必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 34.142.178.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5637
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;34.142.178.148.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020401 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 05 06:11:55 CST 2025
;; MSG SIZE  rcvd: 107
HOST信息:
148.178.142.34.in-addr.arpa domain name pointer 148.178.142.34.bc.googleusercontent.com.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
148.178.142.34.in-addr.arpa	name = 148.178.142.34.bc.googleusercontent.com.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
195.123.239.36 attackspam
195.123.239.36 (SG/Singapore/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 20 08:23:30 server2 sshd[6213]: Failed password for root from 54.37.159.12 port 41144 ssh2
Sep 20 08:23:11 server2 sshd[6141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.94.108  user=root
Sep 20 08:23:14 server2 sshd[6141]: Failed password for root from 116.196.94.108 port 34280 ssh2
Sep 20 08:25:54 server2 sshd[7427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.123.239.36  user=root
Sep 20 08:25:32 server2 sshd[7343]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.196.55.179  user=root
Sep 20 08:25:33 server2 sshd[7343]: Failed password for root from 193.196.55.179 port 45472 ssh2

IP Addresses Blocked:

54.37.159.12 (FR/France/-)
116.196.94.108 (CN/China/-)
2020-09-21 01:06:00
161.35.151.246 attackspam
Sep 19 21:43:41 v26 sshd[18351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.35.151.246  user=r.r
Sep 19 21:43:43 v26 sshd[18351]: Failed password for r.r from 161.35.151.246 port 47432 ssh2
Sep 19 21:43:43 v26 sshd[18351]: Received disconnect from 161.35.151.246 port 47432:11: Bye Bye [preauth]
Sep 19 21:43:43 v26 sshd[18351]: Disconnected from 161.35.151.246 port 47432 [preauth]
Sep 19 21:52:31 v26 sshd[19868]: Invalid user postgres from 161.35.151.246 port 35070
Sep 19 21:52:31 v26 sshd[19868]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.35.151.246
Sep 19 21:52:33 v26 sshd[19868]: Failed password for invalid user postgres from 161.35.151.246 port 35070 ssh2
Sep 19 21:52:33 v26 sshd[19868]: Received disconnect from 161.35.151.246 port 35070:11: Bye Bye [preauth]
Sep 19 21:52:33 v26 sshd[19868]: Disconnected from 161.35.151.246 port 35070 [preauth]


........
-----------------------------------------------
https:/
2020-09-21 01:07:20
111.93.33.227 attack
(sshd) Failed SSH login from 111.93.33.227 (IN/India/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 20 10:41:17 server2 sshd[8465]: Invalid user ubuntu from 111.93.33.227
Sep 20 10:41:17 server2 sshd[8465]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.33.227 
Sep 20 10:41:19 server2 sshd[8465]: Failed password for invalid user ubuntu from 111.93.33.227 port 48712 ssh2
Sep 20 10:43:54 server2 sshd[9869]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.93.33.227  user=root
Sep 20 10:43:55 server2 sshd[9869]: Failed password for root from 111.93.33.227 port 50942 ssh2
2020-09-21 01:21:47
49.234.221.197 attackbotsspam
Sep 20 18:44:08 marvibiene sshd[12575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.221.197 
Sep 20 18:44:11 marvibiene sshd[12575]: Failed password for invalid user student from 49.234.221.197 port 56056 ssh2
Sep 20 18:47:40 marvibiene sshd[13999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.221.197
2020-09-21 01:15:40
111.229.211.66 attackspam
Brute force attempt
2020-09-21 01:41:54
186.206.129.189 attack
2020-09-20T22:47:57.249263hostname sshd[3102]: Failed password for invalid user logadmin from 186.206.129.189 port 45322 ssh2
2020-09-20T22:53:13.927819hostname sshd[5209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.206.129.189  user=root
2020-09-20T22:53:16.111620hostname sshd[5209]: Failed password for root from 186.206.129.189 port 51112 ssh2
...
2020-09-21 01:35:17
124.113.218.124 attack
Spam_report
2020-09-21 01:18:17
179.53.195.6 attackbots
Port Scan detected!
...
2020-09-21 01:29:09
159.203.188.141 attackspambots
Time:     Sun Sep 20 17:19:27 2020 +0000
IP:       159.203.188.141 (US/United States/-)
Failures: 5 (sshd)
Interval: 3600 seconds
Blocked:  Permanent Block [LF_SSHD]

Log entries:

Sep 20 17:04:35 48-1 sshd[84826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.188.141  user=root
Sep 20 17:04:36 48-1 sshd[84826]: Failed password for root from 159.203.188.141 port 45348 ssh2
Sep 20 17:13:38 48-1 sshd[85221]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.188.141  user=root
Sep 20 17:13:39 48-1 sshd[85221]: Failed password for root from 159.203.188.141 port 42764 ssh2
Sep 20 17:19:25 48-1 sshd[85486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.188.141  user=root
2020-09-21 01:41:25
54.144.53.3 attack
Invalid user testing from 54.144.53.3 port 46228
2020-09-21 01:23:54
216.218.206.94 attack
Found on   CINS badguys     / proto=17  .  srcport=50321  .  dstport=500  .     (1079)
2020-09-21 01:17:07
200.73.129.102 attackbotsspam
2020-09-20T16:00:44.709742abusebot.cloudsearch.cf sshd[7624]: Invalid user admin from 200.73.129.102 port 49620
2020-09-20T16:00:44.715034abusebot.cloudsearch.cf sshd[7624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.129.102
2020-09-20T16:00:44.709742abusebot.cloudsearch.cf sshd[7624]: Invalid user admin from 200.73.129.102 port 49620
2020-09-20T16:00:46.806514abusebot.cloudsearch.cf sshd[7624]: Failed password for invalid user admin from 200.73.129.102 port 49620 ssh2
2020-09-20T16:05:38.491337abusebot.cloudsearch.cf sshd[7722]: Invalid user postgres from 200.73.129.102 port 33614
2020-09-20T16:05:38.497751abusebot.cloudsearch.cf sshd[7722]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.129.102
2020-09-20T16:05:38.491337abusebot.cloudsearch.cf sshd[7722]: Invalid user postgres from 200.73.129.102 port 33614
2020-09-20T16:05:40.614674abusebot.cloudsearch.cf sshd[7722]: Failed password f
...
2020-09-21 01:21:24
65.79.14.70 attackspambots
firewall-block, port(s): 445/tcp
2020-09-21 01:04:04
49.233.204.30 attack
Sep 20 16:50:37 ns3033917 sshd[29009]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.204.30  user=root
Sep 20 16:50:39 ns3033917 sshd[29009]: Failed password for root from 49.233.204.30 port 59690 ssh2
Sep 20 16:54:55 ns3033917 sshd[29024]: Invalid user svenserver from 49.233.204.30 port 54208
...
2020-09-21 01:28:12
62.210.167.202 attack
[2020-09-20 13:25:36] NOTICE[1239][C-00005ac1] chan_sip.c: Call from '' (62.210.167.202:65441) to extension '665514422006166' rejected because extension not found in context 'public'.
[2020-09-20 13:25:36] SECURITY[1264] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-09-20T13:25:36.809-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="665514422006166",SessionID="0x7f4d48513438",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.167.202/65441",ACLName="no_extension_match"
[2020-09-20 13:29:43] NOTICE[1239][C-00005ac6] chan_sip.c: Call from '' (62.210.167.202:60168) to extension '549014422006166' rejected because extension not found in context 'public'.
[2020-09-20 13:29:43] SECURITY[1264] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-09-20T13:29:43.473-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="549014422006166",SessionID="0x7f4d48965da8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/U
...
2020-09-21 01:36:19

最近上报的IP列表

21.12.244.17 46.152.221.170 207.240.39.77 167.22.64.116
175.15.117.189 63.22.38.253 173.175.133.4 228.6.124.220
38.116.111.121 109.199.244.23 207.143.117.209 60.74.40.141
214.176.209.239 225.242.60.251 200.197.220.92 84.33.119.52
132.120.93.185 222.102.125.129 141.43.195.122 96.123.66.128