from IP address 189.45.42.242 on Port 445(SMB)
2020-05-24 21:28:23
189.45.42.230 attackbotsspam
Attempt to attack host OS, exploiting network vulnerabilities, on 21-09-2019 22:35:20.
2019-09-22 06:16:06
189.45.42.150 attack
proto=tcp  .  spt=34011  .  dpt=25  .     (listed on  dnsbl-sorbs abuseat-org barracuda)     (756)
2019-09-16 04:51:08
189.45.42.150 attackspambots
SMTP/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -
2019-09-11 15:54:16
189.45.42.148 attackbots
Aug 26 01:23:13 our-server-hostname postfix/smtpd[6486]: connect from unknown[189.45.42.148]
Aug x@x
Aug 26 01:23:16 our-server-hostname postfix/smtpd[6486]: lost connection after RCPT from unknown[189.45.42.148]
Aug 26 01:23:16 our-server-hostname postfix/smtpd[6486]: disconnect from unknown[189.45.42.148]
Aug 26 01:47:47 our-server-hostname postfix/smtpd[12816]: connect from unknown[189.45.42.148]
Aug x@x
Aug x@x
Aug x@x
Aug x@x
Aug x@x
Aug x@x
Aug 26 01:47:53 our-server-hostname postfix/smtpd[12816]: lost connection after RCPT from unknown[189.45.42.148]
Aug 26 01:47:53 our-server-hostname postfix/smtpd[12816]: disconnect from unknown[189.45.42.148]
Aug 26 01:50:10 our-server-hostname postfix/smtpd[10918]: connect from unknown[189.45.42.148]
Aug x@x
Aug 26 01:50:13 our-server-hostname postfix/smtpd[10918]: lost connection after RCPT from unknown[189.45.42.148]
Aug 26 01:50:13 our-server-hostname postfix/smtpd[10918]: disconnect from unknown[189.45.42.148]
Aug 26 02:0........
-------------------------------
2019-08-26 10:10:34
189.45.42.149 attack
Jun 19 06:34:32 our-server-hostname postfix/smtpd[371]: connect from unknown[189.45.42.149]
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun 19 06:34:36 our-server-hostname postfix/smtpd[371]: lost connection after RCPT from unknown[189.45.42.149]
Jun 19 06:34:36 our-server-hostname postfix/smtpd[371]: disconnect from unknown[189.45.42.149]
Jun 19 12:52:50 our-server-hostname postfix/smtpd[25497]: connect from unknown[189.45.42.149]
Jun x@x
Jun x@x
Jun 19 12:52:53 our-server-hostname postfix/smtpd[25497]: lost connection after RCPT from unknown[189.45.42.149]
Jun 19 12:52:53 our-server-hostname postfix/smtpd[25497]: disconnect from unknown[189.45.42.149]
Jun 19 15:06:27 our-server-hostname postfix/smtpd[22106]: connect from unknown[189.45.42.149]
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun 19 15:06:42 our-server-hostname postfix/smtpd[22106]: lost connection after RCPT fro........
-------------------------------
2019-06-22 17:24:11
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 189.45.42.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42554
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;189.45.42.138.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062300 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jun 23 22:07:59 CST 2019
;; MSG SIZE  rcvd: 117
HOST信息:
138.42.45.189.in-addr.arpa domain name pointer 189-45-42-138.static.stech.net.br.
NSLOOKUP信息:
Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
138.42.45.189.in-addr.arpa	name = 189-45-42-138.static.stech.net.br.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
94.60.178.131 attack
Port probing on unauthorized port 23
2020-02-29 00:56:04
1.53.204.171 attackbotsspam
Unauthorized connection attempt from IP address 1.53.204.171 on Port 445(SMB)
2020-02-29 01:20:13
36.71.76.168 attackspambots
Unauthorized connection attempt from IP address 36.71.76.168 on Port 445(SMB)
2020-02-29 01:17:54
175.138.108.78 attack
Feb 28 17:30:09 silence02 sshd[20433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.138.108.78
Feb 28 17:30:10 silence02 sshd[20433]: Failed password for invalid user openproject from 175.138.108.78 port 53516 ssh2
Feb 28 17:34:41 silence02 sshd[20655]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.138.108.78
2020-02-29 00:48:36
185.36.81.57 attackspam
2020-02-28 17:40:14 dovecot_login authenticator failed for \(User\) \[185.36.81.57\]: 535 Incorrect authentication data \(set_id=student@no-server.de\)
2020-02-28 17:40:23 dovecot_login authenticator failed for \(User\) \[185.36.81.57\]: 535 Incorrect authentication data \(set_id=student@no-server.de\)
2020-02-28 17:40:24 dovecot_login authenticator failed for \(User\) \[185.36.81.57\]: 535 Incorrect authentication data \(set_id=student@no-server.de\)
2020-02-28 17:47:00 dovecot_login authenticator failed for \(User\) \[185.36.81.57\]: 535 Incorrect authentication data \(set_id=010390\)
2020-02-28 17:49:05 dovecot_login authenticator failed for \(User\) \[185.36.81.57\]: 535 Incorrect authentication data \(set_id=010390\)
...
2020-02-29 01:03:32
46.101.184.111 attackspambots
Feb 26 16:01:57 lamijardin sshd[28359]: Did not receive identification string from 46.101.184.111
Feb 26 16:02:12 lamijardin sshd[28360]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.184.111  user=r.r
Feb 26 16:02:14 lamijardin sshd[28360]: Failed password for r.r from 46.101.184.111 port 45896 ssh2
Feb 26 16:02:14 lamijardin sshd[28360]: Received disconnect from 46.101.184.111 port 45896:11: Normal Shutdown, Thank you for playing [preauth]
Feb 26 16:02:14 lamijardin sshd[28360]: Disconnected from 46.101.184.111 port 45896 [preauth]
Feb 26 16:02:25 lamijardin sshd[28362]: Invalid user oracle from 46.101.184.111
Feb 26 16:02:25 lamijardin sshd[28362]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.184.111
Feb 26 16:02:28 lamijardin sshd[28362]: Failed password for invalid user oracle from 46.101.184.111 port 42176 ssh2
Feb 26 16:02:28 lamijardin sshd[28362]: Received disconn........
-------------------------------
2020-02-29 00:53:20
209.17.96.106 attackspam
The IP has triggered Cloudflare WAF. CF-Ray: 56c00668986c389e | WAF_Rule_ID: ipr24 | WAF_Kind: firewall | CF_Action: challenge | Country: US | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: d.skk.moe | User-Agent: Mozilla/5.0 (compatible; Nimbostratus-Bot/v1.3.2; http://cloudsystemnetworks.com) | CF_DC: ATL. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).
2020-02-29 01:06:23
210.16.86.6 attackbots
Unauthorized connection attempt from IP address 210.16.86.6 on Port 445(SMB)
2020-02-29 00:43:10
171.239.166.239 attackbots
" "
2020-02-29 01:11:50
42.117.104.129 attackbots
MultiHost/MultiPort Probe, Scan, Hack -
2020-02-29 01:04:42
187.144.124.26 attackspambots
suspicious action Fri, 28 Feb 2020 10:31:10 -0300
2020-02-29 00:39:56
42.116.43.227 attackspambots
MultiHost/MultiPort Probe, Scan, Hack -
2020-02-29 01:13:49
83.23.196.51 attack
IP Ban Report :  
 https://help-dysk.pl/wordpress-firewall-plugins/ip/83.23.196.51/ 
 
 PL - 1H : (136)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : PL 
 NAME ASN : ASN5617 
 
 IP : 83.23.196.51 
 
 CIDR : 83.20.0.0/14 
 
 PREFIX COUNT : 183 
 
 UNIQUE IP COUNT : 5363456 
 
 
 ATTACKS DETECTED ASN5617 :  
  1H - 5 
  3H - 7 
  6H - 21 
 12H - 49 
 24H - 59 
 
 DateTime : 2020-02-28 16:57:49 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery
2020-02-29 00:48:57
222.186.15.10 attackbotsspam
28.02.2020 16:51:06 SSH access blocked by firewall
2020-02-29 00:51:42
185.176.27.246 attack
02/28/2020-11:55:53.990030 185.176.27.246 Protocol: 6 ET SCAN NMAP -sS window 1024
2020-02-29 01:16:50

最近上报的IP列表

156.211.170.206 203.195.130.124 198.46.166.45 1.190.161.247
67.205.162.85 202.80.112.94 208.66.72.242 107.173.78.116
81.18.146.89 213.226.79.162 191.53.200.63 191.53.199.151
119.2.17.138 107.175.230.238 105.155.250.60 103.85.95.5
91.181.238.14 82.166.139.74 80.211.53.107 77.252.61.133