必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): Cape Town

省份(region): Western Cape

国家(country): South Africa

运营商(isp): Liquid Telecommunications South Africa (Pty) Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:
类型 评论内容 时间
attackspam
Unauthorized connection attempt detected from IP address 41.164.23.42 to port 8080 [J]
2020-01-05 03:39:18
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.164.23.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19030
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;41.164.23.42.			IN	A

;; AUTHORITY SECTION:
.			529	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010400 1800 900 604800 86400

;; Query time: 120 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 05 03:39:15 CST 2020
;; MSG SIZE  rcvd: 116
HOST信息:
Host 42.23.164.41.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.23.164.41.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
23.247.118.10 attackbots
Excessive Port-Scanning
2019-08-04 09:47:47
103.6.153.123 attackbotsspam
@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-04 00:42:47,586 INFO [amun_request_handler] PortScan Detected on Port: 445 (103.6.153.123)
2019-08-04 09:42:45
1.170.31.160 attackbots
Aug  3 13:10:03 localhost kernel: [16096396.623401] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=1.170.31.160 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=23973 PROTO=TCP SPT=31500 DPT=37215 WINDOW=21281 RES=0x00 SYN URGP=0 
Aug  3 13:10:03 localhost kernel: [16096396.623409] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=1.170.31.160 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=23973 PROTO=TCP SPT=31500 DPT=37215 SEQ=758669438 ACK=0 WINDOW=21281 RES=0x00 SYN URGP=0 
Aug  3 20:52:52 localhost kernel: [16124165.965310] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=1.170.31.160 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=14943 PROTO=TCP SPT=31500 DPT=37215 WINDOW=21281 RES=0x00 SYN URGP=0 
Aug  3 20:52:52 localhost kernel: [16124165.965342] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=1.170.31.160 DST=[mungedIP2] LEN=40 TOS=0x00 PR
2019-08-04 09:43:07
219.233.194.178 attackbotsspam
Aug  4 02:49:04 MainVPS sshd[5823]: Invalid user tecnico from 219.233.194.178 port 50606
Aug  4 02:49:04 MainVPS sshd[5823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.233.194.178
Aug  4 02:49:04 MainVPS sshd[5823]: Invalid user tecnico from 219.233.194.178 port 50606
Aug  4 02:49:06 MainVPS sshd[5823]: Failed password for invalid user tecnico from 219.233.194.178 port 50606 ssh2
Aug  4 02:53:07 MainVPS sshd[6093]: Invalid user vika from 219.233.194.178 port 42870
...
2019-08-04 09:35:22
184.148.249.38 attackspam
Lines containing failures of 184.148.249.38
Aug  1 06:38:58 metroid sshd[20874]: Bad protocol version identification '' from 184.148.249.38 port 47768
Aug  1 06:38:58 metroid sshd[20875]: Invalid user openhabian from 184.148.249.38 port 47914
Aug  1 06:38:58 metroid sshd[20875]: Connection closed by invalid user openhabian 184.148.249.38 port 47914 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=184.148.249.38
2019-08-04 09:44:23
116.58.248.240 attackbotsspam
Automatic report - Port Scan Attack
2019-08-04 09:07:50
212.175.140.10 attackbotsspam
@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-04 00:41:39,248 INFO [amun_request_handler] PortScan Detected on Port: 445 (212.175.140.10)
2019-08-04 09:48:17
211.220.27.191 attackspam
Aug  4 02:37:58 vtv3 sshd\[5448\]: Invalid user ftpuser from 211.220.27.191 port 41748
Aug  4 02:37:58 vtv3 sshd\[5448\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.220.27.191
Aug  4 02:38:00 vtv3 sshd\[5448\]: Failed password for invalid user ftpuser from 211.220.27.191 port 41748 ssh2
Aug  4 02:42:58 vtv3 sshd\[7860\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.220.27.191  user=root
Aug  4 02:43:00 vtv3 sshd\[7860\]: Failed password for root from 211.220.27.191 port 37992 ssh2
Aug  4 02:57:44 vtv3 sshd\[15153\]: Invalid user gx from 211.220.27.191 port 54376
Aug  4 02:57:44 vtv3 sshd\[15153\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.220.27.191
Aug  4 02:57:46 vtv3 sshd\[15153\]: Failed password for invalid user gx from 211.220.27.191 port 54376 ssh2
Aug  4 03:02:44 vtv3 sshd\[17522\]: Invalid user lair from 211.220.27.191 port 50620
Aug  4 03:02:44 vt
2019-08-04 09:32:01
40.76.0.158 attackspambots
08/03/2019-21:12:42.554366 40.76.0.158 Protocol: 6 ET SCAN Potential SSH Scan
2019-08-04 09:12:52
185.234.219.113 attack
Aug  3 20:53:04 web1 postfix/smtpd[20305]: warning: unknown[185.234.219.113]: SASL LOGIN authentication failed: authentication failure
...
2019-08-04 09:36:02
69.180.36.173 attack
2019-08-04T10:53:41.946577luisaranguren sshd[12917]: Connection from 69.180.36.173 port 43500 on 10.10.10.6 port 22
2019-08-04T10:53:43.357282luisaranguren sshd[12917]: Invalid user lihui from 69.180.36.173 port 43500
2019-08-04T10:53:43.366110luisaranguren sshd[12917]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.180.36.173
2019-08-04T10:53:41.946577luisaranguren sshd[12917]: Connection from 69.180.36.173 port 43500 on 10.10.10.6 port 22
2019-08-04T10:53:43.357282luisaranguren sshd[12917]: Invalid user lihui from 69.180.36.173 port 43500
2019-08-04T10:53:45.858054luisaranguren sshd[12917]: Failed password for invalid user lihui from 69.180.36.173 port 43500 ssh2
...
2019-08-04 09:06:12
129.213.145.85 attackspam
Feb 28 08:04:50 motanud sshd\[12743\]: Invalid user guest from 129.213.145.85 port 25387
Feb 28 08:04:50 motanud sshd\[12743\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.145.85
Feb 28 08:04:52 motanud sshd\[12743\]: Failed password for invalid user guest from 129.213.145.85 port 25387 ssh2
2019-08-04 09:07:08
27.35.234.14 attackspambots
DATE:2019-08-04 02:53:51, IP:27.35.234.14, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)
2019-08-04 09:04:39
107.170.197.60 attackbotsspam
webserver:80 [04/Aug/2019]  "GET /manager/html HTTP/1.1" 403 0 "-" "Mozilla/5.0 zgrab/0.x"
2019-08-04 09:40:35
211.25.231.52 attack
@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-04 00:40:55,023 INFO [amun_request_handler] PortScan Detected on Port: 445 (211.25.231.52)
2019-08-04 09:50:11

最近上报的IP列表

210.201.118.103 82.37.129.143 36.12.96.23 180.167.235.57
106.138.237.95 217.213.29.198 161.180.40.181 214.147.161.151
23.216.103.15 71.115.107.143 104.83.215.155 190.239.178.226
109.185.38.40 195.199.67.89 147.157.207.29 45.162.130.18
50.159.115.24 137.175.190.224 183.97.234.234 87.43.41.174