必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Hurricane Electric LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:
点此参与IP信息讨论
类型 评论内容 时间
attackspam 
Port scan
 2020-02-20 08:13:44
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:

; <<>> DiG 9.8.2rc1-RedHat-9.8.2-0.68.rc1.el6_10.3 <<>> 2001:470:dfa9:10ff:0:242:ac11:f
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63683
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2001:470:dfa9:10ff:0:242:ac11:f. IN	A

;; AUTHORITY SECTION:
.			10800	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022500 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 100.100.2.138#53(100.100.2.138)
;; WHEN: Tue Feb 25 23:18:28 2020
;; MSG SIZE  rcvd: 124
HOST信息:
Host f.0.0.0.1.1.c.a.2.4.2.0.0.0.0.0.f.f.0.1.9.a.f.d.0.7.4.0.1.0.0.2.ip6.arpa not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find f.0.0.0.1.1.c.a.2.4.2.0.0.0.0.0.f.f.0.1.9.a.f.d.0.7.4.0.1.0.0.2.ip6.arpa: NXDOMAIN
最新评论:
IP 类型 评论内容 时间
167.71.213.174 attackbots 
Found by fail2ban
 2020-04-09 14:09:02
111.85.96.173 attackbotsspam 
Brute force attempt
 2020-04-09 14:01:23
189.202.204.230 attack 
Apr  9 05:54:35 vmd17057 sshd[6846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.202.204.230 
Apr  9 05:54:37 vmd17057 sshd[6846]: Failed password for invalid user user from 189.202.204.230 port 44540 ssh2
...
 2020-04-09 14:21:33
218.92.0.178 attackbotsspam 
Apr  9 01:27:19 ny01 sshd[21821]: Failed password for root from 218.92.0.178 port 49798 ssh2
Apr  9 01:27:30 ny01 sshd[21821]: Failed password for root from 218.92.0.178 port 49798 ssh2
Apr  9 01:27:34 ny01 sshd[21821]: Failed password for root from 218.92.0.178 port 49798 ssh2
Apr  9 01:27:34 ny01 sshd[21821]: error: maximum authentication attempts exceeded for root from 218.92.0.178 port 49798 ssh2 [preauth]
 2020-04-09 13:42:54
129.204.63.100 attackspam 
Fail2Ban Ban Triggered (2)
 2020-04-09 14:21:52
51.91.138.207 attackbotsspam 
ssh brute force
 2020-04-09 13:54:26
113.141.66.96 attackbots 
Unauthorized connection attempt detected from IP address 113.141.66.96 to port 445
 2020-04-09 13:29:23
82.80.187.109 attackspambots 
Automatic report - Port Scan Attack
 2020-04-09 13:38:49
106.54.184.153 attackbotsspam 
Apr  9 05:42:10 ns392434 sshd[2890]: Invalid user kenki from 106.54.184.153 port 57066
Apr  9 05:42:10 ns392434 sshd[2890]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.184.153
Apr  9 05:42:10 ns392434 sshd[2890]: Invalid user kenki from 106.54.184.153 port 57066
Apr  9 05:42:13 ns392434 sshd[2890]: Failed password for invalid user kenki from 106.54.184.153 port 57066 ssh2
Apr  9 05:51:33 ns392434 sshd[3098]: Invalid user ec2-user from 106.54.184.153 port 45618
Apr  9 05:51:33 ns392434 sshd[3098]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.184.153
Apr  9 05:51:33 ns392434 sshd[3098]: Invalid user ec2-user from 106.54.184.153 port 45618
Apr  9 05:51:35 ns392434 sshd[3098]: Failed password for invalid user ec2-user from 106.54.184.153 port 45618 ssh2
Apr  9 05:54:54 ns392434 sshd[3115]: Invalid user q2 from 106.54.184.153 port 50258
 2020-04-09 13:59:51
183.88.243.175 attack 
Dovecot Invalid User Login Attempt.
 2020-04-09 13:32:24
167.99.203.202 attackbotsspam 
Apr  9 05:55:07 debian-2gb-nbg1-2 kernel: \[8663521.770471\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=167.99.203.202 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=13738 PROTO=TCP SPT=41231 DPT=17964 WINDOW=1024 RES=0x00 SYN URGP=0
 2020-04-09 13:46:12
54.71.54.75 attackspam 
Apr  9 00:31:36 zimbra sshd[7892]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.71.54.75  user=r.r
Apr  9 00:31:38 zimbra sshd[7892]: Failed password for r.r from 54.71.54.75 port 43016 ssh2
Apr  9 00:31:38 zimbra sshd[7892]: Received disconnect from 54.71.54.75 port 43016:11: Bye Bye [preauth]
Apr  9 00:31:38 zimbra sshd[7892]: Disconnected from 54.71.54.75 port 43016 [preauth]
Apr  9 00:33:15 zimbra sshd[9047]: Invalid user jc3 from 54.71.54.75
Apr  9 00:33:15 zimbra sshd[9047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.71.54.75
Apr  9 00:33:17 zimbra sshd[9047]: Failed password for invalid user jc3 from 54.71.54.75 port 35754 ssh2
Apr  9 00:33:17 zimbra sshd[9047]: Received disconnect from 54.71.54.75 port 35754:11: Bye Bye [preauth]
Apr  9 00:33:17 zimbra sshd[9047]: Disconnected from 54.71.54.75 port 35754 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html
 2020-04-09 13:34:30
14.18.107.61 attackbotsspam 
$f2bV_matches
 2020-04-09 14:18:49
101.89.147.85 attackspambots 
Apr  9 00:54:53 vps46666688 sshd[21396]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.89.147.85
Apr  9 00:54:55 vps46666688 sshd[21396]: Failed password for invalid user test from 101.89.147.85 port 44153 ssh2
...
 2020-04-09 14:00:20
62.148.142.202 attackspambots 
$f2bV_matches
 2020-04-09 14:05:11

最近上报的IP列表

70.165.102.41 45.133.99.2 178.213.25.6 2001:470:dfa9:10ff:0:242:ac11:3
110.34.13.67 192.158.221.4 117.1.17.99 141.93.227.217
199.237.109.51 253.126.164.18 198.199.110.54 95.240.73.252
58.218.199.165 5.233.57.110 187.177.89.253 92.211.177.19
18.216.215.24 52.136.193.147 2001:470:dfa9:10ff:0:242:ac11:2e 2001:470:dfa9:10ff:0:242:ac11:2c