148.68.197.196

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Japan

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.68.197.196
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4882
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;148.68.197.196.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021100 1800 900 604800 86400

;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 11 22:34:49 CST 2025
;; MSG SIZE  rcvd: 107

HOST信息:

196.197.68.148.in-addr.arpa domain name pointer mo148-68-197-196.air.mopera.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
196.197.68.148.in-addr.arpa	name = mo148-68-197-196.air.mopera.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
113.125.82.222	attackspambots	Jul 23 13:42:23 gw1 sshd[31291]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.125.82.222 Jul 23 13:42:25 gw1 sshd[31291]: Failed password for invalid user support from 113.125.82.222 port 53342 ssh2 ...	2020-07-23 16:43:03
106.75.181.119	attack	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-07-23 16:49:16
119.29.216.238	attackspam	Jul 23 08:45:00 mailserver sshd\[13210\]: Invalid user tmn from 119.29.216.238 ...	2020-07-23 17:07:40
36.46.135.38	attackbots	Invalid user ufo from 36.46.135.38 port 50314	2020-07-23 17:02:23
125.141.56.231	attack	"$f2bV_matches"	2020-07-23 17:09:52
210.212.53.117	attackbotsspam	Port scan: Attack repeated for 24 hours	2020-07-23 17:00:19
187.119.231.56	attackbots	2020-07-23T03:53:25.393636abusebot-3.cloudsearch.cf sshd[18659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.119.231.56 user=root 2020-07-23T03:53:27.578669abusebot-3.cloudsearch.cf sshd[18659]: Failed password for root from 187.119.231.56 port 48768 ssh2 2020-07-23T03:53:30.333403abusebot-3.cloudsearch.cf sshd[18661]: Invalid user ubnt from 187.119.231.56 port 59302 2020-07-23T03:53:30.657580abusebot-3.cloudsearch.cf sshd[18661]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.119.231.56 2020-07-23T03:53:30.333403abusebot-3.cloudsearch.cf sshd[18661]: Invalid user ubnt from 187.119.231.56 port 59302 2020-07-23T03:53:32.862604abusebot-3.cloudsearch.cf sshd[18661]: Failed password for invalid user ubnt from 187.119.231.56 port 59302 ssh2 2020-07-23T03:53:36.058833abusebot-3.cloudsearch.cf sshd[18663]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.119 ...	2020-07-23 17:09:01
159.89.163.226	attack	Jul 23 05:03:56 ny01 sshd[8810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.163.226 Jul 23 05:03:58 ny01 sshd[8810]: Failed password for invalid user ric from 159.89.163.226 port 54056 ssh2 Jul 23 05:09:03 ny01 sshd[9348]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.163.226	2020-07-23 17:11:11
91.191.147.101	attackbots	[ThuJul2310:13:40.5307402020][:error][pid14230:tid139903453071104][client91.191.147.101:37464][client91.191.147.101]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:n\(\?:-stealth\\|sauditor\\|e\(\?:ssus\\|etwork-services-auditor$\\|ikto\\|map\)\\|b$\?:lack\?widow\\|rutus\\|ilbo$\\|web$\?:inspec\\|roo$t\\|p$\?:mafind\\|aros\\|avuk$\\|cgichk\\|jaascois\\|\\\\\\\\.nasl\\|metis\\|w$\?:ebtrendssecurityanalyzer\\|hcc\\|3af\\\\\\\\.sourceforge\\\\\\\\.net$\\|\\\\\\\\bzmeu\\\\\\\\b\\|springenwerk\\|..."atREQUEST_HEADERS:User-Agent.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"193"][id"330034"][rev"12"][msg"Atomicorp.comWAFRules:UnauthorizedVulnerabilityScannerdetected"][data"nmap"][severity"CRITICAL"][hostname"148.251.104.72"][uri"/200"][unique_id"XxlGtAl0ekS9B7hWjy4cLwAAAIc"][ThuJul2310:13:40.5315572020][:error][pid14493:tid139903411111680][client91.191.147.101:55092][client91.191.147.101]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"\(\?:n\(\?:-ste	2020-07-23 16:47:18
94.176.8.88	attack	(Jul 23) LEN=40 TTL=238 ID=24436 DF TCP DPT=23 WINDOW=14600 SYN (Jul 23) LEN=40 TOS=0x10 PREC=0x40 TTL=242 ID=39973 DF TCP DPT=23 WINDOW=14600 SYN (Jul 22) LEN=40 TTL=238 ID=36856 DF TCP DPT=23 WINDOW=14600 SYN (Jul 22) LEN=40 TTL=238 ID=23066 DF TCP DPT=23 WINDOW=14600 SYN (Jul 21) LEN=40 TOS=0x10 PREC=0x40 TTL=242 ID=45455 DF TCP DPT=23 WINDOW=14600 SYN (Jul 21) LEN=40 TOS=0x10 PREC=0x40 TTL=242 ID=58137 DF TCP DPT=23 WINDOW=14600 SYN (Jul 21) LEN=40 TTL=238 ID=2999 DF TCP DPT=23 WINDOW=14600 SYN (Jul 20) LEN=40 TOS=0x10 PREC=0x40 TTL=242 ID=45988 DF TCP DPT=23 WINDOW=14600 SYN (Jul 20) LEN=40 TOS=0x10 PREC=0x40 TTL=242 ID=24942 DF TCP DPT=23 WINDOW=14600 SYN	2020-07-23 17:07:51
137.116.128.105	attackbotsspam	Automatic report BANNED IP	2020-07-23 17:14:35
180.65.167.61	attackspambots	Jul 23 10:08:58 fhem-rasp sshd[29892]: Invalid user president from 180.65.167.61 port 48452 ...	2020-07-23 17:06:03
222.186.175.167	attackspambots	Unauthorised connection attempt detected at AUO FR1 NODE2. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-07-23 17:15:04
103.74.118.168	attack	WordPress (CMS) attack attempts. Date: 2020 Jul 23. 01:53:54 Source IP: 103.74.118.168 Portion of the log(s): 103.74.118.168 - [23/Jul/2020:01:53:39 +0200] "GET /wp-login.php HTTP/1.1" 200 1962 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.74.118.168 - [23/Jul/2020:01:53:47 +0200] "POST /wp-login.php HTTP/1.1" 200 2415 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.74.118.168 - [23/Jul/2020:01:53:51 +0200] "POST /xmlrpc.php HTTP/1.1" 404 118 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-07-23 16:56:35
119.28.132.211	attackbotsspam	2020-07-23T06:03:36+0200 Failed SSH Authentication/Brute Force Attack. (Server 5)	2020-07-23 16:35:41

最近上报的IP列表

214.227.71.15	149.212.192.141	69.174.191.79	141.183.146.98
176.105.40.16	61.93.99.208	250.44.0.235	5.4.252.164
192.48.78.128	165.13.242.35	7.23.129.163	166.167.100.14
199.50.69.172	59.136.142.160	121.40.9.84	94.16.110.188
59.77.97.187	75.22.87.61	149.211.31.155	137.53.24.135