必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Taiwan, Province of China

运营商(isp): Chunghwa Telecom Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
类型 评论内容 时间
attack
Unauthorized connection attempt from IP address 220.136.129.145 on Port 445(SMB)
2019-09-01 09:00:37
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 220.136.129.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34810
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;220.136.129.145.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019083102 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Sep 01 09:00:32 CST 2019
;; MSG SIZE  rcvd: 119
HOST信息:
145.129.136.220.in-addr.arpa domain name pointer 220-136-129-145.dynamic-ip.hinet.net.
NSLOOKUP信息:
Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
145.129.136.220.in-addr.arpa	name = 220-136-129-145.dynamic-ip.hinet.net.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
45.136.108.65 attackspam
Connection by 45.136.108.65 on port: 60 got caught by honeypot at 11/30/2019 7:08:24 AM
2019-11-30 20:52:02
34.244.185.53 attackspambots
30.11.2019 07:21:01 - Wordpress fail 
Detected by ELinOX-ALM
2019-11-30 20:33:12
77.98.190.7 attackspam
SSH Brute-Forcing (ownc)
2019-11-30 20:46:33
104.248.26.43 attackbots
2019-11-30 09:59:40,121 fail2ban.actions        \[14488\]: NOTICE  \[sshd\] Ban 104.248.26.43
2019-11-30 10:31:24,739 fail2ban.actions        \[14488\]: NOTICE  \[sshd\] Ban 104.248.26.43
2019-11-30 11:03:23,122 fail2ban.actions        \[14488\]: NOTICE  \[sshd\] Ban 104.248.26.43
2019-11-30 11:35:16,759 fail2ban.actions        \[14488\]: NOTICE  \[sshd\] Ban 104.248.26.43
2019-11-30 12:05:46,780 fail2ban.actions        \[14488\]: NOTICE  \[sshd\] Ban 104.248.26.43
...
2019-11-30 20:58:41
83.97.20.49 attack
Connection by 83.97.20.49 on port: 515 got caught by honeypot at 11/30/2019 11:31:26 AM
2019-11-30 21:03:23
178.236.113.226 attackspam
DATE:2019-11-30 07:20:25, IP:178.236.113.226, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)
2019-11-30 20:41:43
188.213.212.59 attackbots
2019-11-30T07:20:43.567283stark.klein-stark.info postfix/smtpd\[27422\]: NOQUEUE: reject: RCPT from reason.yarkaci.com\[188.213.212.59\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\
...
2019-11-30 20:33:36
139.59.244.225 attackspam
Lines containing failures of 139.59.244.225
Nov 28 18:30:46 shared12 sshd[19107]: Invalid user doti from 139.59.244.225 port 55798
Nov 28 18:30:46 shared12 sshd[19107]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.244.225
Nov 28 18:30:48 shared12 sshd[19107]: Failed password for invalid user doti from 139.59.244.225 port 55798 ssh2
Nov 28 18:30:48 shared12 sshd[19107]: Received disconnect from 139.59.244.225 port 55798:11: Bye Bye [preauth]
Nov 28 18:30:48 shared12 sshd[19107]: Disconnected from invalid user doti 139.59.244.225 port 55798 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=139.59.244.225
2019-11-30 21:05:21
101.89.151.127 attackbots
Nov 30 13:09:25 gw1 sshd[20922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.89.151.127
Nov 30 13:09:27 gw1 sshd[20922]: Failed password for invalid user nadi from 101.89.151.127 port 40189 ssh2
...
2019-11-30 21:03:02
111.93.246.171 attackspam
k+ssh-bruteforce
2019-11-30 20:45:44
182.180.142.71 attackspambots
Invalid user vps from 182.180.142.71 port 51326
2019-11-30 21:08:32
90.143.164.68 attackspambots
Unauthorised access (Nov 30) SRC=90.143.164.68 LEN=52 TTL=116 ID=31241 DF TCP DPT=445 WINDOW=8192 SYN 
Unauthorised access (Nov 30) SRC=90.143.164.68 LEN=52 TTL=116 ID=28997 DF TCP DPT=445 WINDOW=8192 SYN
2019-11-30 20:34:55
167.99.251.192 attackspam
Automatic report - XMLRPC Attack
2019-11-30 20:51:30
148.72.42.181 attackbotsspam
148.72.42.181 - - \[30/Nov/2019:07:20:36 +0100\] "POST /wp-login.php HTTP/1.0" 200 2406 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
148.72.42.181 - - \[30/Nov/2019:07:20:39 +0100\] "POST /wp-login.php HTTP/1.0" 200 2364 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
148.72.42.181 - - \[30/Nov/2019:07:20:41 +0100\] "POST /wp-login.php HTTP/1.0" 200 2374 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2019-11-30 20:37:24
94.53.53.47 attack
Scanning
2019-11-30 20:34:35

最近上报的IP列表

122.156.6.143 213.186.143.163 122.167.136.18 103.109.53.6
130.109.247.162 58.241.151.223 210.211.116.204 38.2.224.209
55.239.58.184 35.240.226.127 113.110.192.20 177.40.43.86
185.153.196.3 62.109.8.153 90.152.152.132 71.72.195.242
37.146.63.144 152.32.72.37 34.249.231.42 203.113.167.209