148.214.180.238

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Mexico

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.214.180.238
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51768
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;148.214.180.238.		IN	A

;; AUTHORITY SECTION:
.			155	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011000 1800 900 604800 86400

;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 10 23:57:11 CST 2022
;; MSG SIZE  rcvd: 108

HOST信息:

Host 238.180.214.148.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 238.180.214.148.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
159.146.27.120	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/159.146.27.120/ TR - 1H : (68) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TR NAME ASN : ASN12735 IP : 159.146.27.120 CIDR : 159.146.27.0/24 PREFIX COUNT : 457 UNIQUE IP COUNT : 150016 ATTACKS DETECTED ASN12735 : 1H - 1 3H - 2 6H - 2 12H - 3 24H - 5 DateTime : 2019-10-22 13:52:50 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-22 20:46:46
171.67.70.80	attackspambots	port scan and connect, tcp 1433 (ms-sql-s)	2019-10-22 21:08:23
105.145.33.143	attackspambots	Brute force attempt	2019-10-22 20:48:51
221.167.27.138	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/221.167.27.138/ KR - 1H : (54) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : KR NAME ASN : ASN4766 IP : 221.167.27.138 CIDR : 221.166.0.0/15 PREFIX COUNT : 8136 UNIQUE IP COUNT : 44725248 ATTACKS DETECTED ASN4766 : 1H - 2 3H - 4 6H - 9 12H - 17 24H - 38 DateTime : 2019-10-22 13:51:54 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-10-22 21:25:31
69.223.72.139	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/69.223.72.139/ US - 1H : (177) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : US NAME ASN : ASN7018 IP : 69.223.72.139 CIDR : 69.223.0.0/16 PREFIX COUNT : 9621 UNIQUE IP COUNT : 81496832 ATTACKS DETECTED ASN7018 : 1H - 1 3H - 2 6H - 4 12H - 7 24H - 14 DateTime : 2019-10-22 13:52:12 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-22 21:13:55
36.103.243.247	attack	Mar 16 07:12:51 vtv3 sshd\[19169\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.103.243.247 user=root Mar 16 07:12:52 vtv3 sshd\[19169\]: Failed password for root from 36.103.243.247 port 46865 ssh2 Mar 16 07:20:54 vtv3 sshd\[22525\]: Invalid user oracle from 36.103.243.247 port 44269 Mar 16 07:20:54 vtv3 sshd\[22525\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.103.243.247 Mar 16 07:20:56 vtv3 sshd\[22525\]: Failed password for invalid user oracle from 36.103.243.247 port 44269 ssh2 Mar 30 11:55:18 vtv3 sshd\[11497\]: Invalid user vx from 36.103.243.247 port 50932 Mar 30 11:55:18 vtv3 sshd\[11497\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.103.243.247 Mar 30 11:55:20 vtv3 sshd\[11497\]: Failed password for invalid user vx from 36.103.243.247 port 50932 ssh2 Mar 30 12:04:00 vtv3 sshd\[14609\]: Invalid user im from 36.103.243.247 port 46877 Mar 30 12:04:00 v	2019-10-22 21:19:04
222.186.175.183	attackbotsspam	Oct 22 15:23:14 ovpn sshd\[27241\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.183 user=root Oct 22 15:23:16 ovpn sshd\[27241\]: Failed password for root from 222.186.175.183 port 9690 ssh2 Oct 22 15:23:42 ovpn sshd\[27343\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.183 user=root Oct 22 15:23:44 ovpn sshd\[27343\]: Failed password for root from 222.186.175.183 port 14086 ssh2 Oct 22 15:23:48 ovpn sshd\[27343\]: Failed password for root from 222.186.175.183 port 14086 ssh2	2019-10-22 21:27:49
45.136.109.215	attackbotsspam	Oct 22 14:51:26 mc1 kernel: \[3035036.798871\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.109.215 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=38672 PROTO=TCP SPT=43015 DPT=3881 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 22 14:55:24 mc1 kernel: \[3035274.290419\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.109.215 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=22136 PROTO=TCP SPT=43015 DPT=3173 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 22 14:56:51 mc1 kernel: \[3035362.117446\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.109.215 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=1997 PROTO=TCP SPT=43015 DPT=4432 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-22 21:14:23
164.68.103.171	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/164.68.103.171/ DE - 1H : (59) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : DE NAME ASN : ASN51167 IP : 164.68.103.171 CIDR : 164.68.102.0/23 PREFIX COUNT : 228 UNIQUE IP COUNT : 158976 ATTACKS DETECTED ASN51167 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 5 DateTime : 2019-10-22 13:52:49 INFO : Looking for resource vulnerabilities 403 Detected and Blocked by ADMIN - data recovery	2019-10-22 20:46:19
182.50.132.116	attack	abcdata-sys.de:80 182.50.132.116 - - \[22/Oct/2019:13:52:10 +0200\] "POST /xmlrpc.php HTTP/1.1" 301 441 "-" "Windows Live Writter" www.goldgier.de 182.50.132.116 \[22/Oct/2019:13:52:12 +0200\] "POST /xmlrpc.php HTTP/1.1" 200 4484 "-" "Windows Live Writter"	2019-10-22 21:12:59
104.168.134.59	attackspambots	2019-10-22T12:59:11.701316abusebot-5.cloudsearch.cf sshd\[20301\]: Invalid user letmein123 from 104.168.134.59 port 41806	2019-10-22 21:23:00
77.247.181.165	attackspambots	Oct 22 14:10:09 rotator sshd\[22686\]: Failed password for root from 77.247.181.165 port 26389 ssh2Oct 22 14:10:12 rotator sshd\[22686\]: Failed password for root from 77.247.181.165 port 26389 ssh2Oct 22 14:10:14 rotator sshd\[22686\]: Failed password for root from 77.247.181.165 port 26389 ssh2Oct 22 14:10:17 rotator sshd\[22686\]: Failed password for root from 77.247.181.165 port 26389 ssh2Oct 22 14:10:20 rotator sshd\[22686\]: Failed password for root from 77.247.181.165 port 26389 ssh2Oct 22 14:10:24 rotator sshd\[22686\]: Failed password for root from 77.247.181.165 port 26389 ssh2 ...	2019-10-22 21:06:31
92.118.38.37	attack	Oct 22 14:38:48 mail postfix/smtpd\[30749\]: warning: unknown\[92.118.38.37\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 22 15:08:58 mail postfix/smtpd\[1929\]: warning: unknown\[92.118.38.37\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 22 15:09:32 mail postfix/smtpd\[2515\]: warning: unknown\[92.118.38.37\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 22 15:10:07 mail postfix/smtpd\[2515\]: warning: unknown\[92.118.38.37\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-10-22 21:11:18
138.197.195.52	attack	web-1 [ssh] SSH Attack	2019-10-22 21:09:24
130.61.23.32	attack	Brute force SMTP login attempts.	2019-10-22 21:20:51

最近上报的IP列表

162.106.44.22	129.242.53.17	230.86.139.242	250.188.27.89
159.232.88.46	133.59.149.151	100.139.120.129	204.251.245.17
238.6.94.253	153.242.36.99	15.6.229.180	216.161.157.154
142.82.109.184	11.22.64.70	177.240.147.178	152.77.37.26
105.222.190.170	159.207.117.164	101.79.82.99	235.236.57.229