必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Unicom Liaoning Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
类型 评论内容 时间
attackspam
23/tcp
[2019-07-02]1pkt
2019-07-02 18:20:21
相同子网IP讨论:
IP 类型 评论内容 时间
42.52.56.41 attack
Fail2Ban - FTP Abuse Attempt
2019-09-24 12:31:45
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.52.56.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3459
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.52.56.139.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070200 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 02 18:20:16 CST 2019
;; MSG SIZE  rcvd: 116
HOST信息:
Host 139.56.52.42.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 139.56.52.42.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
120.132.2.135 attack
Jan 25 21:14:09 work-partkepr sshd\[22956\]: Invalid user webrun from 120.132.2.135 port 45234
Jan 25 21:14:09 work-partkepr sshd\[22956\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.2.135
...
2020-01-26 05:25:25
109.92.79.221 attackspam
Unauthorized connection attempt detected from IP address 109.92.79.221 to port 81 [J]
2020-01-26 05:07:04
222.186.30.209 attackspambots
Jan 25 22:33:19 dcd-gentoo sshd[31982]: User root from 222.186.30.209 not allowed because none of user's groups are listed in AllowGroups
Jan 25 22:33:22 dcd-gentoo sshd[31982]: error: PAM: Authentication failure for illegal user root from 222.186.30.209
Jan 25 22:33:19 dcd-gentoo sshd[31982]: User root from 222.186.30.209 not allowed because none of user's groups are listed in AllowGroups
Jan 25 22:33:22 dcd-gentoo sshd[31982]: error: PAM: Authentication failure for illegal user root from 222.186.30.209
Jan 25 22:33:19 dcd-gentoo sshd[31982]: User root from 222.186.30.209 not allowed because none of user's groups are listed in AllowGroups
Jan 25 22:33:22 dcd-gentoo sshd[31982]: error: PAM: Authentication failure for illegal user root from 222.186.30.209
Jan 25 22:33:22 dcd-gentoo sshd[31982]: Failed keyboard-interactive/pam for invalid user root from 222.186.30.209 port 59825 ssh2
...
2020-01-26 05:34:39
93.174.95.41 attack
Jan 25 22:10:54 h2177944 kernel: \[3184913.948867\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=93.174.95.41 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=54159 PROTO=TCP SPT=56744 DPT=5901 WINDOW=1024 RES=0x00 SYN URGP=0 
Jan 25 22:10:54 h2177944 kernel: \[3184913.948880\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=93.174.95.41 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=54159 PROTO=TCP SPT=56744 DPT=5901 WINDOW=1024 RES=0x00 SYN URGP=0 
Jan 25 22:14:09 h2177944 kernel: \[3185108.723150\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=93.174.95.41 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=51711 PROTO=TCP SPT=56744 DPT=11777 WINDOW=1024 RES=0x00 SYN URGP=0 
Jan 25 22:14:09 h2177944 kernel: \[3185108.723165\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=93.174.95.41 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=51711 PROTO=TCP SPT=56744 DPT=11777 WINDOW=1024 RES=0x00 SYN URGP=0 
Jan 25 22:15:59 h2177944 kernel: \[3185218.601185\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=93.174.95.41 DST=85.214.117.9 LE
2020-01-26 05:23:54
51.75.194.151 attackbots
Tried sshing with brute force.
2020-01-26 05:27:26
119.236.215.5 attackspam
Unauthorized connection attempt detected from IP address 119.236.215.5 to port 5555 [J]
2020-01-26 05:02:30
80.82.77.245 attackbots
ET CINS Active Threat Intelligence Poor Reputation IP group 72 - port: 2638 proto: UDP cat: Misc Attack
2020-01-26 05:28:59
78.186.4.22 attackbotsspam
Unauthorized connection attempt detected from IP address 78.186.4.22 to port 80 [J]
2020-01-26 05:10:19
1.162.145.98 attackspambots
Unauthorized connection attempt detected from IP address 1.162.145.98 to port 23 [J]
2020-01-26 05:14:49
43.251.81.90 attackbotsspam
Honeypot attack, port: 445, PTR: PTR record not found
2020-01-26 05:13:01
45.95.168.105 attackbots
25.01.2020 21:29:44 SSH access blocked by firewall
2020-01-26 05:39:00
123.138.18.35 attackbots
$f2bV_matches
2020-01-26 05:01:20
190.94.3.203 attackbotsspam
Unauthorized connection attempt detected from IP address 190.94.3.203 to port 445
2020-01-26 05:37:28
51.77.161.86 attackspambots
Jan 25 22:13:38 MK-Soft-VM7 sshd[29296]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.161.86 
Jan 25 22:13:40 MK-Soft-VM7 sshd[29296]: Failed password for invalid user younes from 51.77.161.86 port 49002 ssh2
...
2020-01-26 05:39:49
78.128.107.188 attackspam
Unauthorized connection attempt detected from IP address 78.128.107.188 to port 8080 [J]
2020-01-26 05:10:40

最近上报的IP列表

229.223.36.160 230.7.138.196 168.228.149.36 36.70.10.132
153.36.236.151 118.24.154.128 146.56.205.78 165.208.62.63
179.26.1.15 112.2.17.163 118.24.14.220 80.248.6.141
142.147.97.158 118.24.126.31 200.23.239.131 165.169.186.227
118.24.126.229 2a03:b0c0:2:f0::c0:1001 27.72.165.226 113.161.166.175