必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.196.140.201
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18632
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;66.196.140.201.			IN	A

;; AUTHORITY SECTION:
.			515	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010900 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 09 13:44:43 CST 2020
;; MSG SIZE  rcvd: 118
HOST信息:
201.140.196.66.in-addr.arpa domain name pointer 66-196-140-201.in-addr.arpa.apaccs.com.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
201.140.196.66.in-addr.arpa	name = 66-196-140-201.in-addr.arpa.apaccs.com.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
220.249.114.237 attack
Oct  1 20:05:17 santamaria sshd\[27359\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.249.114.237  user=root
Oct  1 20:05:18 santamaria sshd\[27359\]: Failed password for root from 220.249.114.237 port 50458 ssh2
Oct  1 20:09:32 santamaria sshd\[27474\]: Invalid user dell from 220.249.114.237
Oct  1 20:09:32 santamaria sshd\[27474\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.249.114.237
...
2020-10-02 07:41:38
190.111.151.207 attackspambots
Lines containing failures of 190.111.151.207
Sep 30 17:33:09 shared10 sshd[8440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.111.151.207  user=r.r
Sep 30 17:33:11 shared10 sshd[8440]: Failed password for r.r from 190.111.151.207 port 37212 ssh2
Sep 30 17:33:11 shared10 sshd[8440]: Received disconnect from 190.111.151.207 port 37212:11: Bye Bye [preauth]
Sep 30 17:33:11 shared10 sshd[8440]: Disconnected from authenticating user r.r 190.111.151.207 port 37212 [preauth]
Sep 30 17:46:35 shared10 sshd[13395]: Invalid user jenkins from 190.111.151.207 port 56401
Sep 30 17:46:35 shared10 sshd[13395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.111.151.207
Sep 30 17:46:37 shared10 sshd[13395]: Failed password for invalid user jenkins from 190.111.151.207 port 56401 ssh2
Sep 30 17:46:37 shared10 sshd[13395]: Received disconnect from 190.111.151.207 port 56401:11: Bye Bye [preauth]
Sep........
------------------------------
2020-10-02 08:00:26
192.241.235.74 attackspam
scans once in preceeding hours on the ports (in chronological order) 17185 resulting in total of 33 scans from 192.241.128.0/17 block.
2020-10-02 07:50:34
49.233.37.15 attackspambots
DATE:2020-10-01 23:24:49,IP:49.233.37.15,MATCHES:10,PORT:ssh
2020-10-02 07:46:09
83.48.89.147 attackspam
Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)
2020-10-02 07:43:49
110.49.71.246 attackbots
Oct  2 09:07:57 gw1 sshd[26905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.49.71.246
Oct  2 09:07:58 gw1 sshd[26905]: Failed password for invalid user ldap from 110.49.71.246 port 38276 ssh2
...
2020-10-02 12:11:46
111.229.121.142 attackbotsspam
2020-10-01T17:38:54.501906ollin.zadara.org sshd[1762727]: Invalid user toby from 111.229.121.142 port 40798
2020-10-01T17:38:56.595940ollin.zadara.org sshd[1762727]: Failed password for invalid user toby from 111.229.121.142 port 40798 ssh2
...
2020-10-02 07:54:00
176.31.54.244 attackspam
176.31.54.244 - - [02/Oct/2020:00:32:01 +0100] "POST /wp-login.php HTTP/1.1" 200 2191 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
176.31.54.244 - - [02/Oct/2020:00:32:02 +0100] "POST /wp-login.php HTTP/1.1" 200 2160 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
176.31.54.244 - - [02/Oct/2020:00:32:02 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-10-02 07:52:38
91.193.103.165 attack
Invalid user git from 91.193.103.165 port 51580
2020-10-02 07:57:50
82.64.234.148 attackspambots
Brute-force attempt banned
2020-10-02 07:45:09
49.233.54.212 attack
(sshd) Failed SSH login from 49.233.54.212 (CN/China/-): 5 in the last 3600 secs
2020-10-02 07:40:12
202.72.225.17 attackbots
Oct  2 01:31:39 ns381471 sshd[29542]: Failed password for root from 202.72.225.17 port 51137 ssh2
Oct  2 01:35:48 ns381471 sshd[30441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.72.225.17
2020-10-02 07:42:26
213.32.111.52 attackbotsspam
Oct  2 02:15:38 host1 sshd[308231]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.111.52  user=root
Oct  2 02:15:40 host1 sshd[308231]: Failed password for root from 213.32.111.52 port 49050 ssh2
Oct  2 02:22:17 host1 sshd[308661]: Invalid user scaner from 213.32.111.52 port 57326
Oct  2 02:22:17 host1 sshd[308661]: Invalid user scaner from 213.32.111.52 port 57326
...
2020-10-02 12:02:45
37.49.230.201 attack
[2020-09-30 18:00:12] NOTICE[1159][C-0000421d] chan_sip.c: Call from '' (37.49.230.201:64644) to extension '12526890745' rejected because extension not found in context 'public'.
[2020-09-30 18:00:12] SECURITY[1198] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-09-30T18:00:12.866-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="12526890745",SessionID="0x7fcaa045f8f8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/37.49.230.201/64644",ACLName="no_extension_match"
[2020-09-30 18:00:26] NOTICE[1159][C-0000421f] chan_sip.c: Call from '' (37.49.230.201:57391) to extension '712526890745' rejected because extension not found in context 'public'.
[2020-09-30 18:00:26] SECURITY[1198] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-09-30T18:00:26.237-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="712526890745",SessionID="0x7fcaa04d8d08",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/37.49.230.201/
...
2020-10-02 07:50:05
157.230.85.68 attackbots
SSH break in attempt
...
2020-10-02 07:42:53

最近上报的IP列表

193.153.93.27 189.169.191.72 188.251.96.34 185.243.113.233
177.142.87.88 177.11.42.3 175.21.7.190 173.80.95.113
125.167.11.197 124.42.11.181 123.23.130.77 119.236.36.202
119.155.31.119 118.68.196.232 112.78.177.62 111.255.214.163
95.142.84.234 85.159.66.131 81.93.98.218 247.83.79.166