必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): Beijing

省份(region): Beijing

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See https://docs.db.ripe.net/terms-conditions.html

% Note: this output has been filtered.
%       To receive output for a database update, use the "-B" flag.

% Information related to '81.68.0.0 - 81.71.255.255'

% No abuse contact registered for 81.68.0.0 - 81.71.255.255

inetnum:        81.68.0.0 - 81.71.255.255
netname:        NON-RIPE-NCC-MANAGED-ADDRESS-BLOCK
descr:          IPv4 address block not managed by the RIPE NCC
remarks:        ------------------------------------------------------
remarks:
remarks:        For registration information,
remarks:        you can consult the following sources:
remarks:
remarks:        IANA
remarks:        http://www.iana.org/assignments/ipv4-address-space
remarks:        http://www.iana.org/assignments/iana-ipv4-special-registry
remarks:        http://www.iana.org/assignments/ipv4-recovered-address-space
remarks:
remarks:        AFRINIC (Africa)
remarks:        http://www.afrinic.net/ whois.afrinic.net
remarks:
remarks:        APNIC (Asia Pacific)
remarks:        http://www.apnic.net/ whois.apnic.net
remarks:
remarks:        ARIN (Northern America)
remarks:        http://www.arin.net/ whois.arin.net
remarks:
remarks:        LACNIC (Latin America and the Carribean)
remarks:        http://www.lacnic.net/ whois.lacnic.net
remarks:
remarks:        ------------------------------------------------------
country:        EU # Country is really world wide
admin-c:        IANA1-RIPE
tech-c:         IANA1-RIPE
status:         ALLOCATED UNSPECIFIED
mnt-by:         RIPE-NCC-HM-MNT
created:        2019-01-07T10:47:18Z
last-modified:  2019-01-07T10:47:18Z
source:         RIPE

role:           Internet Assigned Numbers Authority
address:        see http://www.iana.org.
admin-c:        IANA1-RIPE
tech-c:         IANA1-RIPE
nic-hdl:        IANA1-RIPE
remarks:        For more information on IANA services
remarks:        go to IANA web site at http://www.iana.org.
mnt-by:         RIPE-NCC-MNT
created:        1970-01-01T00:00:00Z
last-modified:  2001-09-22T09:31:27Z
source:         RIPE # Filtered

% This query was served by the RIPE Database Query Service version 1.123 (DEXTER)
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 81.70.63.243
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8469
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;81.70.63.243.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026071601 1800 900 604800 86400

;; Query time: 49 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jul 17 02:00:04 CST 2026
;; MSG SIZE  rcvd: 105
HOST信息:
Host 243.63.70.81.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 243.63.70.81.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
185.156.73.60 attack
Mar  6 11:45:01 debian-2gb-nbg1-2 kernel: \[5750667.477948\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.156.73.60 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=13473 PROTO=TCP SPT=51547 DPT=13389 WINDOW=1024 RES=0x00 SYN URGP=0
2020-03-06 19:07:22
61.220.251.205 attackbotsspam
TW_MAINT-TW-TWNIC_<177>1583470235 [1:2403402:55758] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 52 [Classification: Misc Attack] [Priority: 2] {TCP} 61.220.251.205:44806
2020-03-06 19:10:54
85.209.3.154 attack
unauthorized connection attempt
2020-03-06 19:26:42
113.173.80.13 attackbots
2020-03-0605:49:381jA4vZ-00031b-FA\<=verena@rs-solution.chH=\(localhost\)[110.77.178.7]:33395P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2278id=B6B305565D89A714C8CD843CC812200D@rs-solution.chT="Onlydecidedtogettoknowyou"fornickbond2000@gmail.comsjamesr12@gmail.com2020-03-0605:49:571jA4vs-00033Q-W1\<=verena@rs-solution.chH=ip-163-198-122-091.pools.atnet.ru\(localhost\)[91.122.198.163]:43089P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2260id=3E3B8DDED5012F9C40450CB4407E89CE@rs-solution.chT="Youhappentobesearchingforreallove\?"fornormanadams65@gmail.comrandyjunk4@gmail.com2020-03-0605:49:141jA4vB-0002zW-Du\<=verena@rs-solution.chH=\(localhost\)[113.161.81.98]:33616P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2317id=323781D2D90D23904C4900B84C9252E4@rs-solution.chT="Haveyoubeencurrentlytryingtofindlove\?"forsalimalhasni333@gmail.commbvannest@yahoo.com2020-03-0605:49
2020-03-06 19:26:24
89.248.168.112 attackspam
port scan and connect, tcp 3128 (squid-http)
2020-03-06 19:25:19
45.143.220.240 attackspam
[2020-03-06 05:39:17] NOTICE[1148][C-0000eaa8] chan_sip.c: Call from '' (45.143.220.240:52326) to extension '0046843737607' rejected because extension not found in context 'public'.
[2020-03-06 05:39:17] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-06T05:39:17.704-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="0046843737607",SessionID="0x7fd82ca712e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.220.240/52326",ACLName="no_extension_match"
[2020-03-06 05:44:20] NOTICE[1148][C-0000eaac] chan_sip.c: Call from '' (45.143.220.240:59429) to extension '01146843737607' rejected because extension not found in context 'public'.
[2020-03-06 05:44:20] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-06T05:44:20.056-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146843737607",SessionID="0x7fd82c40d3d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.
...
2020-03-06 18:58:54
77.81.224.88 attack
77.81.224.88 - - [06/Mar/2020:04:50:53 +0000] "POST /wp-login.php HTTP/1.1" 200 6409 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
77.81.224.88 - - [06/Mar/2020:04:50:54 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-03-06 19:03:39
54.39.22.191 attackbots
Mar  6 07:44:11 server sshd\[26809\]: Invalid user csserver from 54.39.22.191
Mar  6 07:44:11 server sshd\[26809\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.22.191 
Mar  6 07:44:13 server sshd\[26809\]: Failed password for invalid user csserver from 54.39.22.191 port 38706 ssh2
Mar  6 07:50:58 server sshd\[28244\]: Invalid user dspace from 54.39.22.191
Mar  6 07:50:58 server sshd\[28244\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.22.191 
...
2020-03-06 19:02:59
86.101.129.2 attackbotsspam
IP: 86.101.129.2
Ports affected
    Simple Mail Transfer (25) 
Abuse Confidence rating 100%
Found in DNSBL('s)
ASN Details
   AS6830 Liberty Global Operations B.V.
   Hungary (HU)
   CIDR 86.101.0.0/16
Log Date: 6/03/2020 9:57:48 AM UTC
2020-03-06 19:17:42
196.52.43.54 attackspam
trying to access non-authorized port
2020-03-06 19:11:27
185.36.81.23 attack
(smtpauth) Failed SMTP AUTH login from 185.36.81.23 (LT/Republic of Lithuania/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2020-03-06 11:30:03 login authenticator failed for (User) [185.36.81.23]: 535 Incorrect authentication data (set_id=secretary@forhosting.nl)
2020-03-06 11:30:07 login authenticator failed for (User) [185.36.81.23]: 535 Incorrect authentication data (set_id=secretary@forhosting.nl)
2020-03-06 11:55:38 login authenticator failed for (User) [185.36.81.23]: 535 Incorrect authentication data (set_id=16091987)
2020-03-06 11:55:41 login authenticator failed for (User) [185.36.81.23]: 535 Incorrect authentication data (set_id=16091987)
2020-03-06 12:13:56 login authenticator failed for (User) [185.36.81.23]: 535 Incorrect authentication data (set_id=hr@forhosting.nl)
2020-03-06 19:16:23
218.92.0.201 attackbotsspam
Mar  6 11:58:16 silence02 sshd[7374]: Failed password for root from 218.92.0.201 port 33447 ssh2
Mar  6 11:58:18 silence02 sshd[7374]: Failed password for root from 218.92.0.201 port 33447 ssh2
Mar  6 11:58:20 silence02 sshd[7374]: Failed password for root from 218.92.0.201 port 33447 ssh2
2020-03-06 19:12:58
37.9.113.46 attackbotsspam
[Fri Mar 06 16:31:43.594358 2020] [:error] [pid 3449:tid 139855436121856] [client 37.9.113.46:47968] [client 37.9.113.46] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XmIYfyVvQe8W4jDwUyP1TQAAAUw"]
...
2020-03-06 19:22:08
63.82.48.105 attackspam
Mar  6 05:27:13 mail.srvfarm.net postfix/smtpd[1923012]: NOQUEUE: reject: RCPT from unknown[63.82.48.105]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo=
Mar  6 05:31:58 mail.srvfarm.net postfix/smtpd[1923012]: NOQUEUE: reject: RCPT from unknown[63.82.48.105]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo=
Mar  6 05:31:58 mail.srvfarm.net postfix/smtpd[1924628]: NOQUEUE: reject: RCPT from unknown[63.82.48.105]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo=
Mar  6 05:31:58 mail.srvfarm.net postfix/smtpd[1924638]: NOQUEUE: reject: RCPT from unknown[63.82.48.105]: 450 4.1
2020-03-06 18:47:32
152.32.187.51 attackbots
Tried sshing with brute force.
2020-03-06 18:57:49

最近上报的IP列表

192.220.0.0 192.220.5.5 38.47.98.102 179.255.100.41
192.220.9.6 146.190.172.175 95.169.1.252 221.127.170.230
138.197.110.133 49.7.219.32 218.201.114.133 112.87.120.144
196.216.163.134 54.82.154.175 36.230.21.1 36.227.216.69
180.153.236.133 175.29.203.68 153.117.34.7 185.118.68.0