必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): IANA Special-Purpose Address

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 242.124.114.65
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21691
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;242.124.114.65.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012700 1800 900 604800 86400

;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 27 21:16:13 CST 2025
;; MSG SIZE  rcvd: 107
HOST信息:
Host 65.114.124.242.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 65.114.124.242.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
5.66.34.24 attackbots
Honeypot attack, port: 23, PTR: 05422218.skybroadband.com.
2019-11-19 08:13:47
66.85.47.62 attackbotsspam
Scanning for phpMyAdmin/database admin: 
66.85.47.62 - - [18/Nov/2019:16:48:38 +0000] "GET /pma/ HTTP/1.1" 404 243 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2019-11-19 08:03:34
35.224.155.4 attack
Automatic report - XMLRPC Attack
2019-11-19 07:56:59
114.35.59.240 attackbots
Scanning for phpMyAdmin/database admin: 
114.35.59.240 - - [18/Nov/2019:18:12:24 +0000] "GET /pma/ HTTP/1.1" 404 243 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2019-11-19 07:54:48
94.68.129.216 attackbotsspam
IP Ban Report :  
 https://help-dysk.pl/wordpress-firewall-plugins/ip/94.68.129.216/ 
 
 GR - 1H : (62)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : GR 
 NAME ASN : ASN6799 
 
 IP : 94.68.129.216 
 
 CIDR : 94.68.0.0/16 
 
 PREFIX COUNT : 159 
 
 UNIQUE IP COUNT : 1819904 
 
 
 ATTACKS DETECTED ASN6799 :  
  1H - 4 
  3H - 5 
  6H - 9 
 12H - 12 
 24H - 22 
 
 DateTime : 2019-11-19 00:39:46 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery
2019-11-19 07:58:49
159.65.136.141 attackspam
Nov 19 00:15:37 ns382633 sshd\[27379\]: Invalid user portal_user from 159.65.136.141 port 47332
Nov 19 00:15:37 ns382633 sshd\[27379\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.136.141
Nov 19 00:15:40 ns382633 sshd\[27379\]: Failed password for invalid user portal_user from 159.65.136.141 port 47332 ssh2
Nov 19 00:20:03 ns382633 sshd\[27750\]: Invalid user riccomini from 159.65.136.141 port 58766
Nov 19 00:20:03 ns382633 sshd\[27750\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.136.141
2019-11-19 07:55:51
121.157.82.214 attackbots
Nov 18 18:29:34 TORMINT sshd\[14994\]: Invalid user administrator1 from 121.157.82.214
Nov 18 18:29:34 TORMINT sshd\[14994\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.157.82.214
Nov 18 18:29:36 TORMINT sshd\[14994\]: Failed password for invalid user administrator1 from 121.157.82.214 port 58620 ssh2
...
2019-11-19 08:13:14
112.114.105.144 attackspam
Code execution attempt: 
GET /type.php?template=tag_(){};@unlink(FILE);print_r(xbshell);assert($_POST[1]);{//../rss
2019-11-19 08:15:11
24.169.87.178 attackbots
Shenzhen TV vulnerability scan, accessed by IP not domain: 
24.169.87.178 - - [18/Nov/2019:16:47:08 +0000] "POST /editBlackAndWhiteList HTTP/1.1" 404 260 "-" "ApiTool"
2019-11-19 08:08:29
217.107.219.12 attackspam
[munged]::443 217.107.219.12 - - [18/Nov/2019:23:52:59 +0100] "POST /[munged]: HTTP/1.1" 200 9081 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 217.107.219.12 - - [18/Nov/2019:23:53:00 +0100] "POST /[munged]: HTTP/1.1" 200 9081 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 217.107.219.12 - - [18/Nov/2019:23:53:00 +0100] "POST /[munged]: HTTP/1.1" 200 9081 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 217.107.219.12 - - [18/Nov/2019:23:53:01 +0100] "POST /[munged]: HTTP/1.1" 200 9081 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 217.107.219.12 - - [18/Nov/2019:23:53:01 +0100] "POST /[munged]: HTTP/1.1" 200 9081 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
[munged]::443 217.107.219.12 - - [18/Nov/2019:23:53:02 +0100] "POST /[munged]: HTTP/1.1" 200 9081 "-" "Mozilla/5.0 (X11
2019-11-19 08:13:00
122.51.130.123 attackspam
[MonNov1823:53:19.0151872019][:error][pid25358:tid47911861794560][client122.51.130.123:30357][client122.51.130.123]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\(\?:\\\\\\\\\(chr\?\\\\\\\\\(\?[0-9]{1\,3}\?\\\\\\\\\)\|\?=\?f\(\?:open\|write\)\?\\\\\\\\\(\|\\\\\\\\b\(\?:passthru\|serialize\|php_uname\|phpinfo\|shell_exec\|preg_\\\\\\\\w \|mysql_query\|exec\|eval\|base64_decode\|decode_base64\|rot13\|base64_url_decode\|gz\(\?:inflate\|decode\|uncompress\)\|strrev\|zlib_\\\\\\\\w \)\\\\\\\\b\?\(\?..."atARGS:widgetConfig[code].[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"767"][id"340095"][rev"53"][msg"Atomicorp.comWAFRules:AttackBlocked-PHPfunctioninArgument-thismaybeanattack."][data"die\(@md5\,ARGS:widgetConfig[code]"][severity"CRITICAL"][hostname"136.243.224.58"][uri"/index.php"][unique_id"XdMg304sQ-PxcixexflzGwAAAIw"][MonNov1823:53:19.2274212019][:error][pid25358:tid47911861794560][client122.51.130.123:30357][client122.51.130.123]ModSecurity:Accessdeniedwit
2019-11-19 08:04:29
101.124.22.10 attackbots
Unauthorized access or intrusion attempt detected from Bifur banned IP
2019-11-19 07:50:17
37.53.64.68 attack
port 23 attempt blocked
2019-11-19 07:54:04
107.181.174.74 attackbots
2019-11-18T22:48:53.506930hub.schaetter.us sshd\[12605\]: Invalid user guillory from 107.181.174.74 port 49872
2019-11-18T22:48:53.518102hub.schaetter.us sshd\[12605\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.181.174.74
2019-11-18T22:48:55.791359hub.schaetter.us sshd\[12605\]: Failed password for invalid user guillory from 107.181.174.74 port 49872 ssh2
2019-11-18T22:53:17.986969hub.schaetter.us sshd\[12629\]: Invalid user drweb from 107.181.174.74 port 58264
2019-11-18T22:53:18.001819hub.schaetter.us sshd\[12629\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.181.174.74
...
2019-11-19 08:05:05
182.61.54.213 attack
Nov 18 23:53:10 nextcloud sshd\[1378\]: Invalid user changem from 182.61.54.213
Nov 18 23:53:10 nextcloud sshd\[1378\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.54.213
Nov 18 23:53:12 nextcloud sshd\[1378\]: Failed password for invalid user changem from 182.61.54.213 port 46626 ssh2
...
2019-11-19 08:10:35

最近上报的IP列表

4.225.112.131 34.114.125.121 181.35.175.83 250.168.76.214
252.37.24.152 131.138.111.72 147.193.103.189 125.143.224.235
185.70.254.183 96.194.91.57 108.230.62.91 218.49.164.53
27.201.242.121 159.44.49.213 198.32.19.26 136.128.3.13
155.213.130.178 86.140.85.222 94.105.203.220 129.127.249.58