必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Hurricane Electric LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:
类型 评论内容 时间
attack
Port scan
2020-04-09 01:02:00
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:

; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6_10.3 <<>> 2001:470:dfa9:10ff:0:242:ac11:20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50169
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2001:470:dfa9:10ff:0:242:ac11:20. IN	A

;; AUTHORITY SECTION:
.			10800	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040800 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 100.100.2.138#53(100.100.2.138)
;; WHEN: Thu Apr  9 01:02:15 2020
;; MSG SIZE  rcvd: 125

HOST信息:
Host 0.2.0.0.1.1.c.a.2.4.2.0.0.0.0.0.f.f.0.1.9.a.f.d.0.7.4.0.1.0.0.2.ip6.arpa not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 0.2.0.0.1.1.c.a.2.4.2.0.0.0.0.0.f.f.0.1.9.a.f.d.0.7.4.0.1.0.0.2.ip6.arpa: NXDOMAIN
最新评论:
IP 类型 评论内容 时间
220.247.174.14 attackspambots
Sep 15 10:32:15 dallas01 sshd[17141]: Failed password for invalid user qin from 220.247.174.14 port 60784 ssh2
Sep 15 10:37:11 dallas01 sshd[18173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.247.174.14
Sep 15 10:37:13 dallas01 sshd[18173]: Failed password for invalid user odroid from 220.247.174.14 port 47238 ssh2
Sep 15 10:42:15 dallas01 sshd[19071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.247.174.14
2019-10-08 22:07:01
185.245.85.251 attackspam
Multiple directory traversal attempts
2019-10-08 22:07:40
220.184.97.0 attackspam
Sep  2 20:25:21 dallas01 sshd[12388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.184.97.0
Sep  2 20:25:22 dallas01 sshd[12388]: Failed password for invalid user usuario from 220.184.97.0 port 54794 ssh2
Sep  2 20:25:24 dallas01 sshd[12388]: Failed password for invalid user usuario from 220.184.97.0 port 54794 ssh2
Sep  2 20:25:27 dallas01 sshd[12388]: Failed password for invalid user usuario from 220.184.97.0 port 54794 ssh2
2019-10-08 22:24:27
76.103.161.19 attack
Oct  8 04:16:44 hanapaa sshd\[5307\]: Invalid user Admin@2014 from 76.103.161.19
Oct  8 04:16:44 hanapaa sshd\[5307\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-76-103-161-19.hsd1.ca.comcast.net
Oct  8 04:16:46 hanapaa sshd\[5307\]: Failed password for invalid user Admin@2014 from 76.103.161.19 port 43616 ssh2
Oct  8 04:20:41 hanapaa sshd\[5621\]: Invalid user 123Dot from 76.103.161.19
Oct  8 04:20:41 hanapaa sshd\[5621\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-76-103-161-19.hsd1.ca.comcast.net
2019-10-08 22:41:31
49.88.112.66 attackbotsspam
Aug 28 05:33:59 dallas01 sshd[371]: Failed password for root from 49.88.112.66 port 50622 ssh2
Aug 28 05:34:01 dallas01 sshd[371]: Failed password for root from 49.88.112.66 port 50622 ssh2
Aug 28 05:34:04 dallas01 sshd[371]: Failed password for root from 49.88.112.66 port 50622 ssh2
Aug 28 05:37:00 dallas01 sshd[929]: Failed password for root from 49.88.112.66 port 52282 ssh2
2019-10-08 22:25:30
43.251.105.205 attackspambots
st-nyc1-01 recorded 3 login violations from 43.251.105.205 and was blocked at 2019-10-08 11:54:22. 43.251.105.205 has been blocked on 0 previous occasions. 43.251.105.205's first attempt was recorded at 2019-10-08 11:54:22
2019-10-08 22:18:02
171.244.51.114 attackbots
Oct  8 16:04:08 vpn01 sshd[32657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.244.51.114
Oct  8 16:04:10 vpn01 sshd[32657]: Failed password for invalid user 0p9o8i7u6y from 171.244.51.114 port 43508 ssh2
...
2019-10-08 22:25:07
198.211.123.183 attack
Oct  8 15:13:23 MK-Soft-VM7 sshd[4420]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.211.123.183 
Oct  8 15:13:25 MK-Soft-VM7 sshd[4420]: Failed password for invalid user cacti from 198.211.123.183 port 43800 ssh2
...
2019-10-08 22:19:44
180.169.28.51 attackspam
Oct  7 09:21:44 ntop sshd[17808]: User r.r from 180.169.28.51 not allowed because not listed in AllowUsers
Oct  7 09:21:44 ntop sshd[17808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.169.28.51  user=r.r
Oct  7 09:21:46 ntop sshd[17808]: Failed password for invalid user r.r from 180.169.28.51 port 52776 ssh2
Oct  7 09:21:46 ntop sshd[17808]: Received disconnect from 180.169.28.51 port 52776:11: Bye Bye [preauth]
Oct  7 09:21:46 ntop sshd[17808]: Disconnected from 180.169.28.51 port 52776 [preauth]
Oct  7 09:28:29 ntop sshd[17983]: User r.r from 180.169.28.51 not allowed because not listed in AllowUsers
Oct  7 09:28:30 ntop sshd[17983]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.169.28.51  user=r.r
Oct  7 09:28:31 ntop sshd[17983]: Faile
.... truncated .... 

Oct  7 09:21:44 ntop sshd[17808]: User r.r from 180.169.28.51 not allowed because not listed in AllowUsers
Oct  7 09:........
-------------------------------
2019-10-08 22:24:48
222.186.42.163 attackbots
Oct  8 16:26:40 rotator sshd\[27156\]: Failed password for root from 222.186.42.163 port 64266 ssh2Oct  8 16:26:42 rotator sshd\[27156\]: Failed password for root from 222.186.42.163 port 64266 ssh2Oct  8 16:26:44 rotator sshd\[27156\]: Failed password for root from 222.186.42.163 port 64266 ssh2Oct  8 16:34:26 rotator sshd\[28113\]: Failed password for root from 222.186.42.163 port 27630 ssh2Oct  8 16:34:29 rotator sshd\[28113\]: Failed password for root from 222.186.42.163 port 27630 ssh2Oct  8 16:34:31 rotator sshd\[28113\]: Failed password for root from 222.186.42.163 port 27630 ssh2
...
2019-10-08 22:38:22
23.129.64.195 attackspambots
2019-10-08T13:43:35.523106abusebot.cloudsearch.cf sshd\[19005\]: Invalid user admin from 23.129.64.195 port 51052
2019-10-08 22:06:10
139.59.14.115 attack
xmlrpc attack
2019-10-08 22:37:17
140.143.17.196 attack
Lines containing failures of 140.143.17.196
Oct  7 03:32:33 dns01 sshd[19216]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.17.196  user=r.r
Oct  7 03:32:35 dns01 sshd[19216]: Failed password for r.r from 140.143.17.196 port 58212 ssh2
Oct  7 03:32:36 dns01 sshd[19216]: Received disconnect from 140.143.17.196 port 58212:11: Bye Bye [preauth]
Oct  7 03:32:36 dns01 sshd[19216]: Disconnected from authenticating user r.r 140.143.17.196 port 58212 [preauth]
Oct  7 03:46:51 dns01 sshd[21565]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.17.196  user=r.r
Oct  7 03:46:53 dns01 sshd[21565]: Failed password for r.r from 140.143.17.196 port 50536 ssh2
Oct  7 03:46:53 dns01 sshd[21565]: Received disconnect from 140.143.17.196 port 50536:11: Bye Bye [preauth]
Oct  7 03:46:53 dns01 sshd[21565]: Disconnected from authenticating user r.r 140.143.17.196 port 50536 [preauth]
Oct  7 03:50:........
------------------------------
2019-10-08 22:43:03
60.250.23.105 attackbotsspam
Oct  8 15:57:41 MK-Soft-VM3 sshd[2593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.250.23.105 
Oct  8 15:57:43 MK-Soft-VM3 sshd[2593]: Failed password for invalid user centos@12345 from 60.250.23.105 port 33922 ssh2
...
2019-10-08 22:40:25
213.183.101.89 attackspambots
Oct  8 10:41:24 TORMINT sshd\[11356\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.183.101.89  user=root
Oct  8 10:41:26 TORMINT sshd\[11356\]: Failed password for root from 213.183.101.89 port 34440 ssh2
Oct  8 10:46:01 TORMINT sshd\[11585\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.183.101.89  user=root
...
2019-10-08 22:47:10

最近上报的IP列表

106.52.178.254 27.79.147.109 93.119.178.8 123.16.237.243
206.189.235.233 188.26.175.67 58.255.67.8 118.69.20.74
110.232.65.83 122.51.75.30 201.81.212.81 213.180.203.173
58.210.180.180 117.87.219.167 193.70.41.118 34.212.55.241
220.173.160.85 51.15.119.193 157.245.183.64 192.99.5.48