132.148.150.21

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): GoDaddy.com LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	WordPress brute force	2019-08-18 10:20:04

相同子网IP讨论:

IP	类型	评论内容	时间
132.148.150.158	attackbotsspam	Automatic report - XMLRPC Attack	2019-12-16 22:20:23
132.148.150.158	attackspam	Automatic report - XMLRPC Attack	2019-11-28 21:06:53
132.148.150.158	attackbotsspam	Automatic report - XMLRPC Attack	2019-11-25 16:44:47
132.148.150.158	attackspam	WordPress wp-login brute force :: 132.148.150.158 0.128 BYPASS [24/Oct/2019:19:55:51 1100] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-24 18:37:11
132.148.150.158	attackbotsspam	Automatic report - XMLRPC Attack	2019-10-19 22:46:58
132.148.150.158	attackbots	wp bruteforce	2019-10-14 14:30:42
132.148.150.158	attackbots	WordPress wp-login brute force :: 132.148.150.158 0.052 BYPASS [13/Oct/2019:06:50:27 1100] [censored_2] "POST /wp-login.php HTTP/1.1" 200 4630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-13 05:49:55
132.148.150.158	attack	132.148.150.158 - - [12/Oct/2019:05:02:36 +0200] "POST /wp-login.php HTTP/1.1" 200 2111 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.148.150.158 - - [12/Oct/2019:05:02:37 +0200] "POST /wp-login.php HTTP/1.1" 200 2092 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-10-12 11:14:41
132.148.150.158	attackbots	132.148.150.158 - - [11/Oct/2019:20:58:27 +0200] "POST /wp-login.php HTTP/1.1" 200 2111 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.148.150.158 - - [11/Oct/2019:20:58:28 +0200] "POST /wp-login.php HTTP/1.1" 200 2092 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-10-12 02:59:06

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 132.148.150.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60160
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;132.148.150.21.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081503 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 16 10:59:33 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

21.150.148.132.in-addr.arpa domain name pointer ip-132-148-150-21.ip.secureserver.net.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
21.150.148.132.in-addr.arpa	name = ip-132-148-150-21.ip.secureserver.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
185.176.27.254	attackspambots	11/27/2019-01:38:41.815722 185.176.27.254 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-11-27 14:43:17
27.71.224.2	attackbots	Nov 27 07:24:14 icinga sshd[39475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.71.224.2 Nov 27 07:24:16 icinga sshd[39475]: Failed password for invalid user rpc from 27.71.224.2 port 37374 ssh2 Nov 27 07:32:51 icinga sshd[47413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.71.224.2 ...	2019-11-27 15:07:40
201.149.22.37	attackbotsspam	Nov 27 07:28:17 mail sshd[3178]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.149.22.37 Nov 27 07:28:19 mail sshd[3178]: Failed password for invalid user lezley from 201.149.22.37 port 57452 ssh2 Nov 27 07:34:55 mail sshd[6032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.149.22.37	2019-11-27 14:41:55
111.53.204.218	attack	Port scan on 1 port(s): 2377	2019-11-27 15:11:17
106.12.33.50	attack	Nov 27 11:38:21 gw1 sshd[12302]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.33.50 Nov 27 11:38:23 gw1 sshd[12302]: Failed password for invalid user mureil from 106.12.33.50 port 58386 ssh2 ...	2019-11-27 14:51:13
116.68.244.202	attackbots	Nov 27 06:30:44 web8 sshd\[7266\]: Invalid user admin03 from 116.68.244.202 Nov 27 06:30:44 web8 sshd\[7266\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.68.244.202 Nov 27 06:30:46 web8 sshd\[7266\]: Failed password for invalid user admin03 from 116.68.244.202 port 34672 ssh2 Nov 27 06:39:21 web8 sshd\[11472\]: Invalid user castonguay from 116.68.244.202 Nov 27 06:39:21 web8 sshd\[11472\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.68.244.202	2019-11-27 14:50:26
192.144.148.163	attackbots	2019-11-27T06:54:10.034620shield sshd\[18846\]: Invalid user backup from 192.144.148.163 port 42532 2019-11-27T06:54:10.038878shield sshd\[18846\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.148.163 2019-11-27T06:54:11.621729shield sshd\[18846\]: Failed password for invalid user backup from 192.144.148.163 port 42532 ssh2 2019-11-27T07:01:21.749335shield sshd\[19621\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.148.163 user=root 2019-11-27T07:01:23.166748shield sshd\[19621\]: Failed password for root from 192.144.148.163 port 46568 ssh2	2019-11-27 15:17:09
111.125.87.6	attack	Unauthorized connection attempt from IP address 111.125.87.6 on Port 445(SMB)	2019-11-27 15:02:01
41.138.88.3	attack	Nov 27 08:00:07 server sshd\[21108\]: Invalid user linux from 41.138.88.3 port 48656 Nov 27 08:00:07 server sshd\[21108\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.138.88.3 Nov 27 08:00:08 server sshd\[21108\]: Failed password for invalid user linux from 41.138.88.3 port 48656 ssh2 Nov 27 08:08:06 server sshd\[10769\]: Invalid user mohai from 41.138.88.3 port 55552 Nov 27 08:08:06 server sshd\[10769\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.138.88.3	2019-11-27 14:27:55
218.92.0.188	attack	"Fail2Ban detected SSH brute force attempt"	2019-11-27 15:15:24
222.139.20.147	attackbotsspam	" "	2019-11-27 15:14:29
128.199.212.82	attackbotsspam	Nov 26 20:24:09 eddieflores sshd\[26670\]: Invalid user geok from 128.199.212.82 Nov 26 20:24:09 eddieflores sshd\[26670\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.212.82 Nov 26 20:24:11 eddieflores sshd\[26670\]: Failed password for invalid user geok from 128.199.212.82 port 37558 ssh2 Nov 26 20:31:12 eddieflores sshd\[27198\]: Invalid user vanderwegen from 128.199.212.82 Nov 26 20:31:12 eddieflores sshd\[27198\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.212.82	2019-11-27 15:10:51
202.79.165.171	attackspam	11/27/2019-01:31:50.056896 202.79.165.171 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-11-27 15:16:17
179.216.25.89	attackbotsspam	Nov 26 20:22:10 auw2 sshd\[32219\]: Invalid user qwe123 from 179.216.25.89 Nov 26 20:22:10 auw2 sshd\[32219\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.216.25.89 Nov 26 20:22:12 auw2 sshd\[32219\]: Failed password for invalid user qwe123 from 179.216.25.89 port 11861 ssh2 Nov 26 20:27:13 auw2 sshd\[32604\]: Invalid user roselyn from 179.216.25.89 Nov 26 20:27:13 auw2 sshd\[32604\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.216.25.89	2019-11-27 14:29:25
94.230.130.91	attackspam	2019-11-27 00:32:42 H=(94-230-134-77.k-telecom.org) [94.230.130.91]:47229 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-11-27 00:32:42 H=(94-230-134-77.k-telecom.org) [94.230.130.91]:47229 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-11-27 00:32:42 H=(94-230-134-77.k-telecom.org) [94.230.130.91]:47229 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) ...	2019-11-27 15:02:56

最近上报的IP列表

212.124.188.174	191.209.54.227	182.34.223.53	119.28.29.169
104.126.35.38	251.167.139.1	24.171.107.110	116.95.228.41
176.221.48.230	123.133.254.21	27.129.236.159	201.178.66.21
198.71.224.63	92.97.214.151	144.7.187.169	133.153.79.98
83.64.47.188	103.75.166.94	136.220.141.188	227.29.189.52