必须是合法有效的IP地址, 可以是IPv4或者是IPv6, 例如127.0.0.1或者2001:DB8:0:0:8:800:200C:417A
基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): GoDaddy.com

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:
类型 评论内容 时间
attack
Jul 11 15:47:16 h2421860 postfix/postscreen[31034]: CONNECT from [148.66.132.16]:32890 to [85.214.119.52]:25
Jul 11 15:47:16 h2421860 postfix/dnsblog[31036]: addr 148.66.132.16 listed by domain Unknown.trblspam.com as 185.53.179.7
Jul 11 15:47:17 h2421860 postfix/dnsblog[31039]: addr 148.66.132.16 listed by domain dnsbl.sorbs.net as 127.0.0.10
Jul 11 15:47:17 h2421860 postfix/postscreen[31034]: PREGREET 14 after 0.17 from [148.66.132.16]:32890: HELO sab.com

Jul 11 15:47:17 h2421860 postfix/smtpd[31043]: connect from unknown[148.66.132.16]
Jul x@x
Jul 11 15:47:17 h2421860 postfix/smtpd[31043]: warning: non-SMTP command from unknown[148.66.132.16]: Received: 1
Jul 11 15:47:17 h2421860 postfix/smtpd[31043]: disconnect from unknown[148.66.132.16]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=148.66.132.16
2019-07-12 05:27:18
相同子网IP讨论:
IP 类型 评论内容 时间
148.66.132.190 attack
Ssh brute force
2020-10-04 09:05:57
148.66.132.190 attackbotsspam
2020-10-03T03:22:43.911310n23.at sshd[2066088]: Failed password for invalid user git from 148.66.132.190 port 36800 ssh2
2020-10-03T03:37:20.303913n23.at sshd[2077902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190  user=root
2020-10-03T03:37:22.404701n23.at sshd[2077902]: Failed password for root from 148.66.132.190 port 35436 ssh2
...
2020-10-04 01:42:25
148.66.132.190 attack
2020-10-03T03:22:43.911310n23.at sshd[2066088]: Failed password for invalid user git from 148.66.132.190 port 36800 ssh2
2020-10-03T03:37:20.303913n23.at sshd[2077902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190  user=root
2020-10-03T03:37:22.404701n23.at sshd[2077902]: Failed password for root from 148.66.132.190 port 35436 ssh2
...
2020-10-03 17:27:56
148.66.132.190 attackspambots
SSH brute
2020-09-29 03:25:49
148.66.132.190 attackbotsspam
Sep 28 07:57:34 nextcloud sshd\[8903\]: Invalid user guest from 148.66.132.190
Sep 28 07:57:34 nextcloud sshd\[8903\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190
Sep 28 07:57:36 nextcloud sshd\[8903\]: Failed password for invalid user guest from 148.66.132.190 port 55886 ssh2
2020-09-28 19:37:03
148.66.132.190 attackspambots
Aug 24 14:55:44 ip-172-31-16-56 sshd\[1591\]: Invalid user web from 148.66.132.190\
Aug 24 14:55:46 ip-172-31-16-56 sshd\[1591\]: Failed password for invalid user web from 148.66.132.190 port 58242 ssh2\
Aug 24 15:00:41 ip-172-31-16-56 sshd\[1617\]: Invalid user db2inst1 from 148.66.132.190\
Aug 24 15:00:43 ip-172-31-16-56 sshd\[1617\]: Failed password for invalid user db2inst1 from 148.66.132.190 port 38126 ssh2\
Aug 24 15:05:31 ip-172-31-16-56 sshd\[1667\]: Invalid user postgres from 148.66.132.190\
2020-08-25 00:43:51
148.66.132.190 attackbotsspam
Aug 17 04:15:49 itv-usvr-01 sshd[24156]: Invalid user brisa from 148.66.132.190
Aug 17 04:15:49 itv-usvr-01 sshd[24156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190
Aug 17 04:15:49 itv-usvr-01 sshd[24156]: Invalid user brisa from 148.66.132.190
Aug 17 04:15:51 itv-usvr-01 sshd[24156]: Failed password for invalid user brisa from 148.66.132.190 port 39092 ssh2
2020-08-17 05:32:23
148.66.132.190 attack
Aug 12 23:53:24 cosmoit sshd[26793]: Failed password for root from 148.66.132.190 port 59358 ssh2
2020-08-13 06:02:42
148.66.132.190 attack
Aug  3 00:06:49 itv-usvr-01 sshd[6849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190  user=root
Aug  3 00:06:51 itv-usvr-01 sshd[6849]: Failed password for root from 148.66.132.190 port 34194 ssh2
Aug  3 00:11:32 itv-usvr-01 sshd[7198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190  user=root
Aug  3 00:11:34 itv-usvr-01 sshd[7198]: Failed password for root from 148.66.132.190 port 47582 ssh2
Aug  3 00:16:02 itv-usvr-01 sshd[7400]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190  user=root
Aug  3 00:16:04 itv-usvr-01 sshd[7400]: Failed password for root from 148.66.132.190 port 60950 ssh2
2020-08-03 02:05:23
148.66.132.190 attack
Invalid user jogoon from 148.66.132.190 port 38050
2020-08-01 14:04:33
148.66.132.190 attackspambots
Jul 30 08:05:54 piServer sshd[21143]: Failed password for backup from 148.66.132.190 port 35484 ssh2
Jul 30 08:09:27 piServer sshd[21521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190 
Jul 30 08:09:29 piServer sshd[21521]: Failed password for invalid user xiehs from 148.66.132.190 port 56024 ssh2
...
2020-07-30 16:40:13
148.66.132.190 attack
Jul 18 00:02:02 [host] sshd[25700]: Invalid user e
Jul 18 00:02:02 [host] sshd[25700]: pam_unix(sshd:
Jul 18 00:02:05 [host] sshd[25700]: Failed passwor
2020-07-18 08:22:35
148.66.132.190 attackspam
Jun 26 04:57:54 dignus sshd[8727]: Failed password for invalid user ejabberd from 148.66.132.190 port 37842 ssh2
Jun 26 05:01:36 dignus sshd[9084]: Invalid user deploy from 148.66.132.190 port 38318
Jun 26 05:01:36 dignus sshd[9084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190
Jun 26 05:01:37 dignus sshd[9084]: Failed password for invalid user deploy from 148.66.132.190 port 38318 ssh2
Jun 26 05:05:27 dignus sshd[9474]: Invalid user roberto from 148.66.132.190 port 38806
...
2020-06-26 22:54:01
148.66.132.190 attackbots
Jun 12 08:05:27 Tower sshd[14390]: Connection from 148.66.132.190 port 37990 on 192.168.10.220 port 22 rdomain ""
Jun 12 08:05:29 Tower sshd[14390]: Invalid user monitor from 148.66.132.190 port 37990
Jun 12 08:05:29 Tower sshd[14390]: error: Could not get shadow information for NOUSER
Jun 12 08:05:29 Tower sshd[14390]: Failed password for invalid user monitor from 148.66.132.190 port 37990 ssh2
Jun 12 08:05:29 Tower sshd[14390]: Received disconnect from 148.66.132.190 port 37990:11: Bye Bye [preauth]
Jun 12 08:05:29 Tower sshd[14390]: Disconnected from invalid user monitor 148.66.132.190 port 37990 [preauth]
2020-06-12 23:58:08
148.66.132.190 attackspam
Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)
2020-06-08 04:18:39
WHOIS信息:
b
DIG信息:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.66.132.16
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17059
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;148.66.132.16.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071101 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jul 12 05:27:12 CST 2019
;; MSG SIZE  rcvd: 117
HOST信息:
Host 16.132.66.148.in-addr.arpa. not found: 3(NXDOMAIN)
NSLOOKUP信息:
Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 16.132.66.148.in-addr.arpa: NXDOMAIN
相关IP信息:
最新评论:
IP 类型 评论内容 时间
49.48.120.3 attack
1592798003 - 06/22/2020 05:53:23 Host: 49.48.120.3/49.48.120.3 Port: 445 TCP Blocked
2020-06-22 14:27:46
112.200.98.105 attack
php WP PHPmyadamin ABUSE blocked for 12h
2020-06-22 13:52:53
222.186.42.7 attackbots
Jun 22 07:50:16 eventyay sshd[11663]: Failed password for root from 222.186.42.7 port 53353 ssh2
Jun 22 07:50:26 eventyay sshd[11665]: Failed password for root from 222.186.42.7 port 50017 ssh2
...
2020-06-22 13:54:01
218.92.0.165 attack
Jun 22 07:59:22 home sshd[19073]: Failed password for root from 218.92.0.165 port 55497 ssh2
Jun 22 07:59:36 home sshd[19073]: Failed password for root from 218.92.0.165 port 55497 ssh2
Jun 22 07:59:36 home sshd[19073]: error: maximum authentication attempts exceeded for root from 218.92.0.165 port 55497 ssh2 [preauth]
...
2020-06-22 14:04:02
37.20.185.92 attackbotsspam
1592798006 - 06/22/2020 05:53:26 Host: 37.20.185.92/37.20.185.92 Port: 445 TCP Blocked
2020-06-22 14:19:53
70.37.98.52 attackbotsspam
Jun 22 08:04:44 plex sshd[29826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.37.98.52  user=root
Jun 22 08:04:47 plex sshd[29826]: Failed password for root from 70.37.98.52 port 48458 ssh2
2020-06-22 14:27:14
218.1.18.78 attack
Invalid user webmo from 218.1.18.78 port 55533
2020-06-22 14:10:28
167.114.12.244 attack
Jun 22 06:34:02 rocket sshd[21819]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.12.244
Jun 22 06:34:04 rocket sshd[21819]: Failed password for invalid user log from 167.114.12.244 port 57294 ssh2
Jun 22 06:36:55 rocket sshd[22116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.12.244
...
2020-06-22 13:47:29
51.83.76.88 attackbotsspam
Jun 22 04:51:44 rocket sshd[12753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.76.88
Jun 22 04:51:46 rocket sshd[12753]: Failed password for invalid user cassandra from 51.83.76.88 port 60446 ssh2
...
2020-06-22 13:51:54
167.114.155.2 attackspambots
Jun 22 04:53:55 l02a sshd[17772]: Invalid user magna from 167.114.155.2
Jun 22 04:53:55 l02a sshd[17772]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=mx.solarsend9.club 
Jun 22 04:53:55 l02a sshd[17772]: Invalid user magna from 167.114.155.2
Jun 22 04:53:57 l02a sshd[17772]: Failed password for invalid user magna from 167.114.155.2 port 44332 ssh2
2020-06-22 13:54:27
89.103.143.135 attackbots
Jun 22 08:39:51 www5 sshd\[11695\]: Invalid user admin from 89.103.143.135
Jun 22 08:39:51 www5 sshd\[11695\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.103.143.135
Jun 22 08:39:53 www5 sshd\[11695\]: Failed password for invalid user admin from 89.103.143.135 port 41952 ssh2
...
2020-06-22 14:02:23
51.83.33.88 attackspam
Failed password for invalid user cjl from 51.83.33.88 port 44972 ssh2
2020-06-22 14:08:26
203.196.142.228 attackspam
5x Failed Password
2020-06-22 14:05:39
185.143.75.153 attackbotsspam
Jun 22 08:19:31 relay postfix/smtpd\[24948\]: warning: unknown\[185.143.75.153\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Jun 22 08:19:57 relay postfix/smtpd\[12975\]: warning: unknown\[185.143.75.153\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Jun 22 08:20:16 relay postfix/smtpd\[31452\]: warning: unknown\[185.143.75.153\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Jun 22 08:20:43 relay postfix/smtpd\[12318\]: warning: unknown\[185.143.75.153\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Jun 22 08:21:02 relay postfix/smtpd\[24615\]: warning: unknown\[185.143.75.153\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
...
2020-06-22 14:23:57
222.186.30.218 attackbotsspam
Jun 21 22:42:56 dignus sshd[5800]: Failed password for root from 222.186.30.218 port 56288 ssh2
Jun 21 22:42:59 dignus sshd[5800]: Failed password for root from 222.186.30.218 port 56288 ssh2
Jun 21 22:43:02 dignus sshd[5800]: Failed password for root from 222.186.30.218 port 56288 ssh2
Jun 21 22:43:04 dignus sshd[5815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.218  user=root
Jun 21 22:43:06 dignus sshd[5815]: Failed password for root from 222.186.30.218 port 27328 ssh2
...
2020-06-22 13:50:08

最近上报的IP列表

3.91.87.49 31.170.57.81 180.123.169.10 167.71.173.103
123.55.147.8 191.53.249.213 151.235.231.129 116.55.34.21
77.43.37.38 180.96.12.153 14.232.134.196 181.118.179.102
109.203.185.243 148.163.87.136 138.68.41.178 89.39.95.149
140.114.28.155 176.106.206.131 81.18.53.195 37.236.153.149