必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Brazil

运营商(isp): Sul Americana Tecnologia e Informatica Ltda.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:
类型 评论内容 时间
attackspam
email spam
2019-12-19 19:22:23
attackbots
email spam
2019-12-17 20:54:40
attackspam
Mail sent to address hacked/leaked from Last.fm
2019-06-23 22:08:09
相同子网IP讨论:
IP 类型 评论内容 时间
189.45.42.242 attack
Unauthorized connection attempt from IP address 189.45.42.242 on Port 445(SMB)
2020-05-24 21:28:23
189.45.42.230 attackbotsspam
Attempt to attack host OS, exploiting network vulnerabilities, on 21-09-2019 22:35:20.
2019-09-22 06:16:06
189.45.42.150 attack
proto=tcp  .  spt=34011  .  dpt=25  .     (listed on  dnsbl-sorbs abuseat-org barracuda)     (756)
2019-09-16 04:51:08
189.45.42.150 attackspambots
SMTP/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -
2019-09-11 15:54:16
189.45.42.148 attackbots
Aug 26 01:23:13 our-server-hostname postfix/smtpd[6486]: connect from unknown[189.45.42.148]
Aug x@x
Aug 26 01:23:16 our-server-hostname postfix/smtpd[6486]: lost connection after RCPT from unknown[189.45.42.148]
Aug 26 01:23:16 our-server-hostname postfix/smtpd[6486]: disconnect from unknown[189.45.42.148]
Aug 26 01:47:47 our-server-hostname postfix/smtpd[12816]: connect from unknown[189.45.42.148]
Aug x@x
Aug x@x
Aug x@x
Aug x@x
Aug x@x
Aug x@x
Aug 26 01:47:53 our-server-hostname postfix/smtpd[12816]: lost connection after RCPT from unknown[189.45.42.148]
Aug 26 01:47:53 our-server-hostname postfix/smtpd[12816]: disconnect from unknown[189.45.42.148]
Aug 26 01:50:10 our-server-hostname postfix/smtpd[10918]: connect from unknown[189.45.42.148]
Aug x@x
Aug 26 01:50:13 our-server-hostname postfix/smtpd[10918]: lost connection after RCPT from unknown[189.45.42.148]
Aug 26 01:50:13 our-server-hostname postfix/smtpd[10918]: disconnect from unknown[189.45.42.148]
Aug 26 02:0........
-------------------------------
2019-08-26 10:10:34
189.45.42.149 attack
Jun 19 06:34:32 our-server-hostname postfix/smtpd[371]: connect from unknown[189.45.42.149]
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun 19 06:34:36 our-server-hostname postfix/smtpd[371]: lost connection after RCPT from unknown[189.45.42.149]
Jun 19 06:34:36 our-server-hostname postfix/smtpd[371]: disconnect from unknown[189.45.42.149]
Jun 19 12:52:50 our-server-hostname postfix/smtpd[25497]: connect from unknown[189.45.42.149]
Jun x@x
Jun x@x
Jun 19 12:52:53 our-server-hostname postfix/smtpd[25497]: lost connection after RCPT from unknown[189.45.42.149]
Jun 19 12:52:53 our-server-hostname postfix/smtpd[25497]: disconnect from unknown[189.45.42.149]
Jun 19 15:06:27 our-server-hostname postfix/smtpd[22106]: connect from unknown[189.45.42.149]
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun x@x
Jun 19 15:06:42 our-server-hostname postfix/smtpd[22106]: lost connection after RCPT fro........
-------------------------------
2019-06-22 17:24:11
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 189.45.42.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42554
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;189.45.42.138.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062300 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jun 23 22:07:59 CST 2019
;; MSG SIZE  rcvd: 117
HOST信息:
138.42.45.189.in-addr.arpa domain name pointer 189-45-42-138.static.stech.net.br.
NSLOOKUP信息:
Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
138.42.45.189.in-addr.arpa	name = 189-45-42-138.static.stech.net.br.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
96.127.158.236 attackbots
Port Scan
2019-10-21 20:32:15
128.68.31.2 attack
IP Ban Report :  
 https://help-dysk.pl/wordpress-firewall-plugins/ip/128.68.31.2/ 
 
 RU - 1H : (149)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : RU 
 NAME ASN : ASN8402 
 
 IP : 128.68.31.2 
 
 CIDR : 128.68.0.0/18 
 
 PREFIX COUNT : 1674 
 
 UNIQUE IP COUNT : 1840128 
 
 
 ATTACKS DETECTED ASN8402 :  
  1H - 1 
  3H - 1 
  6H - 2 
 12H - 2 
 24H - 8 
 
 DateTime : 2019-10-21 13:45:46 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery
2019-10-21 20:15:45
193.70.86.97 attackbotsspam
Oct 21 13:39:22 MK-Soft-VM7 sshd[3361]: Failed password for root from 193.70.86.97 port 56816 ssh2
...
2019-10-21 20:13:50
191.240.230.36 attackbotsspam
Port Scan
2019-10-21 20:27:22
101.25.19.206 attackbotsspam
(Oct 21)  LEN=40 TTL=50 ID=1345 TCP DPT=8080 WINDOW=37486 SYN 
 (Oct 21)  LEN=40 TTL=50 ID=52777 TCP DPT=8080 WINDOW=57216 SYN 
 (Oct 21)  LEN=40 TTL=50 ID=57352 TCP DPT=8080 WINDOW=15200 SYN 
 (Oct 20)  LEN=40 TTL=50 ID=9160 TCP DPT=8080 WINDOW=1479 SYN 
 (Oct 19)  LEN=40 TTL=50 ID=2518 TCP DPT=8080 WINDOW=15200 SYN 
 (Oct 16)  LEN=40 TTL=50 ID=50548 TCP DPT=8080 WINDOW=57216 SYN 
 (Oct 16)  LEN=40 TTL=50 ID=63205 TCP DPT=8080 WINDOW=57216 SYN 
 (Oct 16)  LEN=40 TTL=50 ID=35031 TCP DPT=8080 WINDOW=37486 SYN 
 (Oct 15)  LEN=40 TTL=50 ID=53640 TCP DPT=8080 WINDOW=15200 SYN 
 (Oct 14)  LEN=40 TTL=50 ID=8748 TCP DPT=8080 WINDOW=57216 SYN
2019-10-21 20:44:52
180.92.196.47 attackspambots
...
2019-10-21 20:25:36
198.199.72.42 attackbotsspam
Port Scan
2019-10-21 20:38:56
115.79.167.119 attack
Port Scan
2019-10-21 20:47:26
54.37.205.162 attack
Oct 21 13:45:25 MK-Soft-VM5 sshd[24285]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.205.162 
Oct 21 13:45:27 MK-Soft-VM5 sshd[24285]: Failed password for invalid user applmgr from 54.37.205.162 port 33388 ssh2
...
2019-10-21 20:31:48
222.186.175.220 attack
Oct 21 14:53:59 amit sshd\[6059\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.220  user=root
Oct 21 14:54:00 amit sshd\[6059\]: Failed password for root from 222.186.175.220 port 6526 ssh2
Oct 21 14:54:05 amit sshd\[6059\]: Failed password for root from 222.186.175.220 port 6526 ssh2
...
2019-10-21 20:55:50
103.31.82.122 attack
ssh brute force
2019-10-21 20:50:25
103.52.52.23 attackbots
Oct 21 02:11:40 hanapaa sshd\[25557\]: Invalid user testuser from 103.52.52.23
Oct 21 02:11:40 hanapaa sshd\[25557\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns1.ficustelecom.com
Oct 21 02:11:42 hanapaa sshd\[25557\]: Failed password for invalid user testuser from 103.52.52.23 port 51032 ssh2
Oct 21 02:16:52 hanapaa sshd\[26010\]: Invalid user ubuntu from 103.52.52.23
Oct 21 02:16:52 hanapaa sshd\[26010\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns1.ficustelecom.com
2019-10-21 20:20:49
222.186.175.215 attackspambots
F2B jail: sshd. Time: 2019-10-21 14:00:24, Reported by: VKReport
2019-10-21 20:21:17
37.98.224.105 attackbotsspam
Oct 21 08:34:37 xtremcommunity sshd\[743971\]: Invalid user Wgo5EwE8 from 37.98.224.105 port 46280
Oct 21 08:34:37 xtremcommunity sshd\[743971\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.98.224.105
Oct 21 08:34:39 xtremcommunity sshd\[743971\]: Failed password for invalid user Wgo5EwE8 from 37.98.224.105 port 46280 ssh2
Oct 21 08:39:21 xtremcommunity sshd\[744122\]: Invalid user tss2 from 37.98.224.105 port 57662
Oct 21 08:39:21 xtremcommunity sshd\[744122\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.98.224.105
...
2019-10-21 20:48:20
200.93.149.162 attack
Unauthorized connection attempt from IP address 200.93.149.162 on Port 445(SMB)
2019-10-21 20:31:13

最近上报的IP列表

156.211.170.206 203.195.130.124 198.46.166.45 1.190.161.247
67.205.162.85 202.80.112.94 208.66.72.242 107.173.78.116
81.18.146.89 213.226.79.162 191.53.200.63 191.53.199.151
119.2.17.138 107.175.230.238 105.155.250.60 103.85.95.5
91.181.238.14 82.166.139.74 80.211.53.107 77.252.61.133