148.66.132.169

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): GoDaddy.com

主机名(hostname): unknown

机构(organization): GoDaddy.com, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	148.66.132.169 - - [23/Jun/2019:21:50:03 +0200] "POST [munged]wp-login.php HTTP/1.1" 444 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 0.000	2019-06-24 11:30:00

相同子网IP讨论:

IP	类型	评论内容	时间
148.66.132.190	attack	Ssh brute force	2020-10-04 09:05:57
148.66.132.190	attackbotsspam	2020-10-03T03:22:43.911310n23.at sshd[2066088]: Failed password for invalid user git from 148.66.132.190 port 36800 ssh2 2020-10-03T03:37:20.303913n23.at sshd[2077902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190 user=root 2020-10-03T03:37:22.404701n23.at sshd[2077902]: Failed password for root from 148.66.132.190 port 35436 ssh2 ...	2020-10-04 01:42:25
148.66.132.190	attack	2020-10-03T03:22:43.911310n23.at sshd[2066088]: Failed password for invalid user git from 148.66.132.190 port 36800 ssh2 2020-10-03T03:37:20.303913n23.at sshd[2077902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190 user=root 2020-10-03T03:37:22.404701n23.at sshd[2077902]: Failed password for root from 148.66.132.190 port 35436 ssh2 ...	2020-10-03 17:27:56
148.66.132.190	attackspambots	SSH brute	2020-09-29 03:25:49
148.66.132.190	attackbotsspam	Sep 28 07:57:34 nextcloud sshd\[8903\]: Invalid user guest from 148.66.132.190 Sep 28 07:57:34 nextcloud sshd\[8903\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190 Sep 28 07:57:36 nextcloud sshd\[8903\]: Failed password for invalid user guest from 148.66.132.190 port 55886 ssh2	2020-09-28 19:37:03
148.66.132.190	attackspambots	Aug 24 14:55:44 ip-172-31-16-56 sshd\[1591\]: Invalid user web from 148.66.132.190\ Aug 24 14:55:46 ip-172-31-16-56 sshd\[1591\]: Failed password for invalid user web from 148.66.132.190 port 58242 ssh2\ Aug 24 15:00:41 ip-172-31-16-56 sshd\[1617\]: Invalid user db2inst1 from 148.66.132.190\ Aug 24 15:00:43 ip-172-31-16-56 sshd\[1617\]: Failed password for invalid user db2inst1 from 148.66.132.190 port 38126 ssh2\ Aug 24 15:05:31 ip-172-31-16-56 sshd\[1667\]: Invalid user postgres from 148.66.132.190\	2020-08-25 00:43:51
148.66.132.190	attackbotsspam	Aug 17 04:15:49 itv-usvr-01 sshd[24156]: Invalid user brisa from 148.66.132.190 Aug 17 04:15:49 itv-usvr-01 sshd[24156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190 Aug 17 04:15:49 itv-usvr-01 sshd[24156]: Invalid user brisa from 148.66.132.190 Aug 17 04:15:51 itv-usvr-01 sshd[24156]: Failed password for invalid user brisa from 148.66.132.190 port 39092 ssh2	2020-08-17 05:32:23
148.66.132.190	attack	Aug 12 23:53:24 cosmoit sshd[26793]: Failed password for root from 148.66.132.190 port 59358 ssh2	2020-08-13 06:02:42
148.66.132.190	attack	Aug 3 00:06:49 itv-usvr-01 sshd[6849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190 user=root Aug 3 00:06:51 itv-usvr-01 sshd[6849]: Failed password for root from 148.66.132.190 port 34194 ssh2 Aug 3 00:11:32 itv-usvr-01 sshd[7198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190 user=root Aug 3 00:11:34 itv-usvr-01 sshd[7198]: Failed password for root from 148.66.132.190 port 47582 ssh2 Aug 3 00:16:02 itv-usvr-01 sshd[7400]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190 user=root Aug 3 00:16:04 itv-usvr-01 sshd[7400]: Failed password for root from 148.66.132.190 port 60950 ssh2	2020-08-03 02:05:23
148.66.132.190	attack	Invalid user jogoon from 148.66.132.190 port 38050	2020-08-01 14:04:33
148.66.132.190	attackspambots	Jul 30 08:05:54 piServer sshd[21143]: Failed password for backup from 148.66.132.190 port 35484 ssh2 Jul 30 08:09:27 piServer sshd[21521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190 Jul 30 08:09:29 piServer sshd[21521]: Failed password for invalid user xiehs from 148.66.132.190 port 56024 ssh2 ...	2020-07-30 16:40:13
148.66.132.190	attack	Jul 18 00:02:02 [host] sshd[25700]: Invalid user e Jul 18 00:02:02 [host] sshd[25700]: pam_unix(sshd: Jul 18 00:02:05 [host] sshd[25700]: Failed passwor	2020-07-18 08:22:35
148.66.132.190	attackspam	Jun 26 04:57:54 dignus sshd[8727]: Failed password for invalid user ejabberd from 148.66.132.190 port 37842 ssh2 Jun 26 05:01:36 dignus sshd[9084]: Invalid user deploy from 148.66.132.190 port 38318 Jun 26 05:01:36 dignus sshd[9084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190 Jun 26 05:01:37 dignus sshd[9084]: Failed password for invalid user deploy from 148.66.132.190 port 38318 ssh2 Jun 26 05:05:27 dignus sshd[9474]: Invalid user roberto from 148.66.132.190 port 38806 ...	2020-06-26 22:54:01
148.66.132.190	attackbots	Jun 12 08:05:27 Tower sshd[14390]: Connection from 148.66.132.190 port 37990 on 192.168.10.220 port 22 rdomain "" Jun 12 08:05:29 Tower sshd[14390]: Invalid user monitor from 148.66.132.190 port 37990 Jun 12 08:05:29 Tower sshd[14390]: error: Could not get shadow information for NOUSER Jun 12 08:05:29 Tower sshd[14390]: Failed password for invalid user monitor from 148.66.132.190 port 37990 ssh2 Jun 12 08:05:29 Tower sshd[14390]: Received disconnect from 148.66.132.190 port 37990:11: Bye Bye [preauth] Jun 12 08:05:29 Tower sshd[14390]: Disconnected from invalid user monitor 148.66.132.190 port 37990 [preauth]	2020-06-12 23:58:08
148.66.132.190	attackspam	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-06-08 04:18:39

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.66.132.169
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 134
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;148.66.132.169.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050800 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Wed May 08 21:25:08 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 169.132.66.148.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 169.132.66.148.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
45.177.93.103	attack	Unauthorized connection attempt detected from IP address 45.177.93.103 to port 23 [J]	2020-03-02 16:57:21
80.117.26.98	attackspam	Unauthorized connection attempt detected from IP address 80.117.26.98 to port 23 [J]	2020-03-02 16:22:06
219.85.163.80	attack	Unauthorized connection attempt detected from IP address 219.85.163.80 to port 23 [J]	2020-03-02 16:31:00
78.36.94.99	attackbotsspam	Unauthorized connection attempt detected from IP address 78.36.94.99 to port 23 [J]	2020-03-02 16:22:33
220.133.1.238	attackbotsspam	Unauthorized connection attempt detected from IP address 220.133.1.238 to port 4567 [J]	2020-03-02 17:00:43
106.47.31.186	attackspambots	Unauthorized connection attempt detected from IP address 106.47.31.186 to port 22 [J]	2020-03-02 16:49:48
182.138.162.98	attackbotsspam	Unauthorized connection attempt detected from IP address 182.138.162.98 to port 22 [J]	2020-03-02 16:33:51
221.13.12.133	attackspam	Unauthorized connection attempt detected from IP address 221.13.12.133 to port 8082 [J]	2020-03-02 16:29:37
211.20.10.89	attack	Unauthorized connection attempt detected from IP address 211.20.10.89 to port 81 [J]	2020-03-02 17:01:25
123.232.224.133	attackspam	Unauthorized connection attempt detected from IP address 123.232.224.133 to port 22 [J]	2020-03-02 16:41:31
46.185.133.76	attackbotsspam	Unauthorized connection attempt detected from IP address 46.185.133.76 to port 23 [J]	2020-03-02 16:25:30
167.58.254.124	attack	Unauthorized connection attempt detected from IP address 167.58.254.124 to port 80 [J]	2020-03-02 16:38:24
86.238.210.123	attack	Unauthorized connection attempt detected from IP address 86.238.210.123 to port 5555 [J]	2020-03-02 16:52:10
222.94.212.219	attackbots	Unauthorized connection attempt detected from IP address 222.94.212.219 to port 8118 [J]	2020-03-02 16:58:32
110.139.122.150	attack	SSH bruteforce	2020-03-02 16:48:47

最近上报的IP列表

130.70.34.247	52.224.121.164	214.0.208.214	220.187.219.50
202.166.198.138	27.79.216.24	42.196.212.224	219.107.169.182
139.37.131.56	41.77.221.91	192.95.3.200	184.118.54.33
82.137.52.59	150.136.138.194	159.224.64.105	14.184.52.145
193.209.164.85	180.246.99.16	220.124.204.155	118.26.182.13