132.148.148.146

基本信息:

城市(city): Scottsdale

省份(region): Arizona

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): GoDaddy.com, LLC

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
132.148.148.21	attackbots	[munged]::443 132.148.148.21 - - [29/Feb/2020:15:25:34 +0100] "POST /[munged]: HTTP/1.1" 200 9131 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 132.148.148.21 - - [29/Feb/2020:15:25:37 +0100] "POST /[munged]: HTTP/1.1" 200 9131 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 132.148.148.21 - - [29/Feb/2020:15:25:45 +0100] "POST /[munged]: HTTP/1.1" 200 9131 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 132.148.148.21 - - [29/Feb/2020:15:25:48 +0100] "POST /[munged]: HTTP/1.1" 200 9131 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 132.148.148.21 - - [29/Feb/2020:15:25:50 +0100] "POST /[munged]: HTTP/1.1" 200 9131 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 132.148.148.21 - - [29/Feb/2020:15:25:58 +0100] "POST /[munged]: HTTP/1.1" 200 9131 "-" "Mozilla/5.0 (X11	2020-03-01 03:39:44
132.148.148.21	attackspam	[munged]::443 132.148.148.21 - - [14/Feb/2020:15:11:52 +0100] "POST /[munged]: HTTP/1.1" 200 6852 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 132.148.148.21 - - [14/Feb/2020:15:11:54 +0100] "POST /[munged]: HTTP/1.1" 200 6711 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 132.148.148.21 - - [14/Feb/2020:15:11:54 +0100] "POST /[munged]: HTTP/1.1" 200 6711 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-02-14 23:14:31
132.148.148.21	attackbots	Website hacking attempt: Wordpress admin access [wp-login.php]	2020-02-02 06:48:15
132.148.148.21	attackbotsspam	Automatic report - XMLRPC Attack	2019-12-08 17:41:12
132.148.148.21	attackspam	Automatic report - XMLRPC Attack	2019-11-28 23:56:58
132.148.148.21	attack	WordPress login Brute force / Web App Attack on client site.	2019-11-23 00:37:24
132.148.148.21	attack	xmlrpc attack	2019-11-19 15:15:42
132.148.148.21	attackbotsspam	WordPress wp-login brute force :: 132.148.148.21 0.068 BYPASS [15/Nov/2019:06:50:17 0000] [censored_4] "POST /wp-login.php HTTP/1.1" 200 2134 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-11-15 16:04:56
132.148.148.21	attackbotsspam	132.148.148.21 - - [13/Nov/2019:10:19:44 +0100] "GET /wp-login.php HTTP/1.1" 200 1238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.148.148.21 - - [13/Nov/2019:10:19:45 +0100] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.148.148.21 - - [13/Nov/2019:10:19:45 +0100] "GET /wp-login.php HTTP/1.1" 200 1238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.148.148.21 - - [13/Nov/2019:10:19:46 +0100] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.148.148.21 - - [13/Nov/2019:10:19:47 +0100] "GET /wp-login.php HTTP/1.1" 200 1238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.148.148.21 - - [13/Nov/2019:10:19:48 +0100] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-11-13 20:18:42
132.148.148.21	attackspam	Attempt to run wp-login.php	2019-10-30 01:04:16
132.148.148.21	attackspambots	132.148.148.21 - - \[23/Oct/2019:03:48:57 +0000\] "POST /wp-login.php HTTP/1.1" 200 4358 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 132.148.148.21 - - \[23/Oct/2019:03:48:58 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" ...	2019-10-23 18:02:34
132.148.148.21	attackspambots	[munged]::443 132.148.148.21 - - [21/Oct/2019:10:09:52 +0200] "POST /[munged]: HTTP/1.1" 200 9077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 132.148.148.21 - - [21/Oct/2019:10:09:55 +0200] "POST /[munged]: HTTP/1.1" 200 9077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 132.148.148.21 - - [21/Oct/2019:10:09:58 +0200] "POST /[munged]: HTTP/1.1" 200 9077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 132.148.148.21 - - [21/Oct/2019:10:10:01 +0200] "POST /[munged]: HTTP/1.1" 200 9077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 132.148.148.21 - - [21/Oct/2019:10:10:06 +0200] "POST /[munged]: HTTP/1.1" 200 9077 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" [munged]::443 132.148.148.21 - - [21/Oct/2019:10:10:11 +0200] "POST /[munged]: HTTP/1.1" 200 9077 "-" "Mozilla/5.0 (X11	2019-10-21 19:26:29
132.148.148.21	attackspambots	WordPress login Brute force / Web App Attack on client site.	2019-10-14 02:18:13

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 132.148.148.146
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27818
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;132.148.148.146.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040801 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue Apr 09 06:29:21 +08 2019
;; MSG SIZE  rcvd: 119

HOST信息:

146.148.148.132.in-addr.arpa domain name pointer ip-132-148-148-146.ip.secureserver.net.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
146.148.148.132.in-addr.arpa	name = ip-132-148-148-146.ip.secureserver.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
104.248.161.244	attackspam	$f2bV_matches	2019-06-30 01:03:35
103.242.13.70	attackbots	Invalid user ethos from 103.242.13.70 port 35064	2019-06-30 01:08:06
88.121.68.131	attackspambots	Jun 28 04:21:36 mail sshd[15951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.121.68.131 user=root Jun 28 04:21:38 mail sshd[15951]: Failed password for root from 88.121.68.131 port 45438 ssh2 Jun 28 04:25:35 mail sshd[21418]: Invalid user oracle from 88.121.68.131 Jun 28 04:25:35 mail sshd[21418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.121.68.131 Jun 28 04:25:35 mail sshd[21418]: Invalid user oracle from 88.121.68.131 Jun 28 04:25:38 mail sshd[21418]: Failed password for invalid user oracle from 88.121.68.131 port 47784 ssh2 ...	2019-06-30 01:31:08
61.177.172.158	attackspam	Jun 29 13:46:00 Ubuntu-1404-trusty-64-minimal sshd\[3131\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.158 user=root Jun 29 13:46:01 Ubuntu-1404-trusty-64-minimal sshd\[3131\]: Failed password for root from 61.177.172.158 port 44688 ssh2 Jun 29 13:46:03 Ubuntu-1404-trusty-64-minimal sshd\[3131\]: Failed password for root from 61.177.172.158 port 44688 ssh2 Jun 29 13:46:05 Ubuntu-1404-trusty-64-minimal sshd\[3131\]: Failed password for root from 61.177.172.158 port 44688 ssh2 Jun 29 13:46:07 Ubuntu-1404-trusty-64-minimal sshd\[3165\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.158 user=root	2019-06-30 00:43:08
114.130.55.166	attackbotsspam	Jun 29 15:15:36 XXX sshd[62079]: Invalid user qhsupport from 114.130.55.166 port 54712	2019-06-30 01:06:05
159.224.177.236	attackspam	Jun 29 12:35:22 vps200512 sshd\[19365\]: Invalid user oscar from 159.224.177.236 Jun 29 12:35:22 vps200512 sshd\[19365\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.224.177.236 Jun 29 12:35:25 vps200512 sshd\[19365\]: Failed password for invalid user oscar from 159.224.177.236 port 35982 ssh2 Jun 29 12:37:06 vps200512 sshd\[19404\]: Invalid user teamspeak3 from 159.224.177.236 Jun 29 12:37:06 vps200512 sshd\[19404\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.224.177.236	2019-06-30 00:42:24
200.69.250.253	attackbotsspam	Jun 29 14:50:20 MK-Soft-VM6 sshd\[14462\]: Invalid user qhsupport from 200.69.250.253 port 51844 Jun 29 14:50:20 MK-Soft-VM6 sshd\[14462\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.69.250.253 Jun 29 14:50:21 MK-Soft-VM6 sshd\[14462\]: Failed password for invalid user qhsupport from 200.69.250.253 port 51844 ssh2 ...	2019-06-30 00:55:36
177.207.249.96	attackbotsspam	Jun 29 10:25:11 localhost postfix/smtpd\[12924\]: warning: 177.207.249.96.static.gvt.net.br\[177.207.249.96\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 29 10:25:18 localhost postfix/smtpd\[12924\]: warning: 177.207.249.96.static.gvt.net.br\[177.207.249.96\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 29 10:25:30 localhost postfix/smtpd\[12924\]: warning: 177.207.249.96.static.gvt.net.br\[177.207.249.96\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 29 10:25:55 localhost postfix/smtpd\[12924\]: warning: 177.207.249.96.static.gvt.net.br\[177.207.249.96\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 29 10:26:02 localhost postfix/smtpd\[12924\]: warning: 177.207.249.96.static.gvt.net.br\[177.207.249.96\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-06-30 01:38:31
67.207.91.133	attackspambots	Jun 29 08:27:45 work-partkepr sshd\[2126\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.207.91.133 user=root Jun 29 08:27:46 work-partkepr sshd\[2126\]: Failed password for root from 67.207.91.133 port 56062 ssh2 ...	2019-06-30 00:45:11
5.148.3.212	attack	Jun 29 16:29:19 MainVPS sshd[3874]: Invalid user ryan from 5.148.3.212 port 47171 Jun 29 16:29:19 MainVPS sshd[3874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212 Jun 29 16:29:19 MainVPS sshd[3874]: Invalid user ryan from 5.148.3.212 port 47171 Jun 29 16:29:20 MainVPS sshd[3874]: Failed password for invalid user ryan from 5.148.3.212 port 47171 ssh2 Jun 29 16:32:27 MainVPS sshd[4083]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212 user=news Jun 29 16:32:29 MainVPS sshd[4083]: Failed password for news from 5.148.3.212 port 36766 ssh2 ...	2019-06-30 01:04:02
87.18.236.121	attackbots	Honeypot attack, port: 23, PTR: host121-236-dynamic.18-87-r.retail.telecomitalia.it.	2019-06-30 01:17:24
206.19.238.177	attack	Jun 29 13:16:47 cp sshd[6124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.19.238.177 Jun 29 13:16:47 cp sshd[6124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.19.238.177	2019-06-30 01:24:11
122.143.175.13	attack	Honeypot attack, port: 23, PTR: 13.175.143.122.adsl-pool.jlccptt.net.cn.	2019-06-30 01:20:56
104.238.220.11	attack	Honeypot attack, port: 445, PTR: PTR record not found	2019-06-30 01:28:33
114.242.143.121	attackbots	2019-06-29T08:26:11.283692abusebot-4.cloudsearch.cf sshd\[21157\]: Invalid user gatien from 114.242.143.121 port 49331	2019-06-30 01:27:55

最近上报的IP列表

177.156.70.150	177.156.120.131	185.142.236.35	177.143.199.94
184.154.189.90	151.80.207.9	177.132.125.141	178.159.7.6
197.200.234.194	177.103.211.5	189.112.113.111	177.130.95.172
175.6.76.226	176.79.95.139	103.9.159.115	168.253.116.52
223.83.155.77	173.163.12.78	192.99.13.15	180.97.35.149