必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): Kuala Lumpur

省份(region): Kuala Lumpur

国家(country): Malaysia

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 56.68.48.193
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40190
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;56.68.48.193.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021902 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 20 08:06:43 CST 2025
;; MSG SIZE  rcvd: 105
HOST信息:
193.48.68.56.in-addr.arpa domain name pointer ec2-56-68-48-193.ap-southeast-5.compute.amazonaws.com.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
193.48.68.56.in-addr.arpa	name = ec2-56-68-48-193.ap-southeast-5.compute.amazonaws.com.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
49.88.112.73 attack
Nov 29 17:43:18 pi sshd\[22166\]: Failed password for root from 49.88.112.73 port 47831 ssh2
Nov 29 17:44:38 pi sshd\[22231\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.73  user=root
Nov 29 17:44:40 pi sshd\[22231\]: Failed password for root from 49.88.112.73 port 45866 ssh2
Nov 29 17:44:43 pi sshd\[22231\]: Failed password for root from 49.88.112.73 port 45866 ssh2
Nov 29 17:44:46 pi sshd\[22231\]: Failed password for root from 49.88.112.73 port 45866 ssh2
...
2019-11-30 02:16:22
113.172.159.180 attackbotsspam
ILLEGAL ACCESS smtp
2019-11-30 02:12:06
51.83.42.138 attack
3x Failed Password
2019-11-30 02:01:22
182.140.233.162 attackbots
" "
2019-11-30 02:20:16
212.69.18.7 attackbots
3389BruteforceFW21
2019-11-30 01:55:29
202.106.93.46 attackbotsspam
Nov 29 07:39:53 hpm sshd\[778\]: Invalid user foh from 202.106.93.46
Nov 29 07:39:53 hpm sshd\[778\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.106.93.46
Nov 29 07:39:54 hpm sshd\[778\]: Failed password for invalid user foh from 202.106.93.46 port 54971 ssh2
Nov 29 07:44:45 hpm sshd\[1207\]: Invalid user apache from 202.106.93.46
Nov 29 07:44:45 hpm sshd\[1207\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.106.93.46
2019-11-30 01:59:23
202.152.24.234 attackspam
" "
2019-11-30 01:58:09
207.154.193.178 attackspambots
2019-11-29T17:16:41.347930abusebot-6.cloudsearch.cf sshd\[14047\]: Invalid user updater123 from 207.154.193.178 port 52582
2019-11-30 02:19:16
151.32.181.135 attack
Nov 29 15:56:47 server2 sshd[15212]: reveeclipse mapping checking getaddrinfo for ppp-135-181.32-151.wind.hostname [151.32.181.135] failed - POSSIBLE BREAK-IN ATTEMPT!
Nov 29 15:56:47 server2 sshd[15210]: reveeclipse mapping checking getaddrinfo for ppp-135-181.32-151.wind.hostname [151.32.181.135] failed - POSSIBLE BREAK-IN ATTEMPT!
Nov 29 15:56:47 server2 sshd[15212]: Invalid user pi from 151.32.181.135
Nov 29 15:56:47 server2 sshd[15210]: Invalid user pi from 151.32.181.135
Nov 29 15:56:47 server2 sshd[15212]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.32.181.135 
Nov 29 15:56:47 server2 sshd[15210]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.32.181.135 
Nov 29 15:56:49 server2 sshd[15212]: Failed password for invalid user pi from 151.32.181.135 port 50738 ssh2
Nov 29 15:56:49 server2 sshd[15210]: Failed password for invalid user pi from 151.32.181.135 port 50736 ssh2
No........
-------------------------------
2019-11-30 01:56:30
13.67.91.234 attack
Nov 29 10:58:41 plusreed sshd[25098]: Invalid user http from 13.67.91.234
...
2019-11-30 02:01:36
159.89.165.7 attackbots
Lines containing failures of 159.89.165.7
Nov 29 15:55:37 shared02 sshd[32623]: Invalid user bianca from 159.89.165.7 port 54460
Nov 29 15:55:37 shared02 sshd[32623]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.165.7
Nov 29 15:55:39 shared02 sshd[32623]: Failed password for invalid user bianca from 159.89.165.7 port 54460 ssh2
Nov 29 15:55:40 shared02 sshd[32623]: Received disconnect from 159.89.165.7 port 54460:11: Bye Bye [preauth]
Nov 29 15:55:40 shared02 sshd[32623]: Disconnected from invalid user bianca 159.89.165.7 port 54460 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=159.89.165.7
2019-11-30 01:51:21
5.196.7.123 attackspam
IP blocked
2019-11-30 02:25:02
181.41.216.130 attack
Nov 29 18:53:16 relay postfix/smtpd\[26144\]: NOQUEUE: reject: RCPT from unknown\[181.41.216.130\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[181.41.216.131\]\>
Nov 29 18:53:16 relay postfix/smtpd\[26144\]: NOQUEUE: reject: RCPT from unknown\[181.41.216.130\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[181.41.216.131\]\>
Nov 29 18:53:16 relay postfix/smtpd\[26144\]: NOQUEUE: reject: RCPT from unknown\[181.41.216.130\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[181.41.216.131\]\>
Nov 29 18:53:16 relay postfix/smtpd\[26144\]: NOQUEUE: reject: RCPT from unknown\[181.41.216.130\]: 554 5.7.1 \: Relay access denied\; from=\
2019-11-30 02:05:53
89.108.155.50 attackbotsspam
port scan/probe/communication attempt
2019-11-30 02:07:16
188.166.45.128 attackspam
[Fri Nov 29 12:11:12.857906 2019] [:error] [pid 209474] [client 188.166.45.128:61000] [client 188.166.45.128] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "91"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 8)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "ws22vmsma01.ufn.edu.br"] [uri "/"] [unique_id "XeE1EK9S580k382k6wHcnwAAAAc"]
...
2019-11-30 01:57:41

最近上报的IP列表

228.159.167.21 74.89.143.49 53.77.126.36 175.8.232.76
246.118.119.59 229.83.196.40 191.237.0.170 238.9.87.193
161.92.153.198 14.22.136.40 245.216.240.165 153.33.19.81
215.209.48.54 253.5.39.66 43.132.125.183 95.164.201.232
96.173.160.16 166.85.43.153 141.161.44.8 114.73.0.239