必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): Hong Kong Telecommunications (HKT) Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
类型 评论内容 时间
attackspam
Honeypot attack, port: 5555, PTR: 42-2-220-164.static.netvigator.com.
2020-03-23 04:42:41
相同子网IP讨论:
IP 类型 评论内容 时间
42.2.220.152 attackbots
The IP has triggered Cloudflare WAF. CF-Ray: 543418cebb0ddddb | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: drop | Country: HK | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: api.skk.moe | User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 13_3 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.4 Mobile/15E148 Safari/604.1 | CF_DC: SIN. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).
2019-12-12 06:35:09
42.2.220.152 attackbotsspam
The IP has triggered Cloudflare WAF. CF-Ray: 54113efc4b48dd02 | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: challenge | Country: HK | CF_IPClass: noRecord | Protocol: HTTP/2 | Method: GET | Host: api.skk.moe | User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_1) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/13.0.3 Safari/605.1.15 | CF_DC: SIN. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).
2019-12-08 03:24:20
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.2.220.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48538
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.2.220.164.			IN	A

;; AUTHORITY SECTION:
.			407	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032201 1800 900 604800 86400

;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 23 04:42:38 CST 2020
;; MSG SIZE  rcvd: 116
HOST信息:
164.220.2.42.in-addr.arpa domain name pointer 42-2-220-164.static.netvigator.com.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
164.220.2.42.in-addr.arpa	name = 42-2-220-164.static.netvigator.com.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
46.101.27.6 attackbots
Dec 10 19:24:10 MK-Soft-Root2 sshd[31187]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.27.6 
Dec 10 19:24:12 MK-Soft-Root2 sshd[31187]: Failed password for invalid user jason from 46.101.27.6 port 44892 ssh2
...
2019-12-11 03:13:43
185.36.81.233 attackspam
Brute force SMTP login attempts.
2019-12-11 03:04:34
49.247.214.67 attack
Dec 10 08:36:12 hpm sshd\[25774\]: Invalid user kun from 49.247.214.67
Dec 10 08:36:12 hpm sshd\[25774\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.214.67
Dec 10 08:36:14 hpm sshd\[25774\]: Failed password for invalid user kun from 49.247.214.67 port 52490 ssh2
Dec 10 08:45:52 hpm sshd\[26780\]: Invalid user aminudin from 49.247.214.67
Dec 10 08:45:52 hpm sshd\[26780\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.214.67
2019-12-11 03:33:34
118.25.11.204 attackspambots
Dec 10 19:05:46 ovpn sshd\[7681\]: Invalid user yq from 118.25.11.204
Dec 10 19:05:46 ovpn sshd\[7681\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.11.204
Dec 10 19:05:48 ovpn sshd\[7681\]: Failed password for invalid user yq from 118.25.11.204 port 38513 ssh2
Dec 10 19:22:47 ovpn sshd\[11984\]: Invalid user yoyo from 118.25.11.204
Dec 10 19:22:47 ovpn sshd\[11984\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.11.204
2019-12-11 03:02:31
170.130.187.58 attack
firewall-block, port(s): 5900/tcp
2019-12-11 02:59:33
122.51.182.164 attackspam
IDS
2019-12-11 03:28:19
185.36.81.243 attack
Rude login attack (21 tries in 1d)
2019-12-11 03:10:11
45.55.210.248 attackspam
Dec 10 19:37:01 root sshd[31236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.210.248 
Dec 10 19:37:03 root sshd[31236]: Failed password for invalid user server from 45.55.210.248 port 51486 ssh2
Dec 10 19:43:02 root sshd[31449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.210.248 
...
2019-12-11 02:56:59
113.147.108.36 attackspam
Dec 10 20:03:53 meumeu sshd[13510]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.147.108.36 
Dec 10 20:03:55 meumeu sshd[13510]: Failed password for invalid user joomla from 113.147.108.36 port 59917 ssh2
Dec 10 20:09:49 meumeu sshd[14445]: Failed password for root from 113.147.108.36 port 63969 ssh2
...
2019-12-11 03:22:45
103.81.156.56 attackbots
Dec 10 22:01:11 server sshd\[21738\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.81.156.56  user=root
Dec 10 22:01:13 server sshd\[21738\]: Failed password for root from 103.81.156.56 port 51244 ssh2
Dec 10 22:15:07 server sshd\[25422\]: Invalid user marugg from 103.81.156.56
Dec 10 22:15:07 server sshd\[25422\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.81.156.56 
Dec 10 22:15:08 server sshd\[25422\]: Failed password for invalid user marugg from 103.81.156.56 port 28832 ssh2
...
2019-12-11 03:16:12
103.253.42.51 attackspambots
Rude login attack (12 tries in 1d)
2019-12-11 03:03:27
200.149.111.246 attack
Portscan or hack attempt detected by psad/fwsnort
2019-12-11 03:22:07
189.125.2.234 attackbots
Dec 10 13:45:46 TORMINT sshd\[15023\]: Invalid user city from 189.125.2.234
Dec 10 13:45:46 TORMINT sshd\[15023\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.125.2.234
Dec 10 13:45:48 TORMINT sshd\[15023\]: Failed password for invalid user city from 189.125.2.234 port 58832 ssh2
...
2019-12-11 03:02:05
112.220.24.131 attackspam
2019-12-10T19:50:47.093677centos sshd\[12457\]: Invalid user scaner from 112.220.24.131 port 40248
2019-12-10T19:50:47.099734centos sshd\[12457\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.220.24.131
2019-12-10T19:50:49.222007centos sshd\[12457\]: Failed password for invalid user scaner from 112.220.24.131 port 40248 ssh2
2019-12-11 03:08:36
45.125.66.57 attackspambots
Bruteforce on smtp
2019-12-11 03:12:33

最近上报的IP列表

101.135.122.143 164.10.112.123 75.200.105.236 82.138.50.172
235.92.82.52 59.56.251.90 159.34.12.91 52.230.38.105
29.136.224.162 138.201.189.47 72.138.25.82 209.235.150.6
234.150.216.241 113.164.79.17 177.157.26.228 49.74.201.193
105.251.53.141 118.163.1.86 207.134.151.23 177.217.206.42