必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 97.245.39.102
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58248
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;97.245.39.102.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022800 1800 900 604800 86400

;; Query time: 43 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 01 00:32:25 CST 2025
;; MSG SIZE  rcvd: 106
HOST信息:
102.39.245.97.in-addr.arpa domain name pointer 102.sub-97-245-39.myvzw.com.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
102.39.245.97.in-addr.arpa	name = 102.sub-97-245-39.myvzw.com.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
210.17.195.138 attackbotsspam
Jun 30 02:58:38 server sshd[13636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.17.195.138
...
2019-06-30 09:23:38
200.75.2.170 attack
@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-06-29 18:29:40,464 INFO [amun_request_handler] PortScan Detected on Port: 445 (200.75.2.170)
2019-06-30 08:46:17
179.104.139.17 attackbotsspam
Jun 29 19:56:06 thevastnessof sshd[678]: Failed password for invalid user jie from 179.104.139.17 port 46620 ssh2
Jun 29 20:07:33 thevastnessof sshd[805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.104.139.17
...
2019-06-30 08:50:25
191.53.223.246 attackspam
SMTP-sasl brute force
...
2019-06-30 09:30:06
94.176.64.125 attackspam
(Jun 30)  LEN=40 TTL=244 ID=50126 DF TCP DPT=23 WINDOW=14600 SYN 
 (Jun 29)  LEN=40 TTL=244 ID=57958 DF TCP DPT=23 WINDOW=14600 SYN 
 (Jun 29)  LEN=40 TTL=244 ID=16611 DF TCP DPT=23 WINDOW=14600 SYN 
 (Jun 29)  LEN=40 TTL=244 ID=36718 DF TCP DPT=23 WINDOW=14600 SYN 
 (Jun 29)  LEN=40 TTL=244 ID=55718 DF TCP DPT=23 WINDOW=14600 SYN 
 (Jun 29)  LEN=40 TTL=244 ID=57687 DF TCP DPT=23 WINDOW=14600 SYN 
 (Jun 29)  LEN=40 TTL=244 ID=2296 DF TCP DPT=23 WINDOW=14600 SYN 
 (Jun 29)  LEN=40 TTL=244 ID=19314 DF TCP DPT=23 WINDOW=14600 SYN 
 (Jun 28)  LEN=40 TTL=244 ID=23095 DF TCP DPT=23 WINDOW=14600 SYN 
 (Jun 28)  LEN=40 TTL=244 ID=24080 DF TCP DPT=23 WINDOW=14600 SYN 
 (Jun 28)  LEN=40 TTL=244 ID=52789 DF TCP DPT=23 WINDOW=14600 SYN 
 (Jun 28)  LEN=40 TTL=244 ID=5909 DF TCP DPT=23 WINDOW=14600 SYN 
 (Jun 28)  LEN=40 TTL=244 ID=39871 DF TCP DPT=23 WINDOW=14600 SYN 
 (Jun 28)  LEN=40 TTL=244 ID=10301 DF TCP DPT=23 WINDOW=14600 SYN 
 (Jun 28)  LEN=40 TTL=244 ID=54133 DF TCP DPT=23 WINDOW=14600 SY...
2019-06-30 09:18:14
178.128.124.83 attack
2019-06-29 UTC: 1x - root
2019-06-30 08:51:08
80.200.200.132 attack
Jun 26 04:56:32 euve59663 sshd[23561]: Invalid user zan from 80.200.200=
.132
Jun 26 04:56:34 euve59663 sshd[23561]: Failed password for invalid user=
 zan from 80.200.200.132 port 56406 ssh2
Jun 26 04:56:34 euve59663 sshd[23561]: Received disconnect from 80.200.=
200.132: 11: Bye Bye [preauth]
Jun 26 04:56:40 euve59663 sshd[23563]: Invalid user fcteclipserver from 80.=
200.200.132


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=80.200.200.132
2019-06-30 09:21:20
51.254.51.182 attackspam
2019-06-30T00:59:13.563368abusebot-4.cloudsearch.cf sshd\[22892\]: Invalid user hadoop from 51.254.51.182 port 39764
2019-06-30 09:19:01
103.215.27.254 attack
@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-06-30 00:07:11,764 INFO [amun_request_handler] PortScan Detected on Port: 445 (103.215.27.254)
2019-06-30 08:58:59
123.20.155.0 attackbotsspam
Jun 29 18:53:47 marvibiene sshd[31926]: Invalid user admin from 123.20.155.0 port 60815
Jun 29 18:53:47 marvibiene sshd[31926]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.20.155.0
Jun 29 18:53:47 marvibiene sshd[31926]: Invalid user admin from 123.20.155.0 port 60815
Jun 29 18:53:49 marvibiene sshd[31926]: Failed password for invalid user admin from 123.20.155.0 port 60815 ssh2
...
2019-06-30 08:56:37
63.143.37.138 attack
Jun 29 14:54:15 localhost kernel: [13078649.052089] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=63.143.37.138 DST=[mungedIP2] LEN=52 TOS=0x08 PREC=0x20 TTL=116 ID=18716 DF PROTO=TCP SPT=64553 DPT=3389 WINDOW=8192 RES=0x00 SYN URGP=0 
Jun 29 14:54:15 localhost kernel: [13078649.052121] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=63.143.37.138 DST=[mungedIP2] LEN=52 TOS=0x08 PREC=0x20 TTL=116 ID=18716 DF PROTO=TCP SPT=64553 DPT=3389 SEQ=1078164833 ACK=0 WINDOW=8192 RES=0x00 SYN URGP=0 OPT (020405B40103030201010402) 
Jun 29 14:54:16 localhost kernel: [13078650.039266] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=63.143.37.138 DST=[mungedIP2] LEN=52 TOS=0x00 PREC=0x00 TTL=117 ID=21837 DF PROTO=TCP SPT=49701 DPT=3389 WINDOW=8192 RES=0x00 SYN URGP=0 
Jun 29 14:54:16 localhost kernel: [13078650.039293] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=63.143
2019-06-30 08:48:40
60.174.37.226 attack
Jun 29 20:52:36 ns3042688 courier-imapd: LOGIN FAILED, method=PLAIN, ip=\[::ffff:60.174.37.226\]
...
2019-06-30 09:21:51
185.153.196.5 attackspam
Bruteforce on SSH Honeypot
2019-06-30 09:26:41
186.202.21.218 attack
These are people / users who try to send programs for data capture (spy), see examples below, there are no limits:

From riquemodestomoreira@fiatfattore.com.br Sat Jun 29 03:02:10 2019
Received: from hm3563-218.email.locaweb.com.br ([186.202.21.218]:53522 helo=hm3563.email.locaweb.com.br)
(envelope-from )
Received: from apu0002.locaweb.com.br (apu0002.email.locaweb.com.br [187.45.217.3])
Received: from POLLUX13-0006.locaweb-net.locaweb.com.br (unknown [191.252.19.130])
From: =?UTF-8?B?QmFuY28gZG8gQnJhc2ls?= 
Subject: =?UTF-8?B?QXR1YWxpemHDp8OjbyBuZWNlc3PDoXJpYS4gQmFuY28gZG8gQnJhc2lsIFs=?=2286201]
X-PHP-Originating-Script: 0:envia.php

2019-06-30 09:08:26
212.109.4.125 attackspam
Automatic report - SSH Brute-Force Attack
2019-06-30 09:33:30

最近上报的IP列表

73.193.207.197 38.63.37.40 242.151.249.187 180.14.26.108
21.156.96.163 138.63.116.231 6.76.41.178 19.222.226.52
73.49.34.24 54.5.189.80 53.230.123.33 151.209.113.41
175.105.46.250 156.250.244.52 29.155.27.85 86.59.107.237
70.52.251.80 31.89.239.134 251.59.74.60 207.19.139.253