148.66.145.158

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Singapore

运营商(isp): GoDaddy.com

主机名(hostname): unknown

机构(organization): GoDaddy.com, LLC

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	$f2bV_matches	2020-04-15 22:01:04

相同子网IP讨论:

IP	类型	评论内容	时间
148.66.145.30	attack	Attempt to hack Wordpress Login, XMLRPC or other login	2020-04-05 10:08:25
148.66.145.133	attack	xmlrpc attack	2020-03-31 22:34:24
148.66.145.155	attack	xmlrpc attack	2020-03-23 08:18:59
148.66.145.42	attackspam	Wordpress_xmlrpc_attack	2020-03-22 22:45:09
148.66.145.152	attackbots	xmlrpc attack	2020-03-21 05:04:53
148.66.145.2	attackbots	Mar 16 23:36:07 mercury wordpress(www.learnargentinianspanish.com)[1450]: XML-RPC authentication failure for josh from 148.66.145.2 ...	2020-03-17 09:40:54
148.66.145.28	attackspam	Automatic report - XMLRPC Attack	2020-02-15 15:26:58
148.66.145.146	attackspambots	SCHUETZENMUSIKANTEN.DE 148.66.145.146 \[12/Nov/2019:07:28:50 +0100\] "POST /xmlrpc.php HTTP/1.1" 200 4285 "-" "Mozilla/5.0 $Windows NT 10.0\; Win64\; x64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/60.0.3112.113 Safari/537.36" schuetzenmusikanten.de 148.66.145.146 \[12/Nov/2019:07:28:50 +0100\] "POST /xmlrpc.php HTTP/1.1" 200 4285 "-" "Mozilla/5.0 $Windows NT 10.0\; Win64\; x64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/60.0.3112.113 Safari/537.36"	2019-11-12 17:17:24
148.66.145.28	attackspambots	Automatic report - XMLRPC Attack	2019-10-29 20:23:24
148.66.145.165	attackspambots	148.66.145.165 has been banned for [WebApp Attack] ...	2019-10-26 18:28:54
148.66.145.25	attackbots	Automatic report - Banned IP Access	2019-10-20 23:50:09
148.66.145.134	attackspam	miraklein.com 148.66.145.134 \[02/Oct/2019:23:27:24 +0200\] "POST /xmlrpc.php HTTP/1.1" 301 439 "-" "WordPress" miraniessen.de 148.66.145.134 \[02/Oct/2019:23:27:25 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4214 "-" "WordPress"	2019-10-03 07:10:28
148.66.145.133	attackbots	xmlrpc attack	2019-10-03 01:04:36
148.66.145.133	attackbotsspam	fail2ban honeypot	2019-10-01 07:28:35
148.66.145.133	attackspam	Automatic report - Banned IP Access	2019-09-29 22:28:42

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.66.145.158
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28456
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;148.66.145.158.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019060501 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jun 06 03:36:44 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 158.145.66.148.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 158.145.66.148.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
49.233.67.11	attackspambots	WordPress brute force	2020-06-17 07:32:03
36.81.234.152	attack	Unauthorized connection attempt from IP address 36.81.234.152 on Port 445(SMB)	2020-06-17 07:44:56
148.153.73.242	attackspam	286. On Jun 16 2020 experienced a Brute Force SSH login attempt -> 1 unique times by 148.153.73.242.	2020-06-17 07:05:36
95.156.196.20	attack	WordPress brute force	2020-06-17 07:06:05
185.185.68.33	attack	Jun 16 21:15:45 v2hgb sshd[24215]: Invalid user 123 from 185.185.68.33 port 48798 Jun 16 21:15:45 v2hgb sshd[24215]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.185.68.33 Jun 16 21:15:47 v2hgb sshd[24215]: Failed password for invalid user 123 from 185.185.68.33 port 48798 ssh2 Jun 16 21:15:48 v2hgb sshd[24215]: Received disconnect from 185.185.68.33 port 48798:11: Bye Bye [preauth] Jun 16 21:15:48 v2hgb sshd[24215]: Disconnected from invalid user 123 185.185.68.33 port 48798 [preauth] Jun 16 21:16:49 v2hgb sshd[24277]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.185.68.33 user=r.r Jun 16 21:16:51 v2hgb sshd[24277]: Failed password for r.r from 185.185.68.33 port 56200 ssh2 Jun 16 21:16:52 v2hgb sshd[24277]: Received disconnect from 185.185.68.33 port 56200:11: Bye Bye [preauth] Jun 16 21:16:52 v2hgb sshd[24277]: Disconnected from authenticating user r.r 185.185.68.33 port 5........ -------------------------------	2020-06-17 07:22:00
80.211.97.175	attackbotsspam	WordPress brute force	2020-06-17 07:16:17
194.26.29.250	attackbotsspam	Multiport scan : 80 ports scanned 25041 25115 25180 25231 25233 25286 25345 25404 25414 25459 25490 25539 25624 25692 25703 25779 25786 25810 25830 25866 25877 25914 25921 25942 25973 25996 26029 26067 26223 26249 26449 26460 26560 26598 26657 26669 26707 26777 26825 27058 27273 27631 27821 27824 27902 27909 27938 27997 28001 28018 28176 28214 28233 28271 28287 28313 28384 28412 28443 28453 28527 28565 28603 28627 28736 28776 28786 .....	2020-06-17 07:16:34
193.122.170.39	attackspam	2020-06-16T16:49:21.155290devel sshd[26493]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.122.170.39 user=root 2020-06-16T16:49:23.245509devel sshd[26493]: Failed password for root from 193.122.170.39 port 50634 ssh2 2020-06-16T16:52:15.837749devel sshd[26796]: Invalid user cx from 193.122.170.39 port 46646	2020-06-17 07:33:09
186.234.249.196	attackbotsspam	Invalid user ryan from 186.234.249.196 port 31483	2020-06-17 07:05:17
37.33.23.236	attackspambots	WordPress brute force	2020-06-17 07:44:25
35.232.185.125	attackspambots	Invalid user louwg from 35.232.185.125 port 34782	2020-06-17 07:28:19
45.119.83.240	attackbots	WordPress brute force	2020-06-17 07:41:45
59.125.122.16	attackbots	Honeypot attack, port: 81, PTR: 59-125-122-16.HINET-IP.hinet.net.	2020-06-17 07:24:47
157.230.19.72	attackbots	Invalid user xjf from 157.230.19.72 port 56838	2020-06-17 07:10:09
200.124.26.146	attackspambots	Honeypot attack, port: 445, PTR: cm-200-124-26-146.cpe-statics.cableonda.net.	2020-06-17 07:14:31

最近上报的IP列表

54.208.22.51	32.11.30.239	111.73.46.166	196.7.106.97
81.49.5.112	174.82.74.154	5.95.235.172	98.14.128.83
117.3.178.221	213.6.29.157	2408:825c:3281:4252:9c57:4075:c679:3f4	196.36.131.225
178.3.18.14	193.212.155.248	203.114.52.99	36.232.251.79
155.52.154.249	61.219.84.192	193.119.218.88	208.38.34.116