148.66.132.169

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): GoDaddy.com

主机名(hostname): unknown

机构(organization): GoDaddy.com, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	148.66.132.169 - - [23/Jun/2019:21:50:03 +0200] "POST [munged]wp-login.php HTTP/1.1" 444 0 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 0.000	2019-06-24 11:30:00

相同子网IP讨论:

IP	类型	评论内容	时间
148.66.132.190	attack	Ssh brute force	2020-10-04 09:05:57
148.66.132.190	attackbotsspam	2020-10-03T03:22:43.911310n23.at sshd[2066088]: Failed password for invalid user git from 148.66.132.190 port 36800 ssh2 2020-10-03T03:37:20.303913n23.at sshd[2077902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190 user=root 2020-10-03T03:37:22.404701n23.at sshd[2077902]: Failed password for root from 148.66.132.190 port 35436 ssh2 ...	2020-10-04 01:42:25
148.66.132.190	attack	2020-10-03T03:22:43.911310n23.at sshd[2066088]: Failed password for invalid user git from 148.66.132.190 port 36800 ssh2 2020-10-03T03:37:20.303913n23.at sshd[2077902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190 user=root 2020-10-03T03:37:22.404701n23.at sshd[2077902]: Failed password for root from 148.66.132.190 port 35436 ssh2 ...	2020-10-03 17:27:56
148.66.132.190	attackspambots	SSH brute	2020-09-29 03:25:49
148.66.132.190	attackbotsspam	Sep 28 07:57:34 nextcloud sshd\[8903\]: Invalid user guest from 148.66.132.190 Sep 28 07:57:34 nextcloud sshd\[8903\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190 Sep 28 07:57:36 nextcloud sshd\[8903\]: Failed password for invalid user guest from 148.66.132.190 port 55886 ssh2	2020-09-28 19:37:03
148.66.132.190	attackspambots	Aug 24 14:55:44 ip-172-31-16-56 sshd\[1591\]: Invalid user web from 148.66.132.190\ Aug 24 14:55:46 ip-172-31-16-56 sshd\[1591\]: Failed password for invalid user web from 148.66.132.190 port 58242 ssh2\ Aug 24 15:00:41 ip-172-31-16-56 sshd\[1617\]: Invalid user db2inst1 from 148.66.132.190\ Aug 24 15:00:43 ip-172-31-16-56 sshd\[1617\]: Failed password for invalid user db2inst1 from 148.66.132.190 port 38126 ssh2\ Aug 24 15:05:31 ip-172-31-16-56 sshd\[1667\]: Invalid user postgres from 148.66.132.190\	2020-08-25 00:43:51
148.66.132.190	attackbotsspam	Aug 17 04:15:49 itv-usvr-01 sshd[24156]: Invalid user brisa from 148.66.132.190 Aug 17 04:15:49 itv-usvr-01 sshd[24156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190 Aug 17 04:15:49 itv-usvr-01 sshd[24156]: Invalid user brisa from 148.66.132.190 Aug 17 04:15:51 itv-usvr-01 sshd[24156]: Failed password for invalid user brisa from 148.66.132.190 port 39092 ssh2	2020-08-17 05:32:23
148.66.132.190	attack	Aug 12 23:53:24 cosmoit sshd[26793]: Failed password for root from 148.66.132.190 port 59358 ssh2	2020-08-13 06:02:42
148.66.132.190	attack	Aug 3 00:06:49 itv-usvr-01 sshd[6849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190 user=root Aug 3 00:06:51 itv-usvr-01 sshd[6849]: Failed password for root from 148.66.132.190 port 34194 ssh2 Aug 3 00:11:32 itv-usvr-01 sshd[7198]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190 user=root Aug 3 00:11:34 itv-usvr-01 sshd[7198]: Failed password for root from 148.66.132.190 port 47582 ssh2 Aug 3 00:16:02 itv-usvr-01 sshd[7400]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190 user=root Aug 3 00:16:04 itv-usvr-01 sshd[7400]: Failed password for root from 148.66.132.190 port 60950 ssh2	2020-08-03 02:05:23
148.66.132.190	attack	Invalid user jogoon from 148.66.132.190 port 38050	2020-08-01 14:04:33
148.66.132.190	attackspambots	Jul 30 08:05:54 piServer sshd[21143]: Failed password for backup from 148.66.132.190 port 35484 ssh2 Jul 30 08:09:27 piServer sshd[21521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190 Jul 30 08:09:29 piServer sshd[21521]: Failed password for invalid user xiehs from 148.66.132.190 port 56024 ssh2 ...	2020-07-30 16:40:13
148.66.132.190	attack	Jul 18 00:02:02 [host] sshd[25700]: Invalid user e Jul 18 00:02:02 [host] sshd[25700]: pam_unix(sshd: Jul 18 00:02:05 [host] sshd[25700]: Failed passwor	2020-07-18 08:22:35
148.66.132.190	attackspam	Jun 26 04:57:54 dignus sshd[8727]: Failed password for invalid user ejabberd from 148.66.132.190 port 37842 ssh2 Jun 26 05:01:36 dignus sshd[9084]: Invalid user deploy from 148.66.132.190 port 38318 Jun 26 05:01:36 dignus sshd[9084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.132.190 Jun 26 05:01:37 dignus sshd[9084]: Failed password for invalid user deploy from 148.66.132.190 port 38318 ssh2 Jun 26 05:05:27 dignus sshd[9474]: Invalid user roberto from 148.66.132.190 port 38806 ...	2020-06-26 22:54:01
148.66.132.190	attackbots	Jun 12 08:05:27 Tower sshd[14390]: Connection from 148.66.132.190 port 37990 on 192.168.10.220 port 22 rdomain "" Jun 12 08:05:29 Tower sshd[14390]: Invalid user monitor from 148.66.132.190 port 37990 Jun 12 08:05:29 Tower sshd[14390]: error: Could not get shadow information for NOUSER Jun 12 08:05:29 Tower sshd[14390]: Failed password for invalid user monitor from 148.66.132.190 port 37990 ssh2 Jun 12 08:05:29 Tower sshd[14390]: Received disconnect from 148.66.132.190 port 37990:11: Bye Bye [preauth] Jun 12 08:05:29 Tower sshd[14390]: Disconnected from invalid user monitor 148.66.132.190 port 37990 [preauth]	2020-06-12 23:58:08
148.66.132.190	attackspam	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-06-08 04:18:39

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.66.132.169
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 134
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;148.66.132.169.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050800 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Wed May 08 21:25:08 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 169.132.66.148.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 169.132.66.148.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
104.236.124.45	attackspambots	Jul 7 09:05:47 vpn01 sshd[32561]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.124.45 Jul 7 09:05:50 vpn01 sshd[32561]: Failed password for invalid user uno8 from 104.236.124.45 port 58198 ssh2 ...	2020-07-07 15:56:41
1.169.154.211	attack	Unauthorized connection attempt from IP address 1.169.154.211 on Port 445(SMB)	2020-07-07 15:42:57
185.206.91.42	attackbots	3389BruteforceStormFW22	2020-07-07 15:41:09
117.149.21.145	attackspambots	Jul 7 07:55:53 lnxmysql61 sshd[6122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.149.21.145	2020-07-07 15:39:17
91.121.65.15	attackspambots	2020-07-07T07:18:53.353850abusebot-3.cloudsearch.cf sshd[29772]: Invalid user wanghaoyu from 91.121.65.15 port 38756 2020-07-07T07:18:53.359305abusebot-3.cloudsearch.cf sshd[29772]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns336411.ip-91-121-65.eu 2020-07-07T07:18:53.353850abusebot-3.cloudsearch.cf sshd[29772]: Invalid user wanghaoyu from 91.121.65.15 port 38756 2020-07-07T07:18:55.192844abusebot-3.cloudsearch.cf sshd[29772]: Failed password for invalid user wanghaoyu from 91.121.65.15 port 38756 ssh2 2020-07-07T07:21:50.185178abusebot-3.cloudsearch.cf sshd[29784]: Invalid user chen from 91.121.65.15 port 36608 2020-07-07T07:21:50.190876abusebot-3.cloudsearch.cf sshd[29784]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns336411.ip-91-121-65.eu 2020-07-07T07:21:50.185178abusebot-3.cloudsearch.cf sshd[29784]: Invalid user chen from 91.121.65.15 port 36608 2020-07-07T07:21:51.988733abusebot-3.cloudse ...	2020-07-07 15:36:20
59.127.211.87	attackbots	Port scan on 1 port(s): 88	2020-07-07 15:52:57
176.74.13.170	attack	Jul 7 01:54:26 mx sshd[22788]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.74.13.170 Jul 7 01:54:28 mx sshd[22788]: Failed password for invalid user ofbiz from 176.74.13.170 port 35998 ssh2	2020-07-07 16:02:22
54.39.138.246	attackspam	SSH Brute-Force attacks	2020-07-07 15:59:44
92.247.190.184	attackbots	Port scan on 1 port(s): 37777	2020-07-07 16:16:23
71.181.50.191	attackbotsspam	Unauthorized connection attempt detected from IP address 71.181.50.191 to port 23	2020-07-07 15:48:59
85.204.246.240	attackbotsspam	85.204.246.240 - - [07/Jul/2020:06:38:47 +0100] "POST /wp-login.php HTTP/1.1" 200 3568 "https://wpeagledemoblog.com/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.90 Safari/537.36 2345Explorer/9.3.2.17331" 85.204.246.240 - - [07/Jul/2020:06:38:47 +0100] "POST /wp-login.php HTTP/1.1" 200 3568 "https://wpeagledemoblog.com/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.90 Safari/537.36 2345Explorer/9.3.2.17331" 85.204.246.240 - - [07/Jul/2020:06:38:48 +0100] "POST /wp-login.php HTTP/1.1" 200 3625 "https://wpeagledemoblog.com/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.90 Safari/537.36 2345Explorer/9.3.2.17331" ...	2020-07-07 15:49:59
138.255.148.35	attackbots	$f2bV_matches	2020-07-07 16:07:53
123.122.160.119	attack	Jul 7 05:25:43 localhost sshd[40227]: Invalid user oracle from 123.122.160.119 port 47730 Jul 7 05:25:43 localhost sshd[40227]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.122.160.119 Jul 7 05:25:43 localhost sshd[40227]: Invalid user oracle from 123.122.160.119 port 47730 Jul 7 05:25:45 localhost sshd[40227]: Failed password for invalid user oracle from 123.122.160.119 port 47730 ssh2 Jul 7 05:34:21 localhost sshd[41309]: Invalid user garrysmod from 123.122.160.119 port 36863 ...	2020-07-07 15:55:33
218.92.0.224	attackspam	Jul 7 01:08:31 dignus sshd[15211]: Failed password for root from 218.92.0.224 port 47004 ssh2 Jul 7 01:08:35 dignus sshd[15211]: Failed password for root from 218.92.0.224 port 47004 ssh2 Jul 7 01:08:41 dignus sshd[15211]: error: maximum authentication attempts exceeded for root from 218.92.0.224 port 47004 ssh2 [preauth] Jul 7 01:08:46 dignus sshd[15254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.224 user=root Jul 7 01:08:48 dignus sshd[15254]: Failed password for root from 218.92.0.224 port 10228 ssh2 ...	2020-07-07 16:08:59
106.75.52.43	attackspambots	Jul 7 07:56:46 plex-server sshd[480717]: Invalid user darren from 106.75.52.43 port 43260 Jul 7 07:56:46 plex-server sshd[480717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.52.43 Jul 7 07:56:46 plex-server sshd[480717]: Invalid user darren from 106.75.52.43 port 43260 Jul 7 07:56:48 plex-server sshd[480717]: Failed password for invalid user darren from 106.75.52.43 port 43260 ssh2 Jul 7 08:00:04 plex-server sshd[481009]: Invalid user ubuntu from 106.75.52.43 port 49648 ...	2020-07-07 16:12:51

最近上报的IP列表

130.70.34.247	52.224.121.164	214.0.208.214	220.187.219.50
202.166.198.138	27.79.216.24	42.196.212.224	219.107.169.182
139.37.131.56	41.77.221.91	192.95.3.200	184.118.54.33
82.137.52.59	150.136.138.194	159.224.64.105	14.184.52.145
193.209.164.85	180.246.99.16	220.124.204.155	118.26.182.13