132.148.99.168

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
132.148.99.126	attack	Dec 24 07:21:59 ns3042688 proftpd\[6014\]: 127.0.0.1 \(132.148.99.126\[132.148.99.126\]\) - USER tienda-sikla.info: no such user found from 132.148.99.126 \[132.148.99.126\] to 51.254.197.112:21 Dec 24 07:22:01 ns3042688 proftpd\[6029\]: 127.0.0.1 \(132.148.99.126\[132.148.99.126\]\) - USER test@tienda-sikla.info: no such user found from 132.148.99.126 \[132.148.99.126\] to 51.254.197.112:21 Dec 24 07:22:02 ns3042688 proftpd\[6034\]: 127.0.0.1 \(132.148.99.126\[132.148.99.126\]\) - USER tienda-sikla: no such user found from 132.148.99.126 \[132.148.99.126\] to 51.254.197.112:21 Dec 24 07:22:04 ns3042688 proftpd\[6045\]: 127.0.0.1 \(132.148.99.126\[132.148.99.126\]\) - USER test@tienda-sikla.info: no such user found from 132.148.99.126 \[132.148.99.126\] to 51.254.197.112:21 Dec 24 07:30:20 ns3042688 proftpd\[9548\]: 127.0.0.1 \(132.148.99.126\[132.148.99.126\]\) - USER tienda-cmt.es: no such user found from 132.148.99.126 \[132.148.99.126\] to 51.254.197.112:21 ...	2019-12-24 15:05:13
132.148.99.126	attackspam		2019-12-21 18:52:45

类型

评论内容

时间

132.148.99.126

attack

Dec 24 07:21:59 ns3042688 proftpd\[6014\]: 127.0.0.1 \(132.148.99.126\[132.148.99.126\]\) - USER tienda-sikla.info: no such user found from 132.148.99.126 \[132.148.99.126\] to 51.254.197.112:21
Dec 24 07:22:01 ns3042688 proftpd\[6029\]: 127.0.0.1 \(132.148.99.126\[132.148.99.126\]\) - USER test@tienda-sikla.info: no such user found from 132.148.99.126 \[132.148.99.126\] to 51.254.197.112:21
Dec 24 07:22:02 ns3042688 proftpd\[6034\]: 127.0.0.1 \(132.148.99.126\[132.148.99.126\]\) - USER tienda-sikla: no such user found from 132.148.99.126 \[132.148.99.126\] to 51.254.197.112:21
Dec 24 07:22:04 ns3042688 proftpd\[6045\]: 127.0.0.1 \(132.148.99.126\[132.148.99.126\]\) - USER test@tienda-sikla.info: no such user found from 132.148.99.126 \[132.148.99.126\] to 51.254.197.112:21
Dec 24 07:30:20 ns3042688 proftpd\[9548\]: 127.0.0.1 \(132.148.99.126\[132.148.99.126\]\) - USER tienda-cmt.es: no such user found from 132.148.99.126 \[132.148.99.126\] to 51.254.197.112:21
...

2019-12-24 15:05:13

132.148.99.126

attackspam

2019-12-21 18:52:45

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 132.148.99.168
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16120
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;132.148.99.168.			IN	A

;; AUTHORITY SECTION:
.			443	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022000 1800 900 604800 86400

;; Query time: 138 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 20 20:58:42 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

168.99.148.132.in-addr.arpa domain name pointer ip-132-148-99-168.ip.secureserver.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
168.99.148.132.in-addr.arpa	name = ip-132-148-99-168.ip.secureserver.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
164.90.216.156	attackbotsspam	Repeated brute force against a port	2020-09-19 17:18:44
102.114.76.169	attackspam	102.114.76.169 (MU/Mauritius/-), 3 distributed sshd attacks on account [pi] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 18 12:59:50 internal2 sshd[22871]: Invalid user pi from 90.78.89.195 port 35694 Sep 18 12:09:59 internal2 sshd[14401]: Invalid user pi from 102.114.76.169 port 54554 Sep 18 12:09:58 internal2 sshd[14403]: Invalid user pi from 102.114.76.169 port 16762 IP Addresses Blocked: 90.78.89.195 (FR/France/lfbn-poi-1-1397-195.w90-78.abo.wanadoo.fr)	2020-09-19 17:05:31
194.180.224.115	attack	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-09-19T08:38:38Z and 2020-09-19T08:40:18Z	2020-09-19 16:51:44
125.132.73.28	attackbots	Found on Github Combined on 4 lists / proto=6 . srcport=58385 . dstport=13305 . (146)	2020-09-19 17:03:10
117.199.41.230	attackbots	20/9/18@15:39:30: FAIL: IoT-Telnet address from=117.199.41.230 ...	2020-09-19 17:28:19
222.186.173.154	attack	Sep 19 11:45:45 ift sshd\[36593\]: Failed password for root from 222.186.173.154 port 4928 ssh2Sep 19 11:45:59 ift sshd\[36593\]: Failed password for root from 222.186.173.154 port 4928 ssh2Sep 19 11:46:17 ift sshd\[36676\]: Failed password for root from 222.186.173.154 port 60702 ssh2Sep 19 11:46:22 ift sshd\[36676\]: Failed password for root from 222.186.173.154 port 60702 ssh2Sep 19 11:46:25 ift sshd\[36676\]: Failed password for root from 222.186.173.154 port 60702 ssh2 ...	2020-09-19 16:48:45
51.79.52.2	attackbots	Sep 19 05:18:41 mout sshd[12278]: Disconnected from authenticating user root 51.79.52.2 port 50310 [preauth] Sep 19 05:26:58 mout sshd[13343]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.52.2 user=root Sep 19 05:27:00 mout sshd[13343]: Failed password for root from 51.79.52.2 port 36402 ssh2	2020-09-19 17:16:00
117.158.78.5	attackspam	Sep 19 09:32:09 marvibiene sshd[23846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.158.78.5 Sep 19 09:32:11 marvibiene sshd[23846]: Failed password for invalid user test from 117.158.78.5 port 4178 ssh2 Sep 19 09:35:27 marvibiene sshd[24004]: Failed password for root from 117.158.78.5 port 4180 ssh2	2020-09-19 17:14:21
45.95.168.215	attackspambots	TCP (SYN) 45.95.168.215:49970 -> port 22, len 40	2020-09-19 16:58:22
115.99.84.236	attackbots	Listed on dnsbl-sorbs plus abuseat.org and zen-spamhaus / proto=6 . srcport=60353 . dstport=23 . (2850)	2020-09-19 17:26:53
68.183.52.2	attack	(sshd) Failed SSH login from 68.183.52.2 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 19 04:03:50 optimus sshd[14022]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.52.2 user=root Sep 19 04:03:52 optimus sshd[14022]: Failed password for root from 68.183.52.2 port 39648 ssh2 Sep 19 04:07:42 optimus sshd[15356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.52.2 user=root Sep 19 04:07:44 optimus sshd[15356]: Failed password for root from 68.183.52.2 port 51264 ssh2 Sep 19 04:11:37 optimus sshd[16939]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.52.2 user=root	2020-09-19 17:12:23
120.92.164.193	attackbots	Sep 19 05:47:46 ns382633 sshd\[30723\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.164.193 user=root Sep 19 05:47:47 ns382633 sshd\[30723\]: Failed password for root from 120.92.164.193 port 31590 ssh2 Sep 19 06:13:57 ns382633 sshd\[3238\]: Invalid user administrator from 120.92.164.193 port 16716 Sep 19 06:13:57 ns382633 sshd\[3238\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.164.193 Sep 19 06:13:59 ns382633 sshd\[3238\]: Failed password for invalid user administrator from 120.92.164.193 port 16716 ssh2	2020-09-19 17:16:48
91.134.173.100	attack	20 attempts against mh-ssh on pcx	2020-09-19 16:55:21
216.126.239.38	attack	Sep 19 09:22:20 dev0-dcde-rnet sshd[27291]: Failed password for root from 216.126.239.38 port 44138 ssh2 Sep 19 09:26:31 dev0-dcde-rnet sshd[27321]: Failed password for root from 216.126.239.38 port 55712 ssh2 Sep 19 09:30:44 dev0-dcde-rnet sshd[27337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.126.239.38	2020-09-19 17:17:55
203.230.6.175	attackbots	Sep 19 08:36:45 sip sshd[1654728]: Failed password for invalid user admin from 203.230.6.175 port 45962 ssh2 Sep 19 08:41:16 sip sshd[1654798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.230.6.175 user=root Sep 19 08:41:18 sip sshd[1654798]: Failed password for root from 203.230.6.175 port 57418 ssh2 ...	2020-09-19 17:26:02

最近上报的IP列表

132.148.98.59	132.148.89.229	132.148.97.60	132.174.11.14
132.148.89.63	132.174.1.212	132.155.56.22	104.21.92.69
132.170.20.45	132.177.123.78	132.177.132.123	132.180.198.114
104.21.92.79	16.88.105.17	104.21.92.8	104.21.92.88
104.21.92.90	104.21.92.98	176.179.52.62	104.21.93.110