必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
132.148.121.32 attack
Automatic report - Banned IP Access
2020-10-12 06:39:30
132.148.121.32 attack
[Sat Oct 10 22:47:19.372195 2020] [access_compat:error] [pid 4636] [client 132.148.121.32:53272] AH01797: client denied by server configuration: /var/www/plzenskypruvodce.cz/www/xmlrpc.php
[Sat Oct 10 22:47:19.377160 2020] [access_compat:error] [pid 4637] [client 132.148.121.32:53270] AH01797: client denied by server configuration: /var/www/plzenskypruvodce.cz/www/xmlrpc.php
...
2020-10-11 22:48:30
132.148.121.32 attackspambots
[Sat Oct 10 22:47:19.372195 2020] [access_compat:error] [pid 4636] [client 132.148.121.32:53272] AH01797: client denied by server configuration: /var/www/plzenskypruvodce.cz/www/xmlrpc.php
[Sat Oct 10 22:47:19.377160 2020] [access_compat:error] [pid 4637] [client 132.148.121.32:53270] AH01797: client denied by server configuration: /var/www/plzenskypruvodce.cz/www/xmlrpc.php
...
2020-10-11 14:45:33
132.148.121.32 attackbots
[Sat Oct 10 22:47:19.372195 2020] [access_compat:error] [pid 4636] [client 132.148.121.32:53272] AH01797: client denied by server configuration: /var/www/plzenskypruvodce.cz/www/xmlrpc.php
[Sat Oct 10 22:47:19.377160 2020] [access_compat:error] [pid 4637] [client 132.148.121.32:53270] AH01797: client denied by server configuration: /var/www/plzenskypruvodce.cz/www/xmlrpc.php
...
2020-10-11 08:07:46
132.148.153.156 attackspam
132.148.153.156 - - \[25/Sep/2020:00:26:07 +0200\] "POST /wp-login.php HTTP/1.0" 200 9485 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
132.148.153.156 - - \[25/Sep/2020:00:26:10 +0200\] "POST /wp-login.php HTTP/1.0" 200 9315 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
132.148.153.156 - - \[25/Sep/2020:00:26:29 +0200\] "POST /wp-login.php HTTP/1.0" 200 14416 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2020-09-25 08:25:43
132.148.166.225 attackspam
[SID2] Fail2ban detected 5 failed SSH login attempts within 30 minutes. This report was submitted automatically.
2020-09-23 01:29:30
132.148.166.225 attack
Sep 22 09:26:49 IngegnereFirenze sshd[1498]: Failed password for invalid user dev from 132.148.166.225 port 33730 ssh2
...
2020-09-22 17:31:24
132.148.197.208 attackspam
Brute Force
2020-08-31 14:37:29
132.148.166.225 attackbotsspam
Aug 31 02:38:27 ns382633 sshd\[18296\]: Invalid user oracle from 132.148.166.225 port 59156
Aug 31 02:38:27 ns382633 sshd\[18296\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.148.166.225
Aug 31 02:38:29 ns382633 sshd\[18296\]: Failed password for invalid user oracle from 132.148.166.225 port 59156 ssh2
Aug 31 02:45:55 ns382633 sshd\[19821\]: Invalid user status from 132.148.166.225 port 43862
Aug 31 02:45:55 ns382633 sshd\[19821\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.148.166.225
2020-08-31 09:18:54
132.148.141.147 attackspambots
Attempt to hack Wordpress Login, XMLRPC or other login
2020-08-27 20:33:12
132.148.141.147 attackspam
Website login hacking attempts.
2020-08-26 22:47:17
132.148.141.147 attackbotsspam
132.148.141.147 - - [26/Aug/2020:10:58:04 +0100] "POST /wp/wp-login.php HTTP/1.1" 200 1865 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
132.148.141.147 - - [26/Aug/2020:10:58:11 +0100] "POST /wp/wp-login.php HTTP/1.1" 200 1857 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
132.148.141.147 - - [26/Aug/2020:10:58:12 +0100] "POST /wp/xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-08-26 18:10:54
132.148.166.225 attackbots
Aug 22 13:00:30 serwer sshd\[22472\]: Invalid user cloud from 132.148.166.225 port 47908
Aug 22 13:00:30 serwer sshd\[22472\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.148.166.225
Aug 22 13:00:33 serwer sshd\[22472\]: Failed password for invalid user cloud from 132.148.166.225 port 47908 ssh2
Aug 22 13:08:23 serwer sshd\[23423\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.148.166.225  user=root
Aug 22 13:08:26 serwer sshd\[23423\]: Failed password for root from 132.148.166.225 port 34228 ssh2
Aug 22 13:10:56 serwer sshd\[23933\]: Invalid user postgres from 132.148.166.225 port 42822
Aug 22 13:10:56 serwer sshd\[23933\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.148.166.225
Aug 22 13:10:58 serwer sshd\[23933\]: Failed password for invalid user postgres from 132.148.166.225 port 42822 ssh2
Aug 22 13:13:22 serwer sshd\[24238\]: Inva
...
2020-08-24 16:10:38
132.148.136.249 attackbotsspam
SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: ip-132-148-136-249.ip.secureserver.net.
2020-08-24 06:21:58
132.148.197.208 attackbots
Automatic report - XMLRPC Attack
2020-08-20 14:19:30
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 132.148.1.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23385
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;132.148.1.20.			IN	A

;; AUTHORITY SECTION:
.			55	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030802 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 05:38:49 CST 2022
;; MSG SIZE  rcvd: 105
HOST信息:
20.1.148.132.in-addr.arpa domain name pointer ip-132-148-1-20.ip.secureserver.net.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.1.148.132.in-addr.arpa	name = ip-132-148-1-20.ip.secureserver.net.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
185.156.73.21 attack
firewall-block, port(s): 27249/tcp
2019-12-19 06:47:37
190.105.49.197 attackspambots
Unauthorized connection attempt from IP address 190.105.49.197 on Port 445(SMB)
2019-12-19 06:23:12
172.107.94.66 attackspambots
firewall-block, port(s): 111/tcp
2019-12-19 06:41:40
45.136.108.156 attackbots
Dec 18 23:11:34 debian-2gb-nbg1-2 kernel: \[359865.540338\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.108.156 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=15830 PROTO=TCP SPT=46634 DPT=2428 WINDOW=1024 RES=0x00 SYN URGP=0
2019-12-19 06:35:58
95.216.69.22 attackspam
Unauthorized IMAP connection attempt
2019-12-19 06:24:22
37.195.50.41 attack
Dec 18 06:32:45 kapalua sshd\[2014\]: Invalid user kursa from 37.195.50.41
Dec 18 06:32:45 kapalua sshd\[2014\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=l37-195-50-41.novotelecom.ru
Dec 18 06:32:46 kapalua sshd\[2014\]: Failed password for invalid user kursa from 37.195.50.41 port 52896 ssh2
Dec 18 06:40:53 kapalua sshd\[3043\]: Invalid user benwitt from 37.195.50.41
Dec 18 06:40:53 kapalua sshd\[3043\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=l37-195-50-41.novotelecom.ru
2019-12-19 06:09:43
40.92.10.23 attack
Dec 18 17:30:06 debian-2gb-vpn-nbg1-1 kernel: [1057770.424037] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=40.92.10.23 DST=78.46.192.101 LEN=52 TOS=0x02 PREC=0x00 TTL=105 ID=26553 DF PROTO=TCP SPT=45649 DPT=25 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0
2019-12-19 06:36:27
184.154.139.13 attack
This IP has been blocked 175 times in past 15 minutes by my website firewall.
2019-12-19 06:14:49
184.105.247.216 attackspam
firewall-block, port(s): 548/tcp
2019-12-19 06:13:23
189.112.132.17 attackspam
TCP Port: 25      invalid blocked  dnsbl-sorbs also spam-sorbs and truncate-gbudb           (739)
2019-12-19 06:17:42
182.76.165.66 attackbotsspam
Dec 18 09:34:36 kapalua sshd\[21831\]: Invalid user guest from 182.76.165.66
Dec 18 09:34:36 kapalua sshd\[21831\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.76.165.66
Dec 18 09:34:39 kapalua sshd\[21831\]: Failed password for invalid user guest from 182.76.165.66 port 58076 ssh2
Dec 18 09:42:04 kapalua sshd\[22905\]: Invalid user Internet from 182.76.165.66
Dec 18 09:42:04 kapalua sshd\[22905\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.76.165.66
2019-12-19 06:34:06
45.141.85.100 attackbots
MultiHost/MultiPort Probe, Scan, Hack -
2019-12-19 06:33:05
195.56.7.98 attackbots
SSH brute-force: detected 36 distinct usernames within a 24-hour window.
2019-12-19 06:10:43
181.44.68.85 attackspambots
Unauthorized connection attempt from IP address 181.44.68.85 on Port 445(SMB)
2019-12-19 06:18:41
187.114.218.5 attackbotsspam
Attempt to attack host OS, exploiting network vulnerabilities, on 18-12-2019 14:30:17.
2019-12-19 06:18:13

最近上报的IP列表

132.147.98.57 132.148.1.41 118.172.58.65 132.148.100.152
132.148.100.42 132.148.100.24 132.148.101.112 132.148.101.102
132.148.100.127 132.148.100.58 132.148.102.156 132.148.101.58
132.148.103.232 132.148.103.130 132.148.101.139 118.172.58.67
132.148.103.249 118.172.58.69 118.172.58.72 118.172.58.79