必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.198.97.67
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17881
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;54.198.97.67.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020302 1800 900 604800 86400

;; Query time: 47 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 11:06:03 CST 2025
;; MSG SIZE  rcvd: 105
HOST信息:
67.97.198.54.in-addr.arpa domain name pointer ec2-54-198-97-67.compute-1.amazonaws.com.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
67.97.198.54.in-addr.arpa	name = ec2-54-198-97-67.compute-1.amazonaws.com.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
212.227.203.132 attackspam
212.227.203.132 - - [19/Sep/2020:18:55:36 +0100] "POST /wp-login.php HTTP/1.1" 200 2596 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
212.227.203.132 - - [19/Sep/2020:18:55:37 +0100] "POST /wp-login.php HTTP/1.1" 200 2580 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
212.227.203.132 - - [19/Sep/2020:18:55:37 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-09-20 04:08:25
125.215.207.44 attack
Sep 19 19:01:33 havingfunrightnow sshd[28889]: Failed password for root from 125.215.207.44 port 45174 ssh2
Sep 19 19:03:18 havingfunrightnow sshd[28900]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.215.207.44 
Sep 19 19:03:20 havingfunrightnow sshd[28900]: Failed password for invalid user admin from 125.215.207.44 port 59074 ssh2
...
2020-09-20 04:14:30
199.249.230.108 attackspambots
Web form spam
2020-09-20 04:07:22
111.67.56.6 attackbots
Found on   CINS badguys     / proto=6  .  srcport=40883  .  dstport=23  .     (2320)
2020-09-20 04:22:49
61.178.223.218 attackspam
Auto Detect Rule!
proto TCP (SYN), 61.178.223.218:5924->gjan.info:1433, len 44
2020-09-20 04:36:26
123.126.40.29 attackspambots
123.126.40.29 (CN/China/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 19 13:03:00 server2 sshd[27397]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.126.40.29  user=root
Sep 19 13:02:42 server2 sshd[27355]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.78.16  user=root
Sep 19 13:01:45 server2 sshd[26828]: Failed password for root from 104.131.48.67 port 56834 ssh2
Sep 19 13:02:52 server2 sshd[27371]: Failed password for root from 118.27.22.229 port 54214 ssh2
Sep 19 13:02:44 server2 sshd[27355]: Failed password for root from 188.166.78.16 port 50591 ssh2

IP Addresses Blocked:
2020-09-20 04:35:10
218.92.0.208 attack
Sep 19 22:16:12 eventyay sshd[21385]: Failed password for root from 218.92.0.208 port 20759 ssh2
Sep 19 22:17:21 eventyay sshd[21438]: Failed password for root from 218.92.0.208 port 41178 ssh2
Sep 19 22:17:22 eventyay sshd[21438]: Failed password for root from 218.92.0.208 port 41178 ssh2
...
2020-09-20 04:24:48
45.138.74.116 attackbotsspam
E-Mail Spam (RBL) [REJECTED]
2020-09-20 04:39:57
195.206.107.147 attack
Sep 19 14:03:15 ws22vmsma01 sshd[130349]: Failed password for root from 195.206.107.147 port 60920 ssh2
Sep 19 14:03:18 ws22vmsma01 sshd[130349]: Failed password for root from 195.206.107.147 port 60920 ssh2
...
2020-09-20 04:15:58
184.105.139.125 attack
Found on   CINS badguys     / proto=6  .  srcport=56841  .  dstport=30005  .     (2319)
2020-09-20 04:27:43
181.46.68.97 attack
2020-09-19 11:55:29.685189-0500  localhost smtpd[24990]: NOQUEUE: reject: RCPT from unknown[181.46.68.97]: 554 5.7.1 Service unavailable; Client host [181.46.68.97] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/181.46.68.97; from= to= proto=ESMTP helo=
2020-09-20 04:34:07
45.55.145.31 attackspam
2020-09-19T19:00:04.765766shield sshd\[3228\]: Invalid user postgres from 45.55.145.31 port 51569
2020-09-19T19:00:04.775523shield sshd\[3228\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.145.31
2020-09-19T19:00:07.147293shield sshd\[3228\]: Failed password for invalid user postgres from 45.55.145.31 port 51569 ssh2
2020-09-19T19:03:46.731441shield sshd\[4829\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.145.31  user=root
2020-09-19T19:03:49.580226shield sshd\[4829\]: Failed password for root from 45.55.145.31 port 56719 ssh2
2020-09-20 04:08:04
111.120.16.2 attackspambots
Sep 19 22:20:22 [host] sshd[16588]: pam_unix(sshd:
Sep 19 22:20:24 [host] sshd[16588]: Failed passwor
Sep 19 22:24:43 [host] sshd[16657]: pam_unix(sshd:
2020-09-20 04:39:10
180.245.26.72 attack
1600535010 - 09/19/2020 19:03:30 Host: 180.245.26.72/180.245.26.72 Port: 445 TCP Blocked
2020-09-20 04:04:28
164.90.204.99 attackbotsspam
Lines containing failures of 164.90.204.99
Sep 19 00:54:50 newdogma sshd[21593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.90.204.99  user=r.r
Sep 19 00:54:52 newdogma sshd[21593]: Failed password for r.r from 164.90.204.99 port 50186 ssh2
Sep 19 00:54:54 newdogma sshd[21593]: Received disconnect from 164.90.204.99 port 50186:11: Bye Bye [preauth]
Sep 19 00:54:54 newdogma sshd[21593]: Disconnected from authenticating user r.r 164.90.204.99 port 50186 [preauth]
Sep 19 01:02:54 newdogma sshd[21794]: Invalid user test from 164.90.204.99 port 55862
Sep 19 01:02:54 newdogma sshd[21794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.90.204.99 
Sep 19 01:02:56 newdogma sshd[21794]: Failed password for invalid user test from 164.90.204.99 port 55862 ssh2
Sep 19 01:02:57 newdogma sshd[21794]: Received disconnect from 164.90.204.99 port 55862:11: Bye Bye [preauth]
Sep 19 01:02:57 newdog........
------------------------------
2020-09-20 04:28:14

最近上报的IP列表

207.108.136.126 164.153.119.255 42.202.154.43 69.13.144.11
187.131.105.49 58.83.164.168 47.93.161.41 29.93.201.18
177.243.175.248 60.235.149.188 232.24.117.38 25.219.226.139
157.201.22.218 185.241.51.233 95.197.204.155 196.16.37.125
15.138.223.46 136.175.194.133 175.185.136.167 250.247.147.17