必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Thailand

运营商(isp): World Internetwork Corporation Co. Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:
类型 评论内容 时间
attackspambots
CMS (WordPress or Joomla) login attempt.
2020-03-27 08:32:26
attackspam
CMS (WordPress or Joomla) login attempt.
2020-03-25 15:16:37
attack
202.44.54.48 - - \[12/Mar/2020:22:06:39 +0100\] "POST /wp-login.php HTTP/1.0" 200 6517 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
202.44.54.48 - - \[12/Mar/2020:22:06:41 +0100\] "POST /wp-login.php HTTP/1.0" 200 6495 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
202.44.54.48 - - \[12/Mar/2020:22:06:42 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2020-03-13 09:12:06
attackspam
202.44.54.48 - - [09/Mar/2020:13:22:33 +0100] "GET /wp-login.php HTTP/1.1" 200 5347 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
202.44.54.48 - - [09/Mar/2020:13:22:35 +0100] "POST /wp-login.php HTTP/1.1" 200 6246 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
202.44.54.48 - - [09/Mar/2020:13:22:37 +0100] "POST /xmlrpc.php HTTP/1.1" 200 438 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-03-10 04:34:29
attackspambots
202.44.54.48 - - \[15/Feb/2020:02:04:36 +0100\] "POST /wp-login.php HTTP/1.0" 200 6597 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
202.44.54.48 - - \[15/Feb/2020:02:04:39 +0100\] "POST /wp-login.php HTTP/1.0" 200 6410 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
202.44.54.48 - - \[15/Feb/2020:02:04:42 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2020-02-15 11:06:08
attack
Automatic report - Banned IP Access
2020-02-09 05:09:43
attackspam
06.02.2020 14:44:17 - Wordpress fail 
Detected by ELinOX-ALM
2020-02-07 00:42:48
attack
202.44.54.48 - - \[09/Jan/2020:22:24:31 +0100\] "POST /wp-login.php HTTP/1.0" 200 4404 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
202.44.54.48 - - \[09/Jan/2020:22:24:34 +0100\] "POST /wp-login.php HTTP/1.0" 200 4402 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
202.44.54.48 - - \[09/Jan/2020:22:24:36 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2020-01-10 07:10:33
attack
202.44.54.48 - - [09/Dec/2019:18:03:53 +0100] "GET /wp-login.php HTTP/1.1" 200 1896 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
202.44.54.48 - - [09/Dec/2019:18:03:55 +0100] "POST /wp-login.php HTTP/1.1" 200 2294 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
202.44.54.48 - - [09/Dec/2019:18:03:56 +0100] "GET /wp-login.php HTTP/1.1" 200 1896 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
202.44.54.48 - - [09/Dec/2019:18:03:58 +0100] "POST /wp-login.php HTTP/1.1" 200 2268 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
202.44.54.48 - - [09/Dec/2019:18:03:59 +0100] "GET /wp-login.php HTTP/1.1" 200 1896 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
202.44.54.48 - - [09/Dec/2019:18:04:00 +0100] "POST /wp-login.php HTTP/1.1" 200 2269 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2019-12-10 03:06:11
attackbots
WordPress login Brute force / Web App Attack on client site.
2019-11-24 19:46:13
attackbotsspam
[munged]::443 202.44.54.48 - - [12/Nov/2019:14:43:58 +0100] "POST /[munged]: HTTP/1.1" 200 9077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 202.44.54.48 - - [12/Nov/2019:14:44:03 +0100] "POST /[munged]: HTTP/1.1" 200 9077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 202.44.54.48 - - [12/Nov/2019:14:44:07 +0100] "POST /[munged]: HTTP/1.1" 200 9077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 202.44.54.48 - - [12/Nov/2019:14:44:38 +0100] "POST /[munged]: HTTP/1.1" 200 9077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 202.44.54.48 - - [12/Nov/2019:14:44:46 +0100] "POST /[munged]: HTTP/1.1" 200 9077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 202.44.54.48 - - [12/Nov/2019:14:44:51 +0100] "POST /[munged]: HTTP/1.1" 200 9077 "-" "Mozilla/5.0 (X11; Ubuntu; Li
2019-11-12 22:11:29
attackbots
WordPress wp-login brute force :: 202.44.54.48 0.152 BYPASS [26/Oct/2019:23:05:08  1100] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3770 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2019-10-26 20:36:34
attack
WordPress wp-login brute force :: 202.44.54.48 0.036 BYPASS [08/Oct/2019:06:50:35  1100] [censored_2] "POST /wp-login.php HTTP/1.1" 200 4630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2019-10-08 06:23:47
attackspambots
WordPress login Brute force / Web App Attack on client site.
2019-10-01 22:26:14
attackbots
xmlrpc attack
2019-08-31 19:48:52
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 202.44.54.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1562
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;202.44.54.48.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019083100 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 31 19:48:46 CST 2019
;; MSG SIZE  rcvd: 116
HOST信息:
Host 48.54.44.202.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 48.54.44.202.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
46.239.55.187 attackbotsspam
Attempted connection to port 445.
2020-09-03 15:37:30
190.131.220.2 attackbotsspam
20/9/3@02:19:45: FAIL: Alarm-Network address from=190.131.220.2
...
2020-09-03 15:43:20
45.164.236.97 attack
Attempted connection to port 445.
2020-09-03 15:38:52
124.207.165.138 attackbotsspam
$f2bV_matches
2020-09-03 16:14:39
189.5.193.11 attackbotsspam
Unauthorized connection attempt from IP address 189.5.193.11 on Port 445(SMB)
2020-09-03 16:10:34
41.239.9.136 attackspam
Attempted connection to port 23.
2020-09-03 15:39:18
189.219.77.32 attackspam
Unauthorized connection attempt from IP address 189.219.77.32 on Port 445(SMB)
2020-09-03 15:53:13
167.71.162.16 attackspam
fail2ban -- 167.71.162.16
...
2020-09-03 16:03:40
223.65.203.130 attackbotsspam
Sep  3 02:17:10 instance-2 sshd[1094]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.65.203.130 
Sep  3 02:17:12 instance-2 sshd[1094]: Failed password for invalid user sofia from 223.65.203.130 port 39598 ssh2
Sep  3 02:18:07 instance-2 sshd[1098]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.65.203.130
2020-09-03 15:59:03
61.177.172.142 attackbots
Sep  3 10:02:49 OPSO sshd\[22751\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.142  user=root
Sep  3 10:02:51 OPSO sshd\[22751\]: Failed password for root from 61.177.172.142 port 56119 ssh2
Sep  3 10:02:54 OPSO sshd\[22751\]: Failed password for root from 61.177.172.142 port 56119 ssh2
Sep  3 10:02:57 OPSO sshd\[22751\]: Failed password for root from 61.177.172.142 port 56119 ssh2
Sep  3 10:03:01 OPSO sshd\[22751\]: Failed password for root from 61.177.172.142 port 56119 ssh2
2020-09-03 16:04:31
20.185.246.122 attackbots
Attempted connection to port 3389.
2020-09-03 15:42:02
216.4.95.61 attackspam
Zeroshell Remote Command Execution Vulnerability
2020-09-03 16:07:40
191.52.249.154 attackspam
Sep  2 20:17:24 NPSTNNYC01T sshd[13452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.52.249.154
Sep  2 20:17:26 NPSTNNYC01T sshd[13452]: Failed password for invalid user kkc from 191.52.249.154 port 44371 ssh2
Sep  2 20:22:06 NPSTNNYC01T sshd[13916]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.52.249.154
...
2020-09-03 15:56:01
190.184.201.99 attackspambots
Unauthorized connection attempt from IP address 190.184.201.99 on Port 445(SMB)
2020-09-03 15:42:51
103.72.144.228 attackbotsspam
Invalid user nas from 103.72.144.228 port 48750
2020-09-03 15:51:48

最近上报的IP列表

196.95.29.211 66.89.229.106 100.255.242.114 92.77.10.213
89.94.137.119 134.88.121.144 16.79.142.90 194.186.10.201
31.4.35.178 201.73.111.66 84.229.148.240 116.165.134.42
74.119.111.32 71.150.76.63 78.189.46.228 187.108.250.189
121.60.229.16 183.24.130.249 35.168.114.144 117.26.243.65