必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 21.242.37.254
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34106
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;21.242.37.254.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021301 1800 900 604800 86400

;; Query time: 45 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 14 12:28:43 CST 2025
;; MSG SIZE  rcvd: 106
HOST信息:
Host 254.37.242.21.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 254.37.242.21.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
148.72.209.9 attackspambots
Website hacking attempt: Wordpress admin access [wp-login.php]
2020-08-10 00:50:34
31.43.13.185 attack
(mod_security) mod_security (id:920350) triggered by 31.43.13.185 (UA/Ukraine/31-43-13-185.dks.com.ua): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/09 14:09:47 [error] 297426#0: *2 [client 31.43.13.185] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host'  [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "159697498716.317200"] [ref "o0,14v21,14"], client: 31.43.13.185, [redacted] request: "GET / HTTP/1.1" [redacted]
2020-08-10 01:00:35
59.127.131.106 attackbots
 TCP (SYN) 59.127.131.106:50191 -> port 23, len 40
2020-08-10 00:44:27
60.51.17.33 attack
Aug  9 18:12:15 vmd26974 sshd[11572]: Failed password for root from 60.51.17.33 port 60496 ssh2
...
2020-08-10 01:15:48
139.59.18.197 attack
Aug  9 18:25:49 eventyay sshd[5833]: Failed password for root from 139.59.18.197 port 54334 ssh2
Aug  9 18:27:43 eventyay sshd[5858]: Failed password for root from 139.59.18.197 port 51740 ssh2
...
2020-08-10 00:43:17
46.161.27.75 attack
 TCP (SYN) 46.161.27.75:52647 -> port 6464, len 44
2020-08-10 00:46:51
113.170.96.68 attack
$f2bV_matches
2020-08-10 00:54:27
114.67.88.76 attackbotsspam
SSH Brute Force
2020-08-10 00:52:19
106.12.220.84 attackbotsspam
Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)
2020-08-10 00:52:49
37.187.7.95 attackbots
Failed password for root from 37.187.7.95 port 56604 ssh2
2020-08-10 01:19:33
118.25.53.252 attack
Aug  9 15:17:49 abendstille sshd\[17466\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.53.252  user=root
Aug  9 15:17:52 abendstille sshd\[17466\]: Failed password for root from 118.25.53.252 port 53694 ssh2
Aug  9 15:23:10 abendstille sshd\[22520\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.53.252  user=root
Aug  9 15:23:12 abendstille sshd\[22520\]: Failed password for root from 118.25.53.252 port 45306 ssh2
Aug  9 15:25:40 abendstille sshd\[25111\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.53.252  user=root
...
2020-08-10 00:39:26
91.191.209.94 attackspambots
2020-08-09 17:34:12 dovecot_login authenticator failed for \(User\) \[91.191.209.94\]: 535 Incorrect authentication data \(set_id=bid@hosting1.no-server.de\)
2020-08-09 17:34:20 dovecot_login authenticator failed for \(User\) \[91.191.209.94\]: 535 Incorrect authentication data \(set_id=bid@hosting1.no-server.de\)
2020-08-09 17:34:39 dovecot_login authenticator failed for \(User\) \[91.191.209.94\]: 535 Incorrect authentication data \(set_id=admind@hosting1.no-server.de\)
2020-08-09 17:34:50 dovecot_login authenticator failed for \(User\) \[91.191.209.94\]: 535 Incorrect authentication data \(set_id=admind@hosting1.no-server.de\)
2020-08-09 17:34:57 dovecot_login authenticator failed for \(User\) \[91.191.209.94\]: 535 Incorrect authentication data \(set_id=admind@hosting1.no-server.de\)
2020-08-09 17:34:59 dovecot_login authenticator failed for \(User\) \[91.191.209.94\]: 535 Incorrect authentication data \(set_id=admind@hosting1.no-server.de\)
...
2020-08-10 00:46:23
114.231.110.35 attackspam
CN CN/China/- Failures: 5 smtpauth
2020-08-10 00:48:57
94.125.122.90 attack
Bruteforce detected by fail2ban
2020-08-10 00:44:01
141.98.9.161 attackbotsspam
Aug  9 18:26:12 inter-technics sshd[14470]: Invalid user admin from 141.98.9.161 port 36503
Aug  9 18:26:12 inter-technics sshd[14470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.9.161
Aug  9 18:26:12 inter-technics sshd[14470]: Invalid user admin from 141.98.9.161 port 36503
Aug  9 18:26:14 inter-technics sshd[14470]: Failed password for invalid user admin from 141.98.9.161 port 36503 ssh2
Aug  9 18:26:33 inter-technics sshd[14520]: Invalid user ubnt from 141.98.9.161 port 36419
...
2020-08-10 01:01:22

最近上报的IP列表

96.42.197.88 207.154.184.106 131.139.32.111 22.253.126.183
237.158.159.31 231.140.88.18 137.76.204.169 192.145.79.116
8.169.165.158 46.125.246.203 215.162.142.43 131.143.239.129
24.83.161.51 89.249.88.190 5.182.131.183 233.70.37.79
169.170.166.15 238.242.239.54 135.152.73.178 119.143.6.133