必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
132.145.140.38 attack
21 attempts against mh-ssh on cloud
2020-09-22 22:22:56
132.145.140.38 attack
Failed password for invalid user darwin from 132.145.140.38 port 34232 ssh2
Invalid user telnet from 132.145.140.38 port 39224
pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.140.38
Invalid user telnet from 132.145.140.38 port 39224
Failed password for invalid user telnet from 132.145.140.38 port 39224 ssh2
2020-09-22 14:27:50
132.145.140.38 attackspam
Sep 21 22:28:02 nopemail auth.info sshd[22537]: Invalid user test from 132.145.140.38 port 37888
...
2020-09-22 06:30:57
132.145.146.78 attackspambots
May 13 07:30:04 ws26vmsma01 sshd[210403]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.146.78
May 13 07:30:05 ws26vmsma01 sshd[210403]: Failed password for invalid user admin1 from 132.145.146.78 port 56734 ssh2
...
2020-05-13 18:12:52
132.145.146.78 attack
May 11 13:49:16 web1 sshd[7321]: Invalid user admin from 132.145.146.78 port 40892
May 11 13:49:16 web1 sshd[7321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.146.78
May 11 13:49:16 web1 sshd[7321]: Invalid user admin from 132.145.146.78 port 40892
May 11 13:49:17 web1 sshd[7321]: Failed password for invalid user admin from 132.145.146.78 port 40892 ssh2
May 11 13:55:29 web1 sshd[8922]: Invalid user postgres from 132.145.146.78 port 57640
May 11 13:55:29 web1 sshd[8922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.146.78
May 11 13:55:29 web1 sshd[8922]: Invalid user postgres from 132.145.146.78 port 57640
May 11 13:55:31 web1 sshd[8922]: Failed password for invalid user postgres from 132.145.146.78 port 57640 ssh2
May 11 14:01:05 web1 sshd[10314]: Invalid user steffi from 132.145.146.78 port 38694
...
2020-05-11 19:08:55
132.145.146.78 attack
2020-05-06T12:17:45.187576dmca.cloudsearch.cf sshd[25378]: Invalid user lix from 132.145.146.78 port 50744
2020-05-06T12:17:45.194289dmca.cloudsearch.cf sshd[25378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.146.78
2020-05-06T12:17:45.187576dmca.cloudsearch.cf sshd[25378]: Invalid user lix from 132.145.146.78 port 50744
2020-05-06T12:17:47.096298dmca.cloudsearch.cf sshd[25378]: Failed password for invalid user lix from 132.145.146.78 port 50744 ssh2
2020-05-06T12:24:09.749624dmca.cloudsearch.cf sshd[25820]: Invalid user update from 132.145.146.78 port 41976
2020-05-06T12:24:09.755984dmca.cloudsearch.cf sshd[25820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.146.78
2020-05-06T12:24:09.749624dmca.cloudsearch.cf sshd[25820]: Invalid user update from 132.145.146.78 port 41976
2020-05-06T12:24:12.045197dmca.cloudsearch.cf sshd[25820]: Failed password for invalid user update from 132.14
...
2020-05-07 01:22:58
132.145.146.78 attackspambots
Brute-force attempt banned
2020-05-05 19:04:44
132.145.146.78 attackspambots
2020-05-05T03:03:57.109141ns386461 sshd\[6969\]: Invalid user phd from 132.145.146.78 port 42954
2020-05-05T03:03:57.113383ns386461 sshd\[6969\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.146.78
2020-05-05T03:03:58.741174ns386461 sshd\[6969\]: Failed password for invalid user phd from 132.145.146.78 port 42954 ssh2
2020-05-05T03:11:07.769454ns386461 sshd\[13516\]: Invalid user frolov from 132.145.146.78 port 53188
2020-05-05T03:11:07.772682ns386461 sshd\[13516\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.146.78
...
2020-05-05 10:56:45
132.145.140.203 attackspambots
serveres are UTC 
Lines containing failures of 132.145.140.203
Jan 25 21:00:11 tux2 sshd[581]: Invalid user support from 132.145.140.203 port 52336
Jan 25 21:00:11 tux2 sshd[581]: Failed password for invalid user support from 132.145.140.203 port 52336 ssh2
Jan 25 21:00:11 tux2 sshd[581]: Connection closed by invalid user support 132.145.140.203 port 52336 [preauth]
Jan 25 23:40:44 tux2 sshd[9220]: Invalid user support from 132.145.140.203 port 63630
Jan 25 23:40:44 tux2 sshd[9220]: Failed password for invalid user support from 132.145.140.203 port 63630 ssh2
Jan 25 23:40:44 tux2 sshd[9220]: Connection closed by invalid user support 132.145.140.203 port 63630 [preauth]



........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=132.145.140.203
2020-01-26 20:41:22
132.145.140.142 attack
Unauthorized connection attempt detected from IP address 132.145.140.142 to port 1433
2019-12-29 18:55:13
132.145.141.191 attackbotsspam
6380/tcp 8080/tcp 1433/tcp...
[2019-06-10/08-06]7pkt,3pt.(tcp)
2019-08-07 09:03:03
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 132.145.14.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40718
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;132.145.14.70.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 14:32:42 CST 2022
;; MSG SIZE  rcvd: 106
HOST信息:
Host 70.14.145.132.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 70.14.145.132.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
185.176.27.162 attack
02/23/2020-17:20:57.030706 185.176.27.162 Protocol: 6 ET DROP Dshield Block Listed Source group 1
2020-02-24 06:23:16
194.219.215.8 attackspambots
Unauthorised access (Feb 23) SRC=194.219.215.8 LEN=40 TTL=50 ID=15706 TCP DPT=23 WINDOW=59987 SYN
2020-02-24 06:24:49
167.60.156.215 attackspam
firewall-block, port(s): 1433/tcp
2020-02-24 05:50:12
68.183.142.240 attack
Feb 23 21:38:41 gw1 sshd[25770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.142.240
Feb 23 21:38:44 gw1 sshd[25770]: Failed password for invalid user spice from 68.183.142.240 port 39186 ssh2
...
2020-02-24 05:47:16
62.219.145.31 attack
Automatic report - Port Scan Attack
2020-02-24 05:47:44
180.243.11.199 attackspambots
[Mon Feb 24 04:49:31.145362 2020] [:error] [pid 25421:tid 140455645722368] [client 180.243.11.199:53753] [client 180.243.11.199] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XlLzaxpRorfPv4Aqz6cw6AAAAUw"]
...
2020-02-24 06:07:17
112.85.42.174 attackspam
Automatic report BANNED IP
2020-02-24 06:06:15
87.236.27.177 attack
DATE:2020-02-23 22:47:42, IP:87.236.27.177, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)
2020-02-24 06:00:40
113.128.179.250 attackspambots
SSH invalid-user multiple login try
2020-02-24 05:52:27
185.39.11.28 attackbots
Feb 23 21:58:41 pop3-login: Info: Aborted login \(auth failed, 1 attempts in 2 secs\): user=\, method=PLAIN, rip=185.39.11.28, lip=192.168.100.101, session=\\
Feb 23 22:01:02 pop3-login: Info: Aborted login \(auth failed, 1 attempts in 2 secs\): user=\, method=PLAIN, rip=185.39.11.28, lip=192.168.100.101, session=\\
Feb 23 22:07:34 pop3-login: Info: Aborted login \(auth failed, 1 attempts in 2 secs\): user=\, method=PLAIN, rip=185.39.11.28, lip=192.168.100.101, session=\\
Feb 23 22:14:06 pop3-login: Info: Aborted login \(auth failed, 1 attempts in 2 secs\): user=\, method=PLAIN, rip=185.39.11.28, lip=192.168.100.101, session=\\
Feb 23 22:18:16 pop3-login: Info: Aborted login \(auth failed, 1 attempts in 2 secs\): user=\, method=PLAIN, rip=185.39.11.28, lip=192.168.100.101, session=\\
Feb
2020-02-24 06:13:36
84.54.123.48 attackspambots
Feb 23 22:48:53 grey postfix/smtpd\[23805\]: NOQUEUE: reject: RCPT from unknown\[84.54.123.48\]: 554 5.7.1 Service unavailable\; Client host \[84.54.123.48\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[84.54.123.48\]\; from=\ to=\ proto=SMTP helo=\
...
2020-02-24 06:21:16
106.54.132.65 attackspambots
/Admindd120668/Login.php
2020-02-24 05:53:55
106.13.127.238 attackspambots
Feb 23 16:34:36 MK-Soft-VM3 sshd[22994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.127.238 
Feb 23 16:34:39 MK-Soft-VM3 sshd[22994]: Failed password for invalid user bitbucket from 106.13.127.238 port 3693 ssh2
...
2020-02-24 05:46:59
77.88.28.108 attackbots
Spam from secil@ncgrup.com.tr
2020-02-24 06:21:38
92.63.194.22 attack
Feb 23 22:54:46 ks10 sshd[373366]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.63.194.22 
Feb 23 22:54:48 ks10 sshd[373366]: Failed password for invalid user admin from 92.63.194.22 port 36387 ssh2
...
2020-02-24 06:25:55

最近上报的IP列表

131.255.9.58 132.148.220.74 131.72.28.151 131.72.89.186
131.72.228.236 131.72.107.242 131.72.29.177 132.157.66.117
132.157.66.131 132.157.66.58 132.157.66.255 132.184.128.228
132.157.66.96 132.255.135.144 132.157.66.67 132.226.206.210
132.251.3.56 132.247.186.1 132.255.146.215 132.255.212.86