必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Indonesia

运营商(isp): Satnetcom Balikpapan

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:
类型 评论内容 时间
attackspam
ID_MNT-APJII-ID_<177>1579120315 [1:2010935:3] ET SCAN Suspicious inbound to MSSQL port 1433 [Classification: Potentially Bad Traffic] [Priority: 2] {TCP} 203.80.13.214:52984
2020-01-16 05:19:43
相同子网IP讨论:
IP 类型 评论内容 时间
203.80.13.234 attackspambots
RDP Brute-Force (Grieskirchen RZ1)
2020-02-22 23:25:54
203.80.136.133 attack
ICMP MH Probe, Scan /Distributed -
2019-11-16 04:33:03
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 203.80.13.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64350
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;203.80.13.214.			IN	A

;; AUTHORITY SECTION:
.			233	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011501 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 16 05:19:41 CST 2020
;; MSG SIZE  rcvd: 117
HOST信息:
214.13.80.203.in-addr.arpa domain name pointer snc-office.satnetcom.net.id.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
214.13.80.203.in-addr.arpa	name = snc-office.satnetcom.net.id.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
37.49.225.19 attackspam
#4619 - [37.49.225.198] Closing connection (IP still banned)
#4619 - [37.49.225.198] Closing connection (IP still banned)
#4619 - [37.49.225.198] Closing connection (IP still banned)
#4619 - [37.49.225.198] Closing connection (IP still banned)

........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=37.49.225.19
2019-07-06 05:00:34
183.89.95.219 attackbotsspam
Automatic report - SSH Brute-Force Attack
2019-07-06 05:06:20
206.189.197.48 attackspam
Jul  1 13:36:04 *** sshd[10350]: Failed password for invalid user tomcat from 206.189.197.48 port 40042 ssh2
Jul  4 11:58:41 *** sshd[10144]: Failed password for invalid user kb from 206.189.197.48 port 37438 ssh2
Jul  4 16:24:15 *** sshd[13928]: Failed password for invalid user valdemar from 206.189.197.48 port 34620 ssh2
Jul  5 09:19:41 *** sshd[28554]: Failed password for invalid user roxana from 206.189.197.48 port 57588 ssh2
2019-07-06 05:18:34
118.24.152.187 attack
Brute force attempt
2019-07-06 04:40:04
134.209.124.237 attack
Jul  5 22:32:47 cp sshd[28952]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.124.237
Jul  5 22:32:47 cp sshd[28952]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.124.237
2019-07-06 04:36:22
113.172.14.114 attackspam
Jul  5 19:56:27 lvps87-230-18-106 sshd[22891]: Address 113.172.14.114 maps to static.vnpt.vn, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!
Jul  5 19:56:28 lvps87-230-18-106 sshd[22891]: Invalid user admin from 113.172.14.114
Jul  5 19:56:28 lvps87-230-18-106 sshd[22891]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.172.14.114 
Jul  5 19:56:29 lvps87-230-18-106 sshd[22891]: Failed password for invalid user admin from 113.172.14.114 port 38849 ssh2


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=113.172.14.114
2019-07-06 05:11:17
193.188.22.12 attackspam
Jul  5 22:41:37 nginx sshd[58822]: Connection from 193.188.22.12 port 19386 on 10.23.102.80 port 22
Jul  5 22:41:39 nginx sshd[58822]: Invalid user eclipse from 193.188.22.12
2019-07-06 04:44:14
160.153.234.236 attack
Jul  5 20:50:32 vpn01 sshd\[22407\]: Invalid user emil from 160.153.234.236
Jul  5 20:50:32 vpn01 sshd\[22407\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=160.153.234.236
Jul  5 20:50:34 vpn01 sshd\[22407\]: Failed password for invalid user emil from 160.153.234.236 port 48182 ssh2
2019-07-06 04:45:21
180.117.111.120 attackspambots
Jul  5 19:44:13 rb06 sshd[16740]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.117.111.120  user=r.r
Jul  5 19:44:15 rb06 sshd[16745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.117.111.120  user=r.r
Jul  5 19:44:15 rb06 sshd[16740]: Failed password for r.r from 180.117.111.120 port 47744 ssh2
Jul  5 19:44:16 rb06 sshd[16745]: Failed password for r.r from 180.117.111.120 port 47752 ssh2
Jul  5 19:44:17 rb06 sshd[16740]: Failed password for r.r from 180.117.111.120 port 47744 ssh2
Jul  5 19:44:18 rb06 sshd[16745]: Failed password for r.r from 180.117.111.120 port 47752 ssh2
Jul  5 19:44:20 rb06 sshd[16740]: Failed password for r.r from 180.117.111.120 port 47744 ssh2
Jul  5 19:44:20 rb06 sshd[16740]: Disconnecting: Too many authentication failures for r.r from 180.117.111.120 port 47744 ssh2 [preauth]
Jul  5 19:44:20 rb06 sshd[16740]: PAM 2 more authentication failures; lognam........
-------------------------------
2019-07-06 04:50:39
201.63.28.114 attackspambots
@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-05 16:13:52,250 INFO [shellcode_manager] (201.63.28.114) no match, writing hexdump (8999b2ca63e54d729df01b3a57f4e624 :2394914) - MS17010 (EternalBlue)
2019-07-06 04:53:35
151.80.203.32 attackspambots
Jul  5 18:58:15 twattle sshd[6503]: Did not receive identification stri=
ng from 151.80.203.32
Jul  5 18:59:45 twattle sshd[6504]: Invalid user t from 151.80.203.32
Jul  5 18:59:45 twattle sshd[6504]: Received disconnect from 151.80.203=
.32: 11: Bye Bye [preauth]
Jul  5 19:00:25 twattle sshd[6912]: Received disconnect from 151.80.203=
.32: 11: Bye Bye [preauth]
Jul  5 19:01:22 twattle sshd[6914]: Received disconnect from 151.80.203=
.32: 11: Bye Bye [preauth]
Jul  5 19:02:03 twattle sshd[6917]: Received disconnect from 151.80.203=
.32: 11: Bye Bye [preauth]
Jul  5 19:02:46 twattle sshd[6919]: Received disconnect from 151.80.203=
.32: 11: Bye Bye [preauth]
Jul  5 19:03:42 twattle sshd[6921]: Received disconnect from 151.80.203=
.32: 11: Bye Bye [preauth]
Jul  5 19:04:24 twattle sshd[6923]: Received disconnect from 151.80.203=
.32: 11: Bye Bye [preauth]
Jul  5 19:06:03 twattle sshd[7315]: Received disconnect from 151.80.203=
.32: 11: Bye Bye [preauth]
Jul  5 19:06:46 twa........
-------------------------------
2019-07-06 04:37:54
34.68.250.186 attack
WordPress Marketplace Remote Code Execution Vulnerability CVE-2017-17043, PTR: 186.250.68.34.bc.googleusercontent.com.
2019-07-06 04:40:58
14.167.104.164 attackspambots
@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-05 16:14:04,507 INFO [shellcode_manager] (14.167.104.164) no match, writing hexdump (d485bf43d7c83723cee4cb549888403e :2225887) - MS17010 (EternalBlue)
2019-07-06 04:42:16
185.69.145.149 attackspambots
Jul  5 19:44:51 shared07 sshd[3551]: Invalid user ts3 from 185.69.145.149
Jul  5 19:44:51 shared07 sshd[3551]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.69.145.149
Jul  5 19:44:53 shared07 sshd[3551]: Failed password for invalid user ts3 from 185.69.145.149 port 56472 ssh2
Jul  5 19:44:53 shared07 sshd[3551]: Received disconnect from 185.69.145.149 port 56472:11: Bye Bye [preauth]
Jul  5 19:44:53 shared07 sshd[3551]: Disconnected from 185.69.145.149 port 56472 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=185.69.145.149
2019-07-06 04:52:09
180.244.232.60 attackspam
@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-05 16:33:33,551 INFO [shellcode_manager] (180.244.232.60) no match, writing hexdump (458156cc2be0532c3f29e5f9ccf909c4 :2124055) - MS17010 (EternalBlue)
2019-07-06 04:37:37

最近上报的IP列表

95.217.18.33 199.8.189.99 84.54.145.117 134.175.196.241
212.214.94.77 41.50.29.32 217.44.51.154 159.65.77.43
142.255.57.182 95.190.9.142 94.245.128.111 205.174.116.207
2001:16a2:82fe:fc00:fdb6:649d:aa11:1d3 106.12.92.117 87.143.68.227 220.175.169.208
143.235.172.125 14.29.224.14 207.4.1.156 95.29.133.192