必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Hurricane Electric LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:
点此参与IP信息讨论
类型 评论内容 时间
attack 
Port scan
 2020-02-20 09:15:47
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:

; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6_10.3 <<>> 2001:470:dfa9:10ff:0:242:ac11:11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1709
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2001:470:dfa9:10ff:0:242:ac11:11. IN	A

;; AUTHORITY SECTION:
.			10800	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022500 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 100.100.2.138#53(100.100.2.138)
;; WHEN: Tue Feb 25 23:18:31 2020
;; MSG SIZE  rcvd: 125
HOST信息:
Host 1.1.0.0.1.1.c.a.2.4.2.0.0.0.0.0.f.f.0.1.9.a.f.d.0.7.4.0.1.0.0.2.ip6.arpa not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 1.1.0.0.1.1.c.a.2.4.2.0.0.0.0.0.f.f.0.1.9.a.f.d.0.7.4.0.1.0.0.2.ip6.arpa: NXDOMAIN
最新评论:
IP 类型 评论内容 时间
131.213.160.53 attackspambots 
Found on   CINS badguys     / proto=6  .  srcport=17485  .  dstport=23 Telnet  .     (3564)
 2020-10-05 12:05:31
104.206.128.2 attackspambots 
Found on   Binary Defense     / proto=6  .  srcport=52605  .  dstport=21 FTP  .     (3566)
 2020-10-05 12:01:30
58.249.54.170 attackspambots 
Blocked by Sophos UTM Network Protection . /    / proto=6  .  srcport=6942  .  dstport=1433  .     (3563)
 2020-10-05 12:08:04
138.197.97.157 attackspam 
138.197.97.157 - - [05/Oct/2020:03:19:11 +0100] "POST /wp-login.php HTTP/1.1" 200 2548 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
138.197.97.157 - - [05/Oct/2020:03:19:18 +0100] "POST /wp-login.php HTTP/1.1" 200 2529 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
138.197.97.157 - - [05/Oct/2020:03:19:20 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
 2020-10-05 12:23:57
142.93.47.124 attackbots 
4922/tcp 2859/tcp 22992/tcp...
[2020-08-07/10-04]188pkt,106pt.(tcp)
 2020-10-05 12:02:45
112.85.42.85 attackbotsspam 
"fail2ban match"
 2020-10-05 12:30:27
123.59.195.173 attack 
Oct  4 22:42:34 host sshd\[8190\]: Failed password for root from 123.59.195.173 port 41675 ssh2
Oct  4 22:46:54 host sshd\[9202\]: Failed password for root from 123.59.195.173 port 42154 ssh2
Oct  4 22:51:05 host sshd\[10213\]: Failed password for root from 123.59.195.173 port 42632 ssh2
...
 2020-10-05 12:25:55
176.212.108.205 attackbotsspam 
Telnet/23 MH Probe, Scan, BF, Hack -
 2020-10-05 08:15:35
104.140.188.22 attackbotsspam 
[N3.H3.VM3] Port Scanner Detected Blocked by UFW
 2020-10-05 12:24:11
106.52.145.203 attackbotsspam 
Unauthorised access (Oct  3) SRC=106.52.145.203 LEN=40 TTL=47 ID=26127 TCP DPT=8080 WINDOW=20611 SYN 
Unauthorised access (Oct  3) SRC=106.52.145.203 LEN=40 TTL=47 ID=4686 TCP DPT=8080 WINDOW=6898 SYN 
Unauthorised access (Oct  3) SRC=106.52.145.203 LEN=40 TTL=47 ID=19483 TCP DPT=8080 WINDOW=6898 SYN 
Unauthorised access (Oct  3) SRC=106.52.145.203 LEN=40 TTL=47 ID=20388 TCP DPT=8080 WINDOW=20611 SYN 
Unauthorised access (Oct  1) SRC=106.52.145.203 LEN=40 TTL=47 ID=41515 TCP DPT=8080 WINDOW=20611 SYN
 2020-10-05 08:11:11
140.143.30.33 attackbots 
Oct  5 00:23:39 con01 sshd[3982289]: Failed password for root from 140.143.30.33 port 44950 ssh2
Oct  5 00:27:57 con01 sshd[3991050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.30.33  user=root
Oct  5 00:27:59 con01 sshd[3991050]: Failed password for root from 140.143.30.33 port 48994 ssh2
Oct  5 00:32:09 con01 sshd[4000088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.30.33  user=root
Oct  5 00:32:11 con01 sshd[4000088]: Failed password for root from 140.143.30.33 port 53024 ssh2
...
 2020-10-05 12:09:37
134.122.94.113 attackbots 
Automatic report - XMLRPC Attack
 2020-10-05 08:10:25
190.215.40.170 attack 
445/tcp 445/tcp 445/tcp...
[2020-09-01/10-04]5pkt,1pt.(tcp)
 2020-10-05 12:27:09
36.77.92.250 attackbots 
445/tcp
[2020-10-03]1pkt
 2020-10-05 08:14:45
69.158.207.141 attackspam 
Oct  5 05:07:05 abendstille sshd\[5162\]: Invalid user guest from 69.158.207.141
Oct  5 05:07:05 abendstille sshd\[5162\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.158.207.141
Oct  5 05:07:08 abendstille sshd\[5162\]: Failed password for invalid user guest from 69.158.207.141 port 57705 ssh2
Oct  5 05:07:15 abendstille sshd\[5222\]: Invalid user guest from 69.158.207.141
Oct  5 05:07:15 abendstille sshd\[5222\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.158.207.141
...
 2020-10-05 12:10:55

最近上报的IP列表

1.34.74.113 52.229.175.253 218.149.221.136 177.40.179.139
113.87.14.157 185.202.2.247 178.166.102.217 13.235.73.8
93.39.230.219 180.241.228.21 82.193.115.159 201.209.6.206
34.92.179.197 100.0.240.94 120.23.101.84 121.139.139.48
78.56.46.91 43.249.224.149 162.243.134.144 42.189.188.212