107.148.200.211

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Peg Tech Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Port Scan detected from 107.148.200.211 (US/United States/-). 4 hits in the last 121 seconds	2019-08-23 12:29:52

相同子网IP讨论:

IP	类型	评论内容	时间
107.148.200.93	attack	suspicious action Mon, 24 Feb 2020 01:58:12 -0300	2020-02-24 13:39:51

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 107.148.200.211
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22057
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;107.148.200.211.		IN	A

;; AUTHORITY SECTION:
.			2389	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082201 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 23 12:29:43 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 211.200.148.107.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 211.200.148.107.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
49.88.112.55	attack	Dec 26 15:58:35 server sshd\[14709\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.55 user=root Dec 26 15:58:38 server sshd\[14709\]: Failed password for root from 49.88.112.55 port 44287 ssh2 Dec 26 15:58:42 server sshd\[14709\]: Failed password for root from 49.88.112.55 port 44287 ssh2 Dec 26 15:58:46 server sshd\[14709\]: Failed password for root from 49.88.112.55 port 44287 ssh2 Dec 26 15:58:49 server sshd\[14709\]: Failed password for root from 49.88.112.55 port 44287 ssh2 ...	2019-12-26 21:20:18
198.108.67.62	attackbotsspam	ET DROP Dshield Block Listed Source group 1 - port: 50001 proto: TCP cat: Misc Attack	2019-12-26 21:00:47
80.211.143.24	attack	\[2019-12-26 07:58:29\] NOTICE\[2839\] chan_sip.c: Registration from '"55555" \' failed for '80.211.143.24:5082' - Wrong password \[2019-12-26 07:58:29\] SECURITY\[2857\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-12-26T07:58:29.281-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="55555",SessionID="0x7f0fb4a5a908",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/80.211.143.24/5082",Challenge="4ac27446",ReceivedChallenge="4ac27446",ReceivedHash="cff0d3cb28346efde55b8befa6741e0e" \[2019-12-26 07:59:22\] NOTICE\[2839\] chan_sip.c: Registration from '"48" \' failed for '80.211.143.24:5098' - Wrong password \[2019-12-26 07:59:22\] SECURITY\[2857\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-12-26T07:59:22.427-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="48",SessionID="0x7f0fb4a5a908",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/8	2019-12-26 21:21:43
213.91.179.246	attack	Dec 26 12:45:11 lnxmysql61 sshd[1046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.91.179.246	2019-12-26 21:26:13
113.110.43.18	attackspambots	Scanning	2019-12-26 21:32:33
69.94.136.177	attackspambots	2019-12-26T07:20:55.289456stark.klein-stark.info postfix/smtpd\[14372\]: NOQUEUE: reject: RCPT from shade.kwyali.com\[69.94.136.177\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\ ...	2019-12-26 21:04:08
159.65.12.183	attack	$f2bV_matches	2019-12-26 21:16:45
113.162.185.106	attackspambots	This IP Address sent many spam to @bit.co.id mhamdanrifai@gmail.com is administrator	2019-12-26 21:03:07
187.201.25.54	attack	Invalid user wwwrun from 187.201.25.54 port 15060	2019-12-26 21:27:57
216.218.206.116	attackbots	firewall-block, port(s): 6379/tcp	2019-12-26 21:02:04
118.25.48.254	attack	Dec 26 09:11:11 mout sshd[12638]: Invalid user skoldberg from 118.25.48.254 port 56164	2019-12-26 21:26:58
180.163.220.43	attackbots	Web bot without proper user agent declaration scraping website pages	2019-12-26 20:51:37
182.54.148.200	attackbots	1577341264 - 12/26/2019 07:21:04 Host: 182.54.148.200/182.54.148.200 Port: 445 TCP Blocked	2019-12-26 20:58:25
218.92.0.141	attackbots	Dec 26 13:27:41 ns3110291 sshd\[11172\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.141 user=root Dec 26 13:27:44 ns3110291 sshd\[11172\]: Failed password for root from 218.92.0.141 port 47991 ssh2 Dec 26 13:27:47 ns3110291 sshd\[11172\]: Failed password for root from 218.92.0.141 port 47991 ssh2 Dec 26 13:27:54 ns3110291 sshd\[11172\]: Failed password for root from 218.92.0.141 port 47991 ssh2 Dec 26 13:27:59 ns3110291 sshd\[11172\]: Failed password for root from 218.92.0.141 port 47991 ssh2 ...	2019-12-26 20:54:15
182.253.61.12	attackbots	Unauthorized connection attempt detected from IP address 182.253.61.12 to port 445	2019-12-26 21:16:10

最近上报的IP列表

132.116.5.206	183.55.226.166	42.49.108.34	61.208.5.37
157.182.70.15	142.160.114.204	129.131.184.225	2.57.111.171
93.191.41.46	205.28.122.21	57.30.119.197	173.162.127.186
186.241.134.240	247.22.29.149	119.160.1.180	170.24.75.39
114.127.141.212	228.250.191.189	21.245.124.73	51.83.69.78