必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
IP 类型 评论内容 时间
132.148.136.249 attackbotsspam
SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: ip-132-148-136-249.ip.secureserver.net.
2020-08-24 06:21:58
132.148.136.233 attack
Automatic report - XMLRPC Attack
2019-11-29 23:35:34
132.148.135.229 attackbotsspam
Automatic report - XMLRPC Attack
2019-11-11 00:42:57
132.148.137.114 attackspambots
RDP Bruteforce
2019-11-02 05:33:10
132.148.134.246 attack
132.148.134.246 - - [06/Sep/2019:12:03:47 +0200] "POST /wp-login.php HTTP/1.1" 403 1613 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" cdc5142520122b49007bd7174fb0d7b4 United States US Arizona Scottsdale 
132.148.134.246 - - [06/Sep/2019:13:39:18 +0200] "POST /wp-login.php HTTP/1.1" 403 1598 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" eb7e13cfcf8660457734d8cf73141bec United States US Arizona Scottsdale
2019-09-06 20:53:08
132.148.134.246 attack
[Mon Sep 02 14:16:01.435005 2019] [access_compat:error] [pid 32604] [client 132.148.134.246:52266] AH01797: client denied by server configuration: /var/www/html/luke/wp-login.php
...
2019-09-02 22:28:58
132.148.134.246 attackbots
www.handydirektreparatur.de 132.148.134.246 \[29/Aug/2019:04:56:47 +0200\] "POST /wp-login.php HTTP/1.1" 200 5665 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
www.handydirektreparatur.de 132.148.134.246 \[29/Aug/2019:04:56:48 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4114 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2019-08-29 12:13:09
132.148.130.138 attackbots
Detected by Synology server trying to access the inactive 'admin' account
2019-08-09 04:11:59
132.148.130.138 attackbotsspam
Wordpress bruteforce attack
2019-08-01 06:50:15
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 132.148.13.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47109
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;132.148.13.104.			IN	A

;; AUTHORITY SECTION:
.			160	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 11:35:51 CST 2022
;; MSG SIZE  rcvd: 107
HOST信息:
104.13.148.132.in-addr.arpa domain name pointer ip-132-148-13-104.ip.secureserver.net.
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
104.13.148.132.in-addr.arpa	name = ip-132-148-13-104.ip.secureserver.net.

Authoritative answers can be found from:
相关IP信息:
最新评论:
IP 类型 评论内容 时间
128.199.210.105 attackspam
Dec  9 04:21:38 web1 sshd\[9704\]: Invalid user squid from 128.199.210.105
Dec  9 04:21:38 web1 sshd\[9704\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.210.105
Dec  9 04:21:40 web1 sshd\[9704\]: Failed password for invalid user squid from 128.199.210.105 port 47876 ssh2
Dec  9 04:28:33 web1 sshd\[10467\]: Invalid user admin from 128.199.210.105
Dec  9 04:28:33 web1 sshd\[10467\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.210.105
2019-12-09 22:36:00
193.105.24.95 attack
Dec  9 15:43:38 MK-Soft-VM7 sshd[6467]: Failed password for games from 193.105.24.95 port 55231 ssh2
...
2019-12-09 22:52:06
210.245.26.142 attack
Dec  9 15:17:25 mc1 kernel: \[59889.477462\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=210.245.26.142 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=1215 PROTO=TCP SPT=57695 DPT=5490 WINDOW=1024 RES=0x00 SYN URGP=0 
Dec  9 15:21:57 mc1 kernel: \[60161.399196\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=210.245.26.142 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=61035 PROTO=TCP SPT=57695 DPT=7522 WINDOW=1024 RES=0x00 SYN URGP=0 
Dec  9 15:25:31 mc1 kernel: \[60375.559215\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=210.245.26.142 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=60479 PROTO=TCP SPT=57695 DPT=4720 WINDOW=1024 RES=0x00 SYN URGP=0 
...
2019-12-09 22:36:30
58.248.254.124 attackbotsspam
Dec  9 15:56:40 srv01 sshd[19617]: Invalid user prasse from 58.248.254.124 port 40036
Dec  9 15:56:40 srv01 sshd[19617]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.248.254.124
Dec  9 15:56:40 srv01 sshd[19617]: Invalid user prasse from 58.248.254.124 port 40036
Dec  9 15:56:43 srv01 sshd[19617]: Failed password for invalid user prasse from 58.248.254.124 port 40036 ssh2
...
2019-12-09 23:13:35
61.148.202.34 attackbots
Dec  9 16:49:36 sauna sshd[79028]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.148.202.34
Dec  9 16:49:38 sauna sshd[79028]: Failed password for invalid user shirl from 61.148.202.34 port 55602 ssh2
...
2019-12-09 23:01:17
81.174.227.27 attack
Dec  9 14:35:03 [host] sshd[17343]: Invalid user qu1682008 from 81.174.227.27
Dec  9 14:35:03 [host] sshd[17343]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.174.227.27
Dec  9 14:35:06 [host] sshd[17343]: Failed password for invalid user qu1682008 from 81.174.227.27 port 48442 ssh2
2019-12-09 22:42:50
103.83.192.66 attackspambots
WordPress login Brute force / Web App Attack on client site.
2019-12-09 23:11:35
5.9.198.99 attack
Dec  9 04:43:52 eddieflores sshd\[19835\]: Invalid user bendixen from 5.9.198.99
Dec  9 04:43:52 eddieflores sshd\[19835\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=static.99.198.9.5.clients.your-server.de
Dec  9 04:43:54 eddieflores sshd\[19835\]: Failed password for invalid user bendixen from 5.9.198.99 port 56640 ssh2
Dec  9 04:49:42 eddieflores sshd\[20429\]: Invalid user ellington from 5.9.198.99
Dec  9 04:49:42 eddieflores sshd\[20429\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=static.99.198.9.5.clients.your-server.de
2019-12-09 22:54:34
47.112.85.235 attack
Host Scan
2019-12-09 22:35:27
59.89.26.89 attack
Attempt to attack host OS, exploiting network vulnerabilities, on 09-12-2019 06:25:13.
2019-12-09 22:42:00
193.70.85.206 attack
Dec  6 23:05:05 mail sshd[1760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.85.206 
Dec  6 23:05:07 mail sshd[1760]: Failed password for invalid user hdpuser from 193.70.85.206 port 46238 ssh2
Dec  6 23:10:10 mail sshd[3131]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.85.206
2019-12-09 23:15:37
218.92.0.156 attackspambots
Fail2Ban - SSH Bruteforce Attempt
2019-12-09 23:02:48
103.121.173.253 attack
MultiHost/MultiPort Probe, Scan, Hack -
2019-12-09 22:50:51
210.92.105.120 attack
Dec  6 23:05:37 mail sshd[1851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.92.105.120 
Dec  6 23:05:39 mail sshd[1851]: Failed password for invalid user edelstein from 210.92.105.120 port 35092 ssh2
Dec  6 23:12:49 mail sshd[3604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.92.105.120
2019-12-09 23:14:58
185.143.223.128 attack
2019-12-09T15:49:36.631759+01:00 lumpi kernel: [1192923.808687] INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=185.143.223.128 DST=78.46.199.189 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=9347 PROTO=TCP SPT=46939 DPT=10352 WINDOW=1024 RES=0x00 SYN URGP=0 
...
2019-12-09 23:03:06

最近上报的IP列表

132.148.112.5 132.148.130.0 131.91.101.181 132.148.13.38
16.126.242.105 132.148.132.26 132.148.135.61 132.148.134.124
132.148.137.119 131.93.90.173 132.145.155.245 132.148.138.138
132.148.149.227 132.145.210.196 132.148.149.48 132.148.15.109
132.148.150.175 132.148.150.201 132.148.151.45 132.148.153.67