必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Italy

运营商(isp): Vodafone Italia S.p.A.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
类型 评论内容 时间
attack
Hits on port : 8000
2020-07-06 18:14:25
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 93.148.29.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32620
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;93.148.29.130.			IN	A

;; AUTHORITY SECTION:
.			511	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070600 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jul 06 18:14:16 CST 2020
;; MSG SIZE  rcvd: 117
HOST信息:
130.29.148.93.in-addr.arpa domain name pointer net-93-148-29-130.cust.dsl.teletu.it.
130.29.148.93.in-addr.arpa domain name pointer net-93-148-29-130.cust.vodafonedsl.it.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
130.29.148.93.in-addr.arpa	name = net-93-148-29-130.cust.vodafonedsl.it.
130.29.148.93.in-addr.arpa	name = net-93-148-29-130.cust.dsl.teletu.it.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
62.210.105.116 attack
2020-09-13T17:37:41.631503dreamphreak.com sshd[291024]: Failed password for root from 62.210.105.116 port 44445 ssh2
2020-09-13T17:37:44.888674dreamphreak.com sshd[291024]: Failed password for root from 62.210.105.116 port 44445 ssh2
...
2020-09-14 07:15:56
157.245.245.159 attackspam
157.245.245.159 - - [13/Sep/2020:18:55:46 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
157.245.245.159 - - [13/Sep/2020:18:55:48 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
157.245.245.159 - - [13/Sep/2020:18:55:49 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
2020-09-14 07:17:42
157.230.2.208 attack
Sep 13 22:45:19 rancher-0 sshd[30067]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.2.208  user=root
Sep 13 22:45:21 rancher-0 sshd[30067]: Failed password for root from 157.230.2.208 port 58920 ssh2
...
2020-09-14 06:59:17
45.14.224.106 attackspambots
Sep 14 07:03:30 itachi1706steam sshd[29824]: Did not receive identification string from 45.14.224.106 port 33962
Sep 14 07:03:47 itachi1706steam sshd[29879]: Disconnected from authenticating user root 45.14.224.106 port 46428 [preauth]
...
2020-09-14 07:09:58
49.232.166.190 attack
Sep 13 15:43:59 propaganda sshd[36017]: Connection from 49.232.166.190 port 49690 on 10.0.0.161 port 22 rdomain ""
Sep 13 15:44:00 propaganda sshd[36017]: Connection closed by 49.232.166.190 port 49690 [preauth]
2020-09-14 07:13:21
87.226.165.143 attackspam
Sep 13 22:01:37 scw-tender-jepsen sshd[12380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.226.165.143
Sep 13 22:01:39 scw-tender-jepsen sshd[12380]: Failed password for invalid user sasano from 87.226.165.143 port 34346 ssh2
2020-09-14 07:27:20
154.241.252.188 attackspambots
(sshd) Failed SSH login from 154.241.252.188 (DZ/Algeria/-): 4 in the last 900 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 13 18:55:58 Omitted sshd[16379]: Did not receive identification string from 154.241.252.188 port 62172
Sep 13 18:56:02 cloud sshd[16387]: Invalid user guest from 154.241.252.188 port 62429
Sep 13 18:56:02 cloud sshd[16387]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.241.252.188 
Sep 13 18:56:04 cloud sshd[16387]: Failed password for invalid user guest from 154.241.252.188 port 62429 ssh2
2020-09-14 07:03:27
185.220.103.6 attack
Time:     Mon Sep 14 00:07:28 2020 +0200
IP:       185.220.103.6 (DE/Germany/karensilkwood.tor-exit.calyxinstitute.org)
Failures: 5 (sshd)
Interval: 3600 seconds
Blocked:  Permanent Block [LF_SSHD]

Log entries:

Sep 14 00:07:14 ca-3-ams1 sshd[4237]: Failed password for root from 185.220.103.6 port 46052 ssh2
Sep 14 00:07:16 ca-3-ams1 sshd[4237]: Failed password for root from 185.220.103.6 port 46052 ssh2
Sep 14 00:07:18 ca-3-ams1 sshd[4237]: Failed password for root from 185.220.103.6 port 46052 ssh2
Sep 14 00:07:21 ca-3-ams1 sshd[4237]: Failed password for root from 185.220.103.6 port 46052 ssh2
Sep 14 00:07:24 ca-3-ams1 sshd[4237]: Failed password for root from 185.220.103.6 port 46052 ssh2
2020-09-14 07:10:17
54.249.234.248 attackspam
Sep 12 16:12:56 garuda sshd[342751]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-54-249-234-248.ap-northeast-1.compute.amazonaws.com  user=r.r
Sep 12 16:12:58 garuda sshd[342751]: Failed password for r.r from 54.249.234.248 port 43092 ssh2
Sep 12 16:12:58 garuda sshd[342751]: Received disconnect from 54.249.234.248: 11: Bye Bye [preauth]
Sep 12 16:22:34 garuda sshd[344849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-54-249-234-248.ap-northeast-1.compute.amazonaws.com  user=r.r
Sep 12 16:22:36 garuda sshd[344849]: Failed password for r.r from 54.249.234.248 port 41378 ssh2
Sep 12 16:22:36 garuda sshd[344849]: Received disconnect from 54.249.234.248: 11: Bye Bye [preauth]
Sep 12 16:25:36 garuda sshd[345683]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-54-249-234-248.ap-northeast-1.compute.amazonaws.com  user=r.r
Sep 12 16:25:38 g........
-------------------------------
2020-09-14 07:12:32
117.50.12.228 attack
Sep 12 23:26:38 server sshd[19430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.12.228  user=r.r
Sep 12 23:26:39 server sshd[19430]: Failed password for r.r from 117.50.12.228 port 53674 ssh2
Sep 12 23:26:40 server sshd[19430]: Received disconnect from 117.50.12.228: 11: Bye Bye [preauth]
Sep 12 23:36:44 server sshd[19701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.12.228  user=r.r
Sep 12 23:36:47 server sshd[19701]: Failed password for r.r from 117.50.12.228 port 51038 ssh2
Sep 12 23:36:47 server sshd[19701]: Received disconnect from 117.50.12.228: 11: Bye Bye [preauth]
Sep 12 23:47:52 server sshd[20142]: Failed password for invalid user netscape from 117.50.12.228 port 57976 ssh2
Sep 12 23:47:53 server sshd[20142]: Received disconnect from 117.50.12.228: 11: Bye Bye [preauth]
Sep 12 23:53:24 server sshd[20286]: pam_unix(sshd:auth): authentication failure; logname= u........
-------------------------------
2020-09-14 07:08:23
51.91.157.101 attackspam
Sep 13 19:29:13 rocket sshd[10716]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.157.101
Sep 13 19:29:15 rocket sshd[10716]: Failed password for invalid user csgoserver from 51.91.157.101 port 35002 ssh2
...
2020-09-14 07:27:49
203.172.66.216 attackbotsspam
Sep  9 13:43:22 Ubuntu-1404-trusty-64-minimal sshd\[16340\]: Invalid user st4ck from 203.172.66.216
Sep  9 13:43:22 Ubuntu-1404-trusty-64-minimal sshd\[16340\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.172.66.216
Sep  9 13:43:25 Ubuntu-1404-trusty-64-minimal sshd\[16340\]: Failed password for invalid user st4ck from 203.172.66.216 port 59604 ssh2
Sep  9 13:57:18 Ubuntu-1404-trusty-64-minimal sshd\[25917\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.172.66.216  user=root
Sep  9 13:57:19 Ubuntu-1404-trusty-64-minimal sshd\[25917\]: Failed password for root from 203.172.66.216 port 44590 ssh2
2020-09-14 07:23:32
119.159.229.245 attackbots
Port probing on unauthorized port 445
2020-09-14 07:19:09
222.186.175.151 attackbotsspam
2020-09-13T22:52:16.407272abusebot-7.cloudsearch.cf sshd[30276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.151  user=root
2020-09-13T22:52:18.443014abusebot-7.cloudsearch.cf sshd[30276]: Failed password for root from 222.186.175.151 port 33304 ssh2
2020-09-13T22:52:21.445268abusebot-7.cloudsearch.cf sshd[30276]: Failed password for root from 222.186.175.151 port 33304 ssh2
2020-09-13T22:52:16.407272abusebot-7.cloudsearch.cf sshd[30276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.151  user=root
2020-09-13T22:52:18.443014abusebot-7.cloudsearch.cf sshd[30276]: Failed password for root from 222.186.175.151 port 33304 ssh2
2020-09-13T22:52:21.445268abusebot-7.cloudsearch.cf sshd[30276]: Failed password for root from 222.186.175.151 port 33304 ssh2
2020-09-13T22:52:16.407272abusebot-7.cloudsearch.cf sshd[30276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 
...
2020-09-14 06:52:34
107.175.95.101 attack
Sep 14 00:35:13 ourumov-web sshd\[31702\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.175.95.101  user=root
Sep 14 00:35:15 ourumov-web sshd\[31702\]: Failed password for root from 107.175.95.101 port 38770 ssh2
Sep 14 00:35:23 ourumov-web sshd\[31726\]: Invalid user oracle from 107.175.95.101 port 42940
...
2020-09-14 07:26:11

最近上报的IP列表

142.30.107.14 206.29.111.221 90.105.61.222 87.209.153.5
229.224.25.157 117.161.127.10 182.43.222.241 181.46.69.24
58.221.92.122 14.177.112.144 106.12.87.83 177.126.139.126
142.93.212.91 118.69.227.54 45.148.121.99 220.132.81.86
180.248.140.15 49.235.99.215 190.199.243.19 113.187.111.7