132.145.48.21 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United Kingdom

运营商(isp): Oracle Public Cloud

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	WordPress login Brute force / Web App Attack on client site.	2020-09-06 21:01:58
attack	132.145.48.21 - - [06/Sep/2020:05:37:39 +0200] "GET /wp-login.php HTTP/1.1" 200 9184 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.145.48.21 - - [06/Sep/2020:05:37:40 +0200] "POST /wp-login.php HTTP/1.1" 200 9435 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.145.48.21 - - [06/Sep/2020:05:37:41 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-06 12:39:59
attack	Automatic report - Banned IP Access	2020-09-06 05:00:48
attack	Jul 30 00:40:14 lcl-usvr-02 sshd[8496]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.48.21 user=root Jul 30 00:40:16 lcl-usvr-02 sshd[8496]: Failed password for root from 132.145.48.21 port 50562 ssh2 ...	2019-07-30 04:54:34
attackbotsspam	Jul 28 18:19:48 lcl-usvr-02 sshd[31838]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.48.21 user=root Jul 28 18:19:51 lcl-usvr-02 sshd[31838]: Failed password for root from 132.145.48.21 port 61747 ssh2 ...	2019-07-29 02:51:49
attackbots	Jul 26 15:59:03 lcl-usvr-02 sshd[31758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.48.21 user=root Jul 26 15:59:05 lcl-usvr-02 sshd[31758]: Failed password for root from 132.145.48.21 port 60733 ssh2 Jul 26 16:06:45 lcl-usvr-02 sshd[1297]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.48.21 user=root Jul 26 16:06:48 lcl-usvr-02 sshd[1297]: Failed password for root from 132.145.48.21 port 58073 ssh2 ...	2019-07-26 18:04:00

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 132.145.48.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54627
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;132.145.48.21.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072600 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jul 26 18:03:55 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 21.48.145.132.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 21.48.145.132.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
95.42.86.103	attackbotsspam	Feb 24 05:54:31 grey postfix/smtpd\[5433\]: NOQUEUE: reject: RCPT from 95-42-86-103.ip.btc-net.bg\[95.42.86.103\]: 554 5.7.1 Service unavailable\; Client host \[95.42.86.103\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[95.42.86.103\]\; from=\ to=\ proto=SMTP helo=\<95-42-86-103.ip.btc-net.bg\> ...	2020-02-24 15:27:20
171.248.63.86	attack	unauthorized connection attempt	2020-02-24 15:26:53
192.241.219.194	attackbotsspam	suspicious action Mon, 24 Feb 2020 01:54:29 -0300	2020-02-24 15:28:14
115.29.174.179	attackspambots	unauthorized connection attempt	2020-02-24 16:00:48
112.119.75.91	attackbotsspam	suspicious action Mon, 24 Feb 2020 01:54:19 -0300	2020-02-24 15:33:56
118.251.27.74	attackspambots	scan z	2020-02-24 15:47:05
111.113.22.10	attackbots	suspicious action Mon, 24 Feb 2020 01:53:54 -0300	2020-02-24 15:45:23
64.94.211.39	attackspambots	(From eric@talkwithwebvisitor.com) Cool website! My name’s Eric, and I just found your site - 2spinedocs.com - while surfing the net. You showed up at the top of the search results, so I checked you out. Looks like what you’re doing is pretty cool. But if you don’t mind me asking – after someone like me stumbles across 2spinedocs.com, what usually happens? Is your site generating leads for your business? I’m guessing some, but I also bet you’d like more… studies show that 7 out 10 who land on a site wind up leaving without a trace. Not good. Here’s a thought – what if there was an easy way for every visitor to “raise their hand” to get a phone call from you INSTANTLY… the second they hit your site and said, “call me now.” You can – Talk With Web Visitor is a software widget that’s works on your site, ready to capture any visitor’s Name, Email address and Phone Number. It lets you know IMMEDIATELY – so that you can talk to that lead while they’re literally looking over your site.	2020-02-24 15:50:36
192.99.175.190	attack	unauthorized connection attempt	2020-02-24 15:34:57
185.220.101.31	attackbots	02/24/2020-05:54:08.311316 185.220.101.31 Protocol: 6 ET TOR Known Tor Exit Node Traffic group 31	2020-02-24 15:37:15
110.74.193.43	attackspam	suspicious action Mon, 24 Feb 2020 01:54:25 -0300	2020-02-24 15:30:19
218.146.168.239	attack	Feb 24 07:52:40 lnxweb62 sshd[21788]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.146.168.239 Feb 24 07:52:41 lnxweb62 sshd[21788]: Failed password for invalid user test from 218.146.168.239 port 41566 ssh2 Feb 24 07:56:43 lnxweb62 sshd[23703]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.146.168.239	2020-02-24 15:31:35
77.75.93.58	attack	Automatic report - Port Scan Attack	2020-02-24 15:53:27
222.186.173.180	attackspambots	Feb 24 07:40:48 marvibiene sshd[7963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.180 user=root Feb 24 07:40:51 marvibiene sshd[7963]: Failed password for root from 222.186.173.180 port 59256 ssh2 Feb 24 07:40:54 marvibiene sshd[7963]: Failed password for root from 222.186.173.180 port 59256 ssh2 Feb 24 07:40:48 marvibiene sshd[7963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.180 user=root Feb 24 07:40:51 marvibiene sshd[7963]: Failed password for root from 222.186.173.180 port 59256 ssh2 Feb 24 07:40:54 marvibiene sshd[7963]: Failed password for root from 222.186.173.180 port 59256 ssh2 ...	2020-02-24 15:54:23
91.53.36.130	attack	20 attempts against mh-misbehave-ban on pluto	2020-02-24 15:54:41

最近上报的IP列表

199.103.93.109	131.245.240.126	111.39.10.196	60.229.57.103
110.232.253.6	101.53.147.183	14.161.23.243	49.156.214.202
87.116.176.13	151.53.194.188	79.8.24.41	112.207.104.21
79.137.77.131	58.219.136.47	51.254.205.129	14.152.49.80
71.81.218.85	114.32.245.21	135.182.141.236	106.51.2.108