213.230.114.145

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Uzbekistan

运营商(isp): Uzbektelekom Joint Stock Company

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	2019-07-04 05:53:42 H=(145.64.uzpak.uz) [213.230.114.145]:25482 I=[10.100.18.23]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=213.230.114.145) 2019-07-04 05:53:42 unexpected disconnection while reading SMTP command from (145.64.uzpak.uz) [213.230.114.145]:25482 I=[10.100.18.23]:25 (error: Connection reset by peer) 2019-07-04 07:45:57 H=(145.64.uzpak.uz) [213.230.114.145]:52974 I=[10.100.18.23]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=213.230.114.145) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=213.230.114.145	2019-07-04 19:50:45

类型

评论内容

时间

attackbotsspam

2019-07-04 05:53:42 H=(145.64.uzpak.uz) [213.230.114.145]:25482 I=[10.100.18.23]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=213.230.114.145)
2019-07-04 05:53:42 unexpected disconnection while reading SMTP command from (145.64.uzpak.uz) [213.230.114.145]:25482 I=[10.100.18.23]:25 (error: Connection reset by peer)
2019-07-04 07:45:57 H=(145.64.uzpak.uz) [213.230.114.145]:52974 I=[10.100.18.23]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=213.230.114.145)


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=213.230.114.145

2019-07-04 19:50:45

相同子网IP讨论:

IP	类型	评论内容	时间
213.230.114.7	attack	Jun 27 14:22:18 smtp postfix/smtpd[31494]: NOQUEUE: reject: RCPT from unknown[213.230.114.7]: 554 5.7.1 Service unavailable; Client host [213.230.114.7] blocked using cbl.abuseat.org; Blocked - see http://www.abuseat.org/lookup.cgi?ip=213.230.114.7; from= to= proto=ESMTP helo=<[213.230.114.7]> ...	2020-06-27 20:41:31
213.230.114.60	attackspam	Nov 8 07:08:39 mxgate1 postfix/postscreen[2829]: CONNECT from [213.230.114.60]:12491 to [176.31.12.44]:25 Nov 8 07:08:39 mxgate1 postfix/dnsblog[2835]: addr 213.230.114.60 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 8 07:08:39 mxgate1 postfix/dnsblog[2831]: addr 213.230.114.60 listed by domain zen.spamhaus.org as 127.0.0.11 Nov 8 07:08:39 mxgate1 postfix/dnsblog[2831]: addr 213.230.114.60 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 8 07:08:39 mxgate1 postfix/dnsblog[2832]: addr 213.230.114.60 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 8 07:08:39 mxgate1 postfix/postscreen[2829]: PREGREET 23 after 0.16 from [213.230.114.60]:12491: EHLO [213.230.114.60] Nov 8 07:08:39 mxgate1 postfix/postscreen[2829]: DNSBL rank 4 for [213.230.114.60]:12491 Nov x@x Nov 8 07:08:40 mxgate1 postfix/postscreen[2829]: HANGUP after 0.59 from [213.230.114.60]:12491 in tests after SMTP handshake Nov 8 07:08:40 mxgate1 postfix/postscreen[2829]: DISCONNECT [213......... -------------------------------	2019-11-08 19:36:01

类型

评论内容

时间

213.230.114.7

attack

Jun 27 14:22:18 smtp postfix/smtpd[31494]: NOQUEUE: reject: RCPT from unknown[213.230.114.7]: 554 5.7.1 Service unavailable; Client host [213.230.114.7] blocked using cbl.abuseat.org; Blocked - see http://www.abuseat.org/lookup.cgi?ip=213.230.114.7; from= to= proto=ESMTP helo=<[213.230.114.7]>
...

2020-06-27 20:41:31

213.230.114.60

attackspam

Nov  8 07:08:39 mxgate1 postfix/postscreen[2829]: CONNECT from [213.230.114.60]:12491 to [176.31.12.44]:25
Nov  8 07:08:39 mxgate1 postfix/dnsblog[2835]: addr 213.230.114.60 listed by domain cbl.abuseat.org as 127.0.0.2
Nov  8 07:08:39 mxgate1 postfix/dnsblog[2831]: addr 213.230.114.60 listed by domain zen.spamhaus.org as 127.0.0.11
Nov  8 07:08:39 mxgate1 postfix/dnsblog[2831]: addr 213.230.114.60 listed by domain zen.spamhaus.org as 127.0.0.4
Nov  8 07:08:39 mxgate1 postfix/dnsblog[2832]: addr 213.230.114.60 listed by domain b.barracudacentral.org as 127.0.0.2
Nov  8 07:08:39 mxgate1 postfix/postscreen[2829]: PREGREET 23 after 0.16 from [213.230.114.60]:12491: EHLO [213.230.114.60]

Nov  8 07:08:39 mxgate1 postfix/postscreen[2829]: DNSBL rank 4 for [213.230.114.60]:12491
Nov x@x
Nov  8 07:08:40 mxgate1 postfix/postscreen[2829]: HANGUP after 0.59 from [213.230.114.60]:12491 in tests after SMTP handshake
Nov  8 07:08:40 mxgate1 postfix/postscreen[2829]: DISCONNECT [213.........
-------------------------------

2019-11-08 19:36:01

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 213.230.114.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12616
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;213.230.114.145.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070400 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jul 04 19:50:36 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

145.114.230.213.in-addr.arpa domain name pointer 145.64.uzpak.uz.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
145.114.230.213.in-addr.arpa	name = 145.64.uzpak.uz.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
49.88.112.69	attackspam	Mar 26 14:10:47 server sshd[8111]: Failed password for root from 49.88.112.69 port 45550 ssh2 Mar 26 14:10:50 server sshd[8111]: Failed password for root from 49.88.112.69 port 45550 ssh2 Mar 26 14:10:53 server sshd[8111]: Failed password for root from 49.88.112.69 port 45550 ssh2	2020-03-26 21:18:36
46.233.243.191	attackspambots	1585225515 - 03/26/2020 13:25:15 Host: 46.233.243.191/46.233.243.191 Port: 445 TCP Blocked	2020-03-26 21:42:17
95.216.153.84	attack	Port scan on 2 port(s): 6669 6822	2020-03-26 21:40:30
180.76.148.147	attackspam	SSH Brute-Forcing (server2)	2020-03-26 21:42:46
94.138.208.158	attackbots	Mar 26 13:56:03 vps sshd[337316]: Failed password for invalid user browser from 94.138.208.158 port 36114 ssh2 Mar 26 13:59:41 vps sshd[353878]: Invalid user law from 94.138.208.158 port 49778 Mar 26 13:59:41 vps sshd[353878]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.138.208.158 Mar 26 13:59:43 vps sshd[353878]: Failed password for invalid user law from 94.138.208.158 port 49778 ssh2 Mar 26 14:03:32 vps sshd[376892]: Invalid user huangjie from 94.138.208.158 port 35220 ...	2020-03-26 21:11:57
139.193.251.182	attackbotsspam	Email rejected due to spam filtering	2020-03-26 21:49:17
218.92.0.202	attackspambots	Mar 26 13:21:53 ewelt sshd[14779]: Failed password for root from 218.92.0.202 port 37308 ssh2 Mar 26 13:21:55 ewelt sshd[14779]: Failed password for root from 218.92.0.202 port 37308 ssh2 Mar 26 13:25:39 ewelt sshd[15013]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.202 user=root Mar 26 13:25:41 ewelt sshd[15013]: Failed password for root from 218.92.0.202 port 57294 ssh2 ...	2020-03-26 21:09:23
41.139.225.135	attackspam	2020-03-26T08:25:22.970187mail.thespaminator.com sshd[4609]: Invalid user admin from 41.139.225.135 port 52989 2020-03-26T08:25:24.811871mail.thespaminator.com sshd[4609]: Failed password for invalid user admin from 41.139.225.135 port 52989 ssh2 ...	2020-03-26 21:34:23
222.186.15.158	attackspambots	Mar 26 13:23:18 IngegnereFirenze sshd[17865]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.158 user=root ...	2020-03-26 21:29:09
109.99.92.154	attack	Email rejected due to spam filtering	2020-03-26 21:46:14
69.94.138.189	attackspambots	SpamScore above: 10.0	2020-03-26 21:14:50
207.180.243.116	attackbotsspam	Mar 25 19:23:35 fwweb01 sshd[22938]: Invalid user gemss from 207.180.243.116 Mar 25 19:23:37 fwweb01 sshd[22938]: Failed password for invalid user gemss from 207.180.243.116 port 45454 ssh2 Mar 25 19:23:37 fwweb01 sshd[22938]: Received disconnect from 207.180.243.116: 11: Bye Bye [preauth] Mar 25 19:32:13 fwweb01 sshd[23477]: Invalid user lr from 207.180.243.116 Mar 25 19:32:15 fwweb01 sshd[23477]: Failed password for invalid user lr from 207.180.243.116 port 58446 ssh2 Mar 25 19:32:15 fwweb01 sshd[23477]: Received disconnect from 207.180.243.116: 11: Bye Bye [preauth] Mar 25 19:35:14 fwweb01 sshd[23664]: Invalid user fq from 207.180.243.116 Mar 25 19:35:16 fwweb01 sshd[23664]: Failed password for invalid user fq from 207.180.243.116 port 60230 ssh2 Mar 25 19:35:16 fwweb01 sshd[23664]: Received disconnect from 207.180.243.116: 11: Bye Bye [preauth] Mar 25 19:38:29 fwweb01 sshd[23840]: Invalid user sunliang from 207.180.243.116 Mar 25 19:38:31 fwweb01 sshd[23840]: Failed........ -------------------------------	2020-03-26 21:41:21
212.64.67.116	attackbots	Invalid user hs from 212.64.67.116 port 49316	2020-03-26 21:19:06
112.124.158.5	attack	ICMP MH Probe, Scan /Distributed -	2020-03-26 21:33:45
47.91.92.228	attackbots	Mar 26 06:24:20 server1 sshd\[11082\]: Failed password for invalid user admin from 47.91.92.228 port 45186 ssh2 Mar 26 06:24:20 server1 sshd\[11083\]: Failed password for invalid user admin from 47.91.92.228 port 45188 ssh2 Mar 26 06:25:11 server1 sshd\[11489\]: Invalid user kayla from 47.91.92.228 Mar 26 06:25:11 server1 sshd\[11489\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.91.92.228 Mar 26 06:25:11 server1 sshd\[11490\]: Invalid user kayla from 47.91.92.228 ...	2020-03-26 21:44:34

最近上报的IP列表

201.232.242.14	158.69.23.53	178.203.147.40	45.101.114.114
197.210.124.186	193.233.169.205	189.1.10.26	188.165.203.57
185.68.195.152	20.205.208.54	83.235.11.161	178.251.230.113
195.117.157.229	178.34.146.222	134.175.204.84	177.130.63.246
89.143.90.29	177.129.8.18	37.172.50.239	251.125.250.185