132.148.29.48 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): GoDaddy.com LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Mar 25 13:45:16 debian-2gb-nbg1-2 kernel: \[7399396.191821\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=132.148.29.48 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=47 ID=0 DF PROTO=TCP SPT=21 DPT=14113 WINDOW=14600 RES=0x00 ACK SYN URGP=0	2020-03-26 03:49:45

类型

评论内容

时间

attack

Mar 25 13:45:16 debian-2gb-nbg1-2 kernel: \[7399396.191821\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=132.148.29.48 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=47 ID=0 DF PROTO=TCP SPT=21 DPT=14113 WINDOW=14600 RES=0x00 ACK SYN URGP=0

2020-03-26 03:49:45

相同子网IP讨论:

IP	类型	评论内容	时间
132.148.29.143	attackspambots	Probing for vulnerable PHP code	2020-06-11 19:07:44

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 132.148.29.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1236
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;132.148.29.48.			IN	A

;; AUTHORITY SECTION:
.			527	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032502 1800 900 604800 86400

;; Query time: 49 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 26 03:49:42 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

48.29.148.132.in-addr.arpa domain name pointer ip-132-148-29-48.ip.secureserver.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
48.29.148.132.in-addr.arpa	name = ip-132-148-29-48.ip.secureserver.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
194.9.27.162	attackbots	[portscan] Port scan	2019-10-13 15:51:23
183.82.118.131	attackbots	2019-10-13T09:13:22.306228 sshd[9582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.82.118.131 user=root 2019-10-13T09:13:24.355671 sshd[9582]: Failed password for root from 183.82.118.131 port 37115 ssh2 2019-10-13T09:18:02.914059 sshd[9668]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.82.118.131 user=root 2019-10-13T09:18:04.737412 sshd[9668]: Failed password for root from 183.82.118.131 port 56893 ssh2 2019-10-13T09:22:45.058219 sshd[9716]: Invalid user 123 from 183.82.118.131 port 48437 ...	2019-10-13 15:56:05
193.70.114.154	attack	Oct 12 23:17:07 home sshd[7614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.114.154 user=root Oct 12 23:17:08 home sshd[7614]: Failed password for root from 193.70.114.154 port 47592 ssh2 Oct 12 23:31:20 home sshd[7708]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.114.154 user=root Oct 12 23:31:22 home sshd[7708]: Failed password for root from 193.70.114.154 port 33582 ssh2 Oct 12 23:35:10 home sshd[7753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.114.154 user=root Oct 12 23:35:12 home sshd[7753]: Failed password for root from 193.70.114.154 port 53762 ssh2 Oct 12 23:42:46 home sshd[7839]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.114.154 user=root Oct 12 23:42:49 home sshd[7839]: Failed password for root from 193.70.114.154 port 37664 ssh2 Oct 12 23:46:33 home sshd[7917]: pam_unix(sshd:auth): authen	2019-10-13 15:24:40
114.115.240.97	attackspambots	Oct 7 19:04:37 hostnameis sshd[42092]: reveeclipse mapping checking getaddrinfo for ecs-114-115-240-97.compute.hwclouds-dns.com [114.115.240.97] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 7 19:04:37 hostnameis sshd[42092]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.115.240.97 user=r.r Oct 7 19:04:39 hostnameis sshd[42092]: Failed password for r.r from 114.115.240.97 port 40436 ssh2 Oct 7 19:04:40 hostnameis sshd[42092]: Received disconnect from 114.115.240.97: 11: Bye Bye [preauth] Oct 7 19:13:07 hostnameis sshd[42162]: reveeclipse mapping checking getaddrinfo for ecs-114-115-240-97.compute.hwclouds-dns.com [114.115.240.97] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 7 19:13:07 hostnameis sshd[42162]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.115.240.97 user=r.r Oct 7 19:13:09 hostnameis sshd[42162]: Failed password for r.r from 114.115.240.97 port 34372 ssh2 Oct 7 19:13........ ------------------------------	2019-10-13 15:35:47
193.70.90.59	attackbots	2019-10-13T08:15:54.867442 sshd[8893]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.90.59 user=root 2019-10-13T08:15:57.233474 sshd[8893]: Failed password for root from 193.70.90.59 port 38704 ssh2 2019-10-13T08:24:58.751548 sshd[8993]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.90.59 user=root 2019-10-13T08:25:00.796685 sshd[8993]: Failed password for root from 193.70.90.59 port 35104 ssh2 2019-10-13T08:28:25.627992 sshd[9032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.90.59 user=root 2019-10-13T08:28:27.758246 sshd[9032]: Failed password for root from 193.70.90.59 port 45272 ssh2 ...	2019-10-13 15:28:04
115.238.236.74	attack	Oct 13 09:28:14 dedicated sshd[4255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.238.236.74 user=root Oct 13 09:28:16 dedicated sshd[4255]: Failed password for root from 115.238.236.74 port 6573 ssh2	2019-10-13 15:33:30
119.2.48.42	attackspambots	Brute force attempt	2019-10-13 15:58:12
104.210.222.38	attack	F2B jail: sshd. Time: 2019-10-13 06:39:43, Reported by: VKReport	2019-10-13 16:00:25
159.203.74.227	attackspam	Oct 12 18:19:05 wbs sshd\[929\]: Invalid user Elephant@123 from 159.203.74.227 Oct 12 18:19:05 wbs sshd\[929\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.74.227 Oct 12 18:19:07 wbs sshd\[929\]: Failed password for invalid user Elephant@123 from 159.203.74.227 port 42930 ssh2 Oct 12 18:22:56 wbs sshd\[1311\]: Invalid user Bet2017 from 159.203.74.227 Oct 12 18:22:56 wbs sshd\[1311\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.74.227	2019-10-13 15:45:24
79.137.34.248	attackspam	Oct 13 06:53:36 lnxmysql61 sshd[32289]: Failed password for root from 79.137.34.248 port 44500 ssh2 Oct 13 06:57:16 lnxmysql61 sshd[300]: Failed password for root from 79.137.34.248 port 35779 ssh2	2019-10-13 15:46:54
218.60.41.227	attackbotsspam	Oct 12 21:06:40 sachi sshd\[1712\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.60.41.227 user=root Oct 12 21:06:42 sachi sshd\[1712\]: Failed password for root from 218.60.41.227 port 50506 ssh2 Oct 12 21:11:08 sachi sshd\[2174\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.60.41.227 user=root Oct 12 21:11:10 sachi sshd\[2174\]: Failed password for root from 218.60.41.227 port 40843 ssh2 Oct 12 21:15:37 sachi sshd\[2587\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.60.41.227 user=root	2019-10-13 15:44:29
86.102.88.242	attack	Oct 12 21:44:24 tdfoods sshd\[20157\]: Invalid user Army123 from 86.102.88.242 Oct 12 21:44:24 tdfoods sshd\[20157\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.102.88.242 Oct 12 21:44:26 tdfoods sshd\[20157\]: Failed password for invalid user Army123 from 86.102.88.242 port 42062 ssh2 Oct 12 21:48:59 tdfoods sshd\[20526\]: Invalid user RolandGarros1@3 from 86.102.88.242 Oct 12 21:48:59 tdfoods sshd\[20526\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.102.88.242	2019-10-13 15:53:12
194.182.86.133	attack	2019-10-13T07:39:54.292672abusebot-2.cloudsearch.cf sshd\[25567\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.182.86.133 user=root	2019-10-13 15:51:06
213.6.8.38	attackspam	Fail2Ban - SSH Bruteforce Attempt	2019-10-13 15:26:37
218.70.174.23	attackspambots	Oct 13 04:00:50 plusreed sshd[13414]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.70.174.23 user=root Oct 13 04:00:52 plusreed sshd[13414]: Failed password for root from 218.70.174.23 port 52078 ssh2 ...	2019-10-13 16:04:22

最近上报的IP列表

45.124.19.82	171.247.204.170	39.148.40.79	39.50.228.228
1.53.200.51	208.125.129.51	47.26.30.92	189.189.247.238
72.151.173.38	186.186.145.11	213.33.226.202	157.47.238.112
27.37.211.209	94.25.175.228	95.10.176.235	142.11.227.203
62.28.223.119	51.104.136.2	69.114.175.230	51.152.112.190