必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea (the Republic of)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:
暂无关于此IP的讨论, 沙发请点上方按钮
相同子网IP讨论:
暂无关于此IP所属子网相关IP的讨论.
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 180.133.48.213
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15347
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;180.133.48.213.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012802 1800 900 604800 86400

;; Query time: 32 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 29 07:34:06 CST 2025
;; MSG SIZE  rcvd: 107
HOST信息:
Host 213.48.133.180.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 213.48.133.180.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
165.22.182.130 attack
DigitalOcean BotNet attack - 10s of requests to non-existent pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks
node-superagent/4.1.0
2020-02-06 07:52:19
89.248.160.193 attack
Feb  5 23:46:00 h2177944 kernel: \[4140848.678462\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=89.248.160.193 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=23751 PROTO=TCP SPT=55789 DPT=20661 WINDOW=1024 RES=0x00 SYN URGP=0 
Feb  5 23:46:00 h2177944 kernel: \[4140848.678476\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=89.248.160.193 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=23751 PROTO=TCP SPT=55789 DPT=20661 WINDOW=1024 RES=0x00 SYN URGP=0 
Feb  6 00:11:06 h2177944 kernel: \[4142353.847435\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=89.248.160.193 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=57552 PROTO=TCP SPT=55789 DPT=20630 WINDOW=1024 RES=0x00 SYN URGP=0 
Feb  6 00:11:06 h2177944 kernel: \[4142353.847449\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=89.248.160.193 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=57552 PROTO=TCP SPT=55789 DPT=20630 WINDOW=1024 RES=0x00 SYN URGP=0 
Feb  6 00:35:19 h2177944 kernel: \[4143806.724919\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=89.248.160.193 DST=85.
2020-02-06 07:39:48
92.188.125.116 attackbotsspam
Feb  6 00:00:56 srv2 sshd\[27349\]: Invalid user ubuntu from 92.188.125.116 port 38292
Feb  6 00:02:33 srv2 sshd\[27367\]: Invalid user test from 92.188.125.116 port 52356
Feb  6 00:04:11 srv2 sshd\[27386\]: Invalid user bananapi from 92.188.125.116 port 38170
2020-02-06 07:45:22
49.88.112.114 attack
Feb  5 13:39:13 kapalua sshd\[7254\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114  user=root
Feb  5 13:39:16 kapalua sshd\[7254\]: Failed password for root from 49.88.112.114 port 17102 ssh2
Feb  5 13:40:17 kapalua sshd\[7325\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114  user=root
Feb  5 13:40:19 kapalua sshd\[7325\]: Failed password for root from 49.88.112.114 port 31102 ssh2
Feb  5 13:44:48 kapalua sshd\[7630\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.114  user=root
2020-02-06 07:50:49
64.78.19.170 attackbotsspam
Feb  3 02:01:55 foo sshd[1064]: Address 64.78.19.170 maps to intermedia.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!
Feb  3 02:01:55 foo sshd[1064]: Invalid user drcomadmin from 64.78.19.170
Feb  3 02:01:55 foo sshd[1064]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.78.19.170 
Feb  3 02:01:58 foo sshd[1064]: Failed password for invalid user drcomadmin from 64.78.19.170 port 60883 ssh2
Feb  3 02:01:58 foo sshd[1064]: Received disconnect from 64.78.19.170: 11: Bye Bye [preauth]
Feb  3 02:02:00 foo sshd[1066]: Address 64.78.19.170 maps to intermedia.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!
Feb  3 02:02:00 foo sshd[1066]: Invalid user drcomadmin from 64.78.19.170
Feb  3 02:02:00 foo sshd[1066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.78.19.170 
Feb  3 02:02:01 foo sshd[1066]: Failed password for invalid user drco........
-------------------------------
2020-02-06 07:45:36
49.234.64.252 attack
Feb  6 01:16:08 server sshd\[700\]: Invalid user zwb from 49.234.64.252
Feb  6 01:16:08 server sshd\[700\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.64.252 
Feb  6 01:16:10 server sshd\[700\]: Failed password for invalid user zwb from 49.234.64.252 port 51750 ssh2
Feb  6 01:24:45 server sshd\[1969\]: Invalid user tj from 49.234.64.252
Feb  6 01:24:45 server sshd\[1969\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.64.252 
...
2020-02-06 07:57:09
103.21.117.88 attack
Unauthorized connection attempt detected from IP address 103.21.117.88 to port 2220 [J]
2020-02-06 08:22:05
37.49.231.163 attackbotsspam
*Port Scan* detected from 37.49.231.163 (NL/Netherlands/-). 4 hits in the last 276 seconds
2020-02-06 07:43:38
51.178.30.102 attackspam
Unauthorized connection attempt detected from IP address 51.178.30.102 to port 2220 [J]
2020-02-06 07:44:22
217.19.154.218 attack
Hacking
2020-02-06 08:17:34
45.143.221.41 attackbots
*Port Scan* detected from 45.143.221.41 (NL/Netherlands/-). 4 hits in the last 50 seconds
2020-02-06 07:42:01
45.148.164.125 attackspambots
Feb  4 08:37:48 scivo sshd[23466]: Invalid user system from 45.148.164.125
Feb  4 08:37:48 scivo sshd[23466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.164.125 
Feb  4 08:37:49 scivo sshd[23466]: Failed password for invalid user system from 45.148.164.125 port 33770 ssh2
Feb  4 08:37:49 scivo sshd[23466]: Received disconnect from 45.148.164.125: 11: Bye Bye [preauth]
Feb  4 08:47:06 scivo sshd[23982]: Invalid user m51 from 45.148.164.125
Feb  4 08:47:06 scivo sshd[23982]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.164.125 
Feb  4 08:47:09 scivo sshd[23982]: Failed password for invalid user m51 from 45.148.164.125 port 41328 ssh2
Feb  4 08:47:09 scivo sshd[23982]: Received disconnect from 45.148.164.125: 11: Bye Bye [preauth]
Feb  4 08:52:03 scivo sshd[24166]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.164.125  user=........
-------------------------------
2020-02-06 08:22:19
222.186.42.75 attackspam
Unauthorized connection attempt detected from IP address 222.186.42.75 to port 22 [J]
2020-02-06 07:51:39
52.165.80.86 attack
WordPress login Brute force / Web App Attack on client site.
2020-02-06 07:51:19
150.136.174.222 attack
Unauthorized connection attempt detected from IP address 150.136.174.222 to port 2220 [J]
2020-02-06 08:13:28

最近上报的IP列表

139.144.179.103 152.0.144.152 93.219.71.126 216.165.168.1
206.146.73.104 119.92.132.22 187.33.18.65 2.156.36.248
78.127.76.185 108.209.234.49 65.101.24.53 148.63.240.224
16.182.124.38 18.28.207.72 48.166.26.155 63.190.253.127
191.57.30.92 34.249.100.192 205.57.227.30 125.145.195.105