必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Heilongjiang Telecom Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:
类型 评论内容 时间
attack
Unauthorized connection attempt detected from IP address 42.101.64.106 to port 1433 [T]
2020-04-15 03:01:19
attack
The IP has triggered Cloudflare WAF. CF-Ray: 55515b58ac71e811 | WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: badHost | Protocol: HTTP/2 | Method: GET | Host: img.skk.moe | User-Agent: Xiaomi_MCT1_TD-LTE/V1 Linux/4.4.78 Android/8.0 Release/4.4.2017 Browser/AppleWebKit537.36 Mobile Safari/537.36 System/Android 8.0 XiaoMi/MiuiBrowser/9.3.11 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).
2020-01-16 02:15:46
attackspambots
unauthorized connection attempt
2020-01-09 16:30:52
attack
Portscan or hack attempt detected by psad/fwsnort
2020-01-08 22:33:35
attackspambots
Honeypot attack, port: 445, PTR: PTR record not found
2019-11-02 18:05:46
attack
Honeypot attack, port: 445, PTR: PTR record not found
2019-10-21 06:20:03
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.101.64.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13805
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.101.64.106.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102001 1800 900 604800 86400

;; Query time: 109 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 21 06:20:00 CST 2019
;; MSG SIZE  rcvd: 117
HOST信息:
Host 106.64.101.42.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 106.64.101.42.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
89.248.167.141 attackspam
scans 21 times in preceeding hours on the ports (in chronological order) 7389 8443 3326 3331 20009 8520 3345 4400 3331 10010 3314 33000 5858 9995 3352 5858 1130 9995 3315 8007 2050 resulting in total of 234 scans from 89.248.160.0-89.248.174.255 block.
2020-10-07 21:01:55
212.70.149.5 attackbotsspam
Oct  7 14:40:22 cho postfix/smtpd[170968]: warning: unknown[212.70.149.5]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Oct  7 14:40:43 cho postfix/smtpd[170936]: warning: unknown[212.70.149.5]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Oct  7 14:41:04 cho postfix/smtpd[168876]: warning: unknown[212.70.149.5]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Oct  7 14:41:25 cho postfix/smtpd[171500]: warning: unknown[212.70.149.5]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Oct  7 14:41:46 cho postfix/smtpd[168876]: warning: unknown[212.70.149.5]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
...
2020-10-07 20:45:32
164.132.132.165 attackspambots
Port scan on 2 port(s): 139 445
2020-10-07 20:43:58
158.69.201.249 attack
s2.hscode.pl - SSH Attack
2020-10-07 20:34:26
185.200.118.44 attack
scans once in preceeding hours on the ports (in chronological order) 1723 resulting in total of 7 scans from 185.200.118.0/24 block.
2020-10-07 20:47:21
202.83.42.202 attackbots
Unwanted checking 80 or 443 port
...
2020-10-07 21:00:15
51.91.250.49 attack
Oct  7 02:48:02 ny01 sshd[1744]: Failed password for root from 51.91.250.49 port 53438 ssh2
Oct  7 02:51:41 ny01 sshd[2276]: Failed password for root from 51.91.250.49 port 59406 ssh2
2020-10-07 21:07:48
120.53.108.58 attackspambots
Oct  7 14:24:16 host1 sshd[1448159]: Failed password for root from 120.53.108.58 port 60070 ssh2
Oct  7 14:30:19 host1 sshd[1448634]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.53.108.58  user=root
Oct  7 14:30:21 host1 sshd[1448634]: Failed password for root from 120.53.108.58 port 60810 ssh2
Oct  7 14:30:19 host1 sshd[1448634]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.53.108.58  user=root
Oct  7 14:30:21 host1 sshd[1448634]: Failed password for root from 120.53.108.58 port 60810 ssh2
...
2020-10-07 21:00:00
236 spambotsattackproxynormal
Hi
2020-10-07 20:50:06
218.92.0.205 attack
Oct  7 08:26:04 shivevps sshd[27111]: Failed password for root from 218.92.0.205 port 44565 ssh2
Oct  7 08:26:07 shivevps sshd[27111]: Failed password for root from 218.92.0.205 port 44565 ssh2
Oct  7 08:26:08 shivevps sshd[27111]: Failed password for root from 218.92.0.205 port 44565 ssh2
...
2020-10-07 20:52:14
190.94.249.242 attackbotsspam
Unauthorized connection attempt from IP address 190.94.249.242 on Port 445(SMB)
2020-10-07 20:57:31
52.237.198.242 attackspambots
52.237.198.242 - - [07/Oct/2020:12:04:42 +0100] "POST /wp-login.php HTTP/1.1" 200 2221 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
52.237.198.242 - - [07/Oct/2020:12:04:46 +0100] "POST /wp-login.php HTTP/1.1" 200 2147 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
52.237.198.242 - - [07/Oct/2020:12:04:49 +0100] "POST /wp-login.php HTTP/1.1" 200 2197 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-10-07 20:50:43
139.99.148.4 attack
Attempted WordPress login: "GET /wp-login.php"
2020-10-07 20:48:50
45.251.33.87 attackspambots
Unauthorized connection attempt from IP address 45.251.33.87 on Port 445(SMB)
2020-10-07 20:57:00
122.51.238.227 attackbots
Lines containing failures of 122.51.238.227
Oct  6 08:38:12 shared06 sshd[10844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.238.227  user=r.r
Oct  6 08:38:14 shared06 sshd[10844]: Failed password for r.r from 122.51.238.227 port 43708 ssh2
Oct  6 08:38:14 shared06 sshd[10844]: Received disconnect from 122.51.238.227 port 43708:11: Bye Bye [preauth]
Oct  6 08:38:14 shared06 sshd[10844]: Disconnected from authenticating user r.r 122.51.238.227 port 43708 [preauth]
Oct  6 08:51:15 shared06 sshd[15400]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.238.227  user=r.r
Oct  6 08:51:17 shared06 sshd[15400]: Failed password for r.r from 122.51.238.227 port 58660 ssh2
Oct  6 08:51:18 shared06 sshd[15400]: Received disconnect from 122.51.238.227 port 58660:11: Bye Bye [preauth]
Oct  6 08:51:18 shared06 sshd[15400]: Disconnected from authenticating user r.r 122.51.238.227 port 58660........
------------------------------
2020-10-07 21:04:20

最近上报的IP列表

84.14.254.44 188.165.241.103 118.193.149.116 159.203.201.24
106.12.13.143 99.230.88.152 104.131.83.45 180.30.61.148
72.79.46.173 5.189.181.29 45.148.10.69 134.209.37.17
2001:41d0:700:25d::cab 178.32.206.76 180.156.135.109 157.55.39.152
35.243.148.126 138.186.62.138 54.36.150.39 2604:a880:400:d1::a61:1001