213.230.114.145

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Uzbekistan

运营商(isp): Uzbektelekom Joint Stock Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	2019-07-04 05:53:42 H=(145.64.uzpak.uz) [213.230.114.145]:25482 I=[10.100.18.23]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=213.230.114.145) 2019-07-04 05:53:42 unexpected disconnection while reading SMTP command from (145.64.uzpak.uz) [213.230.114.145]:25482 I=[10.100.18.23]:25 (error: Connection reset by peer) 2019-07-04 07:45:57 H=(145.64.uzpak.uz) [213.230.114.145]:52974 I=[10.100.18.23]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=213.230.114.145) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=213.230.114.145	2019-07-04 19:50:45

类型

评论内容

时间

attackbotsspam

2019-07-04 05:53:42 H=(145.64.uzpak.uz) [213.230.114.145]:25482 I=[10.100.18.23]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=213.230.114.145)
2019-07-04 05:53:42 unexpected disconnection while reading SMTP command from (145.64.uzpak.uz) [213.230.114.145]:25482 I=[10.100.18.23]:25 (error: Connection reset by peer)
2019-07-04 07:45:57 H=(145.64.uzpak.uz) [213.230.114.145]:52974 I=[10.100.18.23]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=213.230.114.145)


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=213.230.114.145

2019-07-04 19:50:45

相同子网IP讨论:

IP	类型	评论内容	时间
213.230.114.7	attack	Jun 27 14:22:18 smtp postfix/smtpd[31494]: NOQUEUE: reject: RCPT from unknown[213.230.114.7]: 554 5.7.1 Service unavailable; Client host [213.230.114.7] blocked using cbl.abuseat.org; Blocked - see http://www.abuseat.org/lookup.cgi?ip=213.230.114.7; from= to= proto=ESMTP helo=<[213.230.114.7]> ...	2020-06-27 20:41:31
213.230.114.60	attackspam	Nov 8 07:08:39 mxgate1 postfix/postscreen[2829]: CONNECT from [213.230.114.60]:12491 to [176.31.12.44]:25 Nov 8 07:08:39 mxgate1 postfix/dnsblog[2835]: addr 213.230.114.60 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 8 07:08:39 mxgate1 postfix/dnsblog[2831]: addr 213.230.114.60 listed by domain zen.spamhaus.org as 127.0.0.11 Nov 8 07:08:39 mxgate1 postfix/dnsblog[2831]: addr 213.230.114.60 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 8 07:08:39 mxgate1 postfix/dnsblog[2832]: addr 213.230.114.60 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 8 07:08:39 mxgate1 postfix/postscreen[2829]: PREGREET 23 after 0.16 from [213.230.114.60]:12491: EHLO [213.230.114.60] Nov 8 07:08:39 mxgate1 postfix/postscreen[2829]: DNSBL rank 4 for [213.230.114.60]:12491 Nov x@x Nov 8 07:08:40 mxgate1 postfix/postscreen[2829]: HANGUP after 0.59 from [213.230.114.60]:12491 in tests after SMTP handshake Nov 8 07:08:40 mxgate1 postfix/postscreen[2829]: DISCONNECT [213......... -------------------------------	2019-11-08 19:36:01

类型

评论内容

时间

213.230.114.7

attack

Jun 27 14:22:18 smtp postfix/smtpd[31494]: NOQUEUE: reject: RCPT from unknown[213.230.114.7]: 554 5.7.1 Service unavailable; Client host [213.230.114.7] blocked using cbl.abuseat.org; Blocked - see http://www.abuseat.org/lookup.cgi?ip=213.230.114.7; from= to= proto=ESMTP helo=<[213.230.114.7]>
...

2020-06-27 20:41:31

213.230.114.60

attackspam

Nov  8 07:08:39 mxgate1 postfix/postscreen[2829]: CONNECT from [213.230.114.60]:12491 to [176.31.12.44]:25
Nov  8 07:08:39 mxgate1 postfix/dnsblog[2835]: addr 213.230.114.60 listed by domain cbl.abuseat.org as 127.0.0.2
Nov  8 07:08:39 mxgate1 postfix/dnsblog[2831]: addr 213.230.114.60 listed by domain zen.spamhaus.org as 127.0.0.11
Nov  8 07:08:39 mxgate1 postfix/dnsblog[2831]: addr 213.230.114.60 listed by domain zen.spamhaus.org as 127.0.0.4
Nov  8 07:08:39 mxgate1 postfix/dnsblog[2832]: addr 213.230.114.60 listed by domain b.barracudacentral.org as 127.0.0.2
Nov  8 07:08:39 mxgate1 postfix/postscreen[2829]: PREGREET 23 after 0.16 from [213.230.114.60]:12491: EHLO [213.230.114.60]

Nov  8 07:08:39 mxgate1 postfix/postscreen[2829]: DNSBL rank 4 for [213.230.114.60]:12491
Nov x@x
Nov  8 07:08:40 mxgate1 postfix/postscreen[2829]: HANGUP after 0.59 from [213.230.114.60]:12491 in tests after SMTP handshake
Nov  8 07:08:40 mxgate1 postfix/postscreen[2829]: DISCONNECT [213.........
-------------------------------

2019-11-08 19:36:01

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 213.230.114.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12616
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;213.230.114.145.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070400 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jul 04 19:50:36 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

145.114.230.213.in-addr.arpa domain name pointer 145.64.uzpak.uz.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
145.114.230.213.in-addr.arpa	name = 145.64.uzpak.uz.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
34.87.83.179	attackspam	WordPress brute force	2020-06-17 07:51:54
45.32.151.224	attackbots	C1,WP GET /manga/wp-login.php	2020-06-17 07:42:14
35.197.132.175	attackspambots	WordPress brute force	2020-06-17 07:50:11
35.228.46.111	attackbots	35.228.46.111 - - [16/Jun/2020:22:42:26 +0200] "POST /wp-login.php HTTP/1.1" 200 5368 "http://enliventech.net/wp-login.php" "Opera/9.80 (Windows NT 6.1) Presto/2.12.388 Version/12.12" 35.228.46.111 - - [16/Jun/2020:22:49:09 +0200] "POST /wp-login.php HTTP/1.1" 200 5498 "http://stonewhitemusic.net/wp-login.php" "Opera/9.80 (Windows NT 6.1) Presto/2.12.388 Version/12.12" 35.228.46.111 - - [16/Jun/2020:22:49:39 +0200] "POST /wp-login.php HTTP/1.1" 200 5390 "https://www.royalhempcorporation.com/wp-login.php" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_12_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/12.0.2 Safari/605.1.15" 35.228.46.111 - - [16/Jun/2020:22:50:21 +0200] "POST /wp-login.php HTTP/1.1" 200 5575 "http://byebyeestateagents.com/wp-login.php" "Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.77 Safari/537.36" 35.228.46.111 - - [16/Jun/2020:23:04:50 +0200] "POST /wp-login.php HTTP/1.1" 200 5465 "http://septictanksanantonio.com/wp-login.php" ...	2020-06-17 07:46:08
35.232.185.125	attackspambots	Invalid user louwg from 35.232.185.125 port 34782	2020-06-17 07:28:19
155.94.140.59	attackbots	Jun 17 02:02:11 pkdns2 sshd\[5824\]: Invalid user user1 from 155.94.140.59Jun 17 02:02:13 pkdns2 sshd\[5824\]: Failed password for invalid user user1 from 155.94.140.59 port 33870 ssh2Jun 17 02:04:09 pkdns2 sshd\[5921\]: Invalid user contas from 155.94.140.59Jun 17 02:04:11 pkdns2 sshd\[5921\]: Failed password for invalid user contas from 155.94.140.59 port 53640 ssh2Jun 17 02:06:22 pkdns2 sshd\[6060\]: Failed password for root from 155.94.140.59 port 45182 ssh2Jun 17 02:08:31 pkdns2 sshd\[6171\]: Invalid user yseo from 155.94.140.59 ...	2020-06-17 07:24:12
34.84.69.247	attackspam	WordPress brute force	2020-06-17 07:52:27
46.235.40.132	attackspambots	WordPress brute force	2020-06-17 07:37:13
78.175.61.253	attack	Honeypot attack, port: 445, PTR: 78.175.61.253.dynamic.ttnet.com.tr.	2020-06-17 07:38:47
73.112.2.190	attackbots	WordPress brute force	2020-06-17 07:17:36
44.230.242.71	attackbots	Web-based SQL injection attempt	2020-06-17 07:43:46
81.4.96.82	attack	WordPress brute force	2020-06-17 07:15:58
42.84.42.58	attackbots	Jun 17 00:47:58 ArkNodeAT sshd\[27971\]: Invalid user ganesh from 42.84.42.58 Jun 17 00:47:58 ArkNodeAT sshd\[27971\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.84.42.58 Jun 17 00:47:59 ArkNodeAT sshd\[27971\]: Failed password for invalid user ganesh from 42.84.42.58 port 48612 ssh2	2020-06-17 07:26:31
51.68.229.67	attack	WordPress brute force	2020-06-17 07:31:00
188.247.61.150	attackspambots	Tried our host z.	2020-06-17 07:21:27

最近上报的IP列表

201.232.242.14	158.69.23.53	178.203.147.40	45.101.114.114
197.210.124.186	193.233.169.205	189.1.10.26	188.165.203.57
185.68.195.152	20.205.208.54	83.235.11.161	178.251.230.113
195.117.157.229	178.34.146.222	134.175.204.84	177.130.63.246
89.143.90.29	177.129.8.18	37.172.50.239	251.125.250.185