208.138.21.148

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Jamaica

运营商(isp): Cable and Wireless Jamaica

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 07-10-2019 20:50:39.	2019-10-08 06:17:48

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 208.138.21.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25494
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;208.138.21.148.			IN	A

;; AUTHORITY SECTION:
.			256	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100702 1800 900 604800 86400

;; Query time: 246 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 08 06:17:45 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

148.21.138.208.in-addr.arpa domain name pointer 148-21-138-208-br1-STATIC-dsl.cwjamaica.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
148.21.138.208.in-addr.arpa	name = 148-21-138-208-br1-STATIC-dsl.cwjamaica.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
95.9.185.222	attackbotsspam	Unauthorized connection attempt detected from IP address 95.9.185.222 to port 445	2019-12-20 14:17:37
166.111.152.230	attack	Dec 20 07:21:18 dev0-dcde-rnet sshd[10248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=166.111.152.230 Dec 20 07:21:20 dev0-dcde-rnet sshd[10248]: Failed password for invalid user Welcome123 from 166.111.152.230 port 33596 ssh2 Dec 20 07:30:12 dev0-dcde-rnet sshd[10323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=166.111.152.230	2019-12-20 14:50:29
217.182.70.125	attack	Dec 20 06:24:37 game-panel sshd[6182]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.70.125 Dec 20 06:24:38 game-panel sshd[6182]: Failed password for invalid user sheng from 217.182.70.125 port 54717 ssh2 Dec 20 06:30:12 game-panel sshd[6441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.70.125	2019-12-20 14:48:47
212.237.22.79	attack	Invalid user adina from 212.237.22.79 port 38488	2019-12-20 13:59:39
40.92.3.43	attackbotsspam	Dec 20 07:55:29 debian-2gb-vpn-nbg1-1 kernel: [1196089.094712] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=40.92.3.43 DST=78.46.192.101 LEN=40 TOS=0x00 PREC=0x00 TTL=233 ID=49344 DF PROTO=TCP SPT=32483 DPT=25 WINDOW=0 RES=0x00 ACK RST URGP=0	2019-12-20 14:22:31
40.92.11.63	attack	Dec 20 07:55:53 debian-2gb-vpn-nbg1-1 kernel: [1196113.371721] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=40.92.11.63 DST=78.46.192.101 LEN=40 TOS=0x00 PREC=0x00 TTL=232 ID=37464 DF PROTO=TCP SPT=4193 DPT=25 WINDOW=0 RES=0x00 ACK RST URGP=0	2019-12-20 14:01:06
45.143.220.92	attackbots	\[2019-12-20 00:26:35\] SECURITY\[2857\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-20T00:26:35.558-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146490381261",SessionID="0x7f0fb4e801a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.220.92/5071",ACLName="no_extension_match" \[2019-12-20 00:31:19\] SECURITY\[2857\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-20T00:31:19.242-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146490381261",SessionID="0x7f0fb534edb8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.220.92/5078",ACLName="no_extension_match" \[2019-12-20 00:35:56\] SECURITY\[2857\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-20T00:35:56.601-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146490381261",SessionID="0x7f0fb4425c48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.220.92/5074",ACLName="no_extension	2019-12-20 14:09:54
113.160.178.148	attack	Dec 20 04:55:48 *** sshd[32650]: User root from 113.160.178.148 not allowed because not listed in AllowUsers	2019-12-20 14:00:07
101.0.4.74	attack	Dec 20 06:54:24 mail sshd[32398]: Invalid user temp from 101.0.4.74 Dec 20 06:54:24 mail sshd[32398]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.0.4.74 Dec 20 06:54:24 mail sshd[32398]: Invalid user temp from 101.0.4.74 Dec 20 06:54:26 mail sshd[32398]: Failed password for invalid user temp from 101.0.4.74 port 56426 ssh2 Dec 20 07:30:42 mail sshd[5779]: Invalid user ident from 101.0.4.74 ...	2019-12-20 14:46:09
145.239.94.191	attack	Dec 20 00:58:01 TORMINT sshd\[26518\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.94.191 user=root Dec 20 00:58:03 TORMINT sshd\[26518\]: Failed password for root from 145.239.94.191 port 41254 ssh2 Dec 20 01:03:45 TORMINT sshd\[26862\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.94.191 user=root ...	2019-12-20 14:24:20
218.92.0.131	attackbotsspam	SSH Login Bruteforce	2019-12-20 13:57:47
112.15.38.218	attackbots	Dec 20 03:30:30 firewall sshd[20579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.15.38.218 Dec 20 03:30:30 firewall sshd[20579]: Invalid user kick from 112.15.38.218 Dec 20 03:30:33 firewall sshd[20579]: Failed password for invalid user kick from 112.15.38.218 port 49200 ssh2 ...	2019-12-20 14:45:10
139.155.93.180	attackspambots	Dec 20 05:49:08 hcbbdb sshd\[16071\]: Invalid user eeeeee from 139.155.93.180 Dec 20 05:49:08 hcbbdb sshd\[16071\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.93.180 Dec 20 05:49:09 hcbbdb sshd\[16071\]: Failed password for invalid user eeeeee from 139.155.93.180 port 53226 ssh2 Dec 20 05:55:41 hcbbdb sshd\[16943\]: Invalid user charlotte12345 from 139.155.93.180 Dec 20 05:55:41 hcbbdb sshd\[16943\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.93.180	2019-12-20 14:12:55
206.189.156.198	attack	Dec 19 20:18:01 auw2 sshd\[17204\]: Invalid user lana from 206.189.156.198 Dec 19 20:18:01 auw2 sshd\[17204\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.156.198 Dec 19 20:18:03 auw2 sshd\[17204\]: Failed password for invalid user lana from 206.189.156.198 port 43514 ssh2 Dec 19 20:23:57 auw2 sshd\[17824\]: Invalid user sexsex from 206.189.156.198 Dec 19 20:23:57 auw2 sshd\[17824\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.156.198	2019-12-20 14:25:39
36.77.94.213	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 20-12-2019 04:55:15.	2019-12-20 14:29:26

最近上报的IP列表

187.189.145.33	187.171.154.184	121.200.49.66	186.46.227.76
186.29.131.99	186.236.7.250	74.185.1.15	186.208.112.214
22.33.49.215	200.126.60.175	180.254.237.22	179.99.201.82
179.39.242.78	40.68.72.193	179.228.254.42	179.180.170.180
177.66.153.99	177.179.12.219	177.158.253.212	151.25.85.208