132.148.3.52 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
132.148.37.81	attack	SQL injection attempt.	2020-05-07 17:14:42
132.148.37.81	attackspambots	...	2019-09-22 05:28:58
132.148.30.18	attack	132.148.30.18 - - [10/Sep/2019:14:50:19 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.148.30.18 - - [10/Sep/2019:14:50:25 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.148.30.18 - - [10/Sep/2019:14:50:27 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.148.30.18 - - [10/Sep/2019:14:50:28 +0200] "POST /wp-login.php HTTP/1.1" 200 1489 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.148.30.18 - - [10/Sep/2019:14:50:33 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 132.148.30.18 - - [10/Sep/2019:14:50:49 +0200] "POST /wp-login.php HTTP/1.1" 200 1491 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-09-10 22:47:44

类型

评论内容

时间

132.148.37.81

attack

SQL injection attempt.

2020-05-07 17:14:42

132.148.37.81

attackspambots

...

2019-09-22 05:28:58

132.148.30.18

attack

132.148.30.18 - - [10/Sep/2019:14:50:19 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
132.148.30.18 - - [10/Sep/2019:14:50:25 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
132.148.30.18 - - [10/Sep/2019:14:50:27 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
132.148.30.18 - - [10/Sep/2019:14:50:28 +0200] "POST /wp-login.php HTTP/1.1" 200 1489 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
132.148.30.18 - - [10/Sep/2019:14:50:33 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
132.148.30.18 - - [10/Sep/2019:14:50:49 +0200] "POST /wp-login.php HTTP/1.1" 200 1491 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...

2019-09-10 22:47:44

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 132.148.3.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7652
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;132.148.3.52.			IN	A

;; AUTHORITY SECTION:
.			598	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021801 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 19 03:36:39 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

52.3.148.132.in-addr.arpa domain name pointer ip-132-148-3-52.ip.secureserver.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
52.3.148.132.in-addr.arpa	name = ip-132-148-3-52.ip.secureserver.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
66.249.69.92	attackspambots	Automatic report - Banned IP Access	2019-10-23 07:34:57
89.222.181.58	attackbots	2019-10-22T21:09:48.263938abusebot-4.cloudsearch.cf sshd\[27188\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.222.181.58 user=root	2019-10-23 07:49:17
159.203.78.219	attackbotsspam	0,39-00/00 [bc00/m01] concatform PostRequest-Spammer scoring: stockholm	2019-10-23 07:56:35
138.197.221.114	attackspam	Oct 22 23:14:38 server sshd\[12488\]: Invalid user m1 from 138.197.221.114 Oct 22 23:14:38 server sshd\[12488\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.221.114 Oct 22 23:14:40 server sshd\[12488\]: Failed password for invalid user m1 from 138.197.221.114 port 48972 ssh2 Oct 22 23:21:16 server sshd\[14403\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.221.114 user=root Oct 22 23:21:19 server sshd\[14403\]: Failed password for root from 138.197.221.114 port 47520 ssh2 ...	2019-10-23 07:28:44
106.13.11.195	attackbots	Lines containing failures of 106.13.11.195 Oct 21 04:41:37 nxxxxxxx sshd[21576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.11.195 user=r.r Oct 21 04:41:39 nxxxxxxx sshd[21576]: Failed password for r.r from 106.13.11.195 port 57988 ssh2 Oct 21 04:41:39 nxxxxxxx sshd[21576]: Received disconnect from 106.13.11.195 port 57988:11: Bye Bye [preauth] Oct 21 04:41:39 nxxxxxxx sshd[21576]: Disconnected from authenticating user r.r 106.13.11.195 port 57988 [preauth] Oct 21 04:49:47 nxxxxxxx sshd[22646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.11.195 user=r.r Oct 21 04:49:48 nxxxxxxx sshd[22646]: Failed password for r.r from 106.13.11.195 port 56696 ssh2 Oct 21 04:49:48 nxxxxxxx sshd[22646]: Received disconnect from 106.13.11.195 port 56696:11: Bye Bye [preauth] Oct 21 04:49:48 nxxxxxxx sshd[22646]: Disconnected from authenticating user r.r 106.13.11.195 port 56696 [preauth........ ------------------------------	2019-10-23 07:55:46
58.87.99.188	attackspambots	Invalid user park from 58.87.99.188 port 56006	2019-10-23 07:33:08
111.231.72.231	attack	Feb 15 16:29:59 microserver sshd[29790]: Invalid user scan from 111.231.72.231 port 45404 Feb 15 16:29:59 microserver sshd[29790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.72.231 Feb 15 16:30:00 microserver sshd[29790]: Failed password for invalid user scan from 111.231.72.231 port 45404 ssh2 Feb 15 16:34:38 microserver sshd[30233]: Invalid user isadmin from 111.231.72.231 port 35796 Feb 15 16:34:38 microserver sshd[30233]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.72.231 Feb 16 15:04:40 microserver sshd[27513]: Invalid user source from 111.231.72.231 port 57174 Feb 16 15:04:40 microserver sshd[27513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.72.231 Feb 16 15:04:41 microserver sshd[27513]: Failed password for invalid user source from 111.231.72.231 port 57174 ssh2 Feb 16 15:08:37 microserver sshd[27950]: Invalid user redmine from 111.231.72.231 por	2019-10-23 07:25:10
221.12.108.66	attack	Oct2222:06:57server4pure-ftpd:$\?@221.12.108.66$[WARNING]Authenticationfailedforuser[benesser]Oct2222:07:02server4pure-ftpd:$\?@221.12.108.66$[WARNING]Authenticationfailedforuser[benesser]Oct2222:07:06server4pure-ftpd:$\?@221.12.108.66$[WARNING]Authenticationfailedforuser[benesser]Oct2222:07:11server4pure-ftpd:$\?@221.12.108.66$[WARNING]Authenticationfailedforuser[benesser]Oct2222:07:16server4pure-ftpd:$\?@221.12.108.66$[WARNING]Authenticationfailedforuser[benesser]Oct2222:07:23server4pure-ftpd:$\?@221.12.108.66$[WARNING]Authenticationfailedforuser[benesser]Oct2222:07:29server4pure-ftpd:$\?@221.12.108.66$[WARNING]Authenticationfailedforuser[benesser]Oct2222:07:34server4pure-ftpd:$\?@221.12.108.66$[WARNING]Authenticationfailedforuser[benesser]Oct2222:07:39server4pure-ftpd:$\?@221.12.108.66$[WARNING]Authenticationfailedforuser[benesser]Oct2222:07:45server4pure-ftpd:$\?@221.12.108.66$[WARNING]Authenticationfailedforuser[benesser]	2019-10-23 07:45:29
23.129.64.154	attackspam	Oct 22 22:07:52 vpn01 sshd[20591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.129.64.154 Oct 22 22:07:54 vpn01 sshd[20591]: Failed password for invalid user apache from 23.129.64.154 port 19457 ssh2 ...	2019-10-23 07:39:20
94.154.17.170	attackspambots	Automatic report - Port Scan Attack	2019-10-23 07:41:17
114.41.213.41	attackspambots	23/tcp [2019-10-22]1pkt	2019-10-23 07:55:05
212.64.7.134	attackbotsspam	Oct 22 16:45:11 plusreed sshd[3500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.7.134 user=postgres Oct 22 16:45:13 plusreed sshd[3500]: Failed password for postgres from 212.64.7.134 port 32998 ssh2 ...	2019-10-23 07:58:01
139.0.8.146	attackspambots	Oct 21 12:24:01 our-server-hostname postfix/smtpd[22841]: connect from unknown[139.0.8.146] Oct 21 12:24:04 our-server-hostname sqlgrey: grey: new: 139.0.8.146(139.0.8.146), x@x -> x@x Oct 21 12:24:04 our-server-hostname postfix/policy-spf[30372]: : Policy action=550 Please see hxxp://www.openspf.org/Why?s=mfrom;id=larouche%40apex.net.au;ip=139.0.8.146;r=mx1.cbr.spam-filtering-appliance Oct x@x Oct 21 12:24:04 our-server-hostname postfix/smtpd[22841]: lost connection after DATA from unknown[139.0.8.1 .... truncated .... Oct 21 12:24:01 our-server-hostname postfix/smtpd[22841]: connect from unknown[139.0.8.146] Oct 21 12:24:04 our-server-hostname sqlgrey: grey: new: 139.0.8.146(139.0.8.146), x@x -> x@x Oct 21 12:24:04 our-server-hostname postfix/policy-spf[30372]: : Policy action=550 Please see hxxp://www.openspf.org/Why?s=mfrom;id=larouche%40apex.net.au;ip=139.0.8.146;r=mx1.cbr.spam-filtering-appliance Oct x@x Oct 21 12:24:04 our-server-hostname postfix/smtpd[22841]........ -------------------------------	2019-10-23 07:26:31
178.166.40.152	attack	Port Scan: TCP/443	2019-10-23 07:40:49
162.243.10.64	attackspam	$f2bV_matches	2019-10-23 07:27:36

最近上报的IP列表

132.148.219.232	132.148.68.126	132.148.82.167	132.148.200.249
134.119.184.51	134.17.24.244	134.0.41.151	134.122.123.188
134.119.225.170	134.0.119.86	134.19.160.44	134.209.125.114
134.0.63.171	134.119.2.130	134.0.118.233	134.209.167.6
134.209.143.96	134.119.31.32	134.209.189.55	134.209.21.117